Removed rpms ============ - liblmdb-0_9_17 Added rpms ========== - liblmdb-0_9_30 Package Source Changes ====================== ImageMagick + fix CVE-2023-1906 [bsc#1210308], heap-based buffer overflow in ImportMultiSpectralQuantum() in MagickCore/quantum-import.c + + ImageMagick-CVE-2023-1906.patch + +- security update +- added patches MozillaFirefox +- Firefox Extended Support Release 102.10.0 ESR + Placeholder changelog-entry (bsc#1210212) + - Placeholder changelog-entry (bsc#1209173) + * Fixed: Various security fixes. + MFSA 2023-10 (bsc#1209173) + * CVE-2023-25751 (bmo#1814899) + Incorrect code generation during JIT compilation + * CVE-2023-28164 (bmo#1809122) + URL being dragged from a removed cross-origin iframe into the + same tab triggered navigation + * CVE-2023-28162 (bmo#1811327) + Invalid downcast in Worklets + * CVE-2023-25752 (bmo#1811627) + Potential out-of-bounds when accessing throttled streams + * CVE-2023-28163 (bmo#1817768) + Windows Save As dialog resolved environment variables + * CVE-2023-28176 (bmo#1808352, bmo#1811637, bmo#1815904, + bmo#1817442, bmo#1818674) + Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9 autoyast2 +- Rebuild the RPM database during upgrade (--rebuilddb) (bsc#1209565) +- 4.5.13 + harfbuzz +- Add CVE-2023-25193.patch: limit how far we skip when looking + back (bsc#1207922 CVE-2023-25193). + hwdata +- update to 0.368: + * Update pci, usb and vendor ids + +- update to 0.367: + * Update pci, usb and vendor ids + +- update to 0.366: + * Update pci, usb and vendor ids + kernel-default +- ice: avoid bonding causing auxiliary plug/unplug under RTNL lock + (bsc#1210158). +- commit bca1250 + +- Fix a compile warning in the previous nouveau patch (bsc#1208209) + Refreshed: + patches.suse/drm-nouveau-blacklist-Turing-and-Ampere-models-as-default.patch +- commit b2a56d6 + +- tracing: Fix poll() and select() do not work on per_cpu + trace_pipe and trace_pipe_raw (git-fixes, bsc#1209841). +- commit b44ae5f + +- drm/nouveau: blacklist Turing and Ampere models as default + (bsc#1208209). +- commit b751cb8 + +- rpm/constraints.in: increase the disk size for armv6/7 to 24GB + It grows and the build fails recently on SLE15-SP4/5. +- commit 8ba35ca + lmdb +- update to 0.9.30: + * LMDB page_split: key threshold depends on page + size + * avoid gcc optimization bug on sparc64 linux + * - Mark infrequently used functions as cold + * clear C_EOF on cursor with MDB_FIRST_DUP + * Use sys/cachectl.h rather than asm/cachectl.h on + mips + +- update to 0.9.29: + * lmdump is not creating lock files + +- update to 0.9.29: + * ITS#9461 refix ITS#9376 + * ITS#9500 fix regression from ITS#8662 + +- LMDB 0.9.28 Release (2021/02/04) + * ITS#8662 add -a append option to mdb_load +- LMDB 0.9.27 Release (2020/10/26) + * ITS#9376 fix repeated DUPSORT cursor deletes +- LMDB 0.9.26 Release (2020/08/11) + * ITS#9278 fix robust mutex cleanup for FreeBSD +- LMDB 0.9.25 Release (2020/01/30) + * ITS#9068 fix mdb_dump/load backslashes in printable content + * ITS#9118 add MAP_NOSYNC for FreeBSD + * ITS#9155 free mt_spill_pgs in non-nested txn on end + +- copy the pkg config support from the fedora package + +- LMDB 0.9.24 Release (2019/07/24) + * ITS#8969 Tweak mdb_page_split + * ITS#8975 WIN32 fix writemap set_mapsize crash + * ITS#9007 Fix loose pages in WRITEMAP +- LMDB 0.9.23 Release (2018/12/19) + * ITS#8756 Fix loose pages in dirty list + * ITS#8831 Fix mdb_load flag init + * ITS#8844 Fix mdb_env_close in forked process + * Documentation + + ITS#8857 mdb_cursor_del doesn't invalidate cursor + + ITS#8908 GET_MULTIPLE etc don't change passed in key +- Drop upstream 0001-ITS-8756-remove-loose-pg-from-dirty-list-in-freelist.patch +- Drop upstream 0001-ITS-8336-fix-page_search_root-assert-on-FreeDB.patch +- Cleanup: + * Use %license, drop %defattr + * Use https for Url tag +- LMDB 0.9.22 Release (2018-03-22) + * Fix MDB_DUPSORT alignment bug (ITS#8819) + * Fix regression with new db from 0.9.19 (ITS#8760) + * Fix liblmdb to build on Solaris (ITS#8612) + * Fix delete behavior with DUPSORT DB (ITS#8622) + * Fix mdb_cursor_get/mdb_cursor_del behavior (ITS#8722) +- LMDB 0.9.21 Release (2017/06/01) + * Fix xcursor after cursor_del (ITS#8622) +- LMDB 0.9.20 (Withdrawn) + * Fix mdb_load with escaped plaintext (ITS#8558) + * Fix mdb_cursor_last / mdb_put interaction (ITS#8557) +- LMDB 0.9.19 Release (2016/12/28) + * Fix mdb_env_cwalk cursor init (ITS#8424) + * Fix robust mutexes on Solaris 10/11 (ITS#8339) + * Tweak Win32 error message buffer + * Fix MDB_GET_BOTH on non-dup record (ITS#8393) + * Optimize mdb_drop + * Fix xcursors after mdb_cursor_del (ITS#8406) + * Fix MDB_NEXT_DUP after mdb_cursor_del (ITS#8412) + * Fix mdb_cursor_put resetting C_EOF (ITS#8489) + * Fix mdb_env_copyfd2 to return EPIPE on SIGPIPE (ITS#8504) + * Fix mdb_env_copy with empty DB (ITS#8209) + * Fix behaviors with fork (ITS#8505) + LMDB leaks database FD into child processes (bsc#1178706) + * Fix mdb_dbi_open with mainDB cursors (ITS#8542) + * Fix robust mutexes on kFreeBSD (ITS#8554) + * Fix utf8_to_utf16 error checks (ITS#7992) + * Fix F_NOCACHE on MacOS, error is non-fatal (ITS#7682) + * Build + Make shared lib suffix overridable (ITS#8481) + * Documentation + + Cleanup doxygen nits + + Note reserved vs actual mem/disk usage +- LMDB 0.9.18 Release (2016/02/05) + * Fix robust mutex detection on glibc 2.10-11 (ITS#8330) + * Fix page_search_root assert on FreeDB (ITS#8336) + * Fix MDB_APPENDDUP vs. rewrite(single item) (ITS#8334) + * Fix mdb_copy of large files on Windows + * Fix subcursor move after delete (ITS#8355) + * Fix mdb_midl_shirnk off-by-one (ITS#8363) + * Check for utf8_to_utf16 failures (ITS#7992) + * Catch strdup failure in mdb_dbi_open + * Build + + Additional makefile var tweaks (ITS#8169) + * Documentation + + Add Getting Started page + + Update WRITEMAP description +- Drop 0002-Autoconf-files.patch, soname-configurable.patch and + add Makefile-build-use-shared-lib.patch instead. Instead of + replacing the Makefile with a libtool/automake based one, just + patch the relevant parts of the upstream Makefile. + -- automake.diff changes: - * for autoconf tests to have effect, (like those in - 0001-Patch-for-LMDB-to-use-robust-mutexes.patch) config.h must be - included as first file in all C code. - * in 32 bit systems, ensure we support large databases. - * Switch the compiler to the current C standard, currently -std=gnu99 - in upcoming autoconf versions it is C11 though. -- liblmdb-implicit-decl.patch atol() requires stdlib.h -- Enable verbose build, rpmlint depends on that to work. - openSUSE-build-key +- Added 2023 opensuse container key 4096bit RSA key. +- Added 2023 opensuse container key in PEM format to + /usr/share/pki/containers/ for use by podman or sigstore +- Remove SLE11 1024bit RSA key , and obsolete it to remove it. + -- remove generated key rings, no longer needed by - installation-images and linuxrc (bnc#724625) -- remove security@suse.de key, never used for package signing -- remove old build@suse.de key, was used on sle10 -- remove openSUSE\x3aFactory@build.opensuse.org key, not used anymore -- leave sle11 build@suse.de key as backup - php7 + fix CVE-2022-4900 [bsc#1209537], potential buffer overflow via PHP_CLI_SERVER_WORKERS environment variable + + php7-CVE-2022-4900.patch + +- fix potential buffer overflow [bsc#1208199] +- modified patches + % php-systzdata-v19.patch (refreshed) + +- ensure extension=mysqlnd will be called before extension=mysqli + [bsc#1205162] + +- security update +- added patches polkit-default-privs +- Update to version 13.2+20230317.d2bceab: + * backport of kinfocenter5 (bsc#1209378) + systemd-rpm-macros +- Bump version to 12 + +- Don't emit a warning when the flag file in /var/lib/systemd/migrated/ is not + present as it's expected (bsc#1208079). + yast2-pkg-bindings +- Pkg.TargetInitializeOptions() - added a new option for + rebuilding the RPM database (--rebuilddb) (bsc#1209565) +- 4.5.2 + yast2-update +- Rebuild the RPM database during upgrade (--rebuilddb) (bsc#1209565) +- 4.5.3 +