Packages changed: glibc (2.29 -> 2.30) kernel-source (5.2.14 -> 5.3.1) lttng-ust (2.10.2 -> 2.10.5) rebootmgr (0.18 -> 0.20) rook (1.1.0+git0.g2f9db0e1 -> 1.1.1+git0.g9a2641a6) sysvinit (2.95 -> 2.96) tcpd transactional-update (2.16 -> 2.17) === Details === ==== glibc ==== Version update (2.29 -> 2.30) Subpackages: glibc-locale glibc-locale-base - Package gconv-modules.cache as %ghost - Regenerate it also in the %post of glibc-local-base- - move mo files to glibc-locale as that's where all the other informations for those locales are. glibc-locale-base only has English anyways. - riscv-vfork.patch: Fix RISC-V vfork build with Linux 5.3 kernel headers - Remove NoSource tags (bsc#994835) - pwdutils is long gone and replaced by shadow - Update to glibc 2.30 * Unicode 12.1.0 Support * The dynamic linker accepts the --preload argument to preload shared objects * The twalk_r function has been added * On Linux, the getdents64, gettid, and tgkill functions have been added * Minguo (Republic of China) calendar support has been added * The entry for the new Japanese era has been added * Memory allocation functions malloc, calloc, realloc, reallocarray, valloc, pvalloc, memalign, and posix_memalign fail now with total object size larger than PTRDIFF_MAX * The dynamic linker no longer refuses to load objects which reference versioned symbols whose implementation has moved to a different soname since the object has been linked * Add new POSIX-proposed pthread_cond_clockwait, pthread_mutex_clocklock, pthread_rwlock_clockrdlock, pthread_rwlock_clockwrlock and sem_clockwait functions * On AArch64 the GNU IFUNC resolver call ABI changed * The copy_file_range function fails with ENOSYS if the kernel does not support the system call of the same name * The functions clock_gettime, clock_getres, clock_settime, clock_getcpuclockid, clock_nanosleep were removed from the librt library for new applications (on architectures which had them) * The obsolete and never-implemented XSI STREAMS header files and have been removed * Support for the "inet6" option in /etc/resolv.conf and the RES_USE_INET6 resolver flag (deprecated in glibc 2.25) have been removed * The obsolete RES_INSECURE1 and RES_INSECURE2 option flags for the DNS stub resolver have been removed from * With --enable-bind-now, installed programs are now linked with the BIND_NOW flag. * On 32-bit Arm, support for the port-based I/O emulation and the header have been removed * The Linux-specific header and the sysctl function have been deprecated and will be removed from a future version of glibc * CVE-2019-7309: x86-64 memcmp used signed Jcc instructions to check size * CVE-2019-9169: Attempted case-insensitive regular-expression match via proceed_next_node in posix/regexec.c leads to heap-based buffer over-read - pthread-rwlock-trylock-stalls.patch, arm-systemtap-probe-constraint.patch, pthread-mutex-barrier.patch, fork-handler-lock.patch, pthread-join-probe.patch, riscv-clone-unwind.patch, add-new-Fortran-vector-math-header-file.patch, regex-read-overrun.patch, japanese-era-name-may-2019.patch, dl-show-auxv.patch, s390-vx-vxe-hwcap.patch, taisho-era-string.patch, malloc-tracing-hooks.patch, pldd-inf-loop.patch, malloc-large-bin-corruption-check.patch, wfile-sync-crash.patch, malloc-tests-warnings.patch, fnmatch-collating-elements.patch, iconv-reset-input-buffer.patch: Removed - malloc-info-whitespace.patch: Remove unwanted leading whitespace in malloc_info (BZ #24867) - Move /var/lib/misc/Makefile to /usr/share/misc/Makefile.makedb (bsc#1138726) ==== kernel-source ==== Version update (5.2.14 -> 5.3.1) Subpackages: kernel-debug kernel-default - Linux 5.3.1 (bnc#1012628). - media: technisat-usb2: break out of loop at end of buffer (bnc#1012628). - floppy: fix usercopy direction (bnc#1012628). - phy: qcom-qmp: Correct ready status, again (bnc#1012628). - ovl: fix regression caused by overlapping layers detection (bnc#1012628). - Revert "arm64: Remove unnecessary ISBs from set_{pte,pmd,pud}" (bnc#1012628). - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds (bnc#1012628). - tty/serial: atmel: reschedule TX after RX was started (bnc#1012628). - serial: sprd: correct the wrong sequence of arguments (bnc#1012628). - firmware: google: check if size is valid when decoding VPD data (bnc#1012628). - Documentation: sphinx: Add missing comma to list of strings (bnc#1012628). - KVM: coalesced_mmio: add bounds checking (bnc#1012628). - net: stmmac: Hold rtnl lock in suspend/resume callbacks (bnc#1012628). - net: dsa: Fix load order between DSA drivers and taggers (bnc#1012628). - xen-netfront: do not assume sk_buff_head list is empty in error handling (bnc#1012628). - udp: correct reuseport selection with connected sockets (bnc#1012628). - net_sched: let qdisc_put() accept NULL pointer (bnc#1012628). - net/sched: fix race between deactivation and dequeue for NOLOCK qdisc (bnc#1012628). - ip6_gre: fix a dst leak in ip6erspan_tunnel_xmit (bnc#1012628). - phy: renesas: rcar-gen3-usb2: Disable clearing VBUS in over-current (bnc#1012628). - media: tm6000: double free if usb disconnect while streaming (bnc#1012628). - USB: usbcore: Fix slab-out-of-bounds bug during device reset (bnc#1012628). - commit f187578 - Update config files. Disable CONFIG_ARM_SMMU_DISABLE_BYPASS_BY_DEFAULT. Not all drivers are ready for this yet, so enabling this config option causes regressions. See bsc#1150577 for an example. - commit f759adc - Update to 5.3 final - Eliminated 3 patches - Refresh configs - NF_CONNTRACK_SLP is gone - commit 6baef36 - Btrfs: fix unwritten extent buffers and hangs on future writeback attempts (btrfs hangup). - commit 7f85414 ==== lttng-ust ==== Version update (2.10.2 -> 2.10.5) - Update to version 2.10.5: * New tracef() instrumentation facility. Excerpt from the lttng-ust(3) man page. * Perf PMU counters support from user-space on x86. * Library base address dump is now stable (thanks to Mentor for their contribution). * fixes boo#1149704. ==== rebootmgr ==== Version update (0.18 -> 0.20) - Fix %config for backward compatibility - Update to version 0.20 - add support to write changes back to /etc/rebootmgr.conf - Preserve /etc/rebootmgr.conf if modified - Update to version 0.19 - use libeconf for /usr/etc move ==== rook ==== Version update (1.1.0+git0.g2f9db0e1 -> 1.1.1+git0.g9a2641a6) - Fix 2 improper RPM spec variable references in specfile - Use lightweight git tags when determining Rook version from source in tarball script (bsc#1151909) + Build should now be tagged appropriately as version 1.1.1.0 instead of 1.1.0.x - Override some Rook defaults with linker flags at build time: + CSI image -> SUSE image + FlexVolume dir (for Kubic) - Add patches for: + updating CSI image to a dummy value later changed at linker time + updating CSI template paths to the ones installed by rook-k8s-manifests + update the FlexVolume dir path to be compatible with Kubic - Remove previously applied SUSE-specific changes that are now taken care of by the above patches - Add patch: csi-dummy-images.patch - Add patch: csi-template-paths.patch - Add patch: flexvolume-dir.patch - rook-k8s-yaml: Fix YAML indentation of cephcsi image value (bsc#1152008) - Update Rook to match upstream version v1.1.1 (bsc#1151909) + Disable the flex driver by default in new clusters + MDB controller to use namespace for checking ceph status + CSI liveness container socket file + Add list of unusable directories paths + Remove helm incompatible chars from values.yaml + Fail NFS-ganesha if CephFS is not configured + Make lifecycle hook chown less verbose for OSDs + Configure LVM settings for rhel8 base image + Make kubelet path configurable in operator for csi (#392 + OSD pods should always use hostname for node selector + Deactivate device from lvm when OSD pods are shutting down + Add CephNFS to OLM's CSV + Tolerations for drain detection canaries + Enable ceph-volume debug logs + Add documentation for CSI upgrades from v1.0 (#386 + Add a new skipUpgradeChecks property to allow forcing upgrades + Include CSI image in helm chart values (#385 + Use HTTP port if SSL is disabled + Enable SSL for dashboard by default + Enable msgr2 properly during upgrades + Nautilus v14.2.4 is the default Ceph image + Ensure the ceph-csi secret exists on upgrade + Disable the min PG warning if the pg_autoscaler is enabled + Disable the warning for bluestore warn on legacy statfs - add SUSE-specific changes to manifests: + uncomment ROOK_CSI_CEPH_IMAGE var + set FlexVolume dir path for Kubic + add ROOK_CSI_*_TEMPLATE_PATH configs ==== sysvinit ==== Version update (2.95 -> 2.96) - Update to sysvinit 2.96 * Added -z command line paramter to pidof which tells pidof to try to find processes in uninterruptable (D) or zombie (Z) states. This can cause pidof to hang, but produces a more complete process list. * Reformatted init code to make if/while logic more clear. * Make sure src/Makefile cleans up all executable files when parent Makefile calls "make clean". - Update to killproc 2.23 * killproc has its upstream at https://github.com/bitstreamout/killproc * Use new system call statx(2) to replace old stat(2)/lstat(2) - Remove patches now upstream: * killproc-2.18-open_flags.dif * killproc-2.21.dif * killproc-sysmacros.patch * killproc-mntinf-optional.patch ==== tcpd ==== - Add tcp_wrappers_7.6-ipv6.fix.fix3.diff in order to fix boo#1149708. ==== transactional-update ==== Version update (2.16 -> 2.17) Subpackages: transactional-update-zypp-config - Update to version 2.17 - Provide network in shell on systems where resolv.conf is pointing to /run directly [boo#1151081] - Print new snapshot number at the end - Always mount /root subvolume when using shell command to preserve history