Packages changed:
  MozillaFirefox (47.0.1 -> 48.0)
  MozillaThunderbird
  NetworkManager-openvpn
  bluedevil5 (5.7.2 -> 5.7.3)
  breeze (5.7.2 -> 5.7.3)
  breeze-gtk (5.7.2 -> 5.7.3)
  breeze4-style (5.7.2 -> 5.7.3)
  bundle-lang-common
  bundle-lang-gnome
  bundle-lang-kde
  curl (7.49.1 -> 7.50.1)
  dcraw (9.26.0 -> 9.27.0)
  evolution (3.20.4 -> 3.20.5)
  evolution-data-server (3.20.4 -> 3.20.5)
  evolution-ews (3.20.4 -> 3.20.5)
  fcitx
  gfxboot (4.5.13 -> 4.5.14)
  gnome-tweak-tool
  grsync
  hdparm
  installation-images-openSUSE (14.264 -> 14.266)
  kactivitymanagerd (5.7.2 -> 5.7.3)
  kcm_sddm (5.7.2 -> 5.7.3)
  kde-cli-tools5 (5.7.2 -> 5.7.3)
  kde-gtk-config5 (5.7.2 -> 5.7.3)
  kde-user-manager (5.7.2 -> 5.7.3)
  kexec-tools (2.0.12 -> 2.0.13)
  khotkeys5 (5.7.2 -> 5.7.3)
  kinfocenter5 (5.7.2 -> 5.7.3)
  kmenuedit5 (5.7.2 -> 5.7.3)
  kscreen5 (5.7.2 -> 5.7.3)
  kscreenlocker (5.7.2 -> 5.7.3)
  ksshaskpass5 (5.7.2 -> 5.7.3)
  ksysguard5 (5.7.2 -> 5.7.3)
  kwin5 (5.7.2 -> 5.7.3)
  libe-book
  libkdecoration2 (5.7.2 -> 5.7.3)
  libkscreen2 (5.7.2 -> 5.7.3)
  libksysguard5 (5.7.2 -> 5.7.3)
  libmspub
  libpagemaker
  milou5 (5.7.2 -> 5.7.3)
  mozilla-nss (3.23 -> 3.24)
  nghttp2 (1.12.0 -> 1.13.0)
  oxygen5 (5.7.2 -> 5.7.3)
  plasma-nm5 (5.7.2 -> 5.7.3)
  plasma5-addons (5.7.2 -> 5.7.3)
  plasma5-desktop (5.7.2 -> 5.7.3)
  plasma5-integration (5.7.2 -> 5.7.3)
  plasma5-openSUSE
  plasma5-pa (5.7.2 -> 5.7.3)
  plasma5-workspace (5.7.2 -> 5.7.3)
  polkit-kde-agent-5 (5.7.2 -> 5.7.3)
  powerdevil5 (5.7.2 -> 5.7.3)
  python-gtksourceview
  python-ldap (2.4.25 -> 2.4.27)
  qemu
  qemu-linux-user
  rubygem-gem2rpm
  skype4pidgin (1.1 -> 1.2.1)
  systemsettings5 (5.7.2 -> 5.7.3)
  tidy
  ufraw
  xfce4-terminal (0.6.3 -> 0.6.90)
  yast2-firstboot (3.1.14 -> 3.1.15)

=== Details ===

==== MozillaFirefox ====
Version update (47.0.1 -> 48.0)
Subpackages: MozillaFirefox-translations-common

- Fix for possible buffer overrun (bsc#990856)
  CVE-2016-6354 (bmo#1292534)
  [mozilla-flex_buffer_overrun.patch]
- Update mozilla-gtk3_20.patch to latest version from Fedora.
- update to Firefox 48.0 (boo#991809)
  * requires NSS 3.24
  * Process separation (e10s) is enabled for some of you
  * Add-ons that have not been verified and signed by Mozilla will not load
  * WebRTC embetterments
  * The media parser has been redeveloped using the Rust programming
    language
  * better Canvas performance with speedy Skia support
  security fixes:
  * MFSA 2016-62/CVE-2016-2835/CVE-2016-2836
    Miscellaneous memory safety hazards
  * MFSA 2016-63/CVE-2016-2830 (bmo#1255270)
    Favicon network connection can persist when page is closed
  * MFSA 2016-64/CVE-2016-2838 (bmo#1279814)
    Buffer overflow rendering SVG with bidirectional content
  * MFSA 2016-65/CVE-2016-2839 (bmo#1275339)
    Cairo rendering crash due to memory allocation issue with FFmpeg 0.10
  * MFSA 2016-66/CVE-2016-5251 (bmo#1255570)
    Location bar spoofing via data URLs with malformed/invalid mediatypes
  * MFSA 2016-67/CVE-2016-5252 (bmo#1268854)
    Stack underflow during 2D graphics rendering
  * MFSA 2016-68/CVE-2016-0718 (bmo#1236923)
    Out-of-bounds read during XML parsing in Expat library
  * MFSA 2016-69/CVE-2016-5253 (bmo#1246944)
    Arbitrary file manipulation by local user through Mozilla updater
    and callback application path parameter (Windows-only)
  * MFSA 2016-70/CVE-2016-5254 (bmo#1266963)
    Use-after-free when using alt key and toplevel menus
  * MFSA 2016-71/CVE-2016-5255 (bmo#1212356)
    Crash in incremental garbage collection in JavaScript
  * MFSA 2016-72/CVE-2016-5258 (bmo#1279146)
    Use-after-free in DTLS during WebRTC session shutdown
  * MFSA 2016-73/CVE-2016-5259 (bmo#1282992)
    Use-after-free in service workers with nested sync events
  * MFSA 2016-74/CVE-2016-5260 (bmo#1280294)
    Form input type change from password to text can store plain
    text password in session restore file
  * MFSA 2016-75/CVE-2016-5261 (bmo#1287266)
    Integer overflow in WebSockets during data buffering
  * MFSA 2016-76/CVE-2016-5262 (bmo#1277475)
    Scripts on marquee tag can execute in sandboxed iframes
  * MFSA 2016-77/CVE-2016-2837 (bmo#1274637)
    Buffer overflow in ClearKey Content Decryption Module (CDM)
    during video playback
  * MFSA 2016-78/CVE-2016-5263 (bmo#1276897)
    Type confusion in display transformation
  * MFSA 2016-79/CVE-2016-5264 (bmo#1286183)
    Use-after-free when applying SVG effects
  * MFSA 2016-80/CVE-2016-5265 (bmo#1278013)
    Same-origin policy violation using local HTML file and saved shortcut file
  * MFSA 2016-81/CVE-2016-5266 (bmo#1226977)
    Information disclosure and local file manipulation through drag and drop
  * MFSA 2016-82/CVE-2016-5267 (bmo#1284372)
    Addressbar spoofing with right-to-left characters on Firefox for Android
    (Android only)
  * MFSA 2016-83/CVE-2016-5268 (bmo#1253673)
    Spoofing attack through text injection into internal error pages
  * MFSA 2016-84/CVE-2016-5250 (bmo#1254688)
    Information disclosure through Resource Timing API during page navigation
- removed obsolete mozilla-gcc6.patch
- Update description and screenshots in appdata.xml file.

==== MozillaThunderbird ====
Subpackages: MozillaThunderbird-translations-common

- Fix for possible buffer overrun (bsc#990856)
  CVE-2016-6354 (bmo#1292534)
  [mozilla-flex_buffer_overrun.patch]

==== NetworkManager-openvpn ====
Subpackages: NetworkManager-openvpn-gnome

- Update to GNOME 3.20 Fate#318572

==== bluedevil5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== breeze ====
Version update (5.7.2 -> 5.7.3)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-wallpapers

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== breeze-gtk ====
Version update (5.7.2 -> 5.7.3)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== breeze4-style ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== bundle-lang-common ====
Subpackages: bundle-lang-common-cs bundle-lang-common-da bundle-lang-common-de bundle-lang-common-el bundle-lang-common-en bundle-lang-common-es bundle-lang-common-fr bundle-lang-common-hu bundle-lang-common-it bundle-lang-common-ja bundle-lang-common-pl bundle-lang-common-pt bundle-lang-common-ru bundle-lang-common-zh

- Update package list.

==== bundle-lang-gnome ====
Subpackages: bundle-lang-gnome-cs bundle-lang-gnome-da bundle-lang-gnome-de bundle-lang-gnome-el bundle-lang-gnome-en bundle-lang-gnome-es bundle-lang-gnome-fr bundle-lang-gnome-hu bundle-lang-gnome-it bundle-lang-gnome-ja bundle-lang-gnome-pl bundle-lang-gnome-pt bundle-lang-gnome-ru bundle-lang-gnome-zh

- Update package list.

==== bundle-lang-kde ====
Subpackages: bundle-lang-kde-cs bundle-lang-kde-da bundle-lang-kde-de bundle-lang-kde-el bundle-lang-kde-en bundle-lang-kde-es bundle-lang-kde-fr bundle-lang-kde-hu bundle-lang-kde-it bundle-lang-kde-ja bundle-lang-kde-pl bundle-lang-kde-pt bundle-lang-kde-ru bundle-lang-kde-zh

- Update package list.

==== curl ====
Version update (7.49.1 -> 7.50.1)
Subpackages: libcurl-devel libcurl4

- update to 7.50.1
  Bugfixes:
  * TLS: switch off SSL session id when client cert is used
  * TLS: only reuse connections with the same client cert
  * curl_multi_cleanup: clear connection pointer for easy handles
  * include the CURLINFO_HTTP_VERSION man page into the release tarball
  * include the http2-server.pl script in the release tarball
  * test558: fix test by stripping file paths from FD lines
  * spnego: Corrected miss-placed * in Curl_auth_spnego_cleanup() declaration
  * tests: Fix for http/2 feature
  * cmake: Fix for schannel support
  * curl.h: make public types void * again
  * win32: fix a potential memory leak in Curl_load_library
  * travis: fix OSX build by re-installing libtool
  * mbedtls: Fix debug function name
- removed 0001-tests-distribute-the-http2-server.pl-script-too.patch
- update to 7.50.0
  Changes:
  * http: add CURLINFO_HTTP_VERSION and %{http_version}
  Bugfixes:
  * openssl: fix build with OPENSSL_NO_COMP
  * cmake: Added missing mbedTLS support
  * URL parser: allow URLs to use one, two or three slashes
  * curl: fix -q [regression]
  * openssl: Use correct buffer sizes for error messages
  * curl: fix SIGSEGV while parsing URL with too many globs
  * vtls: fix ssl session cache race condition
  * http: Fix HTTP/2 connection reuse [regression]
  * checksrc: Add LoadLibrary to the banned functions list
  * configure: occasional ignorance of --enable-symbol-hiding with GCC
  * http2: test17xx are the first real HTTP/2 tests
  * resolve: add support for IPv6 DNS64/NAT64 Networks on OS X + iOS
  * curl_multi_socket_action.3: rewording
  * CURLOPT_POSTFIELDS.3: Clarify what happens when set empty
  * cmake: Fix build with winldap
  * openssl: fix cert check with non-DNS name fields present
  * curl.1: mention the units for the progress meter
  * openssl: use more 'const' to fix build warnings with 1.1.0 branch
  * cmake: now using BUILD_TESTING=ON/OFF
  * vtls: Only call add/getsession if session id is enabled
  * headers: forward declare CURL, CURLM and CURLSH as structs
  * configure: improve detection of CA bundle path on FreeBSD
  * SFTP: set a generic error when no SFTP one exists
  * curl_global_init.3: expand on the SSL and WIN32 bits purpose
  * conn: don't free easy handle data in handler->disconnect
  * cookie.c: Fix misleading indentation
  * library: Fix memory leaks found during static analysis
  * CURLMOPT_SOCKETFUNCTION.3: fix typo
  * curl_global_init: moved the "IPv6 works" check here
  * connect: disable TFO on Linux when using SSL
  * vauth: Fixed memory leak due to function returning without free
- refresh libcurl-ocloexec.patch
- disable tests 1139 and 1140 which fail due to missing manpage
  * add curl-disable_failing_tests.patch
- ship http2_server.pl for testing
  * add 0001-tests-distribute-the-http2-server.pl-script-too.patch

==== dcraw ====
Version update (9.26.0 -> 9.27.0)
Subpackages: dcraw-lang

- Update to version 9.27.0:
  dcraw - revision 1.477
  * Added "-o 6" for ACES colorspace.
  * Copied color matrices from DNG Converter 9.5.1.
  * Support the Canon EOS 80D & IXUS 160, Fuji X-E2 & X-E2S &
    X-Pro2.

==== evolution ====
Version update (3.20.4 -> 3.20.5)
Subpackages: evolution-plugin-bogofilter evolution-plugin-pst-import evolution-plugin-spamassassin

- Update to version 3.20.5:
  + EComposerPrivate: Changing a top signature to another one will
    place it on different position.
  + EComposerPrivate: Unneeded spacer left when setting a top
    signature from an existing one to None.
  + EHTMLEditorView: Redoing unquoting does not work.
  + Correct order of "assign value" and "call function" when saving
    to drafts.
  + Bugs fixed: bgo#768449, bgo#767283, bgo#769338, bgo#769354,
    bgo#769062, bgo#768683, bgo#769072, bgo#769523, bgo#769288.
- Drop evolution-bgo769062-mouseover-crash.patch and
  evolution-bgo768683-cannot-mark-as-spam.patch: Fixed upstream.

==== evolution-data-server ====
Version update (3.20.4 -> 3.20.5)
Subpackages: evolution-data-server-devel libcamel-1_2-57 libebackend-1_2-10 libebook-1_2-16 libebook-contacts-1_2-2 libecal-1_2-19 libedata-book-1_2-25 libedata-cal-1_2-28 libedataserver-1_2-21 libedataserverui-1_2-1 typelib-1_0-EBook-1_2 typelib-1_0-EBookContacts-1_2 typelib-1_0-EDataServer-1_2

- Update to version 3.20.5:
  + Incorrect times provided in e_cal_recur_generate_instances()
    (bgo#766346).

==== evolution-ews ====
Version update (3.20.4 -> 3.20.5)
Subpackages: evolution-ews-lang libeews-1_2-0 libewsutils0

- Update to version 3.20.5:
  + Customized timezones not recognized (bgo#769044).

==== fcitx ====
Subpackages: fcitx-branding-openSUSE fcitx-gtk2 fcitx-gtk3 fcitx-pinyin fcitx-qt4 fcitx-table libfcitx-4_2_9

- fix Leap 42.2 build
  * fcitx switched to DBus mechanism to select systray icon
    which made it impossible to customize systray icon in
    fcitx's themes. When the KDE default keyboard icon was
    used, it was ugly-looking and invisible on small screens.
    So we appended icons to openSUSE default Plasma themes
  * in Leap 42.2 and Tumbleweed, our KDE team decided not to
    provide any customization of the themes from kdebase4-openSUSE
    package, so the customizations of systray icons are useless
    in those systems.

==== gfxboot ====
Version update (4.5.13 -> 4.5.14)

- fix boot-label redrawing after language change (bsc#988392)
- 4.5.14

==== gnome-tweak-tool ====

- Drop gnome-tweak-tool-bnc898328-remove-lid-action-entries.patch
  (bsc#898328). Original problem fixed upstream and lid action is
  back.
- Update to GNOME 3.20.2 FATE#318572
- Dropped bnc951346-add-sle-classic-schema-overrides-check.patch
  Not needed any more with 3.20-based SLE Classic.
- Update to GNOME 3.20  Fate#318572
- Rebase gnome-tweak-tool-bnc898328-remove-lid-action-entries.patch

==== grsync ====

- Add grsync-appdata.patch to add, translate and install appdata
  file; the presence of the appdata file ensures that the
  application appears on appstores like GNOME Software and KDE
  Discover.

==== hdparm ====

- remove 56-idedma.rules and idedma.sh as none of these scripts
  have any function whatsoever. They rely on the obsolete IDE
  drivers [bsc#991898]
- remove /etc/sysconfig/ide file [bsc#922659]

==== installation-images-openSUSE ====
Version update (14.264 -> 14.266)

- add zypp config to initrd to ensure it's writable (bsc#967828)
- fix symlink verification function
- 14.266
- Make pam-modules optional
- 14.265

==== kactivitymanagerd ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kcm_sddm ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kde-cli-tools5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kde-gtk-config5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kde-user-manager ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kexec-tools ====
Version update (2.0.12 -> 2.0.13)

- Update to version 2.0.13
  Changelog: http://git.kernel.org/cgit/utils/kernel/kexec/kexec-tools.git/log/?id=refs/tags/v2.0.12..v2.0.13
- Refresh kexec-tools-enable-aarch64.patch

==== khotkeys5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: khotkeys5-devel

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kinfocenter5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kmenuedit5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kscreen5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kscreenlocker ====
Version update (5.7.2 -> 5.7.3)
Subpackages: libKScreenLocker5

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== ksshaskpass5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== ksysguard5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== kwin5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: kwin5-devel

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== libe-book ====

- Disable sle11 support code

==== libkdecoration2 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: libkdecoration2-devel libkdecorations2-5 libkdecorations2private5

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== libkscreen2 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: libKF5Screen7 libkscreen2-devel libkscreen2-plugin

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== libksysguard5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: libksysguard5-devel libksysguard5-helper

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== libmspub ====

- Disable sle11 support code

==== libpagemaker ====

- Disable sle11 support code

==== milou5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== mozilla-nss ====
Version update (3.23 -> 3.24)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-devel mozilla-nss-tools

- also sign libfreeblpriv3.so to allow FIPS mode again (boo#992236)
- update to NSS 3.24
  New functionality:
  * NSS softoken has been updated with the latest National Institute
    of Standards and Technology (NIST) guidance (as of 2015):
  - Software integrity checks and POST functions are executed on
    shared library load. These checks have been disabled by default,
    as they can cause a performance regression. To enable these
    checks, you must define symbol NSS_FORCE_FIPS when building NSS.
  - Counter mode and Galois/Counter Mode (GCM) have checks to
    prevent counter overflow.
  - Additional CSPs are zeroed in the code.
  - NSS softoken uses new guidance for how many Rabin-Miller tests
    are needed to verify a prime based on prime size.
  * NSS softoken has also been updated to allow NSS to run in FIPS
    Level 1 (no password). This mode is triggered by setting the
    database password to the empty string. In FIPS mode, you may move
    from Level 1 to Level 2 (by setting an appropriate password),
    but not the reverse.
  * A SSL_ConfigServerCert function has been added for configuring
    SSL/TLS server sockets with a certificate and private key. Use
    this new function in place of SSL_ConfigSecureServer,
    SSL_ConfigSecureServerWithCertChain, SSL_SetStapledOCSPResponses,
    and SSL_SetSignedCertTimestamps. SSL_ConfigServerCert automatically
    determines the certificate type from the certificate and private key.
    The caller is no longer required to use SSLKEAType explicitly to
    select a "slot" into which the certificate is configured (which
    incorrectly identifies a key agreement type rather than a certificate).
    Separate functions for configuring Online Certificate Status Protocol
    (OCSP) responses or Signed Certificate Timestamps are not needed,
    since these can be added to the optional SSLExtraServerCertData struct
    provided to SSL_ConfigServerCert.  Also, partial support for RSA
    Probabilistic Signature Scheme (RSA-PSS) certificates has been added.
    Although these certificates can be configured, they will not be
    used by NSS in this version.
  New functions
  * SSL_ConfigServerCert - Configures an SSL/TLS socket with a
    certificate, private key, and other information.
  * PORT_InitCheapArena - Initializes an arena that was created on
    the stack. (See PORTCheapArenaPool.=
  * PORT_DestroyCheapArena - Destroys an arena that was created on
    the stack. (See PORTCheapArenaPool.)
  New types
  * SSLExtraServerCertData - Optionally passed as an argument to
    SSL_ConfigServerCert. This struct contains supplementary information
    about a certificate, such as the intended type of the certificate,
    stapled OCSP responses, or Signed Certificate Timestamps (used for
    certificate transparency).
  * PORTCheapArenaPool - A stack-allocated arena pool, to be used for
    temporary arena allocations.
  New macros
  * CKM_TLS12_MAC
  * SEC_OID_TLS_ECDHE_PSK - This OID governs the use of the
    TLS_ECDHE_PSK_WITH_AES_128_GCM_SHA256 cipher suite, which is used
    only for session resumption in TLS 1.3.
  Notable changes:
  * Deprecate the following functions. (Applications should instead use the new
    SSL_ConfigServerCert function.):
  - SSL_SetStapledOCSPResponses
  - SSL_SetSignedCertTimestamps
  - SSL_ConfigSecureServer
  - SSL_ConfigSecureServerWithCertChain
  * Deprecate the NSS_FindCertKEAType function, as it reports a misleading
    value for certificates that might be used for signing rather than
    key exchange.
  * Update SSLAuthType to define a larger number of authentication key types.
  * Deprecate the member attribute authAlgorithm of type SSLCipherSuiteInfo.
    Instead, applications should use the newly added attribute authType.
  * Rename ssl_auth_rsa to ssl_auth_rsa_decrypt.
  * Add a shared library (libfreeblpriv3) on Linux platforms that
    define FREEBL_LOWHASH.
  * Remove most code related to SSL v2, including the ability to actively
    send a SSLv2-compatible client hello. However, the server-side
    implementation of the SSL/TLS protocol still supports processing
    of received v2-compatible client hello messages.
  * Disable (by default) NSS support in optimized builds for logging SSL/TLS
    key material to a logfile if the SSLKEYLOGFILE environment variable
    is set. To enable the functionality in optimized builds, you must define
    the symbol NSS_ALLOW_SSLKEYLOGFILE when building NSS.
  * Update NSS to protect it against the Cachebleed attack.
  * Disable support for DTLS compression.
  * Improve support for TLS 1.3. This includes support for DTLS 1.3.
    Note that TLS 1.3 support is experimental and not suitable for
    production use.
- removed obsolete nss-bmo1236011.patch

==== nghttp2 ====
Version update (1.12.0 -> 1.13.0)

- Update to version 1.13.0:
  * lib: Cancel non-DATA frame transmission from
    nghttp2_before_frame_send_callback
  * doc: Fix warning with Sphinx 1.4
  * build: Work with Android NDK r12b
  * nghttpx: Use consistent hashing for client IP based session
    affinity
  * nghttpx: Fix FTBFS on armel by explicitly including the header
  * nghttpx: Cast to double to fix build with gcc 4.8 on Solaris 11
  * nghttpx: Fix build error with libressl
  * examples: Fix compile error with OpenSSL v1.1.0-beta2

==== oxygen5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: oxygen5-cursors oxygen5-decoration oxygen5-devel oxygen5-lang oxygen5-sounds oxygen5-style

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== plasma-nm5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== plasma5-addons ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== plasma5-desktop ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php
- Drop upstreamed patches:
  0001-don-t-create-activities-by-ourselves.patch
  0002-use-desktopsForActivty-currentActivity.patch
  0003-correct-typo.patch
  loop-trough-screens-only-once.patch

==== plasma5-integration ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== plasma5-openSUSE ====
Subpackages: plasma5-desktop-branding-openSUSE plasma5-workspace-branding-openSUSE

- Bump Plasma (Build)Requires to 5.7.3

==== plasma5-pa ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== plasma5-workspace ====
Version update (5.7.2 -> 5.7.3)
Subpackages: drkonqi5 plasma5-workspace-devel plasma5-workspace-libs

- Remove 0001-Workaround-kde-362531.patch as fixed in kwindowsystem
- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php
- Drop upstreamed patches:
  0002-don-t-try-to-load-layout-before-kamd-starts.patch
  0006-Treat-IsDemandingAttention-as-IsOnAllVirtualDesktops.patch
  0007-apparently-containment-can-be-null.patch
  0010-Properly-registering-existing-activities-before-load.patch
  0001-check-harder-to-include-only-desktops-in-desktops.patch

==== polkit-kde-agent-5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== powerdevil5 ====
Version update (5.7.2 -> 5.7.3)

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== python-gtksourceview ====

- Unconditionally BuildRequire pkg-config.

==== python-ldap ====
Version update (2.4.25 -> 2.4.27)

- Update to upstream release 2.4.27
- Update to upstream release 2.4.26
- updated pypi source URL

==== qemu ====
Subpackages: qemu-arm qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-ssh qemu-extra qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-ppc qemu-s390 qemu-seabios qemu-sgabios qemu-tools qemu-vgabios qemu-x86

- Temporarily disable ceph (rbd) functionality in OBS due to staging
  issues.
- use upstream solution for building xen-usb.c correctly
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches dropped:
  0058-usb-Fix-conditions-that-xen-usb.c-i.patch
  * Patches added:
  0058-xen-move-xen_sysdev-to-xen_backend..patch
- Incorporate patch carried in Xen's qemu to get same support
  as Xen switches to use the qemu package (bsc#953339, bsc#953362,
  bsc#953518, bsc#984981)
  0064-xen-SUSE-xenlinux-unplug-for-emulat.patch
- Fix more potential OOB accesses in 53C9X emulation
  (CVE-2016-5238 bsc#982959)
  0065-scsi-esp-check-buffer-length-before.patch
  0066-scsi-esp-respect-FIFO-invariant-aft.patch
- Avoid "Invalid ROM" error message when it is not appropriate
  (bsc#982927)
  0067-pci-assign-Move-Invalid-ROM-error-m.patch
- Fix failure in Xen HVM PCI passthrough (bsc#981925, bsc#989250)
  0068-Xen-PCI-passthrough-fix-passthrough.patch
- Fix OOB access in 53C9X emulation (CVE-2016-6351 bsc#990835)
  0069-scsi-esp-make-cmdbuf-big-enough-for.patch
  0070-scsi-esp-fix-migration.patch
- Avoid potential for guest initiated OOM condition in qemu through
  virtio interface (CVE-2016-5403 bsc#991080)
  0071-virtio-error-out-if-guest-exceeds-v.patch
- Fix potential crashes in qemu from pvusb bugs (bsc#986156)
  0072-xen-when-removing-a-backend-don-t-r.patch
  0073-xen-drain-submit-queue-in-xen-usb-b.patch
- Avoid unneeded flushes in qcow2 which impact performance (bsc#991296)
  0074-qcow2-avoid-extra-flushes-in-qcow2.patch
- Finally get qemu-bridge-helper the permissions it needs for non-
  root usage. The kvm group is leveraged to control access. (boo#988279)
  0075-qemu-bridge-helper-reduce-security-.patch
- Fix pvusb not working for HVM guests (bsc#991785)
  0076-xen-use-a-common-function-for-pv-an.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
- Minor spec file formatting fixes
- Fix ARM PCIe DMA coherency bug (bsc#991034)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches added:
  0063-hw-arm-virt-mark-the-PCIe-host-cont.patch
- Clean up the udev ifdeffery to cover systemd as well (boo#860275)
- Trigger udev rules also under systemd (boo#989655)
- Suppress s390x sysctl in chroot
- Ignore s390x sysctl failures (agraf)
- Build SLOF for SLE12 now that we have gcc fix (bsc#949000)
- Add script for loading kvm module on s390x
- Enable seccomp and iscsi support in more configurations
- Enable more support for virtio-gpu
- Fix /dev/kvm permissions problem with package install and no
  reboot (bnc#867867)
- Remove libtool dependency
- Disable more aggressive stack protector for performance reasons
- Enable vte to be used again in more configurations (bsc#988855)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches added:
  0061-configure-add-echo_version-helper.patch
  0062-configure-support-vte-2.91.patch
- Remove deprecated patch "work-around-SA_RESTART-race" (boo#982208)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches dropped:
  0002-XXX-work-around-SA_RESTART-race-wit.patch
  0003-qemu-0.9.0.cvs-binfmt.patch
  0004-qemu-cvs-alsa_bitfield.patch
  0005-qemu-cvs-alsa_ioctl.patch
  0006-qemu-cvs-alsa_mmap.patch
  0007-qemu-cvs-gettimeofday.patch
  0008-qemu-cvs-ioctl_debug.patch
  0009-qemu-cvs-ioctl_nodirection.patch
  0010-block-vmdk-Support-creation-of-SCSI.patch
  0011-linux-user-add-binfmt-wrapper-for-a.patch
  0012-PPC-KVM-Disable-mmu-notifier-check.patch
  0013-linux-user-fix-segfault-deadlock.patch
  0014-linux-user-binfmt-support-host-bina.patch
  0015-linux-user-Ignore-broken-loop-ioctl.patch
  0016-linux-user-lock-tcg.patch
  0017-linux-user-Run-multi-threaded-code-.patch
  0018-linux-user-lock-tb-flushing-too.patch
  0019-linux-user-Fake-proc-cpuinfo.patch
  0020-linux-user-implement-FS_IOC_GETFLAG.patch
  0021-linux-user-implement-FS_IOC_SETFLAG.patch
  0022-linux-user-XXX-disable-fiemap.patch
  0023-slirp-nooutgoing.patch
  0024-vnc-password-file-and-incoming-conn.patch
  0025-linux-user-add-more-blk-ioctls.patch
  0026-linux-user-use-target_ulong.patch
  0027-block-Add-support-for-DictZip-enabl.patch
  0028-block-Add-tar-container-format.patch
  0029-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
  0030-console-add-question-mark-escape-op.patch
  0031-Make-char-muxer-more-robust-wrt-sma.patch
  0032-linux-user-lseek-explicitly-cast-no.patch
  0033-virtfs-proxy-helper-Provide-__u64-f.patch
  0034-configure-Enable-PIE-for-ppc-and-pp.patch
  0035-qtest-Increase-socket-timeout.patch
  0036-AIO-Reduce-number-of-threads-for-32.patch
  0037-configure-Enable-libseccomp-for-ppc.patch
  0038-dictzip-Fix-on-big-endian-systems.patch
  0039-block-split-large-discard-requests-.patch
  0040-xen_disk-Add-suse-specific-flush-di.patch
  0041-build-link-with-libatomic-on-powerp.patch
  0042-net-mipsnet-check-packet-length-aga.patch
  0043-i386-kvmvapic-initialise-imm32-vari.patch
  0044-esp-check-command-buffer-length-bef.patch
  0045-esp-check-dma-length-before-reading.patch
  0046-scsi-pvscsi-check-command-descripto.patch
  0047-scsi-mptsas-infinite-loop-while-fet.patch
  0048-vga-add-sr_vbe-register-set.patch
  0049-scsi-megasas-use-appropriate-proper.patch
  0050-scsi-megasas-check-read_queue_head-.patch
  0051-scsi-megasas-null-terminate-bios-ve.patch
  0052-vmsvga-move-fifo-sanity-checks-to-v.patch
  0053-vmsvga-don-t-process-more-than-1024.patch
  0054-block-iscsi-avoid-potential-overflo.patch
  0055-scsi-esp-check-TI-buffer-index-befo.patch
  0056-xen-introduce-dummy-system-device.patch
  0057-xen-write-information-about-support.patch
  0058-xen-add-pvUSB-backend.patch
  0059-usb-Fix-conditions-that-xen-usb.c-i.patch
  0060-vnc-add-configurable-keyboard-delay.patch
  0061-scsi-megasas-initialise-local-confi.patch
  * Patches added:
  0002-qemu-0.9.0.cvs-binfmt.patch
  0003-qemu-cvs-alsa_bitfield.patch
  0004-qemu-cvs-alsa_ioctl.patch
  0005-qemu-cvs-alsa_mmap.patch
  0006-qemu-cvs-gettimeofday.patch
  0007-qemu-cvs-ioctl_debug.patch
  0008-qemu-cvs-ioctl_nodirection.patch
  0009-block-vmdk-Support-creation-of-SCSI.patch
  0010-linux-user-add-binfmt-wrapper-for-a.patch
  0011-PPC-KVM-Disable-mmu-notifier-check.patch
  0012-linux-user-fix-segfault-deadlock.patch
  0013-linux-user-binfmt-support-host-bina.patch
  0014-linux-user-Ignore-broken-loop-ioctl.patch
  0015-linux-user-lock-tcg.patch
  0016-linux-user-Run-multi-threaded-code-.patch
  0017-linux-user-lock-tb-flushing-too.patch
  0018-linux-user-Fake-proc-cpuinfo.patch
  0019-linux-user-implement-FS_IOC_GETFLAG.patch
  0020-linux-user-implement-FS_IOC_SETFLAG.patch
  0021-linux-user-XXX-disable-fiemap.patch
  0022-slirp-nooutgoing.patch
  0023-vnc-password-file-and-incoming-conn.patch
  0024-linux-user-add-more-blk-ioctls.patch
  0025-linux-user-use-target_ulong.patch
  0026-block-Add-support-for-DictZip-enabl.patch
  0027-block-Add-tar-container-format.patch
  0028-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
  0029-console-add-question-mark-escape-op.patch
  0030-Make-char-muxer-more-robust-wrt-sma.patch
  0031-linux-user-lseek-explicitly-cast-no.patch
  0032-virtfs-proxy-helper-Provide-__u64-f.patch
  0033-configure-Enable-PIE-for-ppc-and-pp.patch
  0034-qtest-Increase-socket-timeout.patch
  0035-AIO-Reduce-number-of-threads-for-32.patch
  0036-configure-Enable-libseccomp-for-ppc.patch
  0037-dictzip-Fix-on-big-endian-systems.patch
  0038-block-split-large-discard-requests-.patch
  0039-xen_disk-Add-suse-specific-flush-di.patch
  0040-build-link-with-libatomic-on-powerp.patch
  0041-net-mipsnet-check-packet-length-aga.patch
  0042-i386-kvmvapic-initialise-imm32-vari.patch
  0043-esp-check-command-buffer-length-bef.patch
  0044-esp-check-dma-length-before-reading.patch
  0045-scsi-pvscsi-check-command-descripto.patch
  0046-scsi-mptsas-infinite-loop-while-fet.patch
  0047-vga-add-sr_vbe-register-set.patch
  0048-scsi-megasas-use-appropriate-proper.patch
  0049-scsi-megasas-check-read_queue_head-.patch
  0050-scsi-megasas-null-terminate-bios-ve.patch
  0051-vmsvga-move-fifo-sanity-checks-to-v.patch
  0052-vmsvga-don-t-process-more-than-1024.patch
  0053-block-iscsi-avoid-potential-overflo.patch
  0054-scsi-esp-check-TI-buffer-index-befo.patch
  0055-xen-introduce-dummy-system-device.patch
  0056-xen-write-information-about-support.patch
  0057-xen-add-pvUSB-backend.patch
  0058-usb-Fix-conditions-that-xen-usb.c-i.patch
  0059-vnc-add-configurable-keyboard-delay.patch
  0060-scsi-megasas-initialise-local-confi.patch
- Enable ceph (rbd) support for aarch64
- Enable ceph (rbd) support

==== qemu-linux-user ====

- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches dropped:
  0058-usb-Fix-conditions-that-xen-usb.c-i.patch
  * Patches added:
  0058-xen-move-xen_sysdev-to-xen_backend..patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches added:
  0064-xen-SUSE-xenlinux-unplug-for-emulat.patch
  0065-scsi-esp-check-buffer-length-before.patch
  0066-scsi-esp-respect-FIFO-invariant-aft.patch
  0067-pci-assign-Move-Invalid-ROM-error-m.patch
  0068-Xen-PCI-passthrough-fix-passthrough.patch
  0069-scsi-esp-make-cmdbuf-big-enough-for.patch
  0070-scsi-esp-fix-migration.patch
  0071-virtio-error-out-if-guest-exceeds-v.patch
  0072-xen-when-removing-a-backend-don-t-r.patch
  0073-xen-drain-submit-queue-in-xen-usb-b.patch
  0074-qcow2-avoid-extra-flushes-in-qcow2.patch
  0075-qemu-bridge-helper-reduce-security-.patch
  0076-xen-use-a-common-function-for-pv-an.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches added:
  0063-hw-arm-virt-mark-the-PCIe-host-cont.patch
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches added:
  0061-configure-add-echo_version-helper.patch
  0062-configure-support-vte-2.91.patch
- Remove deprecated patch "work-around-SA_RESTART-race" (boo#982208)
- Patch queue updated from git://github.com/openSUSE/qemu.git opensuse-2.6
  * Patches dropped:
  0002-XXX-work-around-SA_RESTART-race-wit.patch
  0003-qemu-0.9.0.cvs-binfmt.patch
  0004-qemu-cvs-alsa_bitfield.patch
  0005-qemu-cvs-alsa_ioctl.patch
  0006-qemu-cvs-alsa_mmap.patch
  0007-qemu-cvs-gettimeofday.patch
  0008-qemu-cvs-ioctl_debug.patch
  0009-qemu-cvs-ioctl_nodirection.patch
  0010-block-vmdk-Support-creation-of-SCSI.patch
  0011-linux-user-add-binfmt-wrapper-for-a.patch
  0012-PPC-KVM-Disable-mmu-notifier-check.patch
  0013-linux-user-fix-segfault-deadlock.patch
  0014-linux-user-binfmt-support-host-bina.patch
  0015-linux-user-Ignore-broken-loop-ioctl.patch
  0016-linux-user-lock-tcg.patch
  0017-linux-user-Run-multi-threaded-code-.patch
  0018-linux-user-lock-tb-flushing-too.patch
  0019-linux-user-Fake-proc-cpuinfo.patch
  0020-linux-user-implement-FS_IOC_GETFLAG.patch
  0021-linux-user-implement-FS_IOC_SETFLAG.patch
  0022-linux-user-XXX-disable-fiemap.patch
  0023-slirp-nooutgoing.patch
  0024-vnc-password-file-and-incoming-conn.patch
  0025-linux-user-add-more-blk-ioctls.patch
  0026-linux-user-use-target_ulong.patch
  0027-block-Add-support-for-DictZip-enabl.patch
  0028-block-Add-tar-container-format.patch
  0029-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
  0030-console-add-question-mark-escape-op.patch
  0031-Make-char-muxer-more-robust-wrt-sma.patch
  0032-linux-user-lseek-explicitly-cast-no.patch
  0033-virtfs-proxy-helper-Provide-__u64-f.patch
  0034-configure-Enable-PIE-for-ppc-and-pp.patch
  0035-qtest-Increase-socket-timeout.patch
  0036-AIO-Reduce-number-of-threads-for-32.patch
  0037-configure-Enable-libseccomp-for-ppc.patch
  0038-dictzip-Fix-on-big-endian-systems.patch
  0039-block-split-large-discard-requests-.patch
  0040-xen_disk-Add-suse-specific-flush-di.patch
  0041-build-link-with-libatomic-on-powerp.patch
  0042-net-mipsnet-check-packet-length-aga.patch
  0043-i386-kvmvapic-initialise-imm32-vari.patch
  0044-esp-check-command-buffer-length-bef.patch
  0045-esp-check-dma-length-before-reading.patch
  0046-scsi-pvscsi-check-command-descripto.patch
  0047-scsi-mptsas-infinite-loop-while-fet.patch
  0048-vga-add-sr_vbe-register-set.patch
  0049-scsi-megasas-use-appropriate-proper.patch
  0050-scsi-megasas-check-read_queue_head-.patch
  0051-scsi-megasas-null-terminate-bios-ve.patch
  0052-vmsvga-move-fifo-sanity-checks-to-v.patch
  0053-vmsvga-don-t-process-more-than-1024.patch
  0054-block-iscsi-avoid-potential-overflo.patch
  0055-scsi-esp-check-TI-buffer-index-befo.patch
  0056-xen-introduce-dummy-system-device.patch
  0057-xen-write-information-about-support.patch
  0058-xen-add-pvUSB-backend.patch
  0059-usb-Fix-conditions-that-xen-usb.c-i.patch
  0060-vnc-add-configurable-keyboard-delay.patch
  0061-scsi-megasas-initialise-local-confi.patch
  * Patches added:
  0002-qemu-0.9.0.cvs-binfmt.patch
  0003-qemu-cvs-alsa_bitfield.patch
  0004-qemu-cvs-alsa_ioctl.patch
  0005-qemu-cvs-alsa_mmap.patch
  0006-qemu-cvs-gettimeofday.patch
  0007-qemu-cvs-ioctl_debug.patch
  0008-qemu-cvs-ioctl_nodirection.patch
  0009-block-vmdk-Support-creation-of-SCSI.patch
  0010-linux-user-add-binfmt-wrapper-for-a.patch
  0011-PPC-KVM-Disable-mmu-notifier-check.patch
  0012-linux-user-fix-segfault-deadlock.patch
  0013-linux-user-binfmt-support-host-bina.patch
  0014-linux-user-Ignore-broken-loop-ioctl.patch
  0015-linux-user-lock-tcg.patch
  0016-linux-user-Run-multi-threaded-code-.patch
  0017-linux-user-lock-tb-flushing-too.patch
  0018-linux-user-Fake-proc-cpuinfo.patch
  0019-linux-user-implement-FS_IOC_GETFLAG.patch
  0020-linux-user-implement-FS_IOC_SETFLAG.patch
  0021-linux-user-XXX-disable-fiemap.patch
  0022-slirp-nooutgoing.patch
  0023-vnc-password-file-and-incoming-conn.patch
  0024-linux-user-add-more-blk-ioctls.patch
  0025-linux-user-use-target_ulong.patch
  0026-block-Add-support-for-DictZip-enabl.patch
  0027-block-Add-tar-container-format.patch
  0028-Legacy-Patch-kvm-qemu-preXX-dictzip.patch
  0029-console-add-question-mark-escape-op.patch
  0030-Make-char-muxer-more-robust-wrt-sma.patch
  0031-linux-user-lseek-explicitly-cast-no.patch
  0032-virtfs-proxy-helper-Provide-__u64-f.patch
  0033-configure-Enable-PIE-for-ppc-and-pp.patch
  0034-qtest-Increase-socket-timeout.patch
  0035-AIO-Reduce-number-of-threads-for-32.patch
  0036-configure-Enable-libseccomp-for-ppc.patch
  0037-dictzip-Fix-on-big-endian-systems.patch
  0038-block-split-large-discard-requests-.patch
  0039-xen_disk-Add-suse-specific-flush-di.patch
  0040-build-link-with-libatomic-on-powerp.patch
  0041-net-mipsnet-check-packet-length-aga.patch
  0042-i386-kvmvapic-initialise-imm32-vari.patch
  0043-esp-check-command-buffer-length-bef.patch
  0044-esp-check-dma-length-before-reading.patch
  0045-scsi-pvscsi-check-command-descripto.patch
  0046-scsi-mptsas-infinite-loop-while-fet.patch
  0047-vga-add-sr_vbe-register-set.patch
  0048-scsi-megasas-use-appropriate-proper.patch
  0049-scsi-megasas-check-read_queue_head-.patch
  0050-scsi-megasas-null-terminate-bios-ve.patch
  0051-vmsvga-move-fifo-sanity-checks-to-v.patch
  0052-vmsvga-don-t-process-more-than-1024.patch
  0053-block-iscsi-avoid-potential-overflo.patch
  0054-scsi-esp-check-TI-buffer-index-befo.patch
  0055-xen-introduce-dummy-system-device.patch
  0056-xen-write-information-about-support.patch
  0057-xen-add-pvUSB-backend.patch
  0058-usb-Fix-conditions-that-xen-usb.c-i.patch
  0059-vnc-add-configurable-keyboard-delay.patch
  0060-scsi-megasas-initialise-local-confi.patch

==== rubygem-gem2rpm ====

- add 0001-Also-tag-APACHE-LICENSE-2.0-as-docfile.patch

==== skype4pidgin ====
Version update (1.1 -> 1.2.1)
Subpackages: libpurple-plugin-skype libpurple-plugin-skypeweb pidgin-plugin-skype pidgin-plugin-skypeweb

- Update to version 1.2.1:
  * Fix Outlook (email address) logins.
  * Faster logins and less "registration token expired"
    disconnects.
  * Fix the "Search for friends..." box (properly this time).
  * Allow setting 'mood' messages (properly this time).
- Update to version 1.2:
  * Add support for libpurple 2.11+.
  * Fix the "Search for friends?" box.
  * Allow setting 'mood' messages.

==== systemsettings5 ====
Version update (5.7.2 -> 5.7.3)
Subpackages: systemsettings5-devel

- Update to 5.7.3
  * New bugfix release
  * For more details please see:
    https://www.kde.org/announcements/plasma-5.7.3.php

==== tidy ====
Subpackages: libtidy5

- add static_buffer_overflow.diff:
  + fix overflow in a static buffer (CVE-2016-6583)
- add Debian package files form fomer tidy-html5 packagee
  these don't really work, but mostly as WIP

==== ufraw ====
Subpackages: gimp-ufraw ufraw-lang

- narrowing-conversion.patch: fix narrowing conversion errors

==== xfce4-terminal ====
Version update (0.6.3 -> 0.6.90)
Subpackages: xfce4-terminal-lang

- Update to 0.6.90.
  * Migrate to GTK+3/VTE3.
  * Fix closing wrong tabs with Ctrl+Shift+W.
  * Make close tab shortcut work for single tab.
  * Add Ctrl+Shift+PgUp/PgDn shortcuts to move tabs left/right.
  * Add support for unlimited scrollback.
  * Fix actions applied to wrong tab after closing another one.
  * Update intltool.
  * Add Ctrl+Shift+S hotkey to set title.
  * Expose MiscTabCloseMiddleClick option to Preferences.
  * Fix terminal window not moved to foreground when using --tab
    option.
  * Respect Display window borders setting in drop-down mode.
  * Apply opacity setting by chaging background color alpha value.
  * Prevent characters from being hidden by block cursor.
  * Fix in drop-down mode, "100% width" isn't really 100%.
  * Add ShortcutsNoHelpkey option to disable F1 (help) shortcut key
    and expose it to Preferences.
  * Add support for magnet links.
  * Expose MiscMouseAutohide option to Preferences.
  * Fix terminal crash when starting with --geometry.
  * Add ability to zoom in/out by pressing Ctrl +/-; add --font and
  - -zoom command line options.
  * Expand zoom level.
  * Add hidden option MiscMiddleClickOpensUri to control whether
    middle click opens URI: if FALSE, Ctrl + left click is used for
    that; default is FALSE.
  * Fix compilation for vte < 0.44.
  * Remove emulation setting and input methods menu as they are not
    supported by vte.
  * Do not allow creating multiple Set Title dialog windows.
  * Remove Help button and add icon to Close button in Set Title
    dialog.
  * Add an icon to the search dialog close button.
  * Rename UI setting from Transparency to Opacity.
  * Update terminal website address in the About dialog.
  * Fix crash on moving a tab from one window to another.
  * Add tooltip for the Find toolbar button.
  * Add setting to allow cursor blinking to Preferences.
  * Add setting to change cursor shape to Preferences.
  * Fix typo in the preferences dialog.
  * Add some new encodings taken from gnome-terminal.
  * Fix crash on setting encoding.
  * Fix detach tab functionality with GTK>=3.16.
  * Fix segfault when right/middle click on tab bar.
  * Translation updates: Arabic, Asturian, Bulgarian, Catalan,
    Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish,
    Dutch, English (Australia), Esperanto, Finnish, French, German,
    Greek, Hebrew, Hungarian, Icelandic, Indonesian, Italian,
    Japanese, Kazakh, Korean, Lithuanian, Malay, Norwegian Bokmål,
    Polish, Portuguese, Portuguese (Brazil), Romanian, Russian,
    Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish,
    Ukrainian.
- Change BuildRequires: pkgconfig(gtk+-3.0), pkgconfig(vte-2.91).
- Remove BuildRequires: fdupes, update-desktop-files.
- Don't install ChangeLog (it is useless).
- Clean up the spec.

==== yast2-firstboot ====
Version update (3.1.14 -> 3.1.15)

- Reimplemented "create user" and "root password" steps to reuse
  the new installation dialogs instead of the obsolete ones.
- More sensible order for the mentioned steps in the default
  configuration file.
- Removed from the default configuration file the obsolete step
  for configuring authentication.
- bsc#992245, bsc#991863
- 3.1.15