Packages changed: Mesa (17.2.3 -> 17.2.4) device-mapper java-1_8_0-openjdk (1.8.0.144 -> 1.8.0.151) libaccounts-glib (1.21 -> 1.23) libaccounts-qt5 (1.13 -> 1.15) libfabric libmbim libqmi lvm2 mercurial (4.3.1 -> 4.4) myspell-dictionaries (20170511 -> 20171102) orca perl-List-MoreUtils-XS python-cryptography (2.0.3 -> 2.1.1) python-matplotlib (2.0.2 -> 2.1.0) python-numpy python-pytz (2017.2 -> 2017.3) serd (0.22.0 -> 0.28.0) signon (8.57 -> 8.59) signon-plugin-oauth2 (0.20 -> 0.24) sord (0.14.0 -> 0.16.0) sratom (0.4.6 -> 0.6.0) === Details === ==== Mesa ==== Version update (17.2.3 -> 17.2.4) Subpackages: Mesa-dri-devel Mesa-libEGL-devel Mesa-libEGL1 Mesa-libGL-devel Mesa-libGL1 Mesa-libglapi0 Mesa-libva libgbm1 libvdpau_r300 libvdpau_r600 libvdpau_radeonsi libvulkan_radeon libwayland-egl1 libxatracker2 - update to 17.2.4 * Mesa Core includes a change to prevent KOTOR from breaking when in combination with the ATI fragment shader extension. * Additionally, NIR has also received a correction. * Mesa's state tracker has gotten a patch to avoid leaks in certain situations such as resizing a window. * Intel drivers have received fixes. The compiler has gotten a couple, while anv also received one. * i965 got a patch to avoid VA-API, Beignet and other contexts in the system to break when in combination with previous versions of Mesa 17.2.x. * AMD's compiler received fixes. `radv` has also received another couple, including one to avoid a hang due to overflow on huge textures. * Broadcom's vc4 has corrected a problem when compiling with Android's clang. * Clover compilation issue fixed (affecting a specific clang revision) * Fixed Vulkan's WSI memory leak in X11. ==== device-mapper ==== Subpackages: libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit - Re-add a strict requires on sanlock, fate#323203 ==== java-1_8_0-openjdk ==== Version update (1.8.0.144 -> 1.8.0.151) Subpackages: java-1_8_0-openjdk-headless - Added patch: * tzdb_dat.patch + Patch also the other place in jdk that loads the tzdb.dat file - Update to version jdk8u151 (icedtea 3.6.0) * Security fixes + S8165543: Better window framing + S8169026, CVE-2017-10274: Handle smartcard clean up better (bsc#1064071) + S8169966: Larger AWT menus + S8170218: Improved Font Metrics + S8171252: Improve exception checking + S8171261: Stability fixes for lcms + S8174109, CVE-2017-10281: Better queuing priorities (bsc#1064072) + S8174966, CVE-2017-10285: Unreferenced references (bsc#1064073) + S8175940: More certificate subject checking + S8176751, CVE-2017-10295: Better URL connections (bsc#1064075) + S8178794, CVE-2017-10388: Correct Kerberos ticket grants (bsc#1064086) + S8180024: Improve construction of objects during deserialization + S8180711, CVE-2017-10346: Better invokespecial checks (bsc#1064078) + S8181100, CVE-2017-10350: Better Base Exceptions (bsc#1064082) + S8181323, CVE-2017-10347: Better timezone processing (bsc#1064079) + S8181327, CVE-2017-10349: Better X processing (bsc#1064081) + S8181370, CVE-2017-10345: Better keystore handling (bsc#1064077) + S8181432, CVE-2017-10348: Better processing of unresolved permissions (bsc#1064080) + S8181597, CVE-2017-10357: Process Proxy presentation (bsc#1064085) + S8181612, CVE-2017-10355: More stable connection processing (bsc#1064083) + S8181692, CVE-2017-10356: Update storage implementations (bsc#1064084) + S8183028, CVE-2016-10165: Improve CMS header processing (bsc#1064069) + S8184682, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843: Upgrade compression library (bsc#1064070) * New features + PR3469: Alternative path to tzdb.dat + PR3483: Separate addition of nss.cfg and tz.properties into separate targets + PR3484: Move SystemTap support to its own target + PR3485: Support additional targets for the bootstrap build * Import of OpenJDK 8 u151 build 12 + S8029659: Keytool, print key algorithm of certificate or key entry + S8057810: New defaults for DSA keys in jarsigner and keytool + S8075484, PR3473, RH1490713: SocketInputStream.socketRead0 can hang even with soTimeout set + S8077670: sun/security/krb5/auto/MaxRetries.java may fail with BindException + S8087144: sun/security/krb5/auto/MaxRetries.java fails with Retry count is -1 less + S8153146: sun/security/krb5/auto/MaxRetries.java failed with timeout + S8157561: Ship the unlimited policy files in JDK Updates + S8158517: Minor optimizations to ISO10126PADDING + S8171319: keytool should print out warnings when reading or generating cert/cert req using weak algorithms + S8177569: keytool should not warn if signature algorithm used in cacerts is weak + S8177837: need to upgrade install tools + S8178714: PKIX validator nameConstraints check failing after change 8175940 + S8179423: 2 security tests started failing for JDK 1.6.0 u161 b05 + S8179564: Missing @bug for tests added with JDK-8165367 + S8181048: Refactor existing providers to refer to the same constants for default values for key length + S8182879: Add warnings to keytool when using JKS and JCEKS + S8184937: LCMS error 13: Couldn't link the profiles + S8185039: Incorrect GPL header causes RE script to miss swap to commercial header for licensee source bundle + S8185040: Incorrect GPL header causes RE script to miss swap to commercial header for licensee source bundle + S8185778: 8u151 L10n resource file update + S8185845: Add SecurityTools.java test library + S8186503: sun/security/tools/jarsigner/DefaultSigalg.java failed after backport to JDK 6/7/8 + S8186533: 8u151 L10n resource file update md20 + S8186674: Remove JDK-8174109 from CPU Aug 21 week builds * Backports + S8035496, PR3487: G1 ARM: missing remset entry noticed by VerifyAfterGC for vm/gc/concurrent/lp50yp10rp70mr30st0 + S8146086, PR3439, RH1478402: Publishing two webservices on same port fails with "java.net.BindException: Address already in use" + S8184673, PR3475, RH1487266: Fix compatibility issue in AlgorithmChecker for 3rd party JCE providers + S8185164, PR3438: GetOwnedMonitorInfo() returns incorrect owned monitor + S8187822, PR3478, RH1494230: C2 conditonal move optimization might create broken graph * Bug fixes + PR3479, RH1486025: ECC and NSS JVM crash + PR3486: Path to jvm.cfg is wrong in add-systemtap-boot + S8165852, PR3468: (fs) Mount point not found for a file which is present in overlayfs + S8188030, PR3459, RH1484079: AWT java apps fail to start when some minimal fonts are present * PPC port + S8145913, PR3466, RH1498309: PPC64: add Montgomery multiply intrinsic + S8168318, PR3466, RH1498320: PPC64: Use cmpldi instead of li/cmpld + S8170328, PR3466, RH1498321: PPC64: Use andis instead of lis/and + S8181810, PR3466, RH1498319: PPC64: Leverage extrdi for bitfield extract * AArch64 port + S8161190, PR3488: AArch64: Fix overflow in immediate cmp instruction + S8187224, PR3488: aarch64: some inconsistency between aarch64_ad.m4 and aarch64.ad * SystemTap + PR3467, RH1492139: Hotspot object_alloc tapset uses HeapWordSize incorrectly * Shenandoah + Add missing UseShenandoahGC checks to C2 + [backport] Add JVMTI notifications to Shenandoah GC pauses. + [backport] After Evac verification should run consistently + [backport] All definitions should start with Shenandoah* + [backport] Allocation latency tracing + [backport] Allow allocations in pinned regions + [backport] Assorted monitoring support fixes + [backport] Avoid Full STW GC on System.gc() + related fixes + [backport] BrooksPointer tracing overwhelms -Xlog:gc=trace + [backport] Cannot do more than 1000 Full GCs + [backport] Cap heap size for TestRegionSizeArgs test + [backport] Cleanup "dirty" mentions + [backport] Cleanup unused methods and statements + Trivial cleanup: removed unused field, etc. + [backport] Common pause marker to capture everything before/after pause + [backport] Consistent print_on and tty handling + [backport] "continuous" heuristics + [backport] Disable biased locking by default + [backport] Fix build error: avoid loops with empty bodies + [backport] Fix build error: switches over enums should take all enums + [backport] Fix build error: verifier liveness should not be implicitly casted to size_t + [backport] Fixed assertion failures when printing heap region to trace output + [backport] Fixed C calling convention of shenandoah_wb() on Windows + [backport] LotsOfCycles test always degrades to Full GC + [backport] Made ShenandoahPrinter debug only + [backport] Make sure different Verifier levels work + [backport] Make sure we have at least one memory pool per memory manager (JMX) + JMX double-counts heap used size + [backport] Mark heuristics diagnostic/experimental + [backport] Move Verifier "start" message under (gc,start) + [backport] On-demand commit as heap resizing strategy + [backport] Periodic GC + [backport] PhiNode::has_only_data_users() needs to apply to shenandoah barrier only + [backport] Pinning humongous regions should be allowed + [backport] Reclaimed humongous regions should count towards immediate garbage + [backport] Refactor region flags into finite state machine + [backport] Refactor ShConcThread dispatch + [backport] Refactor ShenandoahFreeSet + Fast-forward over humongous regions to keep "current" non-humongous + [backport] Refactor ShenandoahHeapLock + [backport] Refactor ShenandoahHeapRegionSet + [backport] Region (byte|word) shifts as the replacement for divisions + [backport] Rehash -XX:-UseTLAB in tests + Rehash allocation tests + [backport] Rename inline guards + [backport] Selectable humongous threshold + Humongous top() should be correct for iteration + [backport] Shortcut concurrent cycle when enough immediate garbage is reclaimed + [backport] Templatize and improve inlining of arraycopy and clone barriers. + [backport] TestRegionSampling test + [backport] TestSmallHeap test for Shenandoah + [backport] Uncommit heap regions after given delay + [backport] Underflow in adaptive free_threshold calculation + [backport] Unlock more GC-specific tests for Shenandoah + [backport] Update counters on slow-path more rarely + [backport] Verifier should avoid pushing on stack when walking objects past TAMS + [backport] Verifier should walk cset and humongous regions + [backport] Verify humongous regions liveness + [backport] Verify liveness data + Correct way to fix Windows call convention issue + Fix build error in release config. + Fixed Fixed message logging + Handle Java heap initialization and expansion failures + Make sure -verbose:gc, PrintGC, PrintGCDetails work consistently + Missing barriers on constant oops + acmp rework + cas fix + write barrier on constant oop fix + Missing UseShenandoahGC check in LibraryCallKit::inline_multiplyToLen() + Missing UseShenandoahGC check to C2 + OOME in SurrogateLockerThread deadlocks the GC cycle + Properly unlock ShenandoahVerify + Remove unused memory_for, fixing the build + Remove useless code following acmp rework + Revert accidental G1 closure rename + Test bug: test library and flags in TestHeapAlloc + UnlockDiagnosticVMOptions flag is needed for ShenandoahVerify + Write barrier pin and expand cleanup - Removed patches: * alternative-tzdb_dat.patch * java-1_8_0-openjdk-linuxfilestore.patch + Integrated upstream ==== libaccounts-glib ==== Version update (1.21 -> 1.23) - spec file * fix source url - Update to 1.23 * Add a couple of methods related to .application files: ag_manager_list_services_by_application() and ag_application_supports_service(). - Update to 1.22 * Lib: migrate to GTask * Build: add support for lcov 1.12 ==== libaccounts-qt5 ==== Version update (1.13 -> 1.15) - spec file * fix source url - update to 1.15 * Lib: add Manager::listServices() by application * Drop support for Qt4 - update to 1.14 * Fix clazy warnings * Use gboolean instead of bool * Fix memory leaks found by valgrind - remove unneeded package libaccounts-qt5-tools, there is no need for packaging not working tests ==== libfabric ==== - Fix github issue #3393: Add 0001-prov-psm-Eliminate-psm2-compat-library-delay-with-hf.patch ==== libmbim ==== Subpackages: libmbim-glib4 mbimcli-bash-completion - Enable tests - Do not rely on env for python during build - Run spec-cleaner ==== libqmi ==== Subpackages: libqmi-glib5 libqmi-tools - Do not rely on env for python during build - Run spec-cleaner ==== lvm2 ==== Subpackages: liblvm2app2_2 liblvm2cmd2_02 - Re-add a strict requires on sanlock, fate#323203 ==== mercurial ==== Version update (4.3.1 -> 4.4) Subpackages: mercurial-lang - Mercurial 4.4 Notable changes Control whitespace settings for annotation on hgweb * /annotate URLs on hgweb now accept query string arguments to influence how whitespace changes impact results. * The arguments "ignorews," "ignorewsamount," "ignorewseol," and "ignoreblanklines" now have the same meaning as their [annotate] config section counterparts. Any provided setting overrides the server default. * HTML checkboxes have been added to the paper and gitweb themes to expose current whitespace settings and to easily modify the current view. Fast, heuristic copy-tracing A new fast heuristic algorithm for copytracing which assumes that the files moves are either: 1. renames in the same directory 2. moves in other directories with same names You can use this algorithm by setting 'experimental.copytrace=heuristics'. This setting performs full copytracing if both source and destination branches contains non-public changesets only. Other changes * Estimated time is more accurate with non-linear progress * "hg status -v" can now show unfinished state. For example, when in an unfinished rebase state, "hg status -v" might show: [#] The repository is in an unfinished *rebase* state. [#] No unresolved merge conflicts. [#] To continue: hg rebase --continue [#] To abort: hg rebase --abort * Added '--ignore-space-at-eol' diff option to ignore whitespace differences at line endings. * show: use consistent node length in views * show: decrease minimum displayed hash length from 5 to 4 * A new uncommit extension which provides 'hg uncommit' using which one can uncommit part or all of the changeset. This command undoes the effect of a local commit, returning the affected files to their uncommitted state. * 'hg clone --uncompressed' uses clone bundles when possible * 'hg annotate --skip' now prints a '*' on lines with skipped revisions * New 'commands.update.check' feature to adjust constraints on when 'hg update' will allow updates with a dirty working copy. * Add an experimental -L/--line-range FILE,FROMLINE:TOLINE option to 'hg log' command to follow the history of files by line range. In combination with -p/--patch option, only diff hunks within specified line range will be displayed. Feedback, especially on UX aspects, is welcome. * Print warning when fsmonitor isn't being used on a large repository Read rest of the changelog at https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.4_.282017-11-01.29 - Mercurial 4.3.3 * Prevent crashes when clearing progress bar. (issue5684) * rebase: move bookmarks with --keep (issue5682) - Mercurial 4.3.2 * restore compatibility with older versions of Python 2.7 by not using a bytearray with struct.unpack_from() * restore mingw compatibility for setup.py * hgwebdir: read 'web.template' untrusted (plugs potential security issue) * repair: preserve phase when not using generaldelta (issue5678) * ssh: fix flakey ssh errors on BSD systems * restore error handling behavior around certain I/O errors; the regressed behavior could result in transactions not being properly rolled back if stdio handles encountered errors (issue5658) * templatekw: choose {latesttag} by len(changes), not date (issue5659) * record: fix revert -i for lines without newline (issue5651) * mq: create non-lossy patches, also with custom global diff configuration - Fixed README file name (now it's README.rst) ==== myspell-dictionaries ==== Version update (20170511 -> 20171102) Subpackages: myspell-cs_CZ myspell-da_DK myspell-de myspell-de_DE myspell-el_GR myspell-en myspell-en_GB myspell-en_US myspell-es myspell-es_ES myspell-fr_FR myspell-hu_HU myspell-it_IT myspell-lightproof-en myspell-lightproof-hu_HU myspell-lightproof-pt_BR myspell-lightproof-ru_RU myspell-pl_PL myspell-pt_BR myspell-ru_RU - Version update to git state 20171102: * Albanian dictionary * Udates all around the place Spanish/English/Swedish/... ==== orca ==== Subpackages: orca-lang - Explicitly require python3 - Small cleanup with spec-clener ==== perl-List-MoreUtils-XS ==== - move license files from %license to %doc to fix FTBFS on <= SLE_12_SP2 ==== python-cryptography ==== Version update (2.0.3 -> 2.1.1) Subpackages: python2-cryptography python3-cryptography - fix BuildRequires conditions for python3 - update to 2.1.1 ==== python-matplotlib ==== Version update (2.0.2 -> 2.1.0) Subpackages: python3-matplotlib python3-matplotlib-cairo python3-matplotlib-gtk3 python3-matplotlib-tk - Update to version 2.1.0 + New features * String categorical values * Interactive JS widgets for animation * Enhancements to polar plot * Figure class now has subplots method * Metadata savefig keyword argument * Busy Cursor * PolygonSelector * Added matplotlib.ticker.PercentFormatter * Reproducible PS, PDF and SVG output * Orthographic projection for mplot3d * voxels function for mplot3d + Improvements * Add capstyle and joinstyle attributes to Collection * CheckButtons widget get_status function * Add fill_bar argument to AnchoredSizeBar * Annotation can use a default arrow style * Barbs and Quiver Support Dates * Hexbin default line color * Figure.legend() can be called without arguments * Multiple legend keys for legend entries * New parameter clear for :func:`~matplotlib.pyplot.figure` * Specify minimum value to format as scalar for LogFormatterMathtext * New quiverkey angle keyword argument * Colormap reversed method * Artist.setp (and pyplot.setp) accept a file argument * streamplot streamline generation more configurable * Axis.set_tick_params now responds to rotation * Shading in 3D bar plots * New which Parameter for autofmt_xdate * New Figure Parameter for subplot2grid * Interpolation in fill_betweenx * New keyword argument sep for EngFormatter * Extend MATPLOTLIBRC behavior * density kwarg to hist + Internals * New TransformedPatchPath caching object * Abstract base class for movie writers * Stricter validation of line style rcParams + Performance * Path simplification updates * Implement intersects_bbox in c++\ - Remove upstream-included patches: * 0001-Fix-include-path-for-system-libqhull.patch * 0001-Allow-divmod-to-be-overridden-by-num.patch * 166a14473272_Fix-contour-colour-level-determination.patch * 97e170d2fc2c_Pass-integers-to-np_linspace.patch ==== python-numpy ==== Subpackages: python2-numpy python3-numpy - Fix Requires: of devel package for openblas. ==== python-pytz ==== Version update (2017.2 -> 2017.3) - updated system_zoneinfo.patch - update to version 2017.3: * PYTZ_TZDATADIR environment variable override of database location * Allow pickles from Python2 to be unpickled with Python3 * Remove unmaintained CHANGES.txt * Test with Python 3.6 * Detect compiled tzfiles by sniffing magic * Squashed 'tz/' changes from f8ebe3a64..e6ff702de * Be explicit about supported Python versions * Fixed README.txt to not issue warnings. ==== serd ==== Version update (0.22.0 -> 0.28.0) - Update to version 0.28.0: * Add support for reading from a user provided callback * Add serd_node_from_substring() * Fix strict parsing of abolute URI schemes * Fix parsing of hex escapes in file URIs (thanks Johannes Mueller) * Gracefully handle applications that write corrupt UTF-8 * Fix hangs when reading corrupt UTF-8 * Add support for TriG and NQuads * Add support for braindead SPARQL PREFIX and BASE directives * Add serd_node_new_relative_uri() * Fix construction and comparison of URIs with UTF-8 characters * Report I/O errors with message and return appropriate status code * Report missing statement separator errors * Fix potential out of bounds read * Fix unaligned memory access, undefined behaviour which breaks on ARM * Fix documentation generation * Update serdi man page - Use python3 - Run spec-cleaner - Rename devel subpackage - Run tests during build ==== signon ==== Version update (8.57 -> 8.59) Subpackages: libsignon-qt5-1 signon-plugins signond signond-libs - spec file * fix source url - update to version 8.59 + lib: add more defines for SignOnUi password dialog + signond: inform SignOnUI when a session finishes + RemotePluginProcess: don't use a thread for cancel + Signond: fix a couple of textual issues + signond: get rid of loadedPluginMethods() method + plugins: don't use custom proxy implementation on Qt 5.5 and later + signond: don't store duplicate data in SignonAuthSession + signond: add configure option to enable backup + signond: move backup implementation into separate class + Remove Qt4 support + Lib: hide debug output by default - update to version 8.58 + lib: add a couple of error codes for SignOn UI + lib: reset the DBus proxy when registration failed + signond: on identity update, don't reset missing fields + signond: don't bypass the ACL if the identity has no owner + signond: pass client AppId to SignOnUi + signond: pass the client PID to SignOnUI - updated patches + 0001_Multilib.patch - removed patches now included upstream + fix-incomplete-type.patch ==== signon-plugin-oauth2 ==== Version update (0.20 -> 0.24) - update to version 0.24 * OAuth2: allow token URL to be on a different host * OAuth2: accept replies carrying text/html content type - update to version 0.23 * OAuth: propagate network and SSL errors from SignOnUI * OAuth2: add an option to disable "state" parameter * Base: disconnect from reply on SSL errors - update to version 0.22 * OAuth2: add the list of granted permissions to the reply * OAuth2: use "state" parameter to check for CSRF * Build with QT 5 only * OAuth2: Use QUrlQuery to parse callback fragment * OAuth2: handle errors occurring when refreshing a token - update to version 0.21 * OAuth2: implement a fallback mechanism when parsing replies * OAuth 1.0a and 2.0: allow forcing a new token * Delay instantiation of QNetworkAccessManager - updated patches * 0001_Multilib.patch ==== sord ==== Version update (0.14.0 -> 0.16.0) - Update to version 0.16.0: * Fix construction and comparison of URIs with UTF-8 characters * Fix documentation generation * Return error from sord_inserter_write_statement() if a node can not be written (e.g. undefined prefix) * Make sord_node_get_counted return byte count, and clarify documentation * Safely return NULL from sord_iter_get() for end iterators * Add sord_node_get_string_measured() to get both byte and character counts * sord_validate: Do proper numeric comparison for propery bounds checking * sord_validate: Tolerate xsd:decimal literals for double and float properties if literals match pattern - Use python3 - Rename devel subpackage - Run tests during building ==== sratom ==== Version update (0.4.6 -> 0.6.0) - Update to version 0.6.0: * Add sratom_set_env() for setting prefixes * Fix padding of constructed vectors (thanks Hanspeter Portner) * Support round-trip serialisation of relative paths * Support sequences with beat time stamps * Fix warnings when building with ISO C++ compilers * Upgrade to waf 1.8.14 - Run spec-cleaner - Use python3 - Run tests during build