Packages changed: gnome-shell-extension-desktop-icons gpgme gpgmeqt grub2 hivex (1.3.20 -> 1.3.21) mariadb-connector-c (3.1.13 -> 3.2.3) publicsuffix (20210707 -> 20210804) python-kiwi (9.23.43 -> 9.23.49) python-pexpect python-tornado5 python-tornado6 xorg-x11-fonts xorg-x11-fonts-converted yast2-storage-ng (4.4.6 -> 4.4.7) === Details === ==== gnome-shell-extension-desktop-icons ==== - Add desktop-icons-show-iso-file-icon.patch: Show ISO file icon as default icon. (bsc#1183504 glgo#GNOME/World/ShellExtensions/desktop-icons!196) ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Fix build with glibc 2.34: [bsc#1189089] * Use glibc's closefrom. * Add gpgme-use-glibc-closefrom.patch ==== gpgmeqt ==== - Fix build with glibc 2.34: [bsc#1189089] * Use glibc's closefrom. * Add gpgme-use-glibc-closefrom.patch ==== grub2 ==== Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen - Replace grub2-use-stat-instead-of-udevadm-for-partition-lookup.patch and fix-grub2-use-stat-instead-of-udevadm-for-partition-lookup-with-new-glibc.patch with upstream backport: 0001-osdep-Introduce-include-grub-osdep-major.h-and-use-i.patch and 0002-osdep-linux-hostdisk-Use-stat-instead-of-udevadm-for.patch. ==== hivex ==== Version update (1.3.20 -> 1.3.21) Subpackages: libhivex0 perl-Win-Hivex - bsc#1189060 - VUL-0: CVE-2021-3622: hivex: hivex: stack overflow due to recursive call of _get_children. Update to version 1.3.21 hivex-1.3.21.tar.gz hivex-1.3.21.tar.gz.sig ==== mariadb-connector-c ==== Version update (3.1.13 -> 3.2.3) - Update to 3.2.3: * release notes and changelog: https://mariadb.com/kb/en/library/mariadb-connector-c-323-release-notes https://mariadb.com/kb/en/library/mariadb-connector-c-323-changelog https://mariadb.com/kb/en/library/mariadb-connector-c-322-release-notes https://mariadb.com/kb/en/library/mariadb-connector-c-322-changelog https://mariadb.com/kb/en/library/mariadb-connector-c-320-release-notes https://mariadb.com/kb/en/library/mariadb-connector-c-320-changelog - Refresh private_library.patch ==== publicsuffix ==== Version update (20210707 -> 20210804) - Update to version 20210804 (bsc#1189124): * Add elementor.cloud and elementor.cool (#1386) * add eero ddns domains (#1359) * add Adobe Project Helix domains to the list (#1378) * util: gTLD data autopull updates for 2021-07-24T15:13:29 UTC (#1384) * Add Spreadshop hosting domains: myspreadshop.com plus country-specific (#1368) * Add Supabase domains (#1363) * Add YunoHost DynDns domains: ynh.fr (#1380) * Update public_suffix_list.dat (#1376) * add new domains for thingdust AG (#1361) * Update public_suffix_list.dat (#1381) * Adding sellfy.store pages which render user generated content (#1379) * Add itcouldbewor.se to public suffix list (#1375) * Adding bitbucket.io pages which render user generated content (#1374) * Add rs.ba suffix (#1367) * Add tuleap-partners.com (#1360) * Add drr.ac and ju.mp (#1355) * Add cdn.prod.atlassian-dev.net (#1357) * Remove uwu.nu (#1377) * util: gTLD data autopull updates for 2021-07-22T15:14:11 UTC (#1382) ==== python-kiwi ==== Version update (9.23.43 -> 9.23.49) - Bump version: 9.23.48 ? 9.23.49 - Fixed fstab entry for swap on LVM If an LVM setup is used together with a swapspace the swap is created as a volume in the volume group. The required fstab entry to activate swap was not using the LVM exposed device but the UUID of the low level block layer. This low level device is not created by udev because LVM takes over precedence in this case. - Bump version: 9.23.47 ? 9.23.48 - Fixed LVM get_volumes Due to the change on the temporary directory yet another error in the volume manager classes for LVM got exposed. - Bump version: 9.23.46 ? 9.23.47 - Fixed LVM/btrfs volume based image builds Due to the change on the temporary directory an error in the volume manager classes for LVM and btrfs was exposed. There was code which uses a sub-part of the volume mount point directory which is a tempdir based directory name. The sub-part was choosen by an index based path split which worked for /tmp but no longer for /var/tmp. With tempdir now being also a commandline option this code has to become more robust. - Bump version: 9.23.45 ? 9.23.46 - Do not expose the delete feature in Temporary We do not want to expose the ability to create temporary data that doesn't get auto deleted at the end of its scope - Refactor recovery archive creation The creation of the recovery archive was based on a tempfile which then gets moved to the final target file. This is bad because if causes the tempfile cleanup to raise an exception unless you specify delete=False. Creating a tempfile with delete=False however, negates the reason for creating self managed temporary data. Thus this code was refactored to create the recovery archive file at its final destination from the beginning on - Moving temp data handling to its own namespace Moving use of mkdtemp, NamedTemporaryFile and TemporaryDirectory into its own class called Temporary: By default all temporary data is created below /var/tmp but can be changed via the global commandline option --temp-dir. This Fixes #1870 - Bump version: 9.23.44 ? 9.23.45 - Handle UnicodeDecode errors more gracefully If the Codec.decode() method cannot encode the given data to utf-8 an Encoding exception is raised which causes kiwi to raise a KiwiDecodingError. That way to handle the error causes an image build to fail. However, this sort of error for example happens if the .changes file of a package contains invalid characters. From a user perspective this cannot be fixed and you cannot build the image because of a stupid character error in a .changes file outside your control. Because of this reason this commit handles the decode error case differently and applies the 'replace' strategy on error. The characters in questions gets replaced and the rest of the data which can be decoded is returned. - Install mypy library stubs for mock - Added documentation for oem-skip-verify element - Increase size of efi fat image For ISO images an embedded efi fat image is needed to boot. As consequence of adding the mok manager it can happen that the size of the efi fat image is too small. With this commit the size is increased to prevent an out of space issue - Bump version: 9.23.43 ? 9.23.44 - Add tests for baseVagrantSetup - Set the directory permissions of /home/vagrant/.ssh to 0700 in baseVagrantSetup - Don't modify main sshd_config file via baseVagrantSetup In Tumbleweed we switched from shipping sshd's config file in /etc to /usr/etc, but baseVagrantSetup was not respecting that. So instead of modifying the main config file, we instead create a custom file in /etc/ssh/sshd_config.d/ with our custom setting which is much more robust accross distributions. However, if /etc/ssh/sshd_config.d/ does not exist, then we fall back to adding our settings to /etc/ssh/sshd_config. - Fixed LUKS keyfile permission bits LUKS keyfile should use 0600 file permission flags - Fixed secure boot fallback setup Make sure MokManager gets copied. The name and location of the mok manager is distribution specific in the same way as the shim loader. Thus we need to apply a similar concept for looking it up. This Fixes bsc#1187515 - Improve live image integration test Build one live image for Standard EFI+BIOS boot and another variant that support SecureBoot+BIOS boot ==== python-pexpect ==== - Remove executable flag from examples/*.py: since we already patch out the shebangs, they are not directly startable anyway (boo#1189065). ==== python-tornado5 ==== - Dedup and remove exec bits from demos: fix boo#1189066 - Add python-tornado5-rpmlintrc for empty JS resource in demo ==== python-tornado6 ==== - Remove exec bits from demos: fix boo#1189066 - Add python-tornado6-rpmlintrc for empty JS resource in demo ==== xorg-x11-fonts ==== Subpackages: xorg-x11-fonts-core xorg-x11-fonts-legacy - Convert the helv*.otb and cour*.otb files in a different way, generating all available font sizes as fonts files named * -75-dpi-converted and *-100dpi-converted and having the same font name for 75 and 100 dpi converted fonts (fixes boo#1174895). - As part of the above fix, don't remove the "Regular" suffix from the full name of fonts in convertfont.py ==== xorg-x11-fonts-converted ==== - Convert the helv*.otb and cour*.otb files in a different way, generating all available font sizes as fonts files named * -75-dpi-converted and *-100dpi-converted and having the same font name for 75 and 100 dpi converted fonts (fixes boo#1174895). - As part of the above fix, don't remove the "Regular" suffix from the full name of fonts in convertfont.py ==== yast2-storage-ng ==== Version update (4.4.6 -> 4.4.7) - Improve detection of devices that contain an installation repository (bsc#1185694). - 4.4.7