Container summary for bci/rust

SUSE-CU-2024:5277-1

SUSE-CU-2024:5265-1

This update for glibc fixes the following issue:

• Apply libc_nonshared.a workaround on s390x and ppc64le architectures (bsc#1231051).

SUSE-CU-2024:5264-1

SUSE-CU-2024:5165-1

This update for gcc14 fixes the following issues:
This update ships the GNU Compiler Collection GCC 14.2. (jsc#PED-10474)
The compiler runtime libraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 13 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP5 and SP6, and provided in the 'Development Tools' module.
The Go, D, Ada and Modula 2 language compiler parts are available unsupported via the PackageHub repositories.
To use gcc14 compilers use:

• install 'gcc14' or 'gcc14-c++' or one of the other 'gcc14-COMPILER' frontend packages.
• override your Makefile to use CC=gcc14, CXX=g++14 and similar overrides for the other languages.

• Add libquadmath0-devel-gcc14 sub-package to allow installing quadmath.h and SO link without installing the fortran frontend

• Avoid combine spending too much compile-time and memory doing nothing on s390x. [bsc#1188441]
• Remove timezone Recommends from the libstdc++6 package. [bsc#1221601]
• Revert libgccjit dependency change. [bsc#1220724]
• Fix libgccjit-devel dependency, a newer shared library is OK.
• Fix libgccjit dependency, the corresponding compiler isn't required.
• Add cross-X-newlib-devel requires to newlib cross compilers. [bsc#1219031]
• Re-enable AutoReqProv for cross packages but filter files processed via __requires_exclude_from and __provides_exclude_from. [bsc#1219031]
• Package m2rte.so plugin in the gcc14-m2 sub-package rather than in gcc13-devel. [bsc#1210959]
• Require libstdc++6-devel-gcc14 from gcc14-m2 as m2 programs are linked against libstdc++6.

SUSE-CU-2024:5114-1

SUSE-CU-2024:5054-1

This update for bash fixes the following issues:

• Load completion file eveh if a brace expansion is in the command line included (bsc#1227807).

SUSE-CU-2024:5053-1

This update for cyrus-sasl fixes the following issues:

• Make DIGEST-MD5 work with openssl3 ( bsc#1230111 ) RC4 is legacy provided since openSSL3 and requires explicit loading, disable openssl3 depricated API warnings.

SUSE-CU-2024:4957-1

SUSE-CU-2024:4888-1

This update for e2fsprogs fixes the following issue:

• resize2fs: Check number of group descriptors only if meta_bg is disabled (bsc#1230145).

SUSE-CU-2024:4815-1

SUSE-CU-2024:4814-1

This update for openssl-3 fixes the following issues:

• CVE-2024-41996: Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is used, allows remote attackers to trigger expensive server-side DHE (bsc#1230698)

This update for glibc fixes the following issue:

• Use nss-systemd by default also in SLE (bsc#1230638).

SUSE-CU-2024:4693-1

This update for curl fixes the following issue:

• Make special characters in URL work with aws-sigv4 (bsc#1230516).

SUSE-CU-2024:4622-1

SUSE-CU-2024:4555-1

This update for rust, rust1.81 fixes the following issues:
Changes in rust1.81:

• Resolve wasm32-wasi build issues

• Abort on uncaught panics in `extern 'C'` functions.
• Fix ambiguous cases of multiple `&` in elided self lifetimes.
• Stabilize `#[expect]` for lints (RFC 2383), like `#[allow]` with a warning if the lint is _not_ fulfilled.
• Change method resolution to constrain hidden types instead of rejecting method candidates.
• Bump `elided_lifetimes_in_associated_constant` to deny.
• `offset_from`: always allow pointers to point to the same address.
• Allow constraining opaque types during subtyping in the trait system.
• Allow constraining opaque types during various unsizing casts.
• Deny keyword lifetimes pre-expansion.

• Make casts of pointers to trait objects stricter.
• Check alias args for well-formedness even if they have escaping bound vars.
• Deprecate no-op codegen option `-Cinline-threshold=...`.
• Re-implement a type-size based limit.
• Properly account for alignment in `transmute` size checks.
• Remove the `box_pointers` lint.
• Ensure the interpreter checks bool/char for validity when they are used in a cast.
• Improve coverage instrumentation for functions containing nested items.
• Target changes: - Add Tier 3 `no_std` Xtensa targets: `xtensa-esp32-none-elf`, `xtensa-esp32s2-none-elf`, `xtensa-esp32s3-none-elf` - Add Tier 3 `std` Xtensa targets: `xtensa-esp32-espidf`, `xtensa-esp32s2-espidf`, `xtensa-esp32s3-espidf` - Add Tier 3 i686 Redox OS target: `i686-unknown-redox` - Promote `arm64ec-pc-windows-msvc` to Tier 2. - Promote `loongarch64-unknown-linux-musl` to Tier 2 with host tools. - Enable full tools and profiler for LoongArch Linux targets. - Unconditionally warn on usage of `wasm32-wasi`. (see compatibility note below) - Refer to Rust's [platform support page][platform-support-doc] for more information on Rust's tiered platform support.

• Split core's `PanicInfo` and std's `PanicInfo`. (see compatibility note below)
• Generalize `{Rc,Arc}::make_mut()` to unsized types.
• Replace sort implementations with stable `driftsort` and unstable `ipnsort`. All `slice::sort*` and `slice::select_nth*` methods are expected to see significant performance improvements. See the research project https://github.com/Voultapher/sort-research-rs for more details.
• Document behavior of `create_dir_all` with respect to empty paths.
• Fix interleaved output in the default panic hook when multiple threads panic simultaneously.

• `core::error` https://doc.rust-lang.org/stable/core/error/index.html
• `hint::assert_unchecked` https://doc.rust-lang.org/stable/core/hint/fn.assert_unchecked.html
• `fs::exists` https://doc.rust-lang.org/stable/std/fs/fn.exists.html
• `AtomicBool::fetch_not` https://doc.rust-lang.org/stable/core/sync/atomic/struct.AtomicBool.html#method.fetch_not
• `Duration::abs_diff` https://doc.rust-lang.org/stable/core/time/struct.Duration.html#method.abs_diff
• `IoSlice::advance` https://doc.rust-lang.org/stable/std/io/struct.IoSlice.html#method.advance
• `IoSlice::advance_slices` https://doc.rust-lang.org/stable/std/io/struct.IoSlice.html#method.advance_slices
• `IoSliceMut::advance` https://doc.rust-lang.org/stable/std/io/struct.IoSliceMut.html#method.advance
• `IoSliceMut::advance_slices` https://doc.rust-lang.org/stable/std/io/struct.IoSliceMut.html#method.advance_slices
• `PanicHookInfo` https://doc.rust-lang.org/stable/std/panic/struct.PanicHookInfo.html
• `PanicInfo::message` https://doc.rust-lang.org/stable/core/panic/struct.PanicInfo.html#method.message
• `PanicMessage` https://doc.rust-lang.org/stable/core/panic/struct.PanicMessage.html

• `char::from_u32_unchecked` https://doc.rust-lang.org/stable/core/char/fn.from_u32_unchecked.html (function)
• `char::from_u32_unchecked` https://doc.rust-lang.org/stable/core/primitive.char.html#method.from_u32_unchecked (method)
• `CStr::count_bytes` https://doc.rust-lang.org/stable/core/ffi/c_str/struct.CStr.html#method.count_bytes
• `CStr::from_ptr` https://doc.rust-lang.org/stable/core/ffi/c_str/struct.CStr.html#method.from_ptr

• Generated `.cargo_vcs_info.json` is always included, even when `--allow-dirty` is passed.
• Disallow `package.license-file` and `package.readme` pointing to non-existent files during packaging.
• Disallow passing `--release`/`--debug` flag along with the `--profile` flag.
• Remove `lib.plugin` key support in `Cargo.toml`. Rust plugin support has been deprecated for four years and was removed in 1.75.0.

• Usage of the `wasm32-wasi` target will now issue a compiler warning and request users switch to the `wasm32-wasip1` target instead. Both targets are the same, `wasm32-wasi` is only being renamed, and this change to the WASI target https://blog.rust-lang.org/2024/04/09/updates-to-rusts-wasi-targets.html is being done to enable removing `wasm32-wasi` in January 2025.
• We have renamed `std::panic::PanicInfo` to `std::panic::PanicHookInfo`. The old name will continue to work as an alias, but will result in a deprecation warning starting in Rust 1.82.0. `core::panic::PanicInfo` will remain unchanged, however, as this is now a *different type*. The reason is that these types have different roles: `std::panic::PanicHookInfo` is the argument to the panic hook https://doc.rust-lang.org/stable/std/panic/fn.set_hook.html in std context (where panics can have an arbitrary payload), while `core::panic::PanicInfo` is the argument to the `#[panic_handler]` https://doc.rust-lang.org/nomicon/panic-handler.html in no_std context (where panics always carry a formatted *message*). Separating these types allows us to add more useful methods to these types, such as `std::panic::PanicHookInfo::payload_as_str()` and `core::panic::PanicInfo::message()`.
• The new sort implementations may panic if a type's implementation of `Ord` https://doc.rust-lang.org/std/cmp/trait.Ord.html (or the given comparison function) does not implement a total order https://en.wikipedia.org/wiki/Total_order as the trait requires. `Ord`'s supertraits (`PartialOrd`, `Eq`, and `PartialEq`) must also be consistent. The previous implementations would not 'notice' any problem, but the new implementations have a good chance of detecting inconsistencies, throwing a panic rather than returning knowingly unsorted data.
• In very rare cases, a change in the internal evaluation order of the trait solver may result in new fatal overflow errors.

SUSE-CU-2024:4499-1

This update for ncurses fixes the following issues:

• Allow the terminal description based on static fallback entries to be freed (bsc#1229028)

SUSE-CU-2024:4341-1

SUSE-CU-2024:4247-1

This update for curl fixes the following issues:

• CVE-2024-8096: OCSP stapling bypass with GnuTLS. (bsc#1230093)

SUSE-CU-2024:4163-1

This update for glibc fixes the following issue:

• s390x-wcsncmp patch for s390x: Fix segfault in wcsncmp (bsc#1228042).

This update for binutils fixes the following issues:
Update to current 2.43.1 branch [jsc#PED-10474]:
Update to version 2.43:

• new .base64 pseudo-op, allowing base64 encoded data as strings
• Intel APX: add support for CFCMOV, CCMP, CTEST, zero-upper, NF (APX_F now fully supported)
• x86 Intel syntax now warns about more mnemonic suffixes
• macros and .irp/.irpc/.rept bodies can use \+ to get at number of times the macro/body was executed
• aarch64: support 'armv9.5-a' for -march, add support for LUT and LUT2
• s390: base register operand in D(X,B) and D(L,B) can now be omitted (ala 'D(X,)'); warn when register type doesn't match operand type (use option 'warn-regtype-mismatch=[strict|relaxed|no]' to adjust)
• riscv: support various extensions: Zacas, Zcmp, Zfbfmin, Zvfbfmin, Zvfbfwma, Smcsrind/Sscsrind, XCvMem, XCvBi, XCvElw, XSfCease, all at version 1.0; remove support for assembly of privileged spec 1.9.1 (linking support remains)
• arm: remove support for some old co-processors: Maverick and FPA
• mips: '--trap' now causes either trap or breakpoint instructions to be emitted as per current ISA, instead of always using trap insn and failing when current ISA was incompatible with that
• LoongArch: accept .option pseudo-op for fine-grained control of assembly code options; add support for DT_RELR
• readelf: now displays RELR relocations in full detail; add -j/--display-section to show just those section(s) content according to their type
• objdump/readelf now dump also .eh_frame_hdr (when present) when dumping .eh_frame
• gprofng: add event types for AMD Zen3/Zen4 and Intel Ice Lake processors; add minimal support for riscv
• linker: - put .got and .got.plt into relro segment - add -z isa-level-report=[none|all|needed|used] to the x86 ELF linker to report needed and used x86-64 ISA levels - add --rosegment option which changes the -z separate-code option so that only one read-only segment is created (instead of two) - add --section-ordering-file option to add extra mapping of input sections to output sections - add -plugin-save-temps to store plugin intermediate files permanently

• Add support for many aarch64 extensions: SVE2.1, SME2.1, B16B16, RASv2, LSE128, GCS, CHK, SPECRES2, LRCPC3, THE, ITE, D128, XS and flags to enable them: '+fcma', '+jscvt', '+frintts', '+flagm2', '+rcpc2' and '+wfxt'
• Add experimantal support for GAS to synthesize call-frame-info for some hand-written asm (--scfi=experimental) on x86-64.
• Add support for more x86-64 extensions: APX: 32 GPRs, NDD, PUSH2/POP2, PUSHP/POPP; USER_MSR, AVX10.1, PBNDKB, SM4, SM3, SHA512, AVX-VNNI-INT16.
• Add support for more RISC-V extensions: T-Head v2.3.0, CORE-V v1.0, SiFive VCIX v1.0.
• BPF assembler: ';' separates statements now, and does not introduce line comments anymore (use '#' or '//' for this).
• x86-64 ld: Add '-z mark-plt/-z nomark-plt' to mark PLT entries with dynamic tags.
• risc-v ld: Add '--[no-]check-uleb128'.
• New linker script directive: REVERSE, to be combined with SORT_BY_NAME or SORT_BY_INIT_PRIORITY, reverses the generated order.
• New linker options --warn-execstack-objects (warn only about execstack when input object files request it), and --error-execstack plus --error-rxw-segments to convert the existing warnings into errors.
• objdump: Add -Z/--decompress to be used with -s/--full-contents to decompress section contents before displaying.
• readelf: Add --extra-sym-info to be used with --symbols (currently prints section name of references section index).
• objcopy: Add --set-section-flags for x86_64 to include SHF_X86_64_LARGE.
• s390 disassembly: add target-specific disasm option 'insndesc', as in 'objdump -M insndesc' to display an instruction description as comment along with the disassembly.

• Add binutils-use-less-memory.diff to be a little nicer to 32bit userspace and huge links. [bsc#1216908]
• Add libzstd-devel to Requires of binutils-devel. (bsc#1215341)

SUSE-CU-2024:4058-1

This update for rust1.80 fixes the following issues:
Version 1.80.1 (2024-08-08) ===========================

• Fix miscompilation in the jump threading MIR optimization when comparing floats
• Revert changes to the `dead_code` lint from 1.80.0

This update for openssl-3 fixes the following issues:

• CVE-2024-6119: Fixed denial of service in X.509 name checks (bsc#1229465)

• FIPS: Deny SHA-1 signature verification in FIPS provider (bsc#1221365).
• FIPS: RSA keygen PCT requirements.
• FIPS: Check that the fips provider is available before setting it as the default provider in FIPS mode (bsc#1220523).
• FIPS: Port openssl to use jitterentropy (bsc#1220523).
• FIPS: Block non-Approved Elliptic Curves (bsc#1221786).
• FIPS: Service Level Indicator (bsc#1221365).
• FIPS: Output the FIPS-validation name and module version which uniquely identify the FIPS validated module (bsc#1221751).
• FIPS: Add required selftests: (bsc#1221760).
• FIPS: DH: Disable FIPS 186-4 Domain Parameters (bsc#1221821).
• FIPS: Recommendation for Password-Based Key Derivation (bsc#1221827).
• FIPS: Zero initialization required (bsc#1221752).
• FIPS: Reseed DRBG (bsc#1220690, bsc#1220693, bsc#1220696).
• FIPS: NIST SP 800-56Brev2 (bsc#1221824).
• FIPS: Approved Modulus Sizes for RSA Digital Signature for FIPS 186-4 (bsc#1221787).
• FIPS: Port openssl to use jitterentropy (bsc#1220523).
• FIPS: NIST SP 800-56Arev3 (bsc#1221822).
• FIPS: Error state has to be enforced (bsc#1221753).

SUSE-CU-2024:3949-1

SUSE-CU-2024:3873-1

SUSE-CU-2024:3780-1

This update for openssl-1_1 fixes the following issues:

• CVE-2024-5535: Fixed a buffer overread in function SSL_select_next_proto() with an empty supported client protocols buffer (bsc#1227138)

• Build with no-afalgeng. (bsc#1226463)
• Fixed C99 violations to allow the package to build with GCC 14. (bsc#1225907)

SUSE-CU-2024:3691-1

SUSE-CU-2024:3625-1

This update for rust, rust1.80 fixes the following issues:
Version 1.80.0 (2024-07-25) ==========================
Language --------

• Document maximum allocation size
• Allow zero-byte offsets and ZST read/writes on arbitrary pointers
• Support C23's variadics without a named parameter
• Stabilize `exclusive_range_pattern` feature
• Guarantee layout and ABI of `Result` in some scenarios

• Update cc crate to v1.0.97 allowing additional spectre mitigations on MSVC targets
• Allow field reordering on types marked `repr(packed(1))`
• Add a lint against never type fallback affecting unsafe code
• Disallow cast with trailing braced macro in let-else
• Expand `for_loops_over_fallibles` lint to lint on fallibles behind references.
• self-contained linker: retry linking without `-fuse-ld=lld` on CCs that don't support it
• Do not parse CVarArgs (`...`) as a type in trait bounds
• Improvements to LLDB formatting
• For the wasm32-wasip2 target default to PIC and do not use `-fuse-ld=lld`
• Add x86_64-unknown-linux-none as a tier 3 target
• Lint on `foo.into_iter()` resolving to `&Box<[T]>: IntoIterator`

• Add `size_of` and `size_of_val` and `align_of` and `align_of_val` to the prelude
• Abort a process when FD ownership is violated
• io::Write::write_fmt: panic if the formatter fails when the stream does not fail
• Panic if `PathBuf::set_extension` would add a path separator
• Add assert_unsafe_precondition to unchecked_{add,sub,neg,mul,shl,shr} methods
• Update `c_char` on AIX to use the correct type
• `offset_of!` no longer returns a temporary
• Handle sigma in `str.to_lowercase` correctly
• Raise `DEFAULT_MIN_STACK_SIZE` to at least 64KiB

• `impl Default for Rc` https://doc.rust-lang.org/beta/alloc/rc/struct.Rc.html#impl-Default-for-Rc%3CCStr%3E
• `impl Default for Rc` https://doc.rust-lang.org/beta/alloc/rc/struct.Rc.html#impl-Default-for-Rc%3Cstr%3E
• `impl Default for Rc<[T]>` https://doc.rust-lang.org/beta/alloc/rc/struct.Rc.html#impl-Default-for-Rc%3C%5BT%5D%3E
• `impl Default for Arc` https://doc.rust-lang.org/beta/alloc/sync/struct.Arc.html#impl-Default-for-Arc%3Cstr%3E
• `impl Default for Arc` https://doc.rust-lang.org/beta/alloc/sync/struct.Arc.html#impl-Default-for-Arc%3CCStr%3E
• `impl Default for Arc<[T]>` https://doc.rust-lang.org/beta/alloc/sync/struct.Arc.html#impl-Default-for-Arc%3C%5BT%5D%3E
• `impl IntoIterator for Box<[T]>` https://doc.rust-lang.org/beta/alloc/boxed/struct.Box.html#impl-IntoIterator-for-Box%3C%5BI%5D,+A%3E
• `impl FromIterator for Box` https://doc.rust-lang.org/beta/alloc/boxed/struct.Box.html#impl-FromIterator%3CString%3E-for-Box%3Cstr%3E)
• `impl FromIterator for Box` https://doc.rust-lang.org/beta/alloc/boxed/struct.Box.html#impl-FromIterator%3Cchar%3E-for-Box%3Cstr%3E
• `LazyCell` https://doc.rust-lang.org/beta/core/cell/struct.LazyCell.html
• `LazyLock` https://doc.rust-lang.org/beta/std/sync/struct.LazyLock.html
• `Duration::div_duration_f32` https://doc.rust-lang.org/beta/std/time/struct.Duration.html#method.div_duration_f32
• `Duration::div_duration_f64` https://doc.rust-lang.org/beta/std/time/struct.Duration.html#method.div_duration_f64
• `Option::take_if` https://doc.rust-lang.org/beta/std/option/enum.Option.html#method.take_if
• `Seek::seek_relative` https://doc.rust-lang.org/beta/std/io/trait.Seek.html#method.seek_relative
• `BinaryHeap::as_slice` https://doc.rust-lang.org/beta/std/collections/struct.BinaryHeap.html#method.as_slice
• `NonNull::offset` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.offset
• `NonNull::byte_offset` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.byte_offset
• `NonNull::add` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.add
• `NonNull::byte_add` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.byte_add
• `NonNull::sub` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.sub
• `NonNull::byte_sub` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.byte_sub
• `NonNull::offset_from` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.offset_from
• `NonNull::byte_offset_from` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.byte_offset_from
• `NonNull::read` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.read
• `NonNull::read_volatile` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.read_volatile
• `NonNull::read_unaligned` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.read_unaligned
• `NonNull::write` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.write
• `NonNull::write_volatile` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.write_volatile
• `NonNull::write_unaligned` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.write_unaligned
• `NonNull::write_bytes` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.write_bytes
• `NonNull::copy_to` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.copy_to
• `NonNull::copy_to_nonoverlapping` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.copy_to_nonoverlapping
• `NonNull::copy_from` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.copy_from
• `NonNull::copy_from_nonoverlapping` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.copy_from_nonoverlapping
• `NonNull::replace` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.replace
• `NonNull::swap` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.swap
• `NonNull::drop_in_place` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.drop_in_place
• `NonNull::align_offset` https://doc.rust-lang.org/beta/std/ptr/struct.NonNull.html#method.align_offset
• `<[T]>::split_at_checked` https://doc.rust-lang.org/beta/std/primitive.slice.html#method.split_at_checked
• `<[T]>::split_at_mut_checked` https://doc.rust-lang.org/beta/std/primitive.slice.html#method.split_at_mut_checked
• `str::split_at_checked` https://doc.rust-lang.org/beta/std/primitive.str.html#method.split_at_checked
• `str::split_at_mut_checked` https://doc.rust-lang.org/beta/std/primitive.str.html#method.split_at_mut_checked
• `str::trim_ascii` https://doc.rust-lang.org/beta/std/primitive.str.html#method.trim_ascii
• `str::trim_ascii_start` https://doc.rust-lang.org/beta/std/primitive.str.html#method.trim_ascii_start
• `str::trim_ascii_end` https://doc.rust-lang.org/beta/std/primitive.str.html#method.trim_ascii_end
• `<[u8]>::trim_ascii` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.trim_ascii
• `<[u8]>::trim_ascii_start` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.trim_ascii_start
• `<[u8]>::trim_ascii_end` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.trim_ascii_end
• `Ipv4Addr::BITS` https://doc.rust-lang.org/beta/core/net/struct.Ipv4Addr.html#associatedconstant.BITS
• `Ipv4Addr::to_bits` https://doc.rust-lang.org/beta/core/net/struct.Ipv4Addr.html#method.to_bits
• `Ipv4Addr::from_bits` https://doc.rust-lang.org/beta/core/net/struct.Ipv4Addr.html#method.from_bits
• `Ipv6Addr::BITS` https://doc.rust-lang.org/beta/core/net/struct.Ipv6Addr.html#associatedconstant.BITS
• `Ipv6Addr::to_bits` https://doc.rust-lang.org/beta/core/net/struct.Ipv6Addr.html#method.to_bits
• `Ipv6Addr::from_bits` https://doc.rust-lang.org/beta/core/net/struct.Ipv6Addr.html#method.from_bits
• `Vec::<[T; N]>::into_flattened` https://doc.rust-lang.org/beta/alloc/vec/struct.Vec.html#method.into_flattened
• `<[[T; N]]>::as_flattened` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.as_flattened
• `<[[T; N]]>::as_flattened_mut` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.as_flattened_mut

• `<[T]>::last_chunk` https://doc.rust-lang.org/beta/core/primitive.slice.html#method.last_chunk
• `BinaryHeap::new` https://doc.rust-lang.org/beta/std/collections/struct.BinaryHeap.html#method.new

• Stabilize `-Zcheck-cfg` as always enabled
• Warn, rather than fail publish, if a target is excluded
• Add special `check-cfg` lint config for the `unexpected_cfgs` lint
• Stabilize `cargo update --precise `
• Don't change file permissions on `Cargo.toml` when using `cargo add`
• Support using `cargo fix` on IPv6-only networks

• Allow searching for references
• Stabilize `custom_code_classes_in_docs` feature
• fix: In cross-crate scenarios show enum variants on type aliases of enums

• rustfmt estimates line lengths differently when using non-ascii characters
• Type aliases are now handled correctly in orphan check
• Allow instructing rustdoc to read from stdin via `-`
• `std::env::{set_var, remove_var}` can no longer be converted to safe function pointers and no longer implement the `Fn` family of traits
• Warn (or error) when `Self` constructor from outer item is referenced in inner nested item
• Turn `indirect_structural_match` and `pointer_structural_match` lints into hard errors
• Make `where_clause_object_safety` lint a regular object safety violation
• Turn `proc_macro_back_compat` lint into a hard error.
• Detect unused structs even when implementing private traits
• `std::sync::ReentrantLockGuard` is no longer `Sync` if `T: !Sync`

SUSE-CU-2024:3554-1

SUSE-CU-2024:3553-1

This update for curl fixes the following issues:

• CVE-2024-7264: Fixed ASN.1 date parser overread (bsc#1228535)
• CVE-2024-6197: Fixed freeing stack buffer in utf8asn1str (bsc#1227888)

SUSE-CU-2024:3408-1

SUSE-CU-2024:3307-1

This update for openssl-3 fixes the following issues:
Security fixes:

• CVE-2024-5535: Fixed SSL_select_next_proto buffer overread (bsc#1227138)

• Build with no-afalgeng (bsc#1226463)
• Build with enabled sm2 and sm4 support (bsc#1222899)
• Fix non-reproducibility issue (bsc#1223336)

SUSE-CU-2024:3146-1

SUSE-CU-2024:3087-1

This update for krb5 fixes the following issues:

• CVE-2024-37370: Fixed confidential GSS krb5 wrap tokens with invalid fields were errouneously accepted (bsc#1227186).
• CVE-2024-37371: Fixed invalid memory read when processing message tokens with invalid length fields (bsc#1227187).

SUSE-CU-2024:3039-1

The GNU Compiler GCC 8 is being added to the Development Tools Module by this update.
The update also supplies gcc8 compatible libstdc++, libgcc_s1 and other gcc derived libraries for the Basesystem module of SUSE Linux Enterprise 15.
Various optimizers have been improved in GCC 8, several of bugs fixed, quite some new warnings added and the error pin-pointing and fix-suggestions have been greatly improved.
The GNU Compiler page for GCC 8 contains a summary of all the changes that have happened:
https://gcc.gnu.org/gcc-8/changes.html
Also changes needed or common pitfalls when porting software are described on:
https://gcc.gnu.org/gcc-8/porting_to.html

This update for ncurses fixes the following issues:
Security issue fixed:

• CVE-2018-19211: Fixed denial of service issue that was triggered by a NULL pointer dereference at function _nc_parse_entry (bsc#1115929).

• Remove scree.xterm from terminfo data base as with this screen uses fallback TERM=screen (bsc#1103320).

This update for acl fixes the following issues:

• test: Add helper library to fake passwd/group files.
• quote: Escape literal backslashes. (bsc#953659)

This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues:

• CVE-2019-5021: Include an invalidated root password by default, not an empty one (bsc#1134524)

This update for binutils fixes the following issues:
binutils was updated to current 2.32 branch [jsc#ECO-368].
Includes following security fixes:

• CVE-2018-17358: Fixed invalid memory access in _bfd_stab_section_find_nearest_line in syms.c (bsc#1109412)
• CVE-2018-17359: Fixed invalid memory access exists in bfd_zalloc in opncls.c (bsc#1109413)
• CVE-2018-17360: Fixed heap-based buffer over-read in bfd_getl32 in libbfd.c (bsc#1109414)
• CVE-2018-17985: Fixed a stack consumption problem caused by the cplus_demangle_type (bsc#1116827)
• CVE-2018-18309: Fixed an invalid memory address dereference was discovered in read_reloc in reloc.c (bsc#1111996)
• CVE-2018-18483: Fixed get_count function provided by libiberty that allowed attackers to cause a denial of service or other unspecified impact (bsc#1112535)
• CVE-2018-18484: Fixed stack exhaustion in the C++ demangling functions provided by libiberty, caused by recursive stack frames (bsc#1112534)
• CVE-2018-18605: Fixed a heap-based buffer over-read issue was discovered in the function sec_merge_hash_lookup causing a denial of service (bsc#1113255)
• CVE-2018-18606: Fixed a NULL pointer dereference in _bfd_add_merge_section when attempting to merge sections with large alignments, causing denial of service (bsc#1113252)
• CVE-2018-18607: Fixed a NULL pointer dereference in elf_link_input_bfd when used for finding STT_TLS symbols without any TLS section, causing denial of service (bsc#1113247)
• CVE-2018-19931: Fixed a heap-based buffer overflow in bfd_elf32_swap_phdr_in in elfcode.h (bsc#1118831)
• CVE-2018-19932: Fixed an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA (bsc#1118830)
• CVE-2018-20623: Fixed a use-after-free in the error function in elfcomm.c (bsc#1121035)
• CVE-2018-20651: Fixed a denial of service via a NULL pointer dereference in elf_link_add_object_symbols in elflink.c (bsc#1121034)
• CVE-2018-20671: Fixed an integer overflow that can trigger a heap-based buffer overflow in load_specific_debug_section in objdump.c (bsc#1121056)
• CVE-2018-1000876: Fixed integer overflow in bfd_get_dynamic_reloc_upper_bound,bfd_canonicalize_dynamic_reloc in objdump (bsc#1120640)
• CVE-2019-1010180: Fixed an out of bound memory access that could lead to crashes (bsc#1142772)

• enable xtensa architecture (Tensilica lc6 and related)
• Use -ffat-lto-objects in order to provide assembly for static libs (bsc#1141913).
• Fixed some LTO build issues (bsc#1133131 bsc#1133232).
• riscv: Don't check ABI flags if no code section
• Fixed a segfault in ld when building some versions of pacemaker (bsc#1154025, bsc#1154016).
• Add avr, epiphany and rx to target_list so that the common binutils can handle all objects we can create with crosses (bsc#1152590).

• The binutils now support for the C-SKY processor series.
• The x86 assembler now supports a -mvexwig=[0|1] option to control encoding of VEX.W-ignored (WIG) VEX instructions. It also has a new -mx86-used-note=[yes|no] option to generate (or not) x86 GNU property notes.
• The MIPS assembler now supports the Loongson EXTensions R2 (EXT2), the Loongson EXTensions (EXT) instructions, the Loongson Content Address Memory (CAM) ASE and the Loongson MultiMedia extensions Instructions (MMI) ASE.
• The addr2line, c++filt, nm and objdump tools now have a default limit on the maximum amount of recursion that is allowed whilst demangling strings. This limit can be disabled if necessary.
• Objdump's --disassemble option can now take a parameter, specifying the starting symbol for disassembly. Disassembly will continue from this symbol up to the next symbol or the end of the function.
• The BFD linker will now report property change in linker map file when merging GNU properties.
• The BFD linker's -t option now doesn't report members within archives, unless -t is given twice. This makes it more useful when generating a list of files that should be packaged for a linker bug report.
• The GOLD linker has improved warning messages for relocations that refer to discarded sections.

• Improve relro support on s390 [fate#326356]
• Fix broken debug symbols (bsc#1118644)
• Handle ELF compressed header alignment correctly.

This update for ncurses fixes the following issues:
Security issues fixed:

• CVE-2019-17594: Fixed a heap-based buffer over-read in the _nc_find_entry function (bsc#1154036).
• CVE-2019-17595: Fixed a heap-based buffer over-read in the fmt_entry function (bsc#1154037).

• Removed screen.xterm from terminfo database (bsc#1103320).

This update includes the GNU Compiler Collection 9.
A full changelog is provided by the GCC team on:
https://www.gnu.org/software/gcc/gcc-9/changes.html

The base system compiler libraries libgcc_s1, libstdc++6 and others are now built by the gcc 9 packages.
To use it, install 'gcc9' or 'gcc9-c++' or other compiler brands and use CC=gcc-9 / CXX=g++-9 during configuration for using it.

Security issues fixed:

• CVE-2019-15847: Fixed a miscompilation in the POWER9 back end, that optimized multiple calls of the __builtin_darn intrinsic into a single call. (bsc#1149145)
• CVE-2019-14250: Fixed a heap overflow in the LTO linker. (bsc#1142649)

• Split out libstdc++ pretty-printers into a separate package supplementing gdb and the installed runtime. (bsc#1135254)
• Fixed miscompilation for vector shift on s390. (bsc#1141897)

This update for libidn2 to version 2.2.0 fixes the following issues:

• CVE-2019-12290: Fixed an improper round-trip check when converting A-labels to U-labels (bsc#1154884).
• CVE-2019-18224: Fixed a heap-based buffer overflow that was caused by long domain strings (bsc#1154887).

This update for binutils fixes the following issues:

• Recognize the official name of s390 arch13: 'z15'. (bsc#1160590, jsc#SLE-7903 aka jsc#SLE-7464)

This update for gmp, gnutls, libnettle fixes the following issues:
Security issue fixed:

• CVE-2020-11501: Fixed zero random value in DTLS client hello (bsc#1168345)

• FIPS: Install checksums for binary integrity verification which are required when running in FIPS mode (bsc#1152692, jsc#SLE-9518)
• FIPS: Fixed a cfb8 decryption issue, no longer truncate output IV if input is shorter than block size. (bsc#1166881)
• FIPS: Added Diffie Hellman public key verification test. (bsc#1155327)

This update for gcc9 fixes the following issues:
This update ships the GCC 9.3 release.

• Includes a fix for Internal compiler error when building HepMC (bsc#1167898)
• Includes fix for binutils version parsing
• Add libstdc++6-pp provides and conflicts to avoid file conflicts with same minor version of libstdc++6-pp from gcc10.
• Add gcc9 autodetect -g at lto link (bsc#1149995)
• Install go tool buildid for bootstrapping go

This update for lifecycle-data-sle-module-development-tools fixes the following issue:

• Ensure package is installed with its corresponding module when lifecycle package is installed. (bsc#1173407)

This update for gcc10, nvptx-tools fixes the following issues:
This update provides the GCC10 compiler suite and runtime libraries.
The base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by the gcc10 variants.
The new compiler variants are available with '-10' suffix, you can specify them via:
CC=gcc-10 CXX=g++-10
or similar commands.
For a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html
Changes in nvptx-tools:

• Enable build on aarch64

This update for binutils fixes the following issues:
binutils was updated to version 2.35. (jsc#ECO-2373)
Update to binutils 2.35:

• The assembler can now produce DWARF-5 format line number tables.
• Readelf now has a 'lint' mode to enable extra checks of the files it is processing.
• Readelf will now display '[...]' when it has to truncate a symbol name. The old behaviour - of displaying as many characters as possible, up to the 80 column limit - can be restored by the use of the --silent-truncation option.
• The linker can now produce a dependency file listing the inputs that it has processed, much like the -M -MP option supported by the compiler.

• fix DT_NEEDED order with -flto [bsc#1163744]

• The disassembler (objdump --disassemble) now has an option to generate ascii art thats show the arcs between that start and end points of control flow instructions.
• The binutils tools now have support for debuginfod. Debuginfod is a HTTP service for distributing ELF/DWARF debugging information as well as source code. The tools can now connect to debuginfod servers in order to download debug information about the files that they are processing.
• The assembler and linker now support the generation of ELF format files for the Z80 architecture.

• Add new subpackages for libctf and libctf-nobfd.
• Disable LTO due to bsc#1163333.
• Includes fixes for these CVEs: bsc#1153768 aka CVE-2019-17451 aka PR25070 bsc#1153770 aka CVE-2019-17450 aka PR25078

• fix various build fails on aarch64 (PR25210, bsc#1157755).

• Adds support for the Arm Scalable Vector Extension version 2 (SVE2) instructions, the Arm Transactional Memory Extension (TME) instructions and the Armv8.1-M Mainline and M-profile Vector Extension (MVE) instructions.
• Adds support for the Arm Cortex-A76AE, Cortex-A77 and Cortex-M35P processors and the AArch64 Cortex-A34, Cortex-A65, Cortex-A65AE, Cortex-A76AE, and Cortex-A77 processors.
• Adds a .float16 directive for both Arm and AArch64 to allow encoding of 16-bit floating point literals.
• For MIPS, Add -m[no-]fix-loongson3-llsc option to fix (or not) Loongson3 LLSC Errata. Add a --enable-mips-fix-loongson3-llsc=[yes|no] configure time option to set the default behavior. Set the default if the configure option is not used to 'no'.
• The Cortex-A53 Erratum 843419 workaround now supports a choice of which workaround to use. The option --fix-cortex-a53-843419 now takes an optional argument --fix-cortex-a53-843419[=full|adr|adrp] which can be used to force a particular workaround to be used. See --help for AArch64 for more details.
• Add support for GNU_PROPERTY_AARCH64_FEATURE_1_BTI and GNU_PROPERTY_AARCH64_FEATURE_1_PAC in ELF GNU program properties in the AArch64 ELF linker.
• Add -z force-bti for AArch64 to enable GNU_PROPERTY_AARCH64_FEATURE_1_BTI on output while warning about missing GNU_PROPERTY_AARCH64_FEATURE_1_BTI on inputs and use PLTs protected with BTI.
• Add -z pac-plt for AArch64 to pick PAC enabled PLTs.
• Add --source-comment[=] option to objdump which if present, provides a prefix to source code lines displayed in a disassembly.
• Add --set-section-alignment = option to objcopy to allow the changing of section alignments.
• Add --verilog-data-width option to objcopy for verilog targets to control width of data elements in verilog hex format.
• The separate debug info file options of readelf (--debug-dump=links and --debug-dump=follow) and objdump (--dwarf=links and --dwarf=follow-links) will now display and/or follow multiple links if more than one are present in a file. (This usually happens when gcc's -gsplit-dwarf option is used). In addition objdump's --dwarf=follow-links now also affects its other display options, so that for example, when combined with --syms it will cause the symbol tables in any linked debug info files to also be displayed. In addition when combined with --disassemble the --dwarf= follow-links option will ensure that any symbol tables in the linked files are read and used when disassembling code in the main file.
• Add support for dumping types encoded in the Compact Type Format to objdump and readelf.
• Includes fixes for these CVEs: bsc#1126826 aka CVE-2019-9077 aka PR1126826 bsc#1126829 aka CVE-2019-9075 aka PR1126829 bsc#1126831 aka CVE-2019-9074 aka PR24235 bsc#1140126 aka CVE-2019-12972 aka PR23405 bsc#1143609 aka CVE-2019-14444 aka PR24829 bsc#1142649 aka CVE-2019-14250 aka PR90924

• Add xBPF target
• Fix various problems with DWARF 5 support in gas
• fix nm -B for objects compiled with -flto and -fcommon.

This update for lifecycle-data-sle-module-development-tools fixes the following issues:

• Added expiration data for the GCC 9 yearly update for the Toolchain/Development modules. (jsc#ECO-2373, jsc#SLE-10950, jsc#SLE-10951)

This update for binutils fixes the following issues:
Update binutils 2.35 branch to commit 1c5243df:

• Fixes PR26520, aka [bsc#1179036], a problem in addr2line with certain DWARF variable descriptions.
• Also fixes PR26711, PR26656, PR26655, PR26929, PR26808, PR25878, PR26740, PR26778, PR26763, PR26685, PR26699, PR26902, PR26869, PR26711
• The above includes fixes for dwo files produced by modern dwp, fixing several problems in the DWARF reader.

• This is a point release over the previous 2.35 version, containing bug fixes, and as an exception to the usual rule, one new feature. The new feature is the support for a new directive in the assembler: '.nop'. This directive creates a single no-op instruction in whatever encoding is correct for the target architecture. Unlike the .space or .fill this is a real instruction, and it does affect the generation of DWARF line number tables, should they be enabled. This fixes an incompatibility introduced in the latest update that broke the install scripts of the Oracle server. [bsc#1179341]

This update for libidn2 fixes the following issues:

• The library is actually dual licensed, GPL-2.0-or-later or LGPL-3.0-or-later, adjusted the RPM license tags (bsc#1180138)

This update for keyutils fixes the following issues:

• Adjust the library license to be LPGL-2.1+ only (the tools are GPL2+, the library is just LGPL-2.1+) (bsc#1180603)

This update for gmp fixes the following issues:

• correct license statements of packages (library itself is no GPL-3.0) (bsc#1180603)

This update for filesystem the following issues:

• Remove duplicate line due to merge error
• Add fix for 'mesa' creating cache with perm 0700. (bsc#1181011)
• Fixed an issue causing failure during installation/upgrade a failure. (rh#1548403) (bsc#1146705)
• Allows to override config to add cleanup options of '/var/tmp'. (bsc#1078466)
• Create config to cleanup '/tmp' regular required with 'tmpfs'. (bsc#1175519)

• Fix for a possible memory leak. (bsc#1180020)
• Fix for a case when to a bind mounted directory results inactive mount units. (#7811) (bsc#1180596)
• Fixed an issue when starting a container conflicts with another one. (bsc#1178775)
• Drop most of the tmpfiles that deal with generic paths and avoid warnings. (bsc#1078466, bsc#1181831)
• Don't use shell redirections when calling a rpm macro. (bsc#1183094)
• 'systemd' requires 'aaa_base' >= 13.2. (bsc#1180083)

This update for mpfr fixes the following issues:

• Fixed an issue when building for ppc64le (bsc#1141190)

• A subtraction of two numbers of the same sign or addition of two numbers of different signs can be rounded incorrectly (and the ternary value can be incorrect) when one of the two inputs is reused as the output (destination) and all these MPFR numbers have exactly GMP_NUMB_BITS bits of precision (typically, 32 bits on 32-bit machines, 64 bits on 64-bit machines).
• The mpfr_fma and mpfr_fms functions can behave incorrectly in case of internal overflow or underflow.
• The result of the mpfr_sqr function can be rounded incorrectly in a rare case near underflow when the destination has exactly GMP_NUMB_BITS bits of precision (typically, 32 bits on 32-bit machines, 64 bits on 64-bit machines) and the input has at most GMP_NUMB_BITS bits of precision.
• The behavior and documentation of the mpfr_get_str function are inconsistent concerning the minimum precision (this is related to the change of the minimum precision from 2 to 1 in MPFR 4.0.0). The get_str patch fixes this issue in the following way: the value 1 can now be provided for n (4th argument of mpfr_get_str); if n = 0, then the number of significant digits in the output string can now be 1, as already implied by the documentation (but the code was increasing it to 2).
• The mpfr_cmp_q function can behave incorrectly when the rational (mpq_t) number has a null denominator.
• The mpfr_inp_str and mpfr_out_str functions might behave incorrectly when the stream is a null pointer: the stream is replaced by stdin and stdout, respectively. This behavior is useless, not documented (thus incorrect in case a null pointer would have a special meaning), and not consistent with other input/output functions.

This update for gcc10 fixes the following issues:

• Disable nvptx offloading for aarch64 again since it doesn't work
• Fixed a build failure issue. (bsc#1182016)
• Fix for memory miscompilation on 'aarch64'. (bsc#1178624, bsc#1178577)
• Fix 32bit 'libgnat.so' link. (bsc#1178675)
• prepare usrmerge: Install libgcc_s into %_libdir. ABI wise it stays /%lib. (bsc#1029961)
• Build complete set of multilibs for arm-none target. (bsc#1106014)

This update for lifecycle-data-sle-module-development-tools fixes the following issues:

• mark go1.14 as 'end of life' as go1.16 was released and we only support 2 go versions parallel (jsc#ECO-1484)

This update for ncurses fixes the following issues:

• CVE-2021-39537: Fixed an heap-based buffer overflow in _nc_captoinfo. (bsc#1190793)

This update for binutils fixes the following issues:
Update to binutils 2.37:

• The GNU Binutils sources now requires a C99 compiler and library to build.
• Support for Realm Management Extension (RME) for AArch64 has been added.
• A new linker option '-z report-relative-reloc' for x86 ELF targets has been added to report dynamic relative relocations.
• A new linker option '-z start-stop-gc' has been added to disable special treatment of __start_*/__stop_* references when --gc-sections.
• A new linker options '-Bno-symbolic' has been added which will cancel the '-Bsymbolic' and '-Bsymbolic-functions' options.
• The readelf tool has a new command line option which can be used to specify how the numeric values of symbols are reported. --sym-base=0|8|10|16 tells readelf to display the values in base 8, base 10 or base 16. A sym base of 0 represents the default action of displaying values under 10000 in base 10 and values above that in base 16.
• A new format has been added to the nm program. Specifying '--format=just-symbols' (or just using -j) will tell the program to only display symbol names and nothing else.
• A new command line option '--keep-section-symbols' has been added to objcopy and strip. This stops the removal of unused section symbols when the file is copied. Removing these symbols saves space, but sometimes they are needed by other tools.
• The '--weaken', '--weaken-symbol' and '--weaken-symbols' options supported by objcopy now make undefined symbols weak on targets that support weak symbols.
• Readelf and objdump can now display and use the contents of .debug_sup sections.
• Readelf and objdump will now follow links to separate debug info files by default. This behaviour can be stopped via the use of the new '-wN' or '--debug-dump=no-follow-links' options for readelf and the '-WN' or '--dwarf=no-follow-links' options for objdump. Also the old behaviour can be restored by the use of the '--enable-follow-debug-links=no' configure time option.

• Nm has a new command line option: '--quiet'. This suppresses 'no symbols' diagnostic.

• General:

• X86/x86_64:

• ARM/AArch64: