Removed rpms ============ - liblmdb-0_9_17 - p11-kit-nss-trust Added rpms ========== - gtk2-engine-murrine - gtk2-metatheme-greybird-geeko - gtk3-metatheme-greybird-geeko - metatheme-greybird-geeko-common - mozilla-nss-certs Package Source Changes ====================== MozillaFirefox-branding-openSUSE:MozillaFirefox-branding-openSUSE -- Add 150300 to suseversion +- Add suseversion 150300 + +- Update the default homepage and the bookmark icons MozillaThunderbird +- Mozilla Thunderbird 78.7 + * changed: MailExtensions: browserAction, composeAction, and + messageDisplayAction toolbar buttons now support label and + default_label properties (bmo#1583478) + * fixed: Running a quicksearch that returned no results did not + offer to re-run as a global search (bmo#1663153) + * fixed: Message search toolbar fixes (bmo#1681010) + * fixed: Very long subject lines distorted the message compose + and display windows, making them unusable (bmo#77806) + * fixed: Compose window: Recipient addresses that had not yet + been autocompleted were lost when clicking Send button + (bmo#1674054) + * fixed: Compose window: New message is no longer marked as + "changed" just from tabbing out of the recipient field + without editing anything (bmo#1681389) + * fixed: Account autodiscover fixes when using MS Exchange + servers (bmo#1679759) + * fixed: LDAP address book stability fix (bmo#1680914) + * fixed: Messages with invalid vcard attachments were not + marked as read when viewed in the preview window + (bmo#1680468) + * fixed: Chat: Could not add TLS certificate exceptions for + XMPP connections (bmo#1590471) + * fixed: Calendar: System timezone was not always properly + detected (bmo#1678839) + * fixed: Calendar: Descriptions were sometimes blank when + editing a single occurrence of a repeating event + (bmo#1664731) + * fixed: Various printing bugfixes (bmo#1676166) + * fixed: Visual consistency and theme improvements + (bmo#1682808) + * fixed: Various security fixes + MFSA 2021-05 (bsc#1181414) + * CVE-2021-23953 (bmo#1683940) + Cross-origin information leakage via redirected PDF requests + * CVE-2021-23954 (bmo#1684020) + Type confusion when using logical assignment operators in + JavaScript switch statements + * CVE-2020-15685 (bmo#1622640) + IMAP Response Injection when using STARTTLS + * CVE-2020-26976 (bmo#1674343) + HTTPS pages could have been intercepted by a registered + service worker when they should not have been + * CVE-2021-23960 (bmo#1675755) + Use-after-poison for incorrectly redeclared JavaScript + variables during GC + * CVE-2021-23964 (bmo#1662507, bmo#1666285, bmo#1673526, + bmo#1674278, bmo#1674835, bmo#1675097, bmo#1675844, + bmo#1675868, bmo#1677590, bmo#1677888, bmo#1680410, + bmo#1681268, bmo#1682068, bmo#1682938, bmo#1683736, + bmo#1685260, bmo#1685925) + Memory safety bugs fixed in Thunderbird 78.7 + PackageKit-branding-openSUSE +- Modernize spec-file by calling spec-cleaner + +- Drop pre-checkin.sh and *.{spec,changes}.in: there is only one + flavor and thus no need for this complexity. + -- Rebase PackageKit-branding-default-config.patch against - PackageKit 0.8.7. - -- Update PackageKit-branding-vendor.patch: Disable ScanDesktop - plugin, it takes forever at least on first startup: - - ScanDesktopFiles=false - apache2 +- gensslcert sets CA:TRUE in basic constrains of CA cert [bsc#1180530] +- modified sources + % gensslcert + autoyast2 +- AutoYaST UI: fixed field Mount Options (fstopt) in the + partitioning section (bsc#1181577). +- 4.3.67 + bcm20702a1-firmware +- add support for BCM20702A1-050d-065a.hcd + (050d:065a Belkin Components F8T065BF Mini Bluetooth 4.0 Adapter) + bcm43xx-firmware +- use %_firmwaredir + dracut -- add nvmf support after ECO approval (jira#SLE-17166) - * 0001-add-nvmf-modules.patch - -- Update to version 049.1+suse.172.g3a1a3c37: - * make collect optional (bsc#1177870) - gpg2 +- Fix warning: agent returned different signature type ssh-rsa + * The gpg-agent's ssh-agent does not handle flags in signing + requests properly [bsc#1161268, bsc#1172308] + * Add gnupg-gpg-agent-ssh-agent.patch + +- Security fix: [bsc#1157900, CVE-2019-14855, jsc#SLE-16534] + * Web of Trust forgeries using collisions in SHA-1 signatures + * Ignore all SHA-1 signatures in 3rd party key signatures. + * Forbid the creation of SHA-1 third-party key signatures. + * Add option --allow-weak-key-signatures +- Add gnupg-CVE-2019-14855.patch + groff +- Add 0001-make-package-build-reproducible.patch + 0002-Implement-SOURCE_DATE_EPOCH-for-reproducible-builds.patch + to make corosync build reproducibly (bsc#1180276) + -- modify groff_1.22.2-2.debian.diff - remove the part related to - src/preproc/html/pre-html.cpp, fixes bnc#755533 - -- update to groff 1.22.2 - * gropdf: A new driver for generating PDF output directly, - contributed by Deri James and written in Perl - * The -mom macro package has reached version 2.0, focusing on - PDF output with gropdf (using the new `pdfmom' wrapper script). - See the file`version-2.html' of the -mom documentation for a list - of the many changes. - * pdfmom: A new wrapper around groff that facilitates the production of PDF - documents from files formatted with the -mom macros. - * and a lot more, see NEWS for details -- obsoletes: - config-guess-sub-update.patch, dtto - groff_1.21-6.debian.diff, replaced by -- added groff_1.22.2-2.debian.diff -- create a stripped-down version of groff usable for viewing of manual pages -- new groff-full package contains the rest of groff tools capable to work with - images, html or pdf. It contains the devx fonts, thus obsoletes groff-devx - it aims to fix bnc#755533 - grohtml built without pnm* tools in PATH -- gxdview.spec is removed as gxdview is built from groff-full.spec -- verify the tarball using gpg-offline - this is done in groff-full only - to retain a limited list of dependencies for base groff - -- config-guess-sub-update.patch: Update config.guess/sub for aarch64 - -- update license to new format - -- add explicit buildrequire makeinfo - -- Remove redundant tags/sections from specfile -- Enable parallel build with %_smp_mflags - -- use RPM_OPT_FLAGS for compile - -- implemented FATE#312586 - Add locales support for groff papersize - * the default papersize is now determined from system locale (LC_PAPER) - * /etc/papersize is no longer owned by the groff package - -- fix bnc#703665 - VUL-1: groff: missing checks for mktemp failures - (CVE-2009-5080) -- fix bnc#703666 - VUL-1: groff: insufficient number of X for mktemp - (CVE-2009-5081) - -- update to 1.21 a bugfix release - * use new groff_1.21-6.debian.diff - * refresh libexecdir and pdfroff patch -- fix FATE#311297: Get rid of SuSEconfig.groff - * removed - -- fix bnc#698290: insecure temporary file handling in pdfroff - * groff-1.20.1-CVE-2009-5044.patch -- fix bnc#683857: Unicode characters in use properly - * change the soft hyphenation char to - in tty.tmac - -- -- fix bnc#682913: device X100 is missing - * create new groff-devx package containing all devX devices, as they - need X for build -- fix bnc#683857: Unicode characters in use - * groff-1.20.1-deunicode.patch adds deunicode.tmac to tty.tmac removes - all unecessary unicode characters in tty output - -- fix bnc#679585 - groff.info is not installed - * install info files as %{name}.info.gz - -- fix bnc#644467: SuSEconfig.groff overwrites /etc/papersize - use the check_md5_and_move to prevent it -- deprecation warning for GROFF* variables in /etc/sysconfig/suseconfig - -- fix bnc#633128: Update groff to 1.20.1 - this update obsoletes a big number of SUSE patches - * groff_1.18.1.1-1-debian.diff.bz2 - adds Japanese support, which is now - upstreamed. However new groff_1.20.1-10.debian.diff has been added - * suse.patch - not needed - * pic-html.patch - probably not needed - * gcc4.patch - already fixed by upstream - * groff-1.17.2-gcc3.patch - seems not needed - * utf8.patch - http://www.mail-archive.com/groff@gnu.org/msg05273.html says - iconv hack is no longer needed, new version uses preconv - * debian-fix.patch - already fixed by upstream - * double-free.patch - already fixed by upstream - * groffer-security.patch - in debian diff - * groff-1.18.1.1-gcc41.patch - already fixed by upstream - * bugzilla-217106-too-few-arguments-in-function-call.patch - makes sense - only with ENABLE_MULTIBYTE, which was added by old debian diff - * bugzilla-292412-special-encoding-handling-also-for-chinese.patch - seems not necessary - * gcc43.patch - already fixed by upstream - * fgets-overflow.patch - already fixed by upstream - * bnc446710.patch - seems not needed anymore - * groff-1.18.1.1-debian-538330.patch - part of debian diff -- fix bnc#643083 - groff: default /etc/papersize should be "a4" - no "papersize a4" without SuSEconfig anymore -- move docs and examples to groff-docs subpackage - -- fixed bnc#529557 - groff: insecure file handling - -- fix broken output of man page when $LANGUAGE is set empty - (bnc#540600) - groff-full +- Add 0001-make-package-build-reproducible.patch + 0002-Implement-SOURCE_DATE_EPOCH-for-reproducible-builds.patch + to make corosync build reproducibly (bsc#1180276) + -- modify groff_1.22.2-2.debian.diff - remove the part related to - src/preproc/html/pre-html.cpp, fixes bnc#755533 - -- update to groff 1.22.2 - * gropdf: A new driver for generating PDF output directly, - contributed by Deri James and written in Perl - * The -mom macro package has reached version 2.0, focusing on - PDF output with gropdf (using the new `pdfmom' wrapper script). - See the file`version-2.html' of the -mom documentation for a list - of the many changes. - * pdfmom: A new wrapper around groff that facilitates the production of PDF - documents from files formatted with the -mom macros. - * and a lot more, see NEWS for details -- obsoletes: - config-guess-sub-update.patch, dtto - groff_1.21-6.debian.diff, replaced by -- added groff_1.22.2-2.debian.diff -- create a stripped-down version of groff usable for viewing of manual pages -- new groff-full package contains the rest of groff tools capable to work with - images, html or pdf. It contains the devx fonts, thus obsoletes groff-devx - it aims to fix bnc#755533 - grohtml built without pnm* tools in PATH -- gxdview.spec is removed as gxdview is built from groff-full.spec -- verify the tarball using gpg-offline - this is done in groff-full only - to retain a limited list of dependencies for base groff - -- config-guess-sub-update.patch: Update config.guess/sub for aarch64 - -- update license to new format - -- add explicit buildrequire makeinfo - -- Remove redundant tags/sections from specfile -- Enable parallel build with %_smp_mflags - -- use RPM_OPT_FLAGS for compile - -- implemented FATE#312586 - Add locales support for groff papersize - * the default papersize is now determined from system locale (LC_PAPER) - * /etc/papersize is no longer owned by the groff package - -- fix bnc#703665 - VUL-1: groff: missing checks for mktemp failures - (CVE-2009-5080) -- fix bnc#703666 - VUL-1: groff: insufficient number of X for mktemp - (CVE-2009-5081) - -- update to 1.21 a bugfix release - * use new groff_1.21-6.debian.diff - * refresh libexecdir and pdfroff patch -- fix FATE#311297: Get rid of SuSEconfig.groff - * removed - -- fix bnc#698290: insecure temporary file handling in pdfroff - * groff-1.20.1-CVE-2009-5044.patch -- fix bnc#683857: Unicode characters in use properly - * change the soft hyphenation char to - in tty.tmac - -- -- fix bnc#682913: device X100 is missing - * create new groff-devx package containing all devX devices, as they - need X for build -- fix bnc#683857: Unicode characters in use - * groff-1.20.1-deunicode.patch adds deunicode.tmac to tty.tmac removes - all unecessary unicode characters in tty output - -- fix bnc#679585 - groff.info is not installed - * install info files as %{name}.info.gz - -- fix bnc#644467: SuSEconfig.groff overwrites /etc/papersize - use the check_md5_and_move to prevent it -- deprecation warning for GROFF* variables in /etc/sysconfig/suseconfig - -- fix bnc#633128: Update groff to 1.20.1 - this update obsoletes a big number of SUSE patches - * groff_1.18.1.1-1-debian.diff.bz2 - adds Japanese support, which is now - upstreamed. However new groff_1.20.1-10.debian.diff has been added - * suse.patch - not needed - * pic-html.patch - probably not needed - * gcc4.patch - already fixed by upstream - * groff-1.17.2-gcc3.patch - seems not needed - * utf8.patch - http://www.mail-archive.com/groff@gnu.org/msg05273.html says - iconv hack is no longer needed, new version uses preconv - * debian-fix.patch - already fixed by upstream - * double-free.patch - already fixed by upstream - * groffer-security.patch - in debian diff - * groff-1.18.1.1-gcc41.patch - already fixed by upstream - * bugzilla-217106-too-few-arguments-in-function-call.patch - makes sense - only with ENABLE_MULTIBYTE, which was added by old debian diff - * bugzilla-292412-special-encoding-handling-also-for-chinese.patch - seems not necessary - * gcc43.patch - already fixed by upstream - * fgets-overflow.patch - already fixed by upstream - * bnc446710.patch - seems not needed anymore - * groff-1.18.1.1-debian-538330.patch - part of debian diff -- fix bnc#643083 - groff: default /etc/papersize should be "a4" - no "papersize a4" without SuSEconfig anymore -- move docs and examples to groff-docs subpackage - -- fixed bnc#529557 - groff: insecure file handling - -- fix broken output of man page when $LANGUAGE is set empty - (bnc#540600) - grub2 +- Complete Secure Boot support on aarch64 (jsc#SLE-15020) + * 0001-Add-support-for-Linux-EFI-stub-loading-on-aarch64.patch + * 0002-arm64-make-sure-fdt-has-address-cells-and-size-cells.patch + * 0003-Make-grub_error-more-verbose.patch + * 0004-arm-arm64-loader-Better-memory-allocation-and-error-.patch + * 0005-Make-linux_arm_kernel_header.hdr_offset-be-at-the-ri.patch + * 0006-efi-Set-image-base-address-before-jumping-to-the-PE-.patch + * 0007-linuxefi-fail-kernel-validation-without-shim-protoco.patch + * 0008-squash-Add-support-for-Linux-EFI-stub-loading-on-aar.patch + * 0009-squash-Add-support-for-linuxefi.patch + +- Fix rpmlint 2.0 error for having arch specific path in noarch package aiming + for compatibility with old package (bsc#1179044) + * grub2.spec +- Fix non POSIX sed argument which failed in sed from busybox (bsc#1181091) + * grub2-check-default.sh + - * modified 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch + * Modified 0002-grub-install-Avoid-incompleted-install-on-i386-pc.patch - * modified 0001-add-support-for-UEFI-network-protocols.patch + * 0001-add-support-for-UEFI-network-protocols.patch + +- grub2.spec: Fix bare words used as string in expression which is no longer + allowed in rpm 4.16 +- No 95_textmode for PowerPC (boo#1174166) + kernel-default +- Update kabi files. +- update from February 2021 maintenance update submission (commit 1e925eb08318) +- commit 97b2a1f + +- scsi: qla2xxx: Fix description for parameter + ql2xenforce_iocb_limit (bsc#1179142). +- commit f3ce867 + +- blacklist.conf: no need to fix code for CONFIG_KEXEC_JUMP +- commit 3abe54d + +- blacklist.conf: e45122893a98 x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state +- commit f36235a + +- nbd: freeze the queue while we're adding connections + (CVE-2021-3348 bsc#1181504). +- commit 78453ee + +- efi/apple-properties: Reinstate support for boolean properties + (git-fixes). +- commit c20e373 + +- leds: trigger: fix potential deadlock with libata (git-fixes). +- commit d410ad0 + +- Update patch References tags for futex fixes (bsc#1181349 CVE-2021-3347) +- commit b3fac23 + +- HID: wacom: Correct NULL dereference on AES pen proximity + (git-fixes). +- HID: wacom: Fix memory leakage caused by kfifo_alloc + (git-fixes). +- HID: wacom: Constify attribute_groups (git-fixes). +- HID: wacom: do not call hid_set_drvdata(hdev, NULL) (git-fixes). +- commit c0ccdd7 + +- drm/i915: Always flush the active worker before returning from + the wait (git-fixes). +- drm/i915/selftest: Fix potential memory leak (git-fixes). +- drm/i915/gt: Clear CACHE_MODE prior to clearing residuals + (git-fixes). +- drm/vc4: Correct POS1_SCL for hvs5 (git-fixes). +- drm/vc4: Correct lbm size and calculation (git-fixes). +- drm/nouveau/kms/gk104-gp1xx: Fix > 64x64 cursors (git-fixes). +- drivers/nouveau/kms/nv50-: Reject format modifiers for cursor + planes (git-fixes). +- drm/nouveau/dispnv50: Restore pushing of all data (git-fixes). +- commit ab75656 + +- ACPI/IORT: Do not blindly trust DMA masks from firmware + (git-fixes). +- PM: hibernate: flush swap writer after marking (git-fixes). +- ACPI: sysfs: Prefer "compatible" modalias (git-fixes). +- drm/i915: Check for all subplatform bits (git-fixes). +- drm/nouveau/svm: fail NOUVEAU_SVM_INIT ioctl on unsupported + devices (git-fixes). +- commit 274cf96 + +- iomap: fix WARN_ON_ONCE() from unprivileged users (bsc#1181494). +- commit 2958b80 + +- net/smc: fix direct access to ib_gid_addr->ndev in + smc_ib_determine_gid() (git-fixes). +- net/smc: fix valid DMBE buffer sizes (git-fixes). +- net/smc: fix sock refcounting in case of termination + (git-fixes). +- net/smc: reset sndbuf_desc if freed (git-fixes). +- net/smc: set rx_off for SMCR explicitly (git-fixes). +- net/smc: fix dmb buffer shortage (git-fixes). +- net/smc: remove freed buffer from list (git-fixes). +- net/smc: switch smcd_dev_list spinlock to mutex (git-fixes). +- net/smc: fix sleep bug in smc_pnet_find_roce_resource() + (git-fixes). +- net/smc: cancel event worker during device removal (git-fixes). +- net/smc: check for valid ib_client_data (git-fixes). +- net/smc: fix cleanup for linkgroup setup failures (git-fixes). +- net/smc: no peer ID in CLC decline for SMCD (git-fixes). +- net/smc: transfer fasync_list in case of fallback (git-fixes). +- commit a9e7337 + +- mm: memcontrol: fix missing wakeup polling thread (bsc#1181584). +- commit c0272b7 + +- blacklist.conf: Add 4230e2deaa48 stop_machine, rcu: Mark functions as notrace +- commit 9596511 + +- blacklist.conf: Add 15ec0fcff6da kernel/sys.c: replace do_brk with do_brk_flags in comment of prctl_set_mm_map() +- commit 7773384 + +- ptrace: Set PF_SUPERPRIV when checking capability (bsc#1163930). +- ptrace: reintroduce usage of subjective credentials in + ptrace_has_cap() (bsc#1163930). +- commit 1d6137d + +- module: delay kobject uevent until after module init call (bsc#1178631). +- Refresh patches.suse/supported-flag +- commit 2796828 + +- Refresh patches.suse/powerpc-sstep-Fix-array-out-of-bound-warning.patch. + Update to v2 +- commit 6a4b1c5 + +- vfio iommu: Add dma available capability (bsc#1179572 + LTC#190110). +- commit 78a5def + +- vfio iommu: Add dma available capability (bsc#1179572 + LTC#190110). +- commit 6544fbc + +- Batch patch rename with scripts/renamepatches. + Rename a bunch of patches (mostly drm-related) to match their SLE15-SP2 + equivalents. This will make solving SLE15-SP2 -> SLE15-SP3 conflicts a + bit easier. This is especially important to make sure drm fixes going + into SLE15-SP2 conflict with patches already in SLE15-SP3. +- commit 3c1500c + +- mac80211: pause TX while changing interface type (git-fixes). +- commit c5c081d + +- HID: multitouch: Remove MT_CLS_WIN_8_DUAL (git-fixes). +- Refresh + patches.suse/HID-quirks-Always-poll-three-more-Lenovo-PixArt-mice.patch. +- commit bed41ce + +- can: dev: prevent potential information leak in can_fill_info() + (git-fixes). +- mt7601u: fix kernel crash unplugging the device (git-fixes). +- mt7601u: fix rx buffer refcounting (git-fixes). +- NFC: fix resource leak when target index is invalid (git-fixes). +- NFC: fix possible resource leak (git-fixes). +- firmware: imx: select SOC_BUS to fix firmware build (git-fixes). +- HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input + devices (git-fixes). +- media: rc: ensure that uevent can be read directly after rc + device register (git-fixes). +- HID: multitouch: do not filter mice nodes (git-fixes). +- commit f7694e1 + +- series.conf: cleanup +- update upstream references and move into sorted section: + patches.suse/0001-futex-Ensure-the-correct-return-value-from-futex_loc.patch + patches.suse/0002-futex-Replace-pointless-printk-in-fixup_owner.patch + patches.suse/0003-futex-Provide-and-use-pi_state_update_owner.patch + patches.suse/0004-rtmutex-Remove-unused-argument-from-rt_mutex_proxy_u.patch + patches.suse/0005-futex-Use-pi_state_update_owner-in-put_pi_state.patch + patches.suse/0006-futex-Simplify-fixup_pi_state_owner.patch + patches.suse/0007-futex-Handle-faults-correctly-for-PI-futexes.patch +- commit 16c5d87 + +- Refresh patches.suse/bpf-Fix-map-permissions-check.patch. + The diff was applied to map_delete_elem() mistakenly even though the + patch indicates the target: map_lookup_and_delete_elem(). + The patch is applied correctly in SLE15-SP2, so this change is only for + SLE15-SP3. +- commit 223cc56 + +- ASoC: SOF: SND_INTEL_DSP_CONFIG dependency (git-fixes). +- ASoC: SOF: Intel: soundwire: fix select/depend unmet + dependencies (git-fixes). +- ASoC: Intel: sof_sdw: set proper flags for Dell TGL-H SKU 0A5E + (git-fixes). +- ASoC: Intel: Skylake: Zero snd_ctl_elem_value (git-fixes). +- ASoC: Intel: Skylake: skl-topology: Fix OOPs ib + skl_tplg_complete (git-fixes). +- ASoC: mediatek: mt8183-da7219: ignore TDM DAI link by default + (git-fixes). +- ASoC: mediatek: mt8183-mt6358: ignore TDM DAI link by default + (git-fixes). +- ASoC: topology: Properly unregister DAI on removal (git-fixes). +- ASoC: topology: Fix memory corruption in + soc_tplg_denum_create_values() (git-fixes). +- ASoC: AMD Renoir - refine DMI entries for some Lenovo products + (git-fixes). +- ASoC: wm_adsp: Fix control name parsing for multi-fw + (git-fixes). +- ALSA: hda: intel-dsp-config: add PCI id for TGL-H (git-fixes). +- commit 959baa2 + +- Move upstreamed sound patches into sorted section +- commit 84af2ff + +- ALSA: hda/via: Apply the workaround generically for Clevo + machines (git-fixes). +- ASoC: ak4458: correct reset polarity (git-fixes). +- ALSA: hda/realtek: Enable headset of ASUS B1400CEPE with ALC256 + (git-fixes). +- commit e5943b7 + +- Refresh patches.suse/usb-roles-provide-the-switch-drivers-handle-to-the-switch-in-the-api.patch + Fix the build on armv7hl config +- commit c7f7007 + +- leds: Add managed API to get a LED from a device driver + (jsc#SLE-12680, jsc#SLE-12880, jsc#SLE-12882, jsc#SLE-12883, + jsc#SLE-13496, jsc#SLE-15322). +- leds: Add of_led_get() and led_put() (jsc#SLE-12680, + jsc#SLE-12880, jsc#SLE-12882, jsc#SLE-12883, jsc#SLE-13496, + jsc#SLE-15322). +- thermal: db8500: Depromote debug print (jsc#SLE-16407). +- net: netcp_ethss: Use the PHY time stamping interface + (bsc#1176447). +- thermal: db8500: Rewrite to be a pure OF sensor (jsc#SLE-16407). +- thermal: db8500: Use dev helper variable (jsc#SLE-16407). +- thermal: db8500: Finalize device tree conversion + (jsc#SLE-16407). +- commit be80774 + +- xfs: show the proper user quota options (bsc#1181538). +- commit e34397a + +- futex: Handle faults correctly for PI futexes (bsc#1181349 + bsc#1149032). +- futex: Simplify fixup_pi_state_owner() (bsc#1181349 + bsc#1149032). +- futex: Use pi_state_update_owner() in put_pi_state() + (bsc#1181349 bsc#1149032). +- rtmutex: Remove unused argument from rt_mutex_proxy_unlock() + (bsc#1181349 bsc#1149032). +- futex: Provide and use pi_state_update_owner() (bsc#1181349 + bsc#1149032). +- futex: Replace pointless printk in fixup_owner() (bsc#1181349 + bsc#1149032). +- futex: Ensure the correct return value from futex_lock_pi() + (bsc#1181349 bsc#1149032). +- futex: Remove unused empty compat_exit_robust_list() + (bsc#1149032). +- futex: Remove needless goto's (bsc#1149032). +- commit 8a00d32 + +- clk: tegra: Add Tegra20/30 EMC clock implementation + (jsc#SLE-15847). +- Refresh + patches.suse/clk-tegra-Export-functions-for-EMC-clock-scaling.patch. +- Refresh + patches.suse/clk-tegra-Implement-Tegra210-EMC-clock.patch. +- Refresh + patches.suse/clk-tegra-Rename-Tegra124-EMC-clock-source-file.patch. +- commit f80473c + +- ARM: OMAP2+: omap_device: fix idling of devices during probe + (bsc#1175713). +- ARM: OMAP2+: Remove redundant assignment to variable ret + (bsc#1175713). +- OMAP2: fixup doc comments in omap_device (bsc#1175713). +- ARM: OMAP2+: Add pdata for OMAP3 ISP IOMMU (bsc#1175713). +- ARM: OMAP2+: Plug in device_enable/idle ops for IOMMUs + (bsc#1175713). +- iommu/omap: add pdata ops for omap_device_enable/idle + (bsc#1175713). +- commit 365ddca + +- x86/hyperv: Fix kexec panic/hang issues (bsc#1176831). +- refresh patches.suse/suse-hv-kabi.patch +- commit 3bdfdcf + +- Delete patches.suse/1245-drm-remove-drm-specific-kmap_atomic-code.patch + This broke the build on armv7hl. +- commit 7f90f67 + +- ASoC: meson: aiu: add audio output dt-bindings (jsc#SLE-16518). +- commit 39e8b6e + +- btrfs: send: fix invalid clone operations when cloning from + the same file and root (bsc#1181511). +- commit 090f75a + +- fix patch metadata +- fix Patch-mainline: + patches.suse/nfsd4-readdirplus-shouldn-t-return-parent-of-export.patch +- commit 2f3e2e1 + +- ACPI/IORT: Fix doc warnings in iort.c (jsc#SLE-16407). +- ACPI, APEI, Fix error return value in apei_map_generic_address() + (jsc#SLE-16407). +- ACPI: DPTF: Support Alder Lake (jsc#SLE-16407). +- ACPI: Fix whitespace inconsistencies (jsc#SLE-16407). +- ACPI: scan: Fix acpi_dma_configure_id() kerneldoc name + (jsc#SLE-16407). +- ACPI: button: Drop no longer necessary Acer SW5-012 + lid_init_state quirk (jsc#SLE-16407). +- ACPI: utils: remove unreachable breaks (jsc#SLE-16407). +- ACPI: DPTF: Add ACPI_DPTF Kconfig menu (jsc#SLE-16407). +- Update config files. +- Update supported.conf. +- ACPI: DPTF: Fix participant driver names (jsc#SLE-16407). +- ACPI: processor: remove comment regarding string _UID support + (jsc#SLE-16407). +- ACPI: reboot: Avoid racing after writing to ACPI RESET_REG + (jsc#SLE-16407). +- ACPICA: Add missing type casts in GPE register access code + (jsc#SLE-16407). +- PCI/ACPI: Add Ampere Altra SOC MCFG quirk (jsc#SLE-16407). +- PCI/ACPI: Tone down missing MCFG message (jsc#SLE-16407). +- ACPI / LPSS: Save Cherry Trail PWM ctx registers only once + (at activation) (jsc#SLE-16407). +- ACPI / LPSS: Resume Cherry Trail PWM controller in no-irq phase + (jsc#SLE-16407). +- ACPI: Export acpi_get_first_physical_node() to modules + (jsc#SLE-16407). +- PNP: ACPI: Fix missing-prototypes in acpi_pnp.c (jsc#SLE-16407). +- ACPI: PCI: update kernel-doc line comments (jsc#SLE-16407). +- ACPI: memhotplug: Remove 'state' from struct acpi_memory_device + (jsc#SLE-16407). +- ACPI: wakeup: Remove dead ACPICA debug code (jsc#SLE-16407). +- ACPI: video: Remove leftover ACPICA debug code (jsc#SLE-16407). +- ACPI: tiny-power-button: Remove dead ACPICA debug code + (jsc#SLE-16407). +- ACPI: processor: Remove dead ACPICA debug code (jsc#SLE-16407). +- ACPI: proc: Remove dead ACPICA debug code (jsc#SLE-16407). +- ACPI: PCI: Remove unused ACPICA debug code (jsc#SLE-16407). +- ACPI: event: Remove leftover ACPICA debug code (jsc#SLE-16407). +- ACPI: dock: Remove dead ACPICA debug code (jsc#SLE-16407). +- ACPI: debugfs: Remove dead ACPICA debug code (jsc#SLE-16407). +- ACPI: custom_method: Remove dead ACPICA debug code + (jsc#SLE-16407). +- ACPI: container: Remove leftover ACPICA debug functionality + (jsc#SLE-16407). +- ACPI: platform: Remove ACPI_MODULE_NAME() (jsc#SLE-16407). +- ACPI: memhotplug: Remove leftover ACPICA debug functionality + (jsc#SLE-16407). +- ACPI: LPSS: Remove ACPI_MODULE_NAME() (jsc#SLE-16407). +- ACPI: cmos_rtc: Remove leftover ACPI_MODULE_NAME() + (jsc#SLE-16407). +- node: Add access1 class to represent CPU to memory + characteristics (jsc#SLE-16407). +- ACPI: Let ACPI know we support Generic Initiator Affinity + Structures (jsc#SLE-16407). +- ACPI: Support Generic Initiator only domains (jsc#SLE-16407). +- ACPI / NUMA: Add stub function for pxm_to_node() + (jsc#SLE-16407). +- ACPI: Remove side effect of partly creating a node in + acpi_get_node() (jsc#SLE-16407). +- ACPI: scan: Replace ACPI_DEBUG_PRINT() with pr_debug() + (jsc#SLE-16407). +- ACPI: battery: include linux/power_supply.h (jsc#SLE-16407). +- ACPI: APD: Clean up header file include statements + (jsc#SLE-16407). +- ACPI: APD: Remove unnecessary APD_ADDR() macro stub + (jsc#SLE-16407). +- ACPI: APD: Remove ACPI_MODULE_NAME() (jsc#SLE-16407). +- ACPI: APD: Remove flags from struct apd_device_desc + (jsc#SLE-16407). +- ACPI: APD: Add kerneldoc for properties in struct + apd_device_desc (jsc#SLE-16407). +- ACPI: DPTF: Add PCH FIVR participant driver (jsc#SLE-16407). +- ACPI / PMIC: Move TPS68470 OpRegion driver to drivers/acpi/pmic/ + (jsc#SLE-16407). +- ACPI / PMIC: Split out Kconfig and Makefile specific for ACPI + PMIC (jsc#SLE-16407). + Update config files. +- ACPI: NFIT: Use kobj_to_dev() instead (jsc#SLE-16407). +- ACPI: OSL: Make ACPICA use logical addresses of GPE blocks + (jsc#SLE-16407). +- ACPI: OSL: Change the type of acpi_os_map_generic_address() + return value (jsc#SLE-16407). +- ACPICA: Add support for using logical addresses of GPE blocks + (jsc#SLE-16407). +- ACPICA: Introduce special struct type for GPE register addresses + (jsc#SLE-16407). +- ACPICA: Introduce acpi_hw_gpe_read() and acpi_hw_gpe_write() + (jsc#SLE-16407). +- ACPICA: Validate GPE blocks at init time (jsc#SLE-16407). +- ACPICA: Update version to 20200925 Version 20200925 + (jsc#SLE-16407). +- ACPICA: Remove unnecessary semicolon (jsc#SLE-16407). +- ACPICA: Debugger: Add a new command: "ALL " + (jsc#SLE-16407). +- ACPICA: iASL: Return exceptions for string-to-integer + conversions (jsc#SLE-16407). +- ACPICA: acpi_help: Update UUID list (jsc#SLE-16407). +- ACPICA: Add predefined names found in the SMBus sepcification + (jsc#SLE-16407). +- ACPICA: Tree-wide: fix various typos and spelling mistakes + (jsc#SLE-16407). +- ACPICA: Drop the repeated word "an" in a comment + (jsc#SLE-16407). +- ACPICA: Add support for 64 bit risc-v compilation + (jsc#SLE-16407). +- ACPI: processor: Print more information when + acpi_processor_evaluate_cst() fails (jsc#SLE-16407). +- ACPI/IORT: Remove the unused inline functions (jsc#SLE-16407). +- ACPI/IORT: Drop the unused @ops of iort_add_device_replay() + (jsc#SLE-16407). +- arm64: permit ACPI core to map kernel memory used for table + overrides (jsc#SLE-16407). +- arm64/acpi: disallow AML memory opregions to access kernel + memory (jsc#SLE-16407). +- arm64: acpi: fix UBSAN warning (jsc#SLE-16407). +- commit 5dc32ae + +- intel_th: pci: Add Alder Lake-P support (git-fixes). +- drm/amd/display: disable dcn10 pipe split by default + (git-fixes). +- commit 92717d1 + +- xhci: tegra: Delay for disabling LFPS detector (git-fixes). +- xhci: make sure TRB is fully written before giving it to the + controller (git-fixes). +- USB: ehci: fix an interrupt calltrace error (git-fixes). +- ehci: fix EHCI host controller initialization sequence + (git-fixes). +- i2c: bpmp-tegra: Ignore unknown I2C_M flags (git-fixes). +- platform/x86: ideapad-laptop: Disable touchpad_switch for + ELAN0634 (git-fixes). +- drm/nouveau/kms/nv50-: fix case where notifier buffer is at + offset 0 (git-fixes). +- drm/nouveau/mmu: fix vram heap sizing (git-fixes). +- drm/nouveau/i2c/gm200: increase width of aux semaphore owner + fields (git-fixes). +- drm/nouveau/privring: ack interrupts the same way as RM + (git-fixes). +- drm/nouveau/bios: fix issue shadowing expansion ROMs + (git-fixes). +- drm/amdgpu/psp: fix psp gfx ctrl cmds (git-fixes). +- HID: Ignore battery for Elan touchscreen on ASUS UX550 + (git-fixes). +- HID: logitech-dj: add the G602 receiver (git-fixes). +- HID: multitouch: Enable multi-input for Synaptics + pointstick/touchpad device (git-fixes). +- commit 6194af6 + +- blacklist.conf: unwanted NFS patches +- commit 6f9f1d0 + +- nfsd4: readdirplus shouldn't return parent of export + (git-fixes). +- commit 5e9f700 + +- nvme-tcp: avoid request double completion for concurrent + nvme_tcp_timeout (bsc#1181161). +- nvme-rdma: avoid request double completion for concurrent + nvme_rdma_timeout (bsc#1181161). +- commit 7760e28 + +- x86/xen: avoid warning in Xen pv guest with + CONFIG_AMD_MEM_ENCRYPT enabled (bsc#1181335). +- commit ada97e4 + +- xen-blkfront: allow discard-* nodes to be optional + (bsc#1181346). +- commit 958c625 + +- xen/privcmd: allow fetching resource sizes (bsc#1065600). +- commit 21fc6aa + +- scsi: ibmvfc: Fix missing cast of ibmvfc_event pointer to u64 handle + (jsc#SLE-15442 bsc#1180814 ltc#187461). +- Refresh patches.suse/scsi-ibmvfc-Send-commands-down-HW-Sub-CRQ-when-chann.patch. +- Refresh patches.suse/scsi-ibmvfc-Set-and-track-hw-queue-in-ibmvfc_event-s.patch. +- commit 1e02306 + +- Update ibmvfc patch metadata. +- commit b112c00 + +- efi/libstub: Disable -mbranch-protection (jsc#SLE-16407). +- efi/arm64: libstub: Deal gracefully with EFI_RNG_PROTOCOL + failure (jsc#SLE-16407). +- efivarfs: Replace invalid slashes with exclamation marks in + dentries (jsc#SLE-16407). +- efi: Delete deprecated parameter comments (jsc#SLE-16407). +- efi/libstub: Fix missing-prototypes in string.c (jsc#SLE-16407). +- efi: Add definition of EFI_MEMORY_CPU_CRYPTO and ability to + report it (jsc#SLE-16407). +- efi: mokvar: add missing include of asm/early_ioremap.h + (jsc#SLE-16407). +- efi: efivars: limit availability to X86 builds (jsc#SLE-16407). + Update config files. +- efi: remove some false dependencies on CONFIG_EFI_VARS + (jsc#SLE-16407). +- efi: efivars: un-export efivars_sysfs_init() (jsc#SLE-16407). +- efi: pstore: move workqueue handling out of efivars + (jsc#SLE-16407). +- efi: pstore: disentangle from deprecated efivars module + (jsc#SLE-16407). +- efi: mokvar-table: fix some issues in new code (jsc#SLE-16407). +- cper,edac,efi: Memory Error Record: bank group/address and + chip id (jsc#SLE-16407). +- edac,ghes,cper: Add Row Extension to Memory Error Record + (jsc#SLE-16407). +- efi/x86: Add a quirk to support command line arguments on Dell + EFI firmware (jsc#SLE-16407). +- efi/libstub: Add efi_warn and *_once logging helpers + (jsc#SLE-16407). +- efi: Support for MOK variable config table (jsc#SLE-16407). + Refresh + patches.suse/0005-efi-generate-secret-key-in-EFI-boot-environment.patch +- efi/printf: remove unneeded semicolon (jsc#SLE-16407). +- efi/libstub: Export efi_low_alloc_above() to other units + (jsc#SLE-16407). +- efi: Rename arm-init to efi-init common for all arch + (jsc#SLE-16407). +- commit a426a3c + +- scsi: ibmvfc: Set default timeout to avoid crash during + migration (bsc#1181425 ltc#188252). +- commit 9a4138b + +- series.conf: cleanup +- rename patches to get rid of numeric prefix (for easier resolve of merge conflict) + patches.suse/0001-drm-rockchip-Avoid-uninitialized-use-of-endpoint-id-.patch -> patches.suse/drm-rockchip-Avoid-uninitialized-use-of-endpoint-id-.patch + patches.suse/0002-drm-gma500-fix-double-free-of-gma_connector.patch -> patches.suse/drm-gma500-fix-double-free-of-gma_connector.patch + patches.suse/0003-drm-aspeed-Fix-Kconfig-warning-subsequent-build-erro.patch -> patches.suse/drm-aspeed-Fix-Kconfig-warning-subsequent-build-erro.patch + patches.suse/0004-drm-dp_aux_dev-check-aux_dev-before-use-in-drm_dp_au.patch -> patches.suse/drm-dp_aux_dev-check-aux_dev-before-use-in-drm_dp_au.patch + patches.suse/0005-drm-mcde-Fix-handling-of-platform_get_irq-error.patch -> patches.suse/drm-mcde-Fix-handling-of-platform_get_irq-error.patch + patches.suse/0006-drm-tve200-Fix-handling-of-platform_get_irq-error.patch -> patches.suse/drm-tve200-Fix-handling-of-platform_get_irq-error.patch + (no effect on expanded tree) +- commit 772573f + +- series.conf: cleanup +- move unsortable patch out of sorted section + patches.suse/floppy-reintroduce-O_NDELAY-fix.patch +- commit 39bee61 + +- arch/x86/lib/usercopy_64.c: fix __copy_user_flushcache() + cache writeback (bsc#1152489). +- commit 852fa4b + +- scsi: lpfc: Simplify bool comparison (bsc#1180891). +- scsi: lpfc: Update lpfc version to 12.8.0.7 (bsc#1180891). +- scsi: lpfc: Enhancements to LOG_TRACE_EVENT for better + readability (bsc#1180891). +- scsi: lpfc: Implement health checking when aborting I/O + (bsc#1180891). +- scsi: lpfc: Fix crash when nvmet transport calls host_release + (bsc#1180891). +- scsi: lpfc: Fix vport create logging (bsc#1180891). +- scsi: lpfc: Fix NVMe recovery after mailbox timeout + (bsc#1180891). +- scsi: lpfc: Fix target reset failing (bsc#1180891). +- scsi: lpfc: Fix error log messages being logged following SCSI + task mgnt (bsc#1180891). +- scsi: lpfc: Prevent duplicate requests to unregister with + cpuhp framework (bsc#1180891). +- scsi: lpfc: Fix FW reset action if I/Os are outstanding + (bsc#1180891). +- scsi: lpfc: Use the nvme-fc transport supplied timeout for LS + requests (bsc#1180891). +- scsi: lpfc: Fix crash when a fabric node is released prematurely + (bsc#1180891). +- scsi: lpfc: Refresh ndlp when a new PRLI is received in the + PRLI issue state (bsc#1180891). +- scsi: lpfc: Fix auto sli_mode and its effect on CONFIG_PORT + for SLI3 (bsc#1180891). +- scsi: lpfc: Fix PLOGI S_ID of 0 on pt2pt config (bsc#1180891). +- commit cdea5d0 + +- x86/topology: Make __max_die_per_package available + unconditionally (bsc#1152489). +- commit 0e0c8a8 + +- x86/cpu/amd: Set __max_die_per_package on AMD (bsc#1152489). +- commit 3044309 + +- drm/i915/gt: Declare gen9 has 64 mocs entries! (git-fixes). +- drm/etnaviv: always start/stop scheduler in timeout processing + (git-fixes). +- commit 6ef999c + +- drm/i915/dsi: Use unconditional msleep for the panel_on_delay + when there is no reset-deassert MIPI-sequence (git-fixes). +- drm/i915: clear the gpu reloc batch (git-fixes). +- drm/amdgpu: fix a GPU hang issue when remove device (git-fixes). +- drm/i915: Fix mismatch between misplaced vma check and vma + insert (git-fixes). +- commit cc8174e + +- drm/amdkfd: Fix leak in dmabuf import (git-fixes). +- drm/msm/dsi_phy_10nm: implement PHY disabling (git-fixes). +- drm/msm/dsi_pll_10nm: restore VCO rate during restore_state + (git-fixes). +- drm/msm/dpu: Add newline to printks (git-fixes). +- drm/meson: dw-hdmi: Register a callback to disable the regulator + (git-fixes). +- drm/omap: dmm_tiler: fix return error code in omap_dmm_probe() + (git-fixes). +- drm/amdgpu: fix build_coefficients() argument (git-fixes). +- drm/amd/display: remove useless if/else (git-fixes). +- drm/tve200: Fix handling of platform_get_irq() error + (git-fixes). +- drm/mcde: Fix handling of platform_get_irq() error (git-fixes). +- drm/dp_aux_dev: check aux_dev before use in + drm_dp_aux_dev_get_by_minor() (git-fixes). +- drm/aspeed: Fix Kconfig warning & subsequent build errors + (git-fixes). +- drm/gma500: fix double free of gma_connector (git-fixes). +- drm/i915/display/dp: Compute the correct slice count for VDSC + on DP (git-fixes). +- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS + (git-fixes). +- drm/i915/gt: Program mocs:63 for cache eviction on gen9 + (git-fixes). +- drm/tegra: sor: Disable clocks on error in tegra_sor_init() + (git-fixes). +- drm/tegra: replace idr_init() by idr_init_base() (git-fixes). +- drm/i915/gt: Free stale request on destroying the virtual engine + (git-fixes). +- drm/i915/gvt: return error when failing to take the module + reference (git-fixes). +- drm/i915/gvt: Set ENHANCED_FRAME_CAP bit (git-fixes). +- drm/i915: Handle max_bpc==16 (git-fixes). +- drm/i915: Avoid memory leak with more than 16 workarounds on + a list (git-fixes). +- drm/amd/display: Add missing pflip irq for dcn2.0 (git-fixes). +- drm/gma500: Fix out-of-bounds access to struct + drm_device.vblank[] (git-fixes). +- drm/amdgpu: perform srbm soft reset always on SDMA resume + (git-fixes). +- commit bd76ab9 + +- drm/nouveau/nouveau: fix the start/end range for migration + (git-fixes). +- drm/vc4: drv: Add error handding for bind (git-fixes). +- drm/sun4i: frontend: Fix the scaler phase on A33 (git-fixes). +- drm/sun4i: frontend: Reuse the ch0 phase for RGB formats + (git-fixes). +- drm/sun4i: frontend: Rework a bit the phase data (git-fixes). +- drm/amd/display: Don't invoke kgdb_breakpoint() unconditionally + (git-fixes). +- drm/amdgpu: increase the reserved VM size to 2MB (git-fixes). +- drm/amdgpu: don't map BO in reserved region (git-fixes). +- drm/amdgpu: add DID for navi10 blockchain SKU (git-fixes). +- drm/i915: Drop runtime-pm assert from vgpu io accessors + (git-fixes). +- drm/i915: Force VT'd workarounds when running as a guest OS + (git-fixes). +- drm/i915/gt: Delay execlist processing for tgl (git-fixes). +- commit d9edd32 + +- drm/amdkfd: Use same SQ prefetch setting as amdgpu (git-fixes). +- drm/amd/display: Avoid MST manager resource leak (git-fixes). +- drm/amdgpu: correct the gpu reset handling for job != NULL case + (git-fixes). +- drm/ttm: fix eviction valuable range check (git-fixes). +- drm/amd/display: HDMI remote sink need mode validation for Linux + (git-fixes). +- drm/amd/display: Increase timeout for DP Disable (git-fixes). +- drm/i915: Break up error capture compression loops with + cond_resched() (git-fixes). +- drm/msm/a6xx: fix a potential overflow issue (git-fixes). +- drm/panfrost: add amlogic reset quirk callback (git-fixes). +- drm/bridge/synopsys: dsi: add support for non-continuous HS + clock (git-fixes). +- commit 3790415 + +- drm/brige/megachips: Add checking if ge_b850v3_lvds_init() + is working correctly (git-fixes). +- drm/nouveau/mem: guard against NULL pointer access in mem_del + (git-fixes). +- drm/amdgpu: prevent double kfree ttm->sg (git-fixes). +- drm/sun4i: mixer: Extend regmap max_register (git-fixes). +- commit f36768e + +- drm/i915: Filter wake_flags passed to default_wake_function + (git-fixes). +- drm/amdgpu/dc: Require primary plane to be enabled whenever + the CRTC is (git-fixes). +- drm/amd/display: update nv1x stutter latencies (git-fixes). +- drm/amdkfd: fix a memory leak issue (git-fixes). +- drm/tve200: Stabilize enable/disable (git-fixes). +- drm/msm: Disable preemption on all 5xx targets (git-fixes). +- drm/amdgpu: Fix bug in reporting voltage for CIK (git-fixes). +- drm/amd/pm: avoid false alarm due to confusing + softwareshutdowntemp setting (git-fixes). +- drm/omap: fix incorrect lock state (git-fixes). +- drm/amd/display: Fix memleak in amdgpu_dm_mode_config_init + (git-fixes). +- drm/amd/display: Retry AUX write when fail occurs (git-fixes). +- drm/amd/display: Reject overlay plane configurations in + multi-display scenarios (git-fixes). +- drm/msm/a6xx: fix gmu start on newer firmware (git-fixes). +- drm/msm: add shutdown support for display platform_driver + (git-fixes). +- drm/msm/dpu: Fix scale params in plane validation (git-fixes). +- drm/i915/selftests: Avoid passing a random 0 into ilog2 + (git-fixes). +- drm/amdgpu: Fix bug where DPM is not enabled after hibernate + and resume (git-fixes). +- drm/amd/display: dchubbub p-state warning during surface planes + switch (git-fixes). +- commit 64cc324 + +- drm: Added orientation quirk for ASUS tablet model T103HAF + (git-fixes). +- drm/amdkfd: fix restore worker race condition (git-fixes). +- drm/nouveau/dispnv50: fix runtime pm imbalance on error + (git-fixes). +- drm/nouveau: fix runtime pm imbalance on error (git-fixes). +- drm/nouveau/debugfs: fix runtime pm imbalance on error + (git-fixes). +- commit 406e9f7 + +- drm/exynos: dsi: Remove bridge node reference in error handling + path in probe function (git-fixes). +- drm: rcar-du: Set primary plane zpos immutably at initializing + (git-fixes). +- drm/amdgpu/sriov add amdgpu_amdkfd_pre_reset in gpu reset + (git-fixes). +- drm/msm/a5xx: Always set an OPP supported hardware value + (git-fixes). +- drm/msm: fix leaks if initialization fails (git-fixes). +- drm/amd/display: Stop if retimer is not available (git-fixes). +- drm/amdgpu: increase atombios cmd timeout (git-fixes). +- drm/omap: dss: Cleanup DSS ports on initialisation failure + (git-fixes). +- commit db34b82 + +- drm/amd/display: dal_ddc_i2c_payloads_create can fail causing + panic (git-fixes). +- drm/omap: fix possible object reference leak (git-fixes). +- drm/amdgpu: fix calltrace during kmd unload(v3) (git-fixes). +- drm/scheduler: Avoid accessing freed bad job (git-fixes). +- drm/amdgpu/powerplay/smu7: fix AVFS handling with custom + powerplay table (git-fixes). +- drm/amdgpu/powerplay: fix AVFS handling with custom powerplay + table (git-fixes). +- drm/amd/display: Free gamma after calculating legacy transfer + function (git-fixes). +- drm/amd/display: Do not double-buffer DTO adjustments + (git-fixes). +- commit c18126a + +- drm/i915/gt: Prevent use of engine->wa_ctx after error + (git-fixes). +- drm/syncobj: Fix use-after-free (git-fixes). +- drm/atomic: put state on error path (git-fixes). +- commit 4cd1094 + +- ACPI: scan: Make acpi_bus_get_device() clear return pointer + on error (git-fixes). +- cachefiles: Drop superfluous readpages aops NULL check + (git-fixes). +- ACPI: scan: Harden acpi_device_add() against device ID overflows + (git-fixes). +- commit 963543c + +- net/mlx5e: ethtool, Fix restriction of autoneg with 56G + (jsc#SLE-8464). +- net: hns3: fix a phy loopback fail issue (bsc#1154353). +- net: vlan: avoid leaks on register_vlan_dev() failures + (bsc#1154353). +- bnxt_en: Fix AER recovery (jsc#SLE-8371 bsc#1153274). +- e1000e: bump up timeout to wait when ME un-configures ULP mode + (jsc#SLE-8100). +- ionic: account for vlan tag len in rx buffer len (bsc#1167773). +- ice, xsk: clear the status bits for the next_to_use descriptor + (jsc#SLE-7926). +- net: fix proc_fs init handling in af_packet and tls + (bsc#1154353). +- ice: avoid premature Rx buffer reuse (jsc#SLE-7926). +- net: hns3: remove a misused pragma packed (bsc#1154353). +- commit 465e7d7 + +- blacklist.conf: Add 08685be7761d powerpc/64s: fix scv entry fallback flush vs interrupt + No scv support. +- commit 7e491e5 + +- selftests: net: fib_tests: remove duplicate log test + (git-fixes). +- net: mscc: ocelot: allow offloading of bridge on top of LAG + (git-fixes). +- udp: Prevent reuseport_select_sock from reading uninitialized + socks (git-fixes). +- pNFS: Mark layout for return if return-on-close was not sent + (git-fixes). +- commit 87c48df + +- drm/tve200: Fix handling of platform_get_irq() error (bsc#1152472) +- commit 8541d40 + +- drm/mcde: Fix handling of platform_get_irq() error (bsc#1152472) +- commit 60b9525 + +- drm/dp_aux_dev: check aux_dev before use in (bsc#1152472) +- commit 21532d2 + +- drm/aspeed: Fix Kconfig warning & subsequent build errors (bsc#1152472) +- commit 3d14ba8 + +- drm/gma500: fix double free of gma_connector (bsc#1152472) + Backporting notes: + * context changes +- commit 2ce14eb + +- drm/rockchip: Avoid uninitialized use of endpoint id in LVDS (bsc#1152472) +- commit 103a121 + +- blacklist.conf: Append 'drm/vc4: gem: Add a managed action to cleanup the job queue' +- commit ce3d22f + +- blacklist.conf: Append 'drm/vc4: bo: Add a managed action to cleanup the cache' +- commit 2cf161b + +- Update patches.suse/selftests-ftrace-Select-an-existing-function-in-kpro.patch (bsc#1181203 ltc#190909). +- commit e5512d0 + +- floppy: reintroduce O_NDELAY fix (boo#1181018). +- commit ab10a7d + keyutils +- adjust the library license to be LPGL-2.1+ only (the tools are GPL2+, + the library is just LGPL-2.1+) (bsc#1180603) + -- update license to new format - -- various small improvements -- added a /etc/request-key.d/ snippet drop directory - -- Update nfs4 idmap support, nfs-client 1.2.6 changed parameters. - -- Add nfs4 idmap support - -- cross-build fix: use %__cc macro - -- Updated to 1.5.3 - - Fix unread variables. - - Licence file update. -- Updated to 1.5 - - Disable RPATH setting in Makefile. - - Add -I. to build to get this keyutils.h. - - Make CFLAGS override on make command line work right. - - Make specfile UTF-8. - - Support KEYCTL_REJECT. - - Support KEYCTL_INSTANTIATE_IOV. - - Add AFSDB DNS lookup program from Wang Lei. - - Generalise DNS lookup program. - - Add recursive scan utility function. - - Add bad key reap command to keyctl. - - Add multi-unlink variant to keyctl unlink command. - - Add multi key purger command to keyctl. - - Handle multi-line commands in keyctl command table. - - Move the package to version to 1.5. -- Update to 1.4-4 - - Make build guess at default libdirs and word size. - - Make program build depend on library in Makefile. - - Don't include $(DESTDIR) in MAN* macros. - - Remove NO_GLIBC_KEYSYS as it is obsolete. - - Have Makefile extract version info from specfile and version script. - - Provide RPM build rule in Makefile. - - Provide distclean rule in Makefile. - - Fix local linking and RPATH. - - Fix prototypes in manual pages (some char* should be void*). - - Rename the keyctl_security.3 manpage to keyctl_get_security.3. - -- Implement shlib package (libkeyutils1) -- Cleanup per Specfile Guidelines - -- Upgraded to 1.4 - - Fix the library naming wrt the version. - - Move the package to version to 1.4. - - Fix spelling mistakes in manpages. - - Add an index manpage for all the keyctl functions. - - Fix rpmlint warnings. -- fixed parallel make -- do not include empty rpaths - -- Upgraded to 1.3 - - Expose the kernel function to get a key's security context. - - Expose the kernel function to set a processes keyring onto its parent. - - Move libkeyutils library version to 1.3. - -- add baselibs.conf as a source -- enable parallel building - lightdm-gtk-greeter +- Update to version 2.0.8 + * General + + Migrated code and issues to GitHub + + Migrated translations to Transifex + + Added GitHub distcheck test on each commit + * Build changes + + Migrated from deprecated exo-csource to xdt-csource (xfce4-dev-tools) + + Dropped xdt-csource requirement from non-maintainer builds (GH: #53) + + Enabled Ayatana libindicator/libido backend (GH: #74, db#906026) + * Bugs fixed + + greeterbackground: Replaced deprecated instance private data API + + Allow building with newer versions of gettext + + Replace ungrammatical comma splice in 'Incorrect password' + message (lp#1810143) + + Use 'Large Text' instead of 'Large Font' (lp#1829070) + + Fixed broken indicators when upstart is unavailable + * Translation updates +- Updates from version 2.0.7 + * Remove mlockall to fix high memory pressure startup, including + on the Raspberry Pi. + * Translation Updates + +- Update to version 2.0.6: + * Multi seat support: Store state for each seat (lp#1641335). + * Updated translations. + -- adjust update-alternative usage to packaging policy - (see http://lists.opensuse.org/opensuse-packaging/2014-02/msg00024.html) - lightdm-gtk-greeter-branding-openSUSE +- Use Greybird Geeko GTK theme by default. Already default in Xfce + and maintained by openSUSE members. + mutt +- Add patch mutt-colon.patch for bsc#1181221 + CVE-2021-3181: mutt: recipient parsing memory leak + This patch combines three smaller commits + open-iscsi -- Updated to upstream version 2.1.3 as 2.1.3-suse, for bsc#1179908, - including: +- Updated to upstream version 2.1.3 as 2.1.3-suse, for bsc#1179908 + (which addresses CVE-2020-17437, CVE-2020-17438, CVE-2020-13987, + and CVE-2020-13988), changes include: permissions + * pcp: remove no longer needed / conflicting entries + (bsc#1171883, CVE-2020-8025) + +- Update to version 20181224: postfix -- Set lmdb to be the default db. -- Convert btree tables to lmdb too. Stop postfix befor converting from - bdb to lmdb -- This package is without bdb support. That's why convert must be done - without any suse release condition. - o remove patch postfix-no-btree.patch - o add set-default-db-type.patch - -- Set database type for address_verify_map and postscreen_cache_map - to lmdb (btree requires Berkeley DB) - o add postfix-no-btree.patch - -- Set default database type to lmdb and fix update_postmaps script - -- Use variable substition instead of sed to remove .db suffix and - substitute hash: for lmdb: in /etc/postfix/master.cf as well. - Check before substitution if there is something to do (to keep - rpmcheck happy). - -- Remove Berkeley DB dependency (JIRA#SLE-12191) - The pacakges postfix is build without Berkely DB support. - lmdb will be used instead of BDB. - The pacakges postfix-bdb is build with Berkely DB support. - o add patch for main.cf for postfix-bdb package - postfix-bdb-main.cf.patch - -- Update to 3.5.8 - * The Postfix SMTP client inserted into message headers longer - than $line_length_limit (default: 2048), causing all subsequent header - content to become message body content. - * The postscreen daemon did not save a copy of the - postscreen_dnsbl_reply_map lookup result. This has no effect when the - recommended texthash: look table is used, but it could result in stale - data with other lookup tables. - * After deleting a recipient with a Milter, the Postfix recipient - duplicate filter was not updated; the filter suppressed requests - to add the recipient back. - * Memory leak: the static: maps did not free their casefolding buffer. - * With "smtpd_tls_wrappermode = yes", the smtps service was waiting for a - TLS handshake, after processing an XCLIENT command. - * The smtp_sasl_mechanism_filter implementation ignored table lookup - errors, treating them as 'not found'. - * The code that looks for Delivered-To: headers ignored headers longer - than $line_length_limit (default: 2048). - -- Update to 3.5.7 - * Fixed random certificate verification failures with - "smtp_tls_connection_reuse = yes", because tlsproxy(8) was using - the wrong global TLS context for connections that use DANE or - non-DANE trust anchors. - -- Move ldap into an own sub-package like all other databases -- Move manual pages to correct sub-package - -- Use sysusers.d to create system accounts -- Remove wrong %config for systemd directory content - -- Use the correct signature file for source verification -- Rename postfix-3.5.6.tar.gz.sig to postfix-3.5.6.tar.gz.asc (to - prevent confusion, as the signature file from upstream with .sig - extension is incompatible with the build service) - -- Update to 3.5.6 with following fixes: - * Workaround for unexpected TLS interoperability problems when Postfix - runs on OS distributions with system-wide OpenSSL configurations. - * Memory leaks in the Postfix TLS library, the largest one - involving multiple kBytes per peer certificate. - -- Add source verification (add postfix.keyring) - -- Use systemd_ordering instead of systemd_require. -- Move /etc/postfix/system to /usr/lib/postfix/systemd [bsc#1173688] -- Drop /var/adm/SuSEconfig from %post, it does nothing. -- Rename postfix-SuSE to postfix-SUSE -- Delete postfix-SUSE/README.SuSE, company name spelled wrong, - completly outdated and not used. -- Delete postfix-SUSE/SPAMASSASSIN+POSTFIX.SuSE, company name - spelled wrong, outdated and not used. -- sysconfig.mail-postfix: Fix description of MAIL_CREATE_CONFIG, - SuSEconfig is gone since ages. -- update_chroot.systemd: Remove advice to run SuSEconfig. -- Remove rc.postfix, not used, outdated. -- mkpostfixcert: Remove advice to run SuSEconfig. - -- Update to 3.5.4: - * The connection_reuse attribute in smtp_tls_policy_maps always - resulted in an "invalid attribute name" error. - * SMTP over TLS connection reuse always failed for Postfix SMTP - client configurations that specify explicit trust anchors (remote - SMTP server certificates or public keys). - * The Postfix SMTP client's DANE implementation would always send - an SNI option with the name in a destination's MX record, even - if the MX record pointed to a CNAME record. MX records that - point to CNAME records are not conformant with RFC5321, and so - are rare. - Based on the DANE survey of ~2 million hosts it was found that - with the corrected SMTP client behavior, sending SNI with the - CNAME-expanded name, the SMTP server would not send a different - certificate. This fix should therefore be safe. - -- Update to 3.5.3: - * TLS handshake failure in the Postfix SMTP server during SNI - processing, after the server-side TLS engine sent a TLSv1.3 - HelloRetryRequest (HRR) to a remote SMTP client. - * The command "postfix tls deploy-server-cert" did not handle a - missing optional argument. This bug was introduced in Postfix - 3.1. - -- Update to 3.5.2: - * A TLS error for a database client caused a false 'lost connection' - error for an SMTP over TLS session in the same Postfix process. - This bug was introduced with Postfix 2.2. - * The same bug existed in the tlsproxy(8) daemon, where a TLS - error for one TLS session could cause a false 'lost connection' - error for a concurrent TLS session in the same process. This - bug was introduced with Postfix 2.8. - * The Postfix build now disables DANE support on Linux systems - with libc-musl such as Alpine, because libc-musl provides no - indication whether DNS responses are authentic. This broke DANE - support without a clear explanation. - * Due to implementation changes in the ICU library, some Postfix - daemons reported file access errrors (U_FILE_ACCESS_ERROR) after - chroot(). This was fixed by initializing the ICU library before - making the chroot() call. - * Minor code changes to silence a compiler that special-cases - string literals. - * Segfault (null pointer) in the tlsproxy(8) client role when the - server role was disabled. This typically happened on systems - that do not receive mail, after configuring connection reuse - for outbound SMTP over TLS. - * The date portion of the maillog_file_rotate_suffix default value - used the minute (%M) instead of the month (%m). - -- boo#1106004 fix incorrect locations for files in postfix-files - -- Dropped deprecated-RES_INSECURE1.patch to make DNSSEC-secured - lookups and DANE mail transport work again -- Update to 3.5.1: - * Support for the haproxy v2 protocol. The Postfix implementation - supports TCP over IPv4 and IPv6, as well as non-proxied - connections; the latter are typically used for heartbeat tests. - * Support to force-expire email messages. This introduces new - postsuper(1) command-line options to request expiration, and - additional information in mailq(1) or postqueue(1) output. - * The Postfix SMTP and LMTP client support a list of nexthop - destinations separated by comma or whitespace. These destinations - will be tried in the specified order. - * Incompatible changes: - * Logging: Postfix daemon processes now log the from= and to= - addresses in external (quoted) form in non-debug logging (info, - warning, etc.). This means that when an address localpart - contains spaces or other special characters, the localpart will - be quoted, for example: - from=<"name with spaces"@example.com> - Specify "info_log_address_format = internal" for backwards compatibility. - * Postfix now normalizes IP addresses received with XCLIENT, - XFORWARD, or with the HaProxy protocol, for consistency with - direct connections to Postfix. This may change the appearance - of logging, and the way that check_client_access will match - subnets of an IPv6 address. - -- Update to 3.4.10: - * Bug (introduced: Postfix 2.3): Postfix Milter client state - was not properly reset after one Milter in a multi-Milter - configuration failed during MAIL FROM, resulting in a Postfix - Milter client panic during the next MAIL FROM command in the - same SMTP session. - -- bsc#1162891 server:mail/postfix: cond_slp bug on TW after - moving /etc/services to /usr/etc/services - -- bsc#1160413 postfix fails with -fno-common - -- Update to 3.4.9: - * Bug (introduced: Postfix 3.1): smtp_dns_resolver_options were - broken while adding support for negative DNS response caching - in postscreen. Postfix was inadvertently changed to call - res_query() instead of res_search(). - * Bug (introduced: Postfix 2.5): Postfix ignored the CONNECT macro - overrides from a Milter application. Postfix now evaluates the - Milter macros for an SMTP CONNECT event after the Postfix-to-Milter - connection is negotiated. - * Bug (introduced: Postfix 3.0): sanitize (remote) server responses - before storing them in the verify database, to avoid Postfix - warnings about malformed UTF8. Found during code maintenance. - -- Update to 3.4.8: - * Fix for an Exim interoperability problem when postscreen after-220 - checks are enabled. Bug introduced in Postfix 3.4: the code - that detected "PIPELINING after BDAT" looked at the wrong - variable. The warning now says "BDAT without valid RCPT", and - the error is no longer treated as a command PIPELINING error, - thus allowing mail to be delivered. Meanwhile, Exim has been - fixed to stop sending BDAT commands when postscreen rejects all - RCPT commands. - * Usability bug, introduced in Postfix 3.4: the parser for - key/certificate chain files rejected inputs that contain an EC - PARAMETERS object. While this is technically correct (the - documentation says what types are allowed) this is surprising - behavior because the legacy cert/key parameters will accept - such inputs. For now, the parser skips object types that it - does not know about for usability, and logs a warning because - ignoring inputs is not kosher. - * Bug introduced in Postfix 2.8: don't gratuitously enable all - after-220 tests when only one such test is enabled. This made - selective tests impossible with 'good' clients. This will be - fixed in older Postfix versions at some later time. - release-notes-openSUSE +- 15.3.20210129 +- Initial packaged RN for Leap 15.3 +- Removed KDE4 and related qt4 libs from 15.3 (boo#1179613) +- Updated translations + rubygem-nokogiri +- add 000-CVE-2019-5477.patch (CVE-2019-5477, bsc#1146578) +- add 001-test-equality.patch (prereq of 002-CVE-2020-26247.patch) +- add 002-CVE-2020-26247.patch (CVE-2020-26247, bsc#1180507) + +- updated to version 1.8.5 (bsc#1156722) + [#]# Security Notes + [MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404 and CVE-2018-14567. Full details are available in [#1785](https://github.com/sparklemotion/nokogiri/issues/1785). Note that these patches are not yet (as of 2018-10-04) in an upstream release of libxml2. + [#]# Bug fixes + * [MRI] Fix regression in installation when building against system libraries, where some systems would not be able to find libxml2 or libxslt when present. (Regression introduced in v1.8.3.) [#1722] + * [JRuby] Fix node reparenting when the destination doc is empty. [#1773] + +- updated to version 1.8.4 + see installed CHANGELOG.md + [#] 1.8.4 / 2018-07-03 + [#]# Bug fixes + * [MRI] Fix memory leak when creating nodes with namespaces. (Introduced in v1.5.7) [#1771] + +- updated to version 1.8.3 + see installed CHANGELOG.md + [#] 1.8.3 / 2018-06-16 + [#]# Security Notes + [MRI] Behavior in libxml2 has been reverted which caused CVE-2018-8048 (loofah gem), CVE-2018-3740 (sanitize gem), and CVE-2018-3741 (rails-html-sanitizer gem). The commit in question is here: + > https://github.com/GNOME/libxml2/commit/960f0e2 + and more information is available about this commit and its impact here: + > https://github.com/flavorjones/loofah/issues/144 + This release simply reverts the libxml2 commit in question to protect users of Nokogiri's vendored libraries from similar vulnerabilities. + If you're offended by what happened here, I'd kindly ask that you comment on the upstream bug report here: + > https://bugzilla.gnome.org/show_bug.cgi?id=769760 + samba +- Update to 4.13.4 + * Work around special SMB2 IOCTL response behavior of NetApp Ontap + 7.3.7; (bso#14607); + * Temporary DFS share setup doesn't set case parameters in the same + way as a regular share definition does; (bso#14612); + * lib: Avoid declaring zero-length VLAs in various messaging functions; + (bso#14605); + * Do not create an empty DB when accessing a sam.ldb; (bso#14579); + * vfs_fruit may close wrong backend fd; (bso#14596); + * Temporary DFS share setup doesn't set case parameters in the same way + as a regular share definition does; (bso#14612); + * vfs_virusfilter: Allocate separate memory for config char*; (bso#14606); + * vfs_fruit may close wrong backend fd; (bso#14596); + * Work around special SMB2 IOCTL response behavior of NetApp Ontap 7.3.7; + (bso#14607); + * The cache directory for the user gencache should be created recursively; + (bso#14601); + * Be more flexible with repository names in CentOS 8 test environments; + (bso#14594); + +- Uninstalling samba-client: Failed to disable unit, cifs.service + does not exists; (bsc#1180388); + systemd-presets-branding-openSUSE +- Fix package description mention of 'systemd-presets-common-SUSE' + +- BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to + shortcut the build queues by allowing usage of systemd-mini + +- hylafax-timers added (boo#1115442) + +- Remove mdcheck_start.timer and mdmonitor-oneshot.timer. + The should have been in systemd-presents-common-SUSE. + +- Eanble new mdadm timers mdcheck_start.timer and mdmonitor-oneshot.timer + (bsc#1115407) + yast2-network +- Improved the NetworkManager wireless configuration writers adding + support for writing WPA-EAP and open WEP authentication modes. +- 4.3.42 + +- Fixes some usability issues (bsc#1177834): + - Disable "Edit" and "Delete" buttons when no interfaces + are detected. + - Disable the "Scan Network" button when the interface does not + exist. + yast2-trans +- Update to version 84.87.20210130.332fb904b7: + * New POT for text domain 'rear'. + * New POT for text domain 'network'. + * New POT for text domain 'autoinst'. + * New POT for text domain 'pkg-bindings'. + * New POT for text domain 'bootloader'. + * New POT for text domain 'network'. + * New POT for text domain 'network'. +