Packages changed: dhcp (4.4.2 -> 4.4.2.P1) exiv2 farstream gcc (10 -> 11) gcc11 (11.0.0+git183291 -> 11.1.1+git121) libreoffice patterns-base presage qemu === Details === ==== dhcp ==== Version update (4.4.2 -> 4.4.2.P1) Subpackages: dhcp-client dhcp-doc dhcp-relay dhcp-server - Add -fno-strict-aliasing to CFLAGS to avoid a segfault in dhcpd (boo#1186631). - Update to 4.4.2-P1: * CVE-2021-25217, bsc#1186382: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient. - Error out, if %version and %isc_version are not in sync. ==== exiv2 ==== - Add 1271.patch: Fix build using GCC 11 (boo#1185218). - Drop the sed hack to remove -fcf-protection: this is properly solved with the above patch. - -fcf-protection doesn't work on i586 with gcc11 either (boo#1185218) ==== farstream ==== Subpackages: farstream-data gstreamer-plugins-farstream libfarstream-0_2-5 - Add farstream-glib-non-volatile.patch: Fix build againat GCC11 with glib no longer misusing 'volatile' (boo#1185220). ==== gcc ==== Version update (10 -> 11) Subpackages: cpp gcc-info libstdc++-devel - Switch gcc to default 11. - Adjust liblto_plugin.so naming for GCC 11. ==== gcc11 ==== Version update (11.0.0+git183291 -> 11.1.1+git121) Subpackages: libasan6 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-locale libstdc++6-pp-gcc11 libstdc++6-pp-gcc11-32bit libtsan0 libubsan1 - Update to gcc-11 branch head (23855a176609fe8dda6abaf2b2), git121 - Disable build-id generation on non-glibc targeting cross compilers. - Update to gcc-11 branch head (cd0a059bd384da58d43674496a7), git67 * Includes GCC 11.1 release - Drop upstreamed gcc11-no-offload.patch. - Update to gcc-11 branch head (7a7fc01b9d20afb1a2b805d93cb), git31 * Includes GCC 11.1 RC2 - Add gcc11-no-offload.patch and gcc11-amdgcn-disable-hot-cold-partitioning.patch. - Enable gfortran for offload compilers. - BuildRequire procps from gcc11-testresults if we test go. - Force using llvm11 for amdgcn offloading since llvm12 doesn't yet work. Package expanded symlinks so concurrent installs do not pull in another llvm-mc. - Add gcc11-gdwarf-4-default.patch to default to DWARF4 generation in SLES15 and older. - Update to gcc-11 branch head (27350b77a92062667427100afb4), git10 * Includes GCC 11.1 RC1 - Bump to 49813aad3292f7f2bef69206274da78a9a7116ed. - Disable nvptx offloading on aarch64 since it doesn't work. - Bump to a87d3f964df31d4fbceb822c6d293e85c117d992. - Remove gcc48-remove-mpfr-2.4.0-requirement.patch which does no longer apply. - Arrange for a C++ 11 capable host compiler to be available. - Do not require ISL for cross compiler builds on old distros. - Bump to 123b3e03c911a43054c1f88f5d3110e1d084dd4e. - Update embedded newlib version from 3.3.0 to 4.1.0. - Pack %{GCCDIST}-gcc%{binsuffix}. - Add a new dependency for libgccjit. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== libreoffice ==== Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Recommend libreoffice-qt5 only when it is actually created - Add gcc11-fix-error.patch as fix for boo#1186110. - libreoffice requires at least java 1.8.0 to run properly - mention some forgotten issues in the changelog ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Suggest openssl from patterns-base-base: in case something requires /usr/bin/openssl or openssl(cli), we want to declare openssl as our default. ==== presage ==== Subpackages: libpresage1 presage-data - Fix one more GCC 11 warning. ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Fix CVE-2021-3527 in usb/redir: usb-redir-avoid-dynamic-stack-allocation.patch - Fix issues found upstream: hw-block-nvme-consider-metadata-read-aio.patch sockets-update-SOCKET_ADDRESS_TYPE_FD-li.patch vfio-ccw-Permit-missing-IRQs.patch vhost-user-blk-Check-that-num-queues-is-.patch vhost-user-blk-Don-t-reconnect-during-in.patch vhost-user-blk-Fail-gracefully-on-too-la.patch vhost-user-blk-Get-more-feature-flags-fr.patch vhost-user-blk-Make-sure-to-set-Error-on.patch virtio-blk-Fix-rollback-path-in-virtio_b.patch virtio-Fail-if-iommu_platform-is-request.patch virtiofsd-Fix-side-effect-in-assert.patch monitor-qmp-fix-race-on-CHR_EVENT_CLOSED.patch - Brotli VLA error was already fixed in v5.2 but the patches wasn't included in v6.0. This change fixed that - Patches added: brotli-fix-actual-variable-array-paramet.patch hw-rx-rx-gdbsim-Do-not-accept-invalid-me.patch ui-Fix-memory-leak-in-qemu_xkeymap_mappi.patch - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975)