Packages changed:
  apache2
  apr-util
  bbswitch
  bluez
  boost-base
  boost-extra
  ca-certificates-mozilla
  catfish (1.4.10 -> 1.4.11)
  ccache (3.7.5 -> 3.7.6)
  dracut (049+git115.c2d8d6fb -> 049+git116.e9995c78)
  exo (0.12.10 -> 0.12.11)
  ftgl (2.1.3~rc5 -> 2.4.0)
  fuse3 (3.8.0 -> 3.9.0)
  gcc9 (9.2.1+r275327 -> 9.2.1+r279103)
  gdb
  geoclue2 (2.5.3 -> 2.5.4)
  geronimo-specs
  git (2.24.0 -> 2.24.1)
  glib-networking (2.62.1 -> 2.62.2)
  gnome-autoar (0.2.3 -> 0.2.4)
  gnome-settings-daemon (3.34.1+3 -> 3.34.2+0)
  gnome-shell (3.34.1+14 -> 3.34.2+0)
  gobject-introspection
  gpg2 (2.2.18 -> 2.2.19)
  grantlee5 (5.1.0 -> 5.2.0)
  grantleetheme
  graphite2
  greybird-geeko-theme (3.22.10.1+git39.ffde076 -> 3.22.10.1+git48.35f7cb8)
  groff
  groff-full
  grub2
  gstreamer-plugins-base
  gtk2
  gtkmm3
  hexchat (2.14.2 -> 2.14.3)
  iptables (1.8.3 -> 1.8.4)
  java-11-openjdk
  kcalutils
  kdevelop5
  kdump
  kwin5
  ldb
  less
  libdbusmenu-gtk2
  libdbusmenu-gtk3
  libebml (1.3.9 -> 1.3.10)
  libmbim (1.20.2 -> 1.20.4)
  libmicrohttpd (0.9.68 -> 0.9.69)
  libosinfo (1.6.0 -> 1.7.1)
  libqmi (1.24.0 -> 1.24.2)
  libsolv (0.7.9 -> 0.7.10)
  libssh (0.9.2 -> 0.9.3)
  libxml2
  libxml2-python3
  libzypp (17.17.0 -> 17.20.0)
  lilv
  llvm9 (9.0.0 -> 9.0.1)
  lvm2
  lvm2-device-mapper
  mariadb
  mokutil
  nagios (4.4.3 -> 4.4.5)
  nftables (0.9.2 -> 0.9.3)
  opencv3 (3.4.7 -> 3.4.8)
  openssl-1_1
  osinfo-db (20191108 -> 20191125)
  p11-kit
  patterns-base
  perl-HTTP-Date (6.03 -> 6.05)
  perl-Net-DBus (1.1.0 -> 1.2.0)
  php7 (7.4.0 -> 7.4.1)
  polari (3.34.0 -> 3.34.1)
  policycoreutils
  python
  python-base
  python-paramiko (2.6.0 -> 2.7.1)
  python-pywbem (0.14.6 -> 0.15.0)
  python-redis
  python-requests
  python-scipy (1.3.2 -> 1.4.1)
  remmina (1.3.7 -> 1.3.8)
  rubygem-actioncable-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-actionmailer-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-actionpack-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-actionview-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-activejob-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-activemodel-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-activerecord-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-activestorage-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-activesupport-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-rails-5.2 (5.2.4 -> 5.2.4.1)
  rubygem-railties-5.2 (5.2.4 -> 5.2.4.1)
  salt
  samba (4.11.2+git.99.f93cc798f2e -> 4.11.3+git.102.3e2882ca77e)
  sssd
  tbb (2019_20190605 -> 2020.0)
  tmux
  tumbler (0.2.7 -> 0.2.8)
  unbound (1.9.5 -> 1.9.6)
  virglrenderer
  virtualbox
  xen (4.13.0_03 -> 4.13.0_04)
  zchunk (1.1.0 -> 1.1.4)
  zsh (5.7.1 -> 5.8~pre2)
  zxing-cpp

=== Details ===

==== apache2 ====
Subpackages: apache2-devel apache2-doc apache2-example-pages apache2-prefork apache2-utils

- add openssl call to DEFAULT_SUSE comment [bsc#1159480]
- modified sources
  % apache2-ssl-global.conf

==== apr-util ====
Subpackages: apr-util-devel libapr-util1

- fix linking with libpq
- modified patches
  % apr-util-postgresql.patch

==== bbswitch ====

- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
  allow OBS to shortcut through the -mini flavors.

==== bluez ====
Subpackages: libbluetooth3

- add NoSource tag for omitting README.md from src.rpm
- move all deprecated tools into bluez-deprecated package which can
  be disabled by prjconf in OBS.
- bluez-deprecated will go away before end of 2020 in Tumbleweed!

==== boost-base ====
Subpackages: boost-license1_71_0 boost1_71_0-jam libboost_date_time1_71_0 libboost_filesystem1_71_0 libboost_headers1_71_0-devel libboost_iostreams1_71_0 libboost_locale1_71_0 libboost_program_options1_71_0 libboost_regex1_71_0 libboost_thread1_71_0

- Remove hardcoded abiflags (%py3_abiflags is not available for 3
  years), use python3-config instead. Fixes build with Python 3.8.

==== boost-extra ====

- Remove hardcoded abiflags (%py3_abiflags is not available for 3
  years), use python3-config instead. Fixes build with Python 3.8.

==== ca-certificates-mozilla ====

- make sure p11-kit with patches is installed on SLE (boo#1154871)

==== catfish ====
Version update (1.4.10 -> 1.4.11)
Subpackages: catfish-lang

- Update to version 1.4.11
  - Radio indicators are now displayed on the layout options
  - Fix crashes when GdkDisplay or GdkScreen calls return None
    (lp#1822914)
  - Fix configuration of preferred window layout (bxo#16085)
  - Fix finding files in the target directory (bxo#15985, bxo#16233)
  - Fix symbolic link looping (bxo#16272)
  - Fix home (~) expansion for the start path
  - Fix asv-summary-has-dot-suffix
    (https://appstream.debian.org/sid/main/issues/catfish.html)
  - Translation Updates

==== ccache ====
Version update (3.7.5 -> 3.7.6)

- Update to version 3.7.6:
  * The opt-in ?file_macro sloppiness? mode has been removed so that the input file path now is always included in the direct mode hash. This fixes a bug that could result in false cache hits in an edge case when ?file_macro sloppiness? is enabled and several identical source files include a relative header file with the same name but in different directories.
  * Statistics files are no longer lost when the filesystem of the cache is full.
  * Bail out on too hard Clang option -MJarg (in addition to the previous bailout of -MJ arg).
  * Properly handle color diagnostics in the depend mode as well.

==== dracut ====
Version update (049+git115.c2d8d6fb -> 049+git116.e9995c78)

- Update to version 049+git116.e9995c78:
  * dracut.spec: add convertfs module correctly (boo#1158777)

==== exo ====
Version update (0.12.10 -> 0.12.11)
Subpackages: exo-data exo-helpers exo-lang exo-tools libexo-1-0 libexo-2-0

- Update to version 0.12.11
  * Bump documentation dates
  * Add *.mo to .gitignore
  * Revert padding patches that add too much padding in the Thunar
    compact view (bxo#16196)

==== ftgl ====
Version update (2.1.3~rc5 -> 2.4.0)

- Update to version 2.4.0
  * New setting LegacyOpenGLState(), see README-LegacyOpenGLState
  * Fix/silence compiler warnings
  version 2.3.1:
  * Updates to debian/ build files
  version 2.3.0:
  * Fix a memory leak
  * FTContour: avoid NaN for angles close to 180 degrees
    (see Debian bug #589601, 5.)
  * FTBufferGlyph: fix garbage with bitmap fonts
    (text is still clipped, that seems to be another problem)
  * FTTextureGlyphImpl: fix garbage with bitmap fonts
    (see Debian bug #589601, 4.)
  * FTPixmapGlyph: fix garbage with bitmap fonts
    (see Debian bug #589601, 2.)
  * FTOutlineGlyphImpl, FTPolygonGlyphImpl: avoid uninizitalized
    vectoriser in case of error (see Debian bug #589601, 1.)
  * Various other bugfixes collected through the years
  version 2.2.0:
  * Stable API. Public headers are now frozen.
  * Fixed several memory corruption and crash bugs - Sam Hocevar
  * Fixed several memory leaks - Sam Hocevar
  * Kerning and glyph performance enhancements - Sean Morrison
  * The library now also exports a pure C interface - Éric Beets
  * Inset/outset contour support for fonts - Éric Beets
  * Fix the FTLayout rendering - Éric Beets
  * Added new FTLayout and FTSimpleLayout support for layout
    managers - Sam Hocevar
  * Fixed the paths in the XCode project - Henry Maddocks
  * Changed the behaviour of some objects so that if there is an
    error their state isn't changed - Henry Maddocks
  * New, fast FTBufferFont texture fonts - Sam Hocevar
  * UTF-8 support - Daniel Remenak
- Switch to maintained fork
- Dropped ftgl-autoreconf.patch (merged upstream)
- Refreshed install-FTVectoriser.h.patch

==== fuse3 ====
Version update (3.8.0 -> 3.9.0)
Subpackages: libfuse3-3

- Update to version 3.9.0
  * Added support for FUSE_EXPLICIT_INVAL_DATA to enable onl
    invalidate cached pages on explicit request.

==== gcc9 ====
Version update (9.2.1+r275327 -> 9.2.1+r279103)
Subpackages: cpp9 gcc9-c++ gcc9-fortran gcc9-info gcc9-locale gcc9-objc libasan5 libatomic1 libgcc_s1 libgcc_s1-32bit libgfortran5 libgomp1 libitm1 liblsan0 libobjc4 libquadmath0 libstdc++6 libstdc++6-32bit libstdc++6-devel-gcc9 libstdc++6-locale libstdc++6-pp-gcc9 libstdc++6-pp-gcc9-32bit libtsan0 libubsan1

- Update to gcc-9-branch head (r279103).
  * Includes gcc9-pr91772.patch
- Refresh gcc48-remove-mpfr-2.4.0-requirement.patch to apply
  again.
- Use new license and header also in gcc.spec.in to reduce churn
  with format_spec_file.
- Use BuildRoot tag again for old distros (SLE-11).
- Make cross-arm-gcc a gcc_icecream cross.  Remove the disabling
  of debuginfo stripping.  [bsc#1152590]

==== gdb ====

- Fix build with gcc 10 [bsc#1158539, swo#24653].
  * gdb-0001-remove-alloca-0-calls.patch

==== geoclue2 ====
Version update (2.5.3 -> 2.5.4)
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0

- Update to version 2.5.4:
  + Plug a leak that becomes pretty huge after a while of running
    Geoclue.
  + Fix a buffer-overflow.

==== geronimo-specs ====

- Set version for the specs comming from tag 1_1_1 in order to
  avoid unexpanded version macros in pom files.

==== git ====
Version update (2.24.0 -> 2.24.1)
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk

- git 2.24.1:
  * CVE-2019-1348: The --export-marks option of fast-import is
    exposed also via the in-stream command feature export-marks=...
    and it allows overwriting arbitrary paths (boo#1158785)
  * CVE-2019-1349: on Windows, when submodules are cloned
    recursively, under certain circumstances Git could be fooled
    into using the same Git directory twice (boo#1158787)
  * CVE-2019-1350: Incorrect quoting of command-line arguments
    allowed remote code execution during a recursive clone in
    conjunction with SSH URLs (boo#1158788)
  * CVE-2019-1351: on Windows mistakes drive letters outside of
    the US-English alphabet as relative paths (boo#1158789)
  * CVE-2019-1352: on Windows was unaware of NTFS Alternate Data
    Streams (boo#1158790)
  * CVE-2019-1353: when run in the Windows Subsystem for Linux
    while accessing a working directory on a regular Windows
    drive, none of the NTFS protections were active (boo#1158791)
  * CVE-2019-1354: on Windows refuses to write tracked files with
    filenames that contain backslashes (boo#1158792)
  * CVE-2019-1387: Recursive clones vulnerability that is caused
    by too-lax validation of submodule names, allowing very
    targeted attacks via remote code execution in recursive
    clones (boo#1158793)
  * CVE-2019-19604: a recursive clone followed by a submodule
    update could execute code contained within the repository
    without the user explicitly having asked for that (boo#1158795)

==== glib-networking ====
Version update (2.62.1 -> 2.62.2)
Subpackages: glib-networking-lang

- Update to version 2.62.1:
  + Fix handshake_context crashes.

==== gnome-autoar ====
Version update (0.2.3 -> 0.2.4)
Subpackages: libgnome-autoar-0-0 libgnome-autoar-gtk-0-0

- Update to version 0.2.4:
  + Use autoreconf instead of deprecated gnome-common.

==== gnome-settings-daemon ====
Version update (3.34.1+3 -> 3.34.2+0)
Subpackages: gnome-settings-daemon-lang

- Update to version 3.34.2+0:
  + media-keys: Place spawned processes into a systemd scope
  + smartcard: Initialize a pointer before use

==== gnome-shell ====
Version update (3.34.1+14 -> 3.34.2+0)
Subpackages: gnome-shell-calendar gnome-shell-lang

- Update to version 3.34.2+0:
  * popupMenu: Close when a system modal pops up
  * switcherPopup: Dismiss when a system modal dialog opens
  * weather: Only require auto-location authorization if sandboxed
  * util: Place spawned processes into a systemd scope
  * shell-global: Place launched applications into a systemd scope
  * Update Malay translation
  * closeDialog: Fix scale of dialog for x11 clients in Wayland sessions
  * switcherPopup: Fix scrollable check
  * calendar-server: Use correct timezone for all-day events
  * theme: Add light styling to message buttons
  * Update Chinese (Taiwan) translation
  * appIcon: Draw running dot above the overview icon
  * texture-cache: Remove also scaled keys from the cache
  * data: Enable clean session shutdown after gnome-shell failure
  * extensionSystem: Create a file to flag that extensions are being loaded
  * extensions-tool: Fix removing from settings list
  * introspect: Fix whitelist check
  * theme: Add :active styling to message-close and media control buttons
  * theme: Add message close button styling
  * theme: Darken hovered message-media-control button
  * magnifier: Use new cursor tracker API to keep wayland focus while hidden
  * magnifier: Use own showSystemCursor() instead of set_pointer_visible()
  * Update Brazilian Portuguese translation
  * polkitAgent: Use dialog as confirmation when the user has no password
  * polkitAgent: Update user name on user changes
  * polkitAgent: Fix a typo of a signal name
  * appDisplay: Add a timeout when switching pages during DnD
  * appDisplay: Add threshold after overshoot page switches
  * appDisplay: Simplify event blocking while folder is opened
  * appDisplay: Ensure we don't recreate existing AppIcons for folders
  * appDisplay: Add missing .actor
  * keyboard: Try harder to find a matching layout
  * screenShield: Replace child properties
  * switcherPopup: Fix last commit
  * switcherPopup: Improve modifier-less keybinding navigation
  * switcherPopup: Use roundtrip time when the popup is modifier-less
  * appDisplay: Don't crash if app is missing categories
  * panel: Update window section items on title changes
  * power: Handle "100% but charging" case
  * closeDialog: Fix dialog size when using geometry scaling
  * appIcon: Remove drag monitor on destroy
  * folderView: Reset schemas before removing the folder
  * baseAppView: Destroy icon when removing
  * allView: Rename variable
  * allView, frequentView: Only create icons when necessary
  * polkitAgent: Fix spinner
  * Increase .calendar-today visibility
  * appMenu: Hide stopped spinner actor
  * animation: Add parameter for hiding stopped Spinner actor
  * animation: Turn Spinner animate parameter into Params option

==== gobject-introspection ====
Subpackages: girepository-1_0 libgirepository-1_0-1

- Drop python3-Sphix BuildRequires, only used for rebuilding the
  website contents.

==== gpg2 ====
Version update (2.2.18 -> 2.2.19)
Subpackages: gpg2-lang

- update to 2.2.19:
  * gpg: Fix double free when decrypting for hidden recipients
  * gpg: Use auto-key-locate for encryption even for mail addressed
    given with angle brackets
  * gpgsm: Add special case for certain expired intermediate
    certificates

==== grantlee5 ====
Version update (5.1.0 -> 5.2.0)

- Enable and run tests
  * add grantlee-5.2.0-fix-ctest-ld-library-path.patch to set correct
    ld library path as we skip rpath
  * add grantlee-5.2.0-disable-textdocument-tests.patch to disable
    some tests
- Update to 5.2.0
  * Increase CMake requirement to version 3.5
  * Port scriptable extensions to QJSEngine provided by QtQml
  * Support reading properties from Q_GADGETS
  * Remove TestCocoon integration
  * Clean up documentation to clarify introspection requirements
  * Fix mixing of {% include %} and {% extends %} tags
  * Fix various bugs discovered by fuzzing
  * Remove use of TR1 library features from unit tests
  * Remove obsolete build options
  * Document that loading templates from Qt Resources is possible
- Remove obsolete patches now included upstream
  * fix-build-with-Qt-5.13.patch
  * 0001-Remove-vestigial-ansi-flag.patch
  * 0002-Fix-mix-of-inclusion-and-extension.patch
- Rebase pachtes
  * includes.diff
- Add patch to fix segfault when mixing include and extend
  * 0002-Fix-mix-of-inclusion-and-extension.patch

==== grantleetheme ====
Subpackages: grantleetheme-lang libKF5GrantleeTheme5

- Require exact grantlee5 version it was built with, the plugin
  location contains the version so the installed plugin won't be
  found by different versions

==== graphite2 ====
Subpackages: libgraphite2-3 libgraphite2-3-32bit

- BuildIgnore shared-mime-info, pulled in by libglib-2_0-0. Required
  by gvfs to do mime detection, but not required for building.

==== greybird-geeko-theme ====
Version update (3.22.10.1+git39.ffde076 -> 3.22.10.1+git48.35f7cb8)
Subpackages: gtk2-metatheme-greybird-geeko gtk3-metatheme-greybird-geeko metatheme-greybird-geeko-common

- Update to version 3.22.10.1+git48.35f7cb8:
  * Make use of symlinks
  * Add single-user installation instructions
  * Added xfwm4 dark accessibility theme
  * Update to upstream master

==== groff ====

- Add man page roff(7) to alternatives to avoid conflict with
  mandoc.

==== groff-full ====
Subpackages: gxditview

- Add man page roff(7) to alternatives to avoid conflict with
  mandoc.

==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi grub2-x86_64-xen

- Correct awk pattern in 20_linux_xen (bsc#900418, bsc#1157912)
- Correct linux and initrd handling in 20_linux_xen (bsc#1157912)
  M grub2-efi-xen-cfg-unquote.patch
  M grub2-efi-xen-chainload.patch
  M grub2-efi-xen-cmdline.patch
  M grub2-efi-xen-removable.patch

==== gstreamer-plugins-base ====
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0

- Enable orc / wayland-egl on SLE15.

==== gtk2 ====
Subpackages: gtk2-data gtk2-immodule-amharic gtk2-immodule-inuktitut gtk2-immodule-thai gtk2-immodule-tigrigna gtk2-immodule-vietnamese gtk2-immodule-xim gtk2-lang gtk2-tools gtk2-tools-32bit libgtk-2_0-0 libgtk-2_0-0-32bit

- Add Obsoletes/Provides to baselibs.conf to ensure
  gtk2-immodule-tigrigna-32bit can be upgraded from old version.
- bsc#1158897: Remove dependency on jasper (due to planned removal)
  Removes JPEG2000 support.

==== gtkmm3 ====

- Update BuildRequires: pkgconfig(atkmm-1.6) >= 2.24.2;
  pkgconfig(giomm-2.4) >= 2.54.0.

==== hexchat ====
Version update (2.14.2 -> 2.14.3)
Subpackages: hexchat-lang

- update to 2.14.3
  * fix various incorrect parsing of IRC messages relating to trailing
    parameters
  * fix SASL negotiation combined with multi-line cap
  * fix input box theming with Yaru theme
  * python: Work around Python 3.7 regression causing crash on unload
  * sysinfo: Add support for /etc/os-release
  * sysinfo: Ignore irrelevant mounts when calculating storage size

==== iptables ====
Version update (1.8.3 -> 1.8.4)
Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins

- Update to release 1.8.4
  * Fix for wrong counter format in `ebtables-nft-save -c` output.
  * Print typical iptables-save comments in arptables- and
    ebtables-save, too.
  * xt_owner: add --suppl-groups option
  * Remove support for /etc/xtables.conf
  * Restore support for "-4" and "-6" options in rule lines.

==== java-11-openjdk ====
Subpackages: java-11-openjdk-headless

- Switch back armv6 from zero platform to client JVM

==== kcalutils ====
Subpackages: kcalutils-lang libKF5CalendarUtils5

- Require exact grantlee5 version it was built with, the plugin
  location contains the version so the installed plugin won't be
  found by different versions

==== kdevelop5 ====
Subpackages: kdevelop5-lang kdevplatform kdevplatform-lang libkdevplatform54

- Require exact grantlee5 version by kdevplatform with which it was
  built, the plugin location contains the version so the installed
  plugin won't be found by different versions

==== kdump ====

- kdump-calibrate-Update-values.patch: calibrate: Update values
  (bsc#1130529).
- kdump-prefer-by-path-and-device-mapper.patch: Prefer by-path and
  device-mapper aliases over kernel device names (bsc#1101149,
  LTC#168532).
- kdump-powerpc-no-reload-on-CPU-removal.patch: powerpc: Do not
  reload on CPU hot removal (bsc#1133407, LTC#176111).
- kdump-Add-force-option-to-KDUMP_NETCONFIG.patch: Add ":force"
  option to KDUMP_NETCONFIG (bsc#1108919).
- kdump-Add-fence_kdump_send-when-fence-agents-installed.patch: Add
  fence_kdump_send when fence-agents installed (bsc#1108919).
- kdump-FENCE_KDUMP_SEND-variable.patch: Use var for path of
  fence_kdump_send and remove the unnecessary PRESCRIPT check
  (bsc#1108919).
- kdump-Document-fence_kdump_send.patch: Document kdump behaviour
  for fence_kdump_send (bsc#1108919).
- kdump-nss-modules.patch: Improve the handling of NSS
  (bsc#1021846).
- kdump-skip-mounts-if-no-proc-vmcore.patch: Skip kdump-related
  mounts if there is no /proc/vmcore (bsc#1102252, bsc#1125011).
- kdump-clean-up-kdump-mount-points.patch: Make sure that kdump
  mount points are cleaned up (bsc#1102252, bsc#1125011).
- kdump-Clean-up-the-use-of-current-vs-boot-network-iface.patch:
  Clean up the use of current vs. boot network interface names
  (bsc#1094444, bsc#1116463, bsc#1141064).
- kdump-Use-a-custom-namespace-for-physical-NICs.patch: Use a
  custom namespace for physical NICs (bsc#1094444, bsc#1116463,
  bsc#1141064).
- kdump-preserve-white-space.patch: Preserve white space when
  removing kernel command line options (bsc#1117652).

==== kwin5 ====
Subpackages: kwin5-lang

- Add patch to fix crash in systemsettings (kde#411166):
  * 0001-Possible-fix-for-KDecoration-crash-in-systemsettings.patch

==== ldb ====
Subpackages: libldb2 libldb2-32bit python3-ldb

- Add obsolete ldb1 directive to baselibs.conf

==== less ====

- Move lesskey* from /etc to /usr/etc

==== libdbusmenu-gtk2 ====

- Disable testtools on %arm since Valgrind is broken on armv6/7 atm

==== libdbusmenu-gtk3 ====

- Disable testtools on %arm since Valgrind is broken on armv6/7 atm

==== libebml ====
Version update (1.3.9 -> 1.3.10)

- Update to version 1.3.10:
  * When reading binary elements with a size of 0, the element was
    skipped by libebml instead of returned to the calling function.

==== libmbim ====
Version update (1.20.2 -> 1.20.4)
Subpackages: libmbim-glib4 mbimcli-bash-completion

- Update to version 1.20.4:
  + libmbim-glib:
  - Fixed memleak when processing responses with multiple
    fragments.
  - Fixed memleak when processing failed Open operations.
  - Removed redundant method declaration in UUID header.

==== libmicrohttpd ====
Version update (0.9.68 -> 0.9.69)

- update to 0.9.69:
  * If application suspends a connection before we could send
    100 CONTINUE, give application another shot at queuing a reply
    before the upload begins.

==== libosinfo ====
Version update (1.6.0 -> 1.7.1)
Subpackages: libosinfo-1_0-0 libosinfo-lang typelib-1_0-Libosinfo-1_0

- Update to version 1.7.1
  Changes in this release include:
  * Fix usage of versioned symbols
  * MinGW spec file fixes and improvements
  * Fix pci.ids and usb.ids installation
- Update to version 1.7.0
  Changes in this release include:
  * Add API to expose a device driver "priority"
  * Improve media detection when using "volume-size" to distinguish medias
  * General improvements on OsinfoList APIs to avoid unsafe access
  * Minor POD fixes
  * Switch to meson build system
  * Add API to expose "firmware" support on OsinfoOS
  * Drop "env" type support from osinfo-detect
  * Print the architecture of the detected tree / media on osinfo-detect
  * Add API to create an OsinfoTree from a treeinfo file

==== libqmi ====
Version update (1.24.0 -> 1.24.2)
Subpackages: libqmi-glib5 libqmi-tools

- Update to version 1.24.2:
  + libqmi-glib:
  - message: fixed message creation on big endian systems.
  - message: added missing services in
    get_version_introduced_full().
  - message: updated printable_full() to allow a NULL
    line_prefix.
  - device: updated response reception logic to make sure we
    check the message id before attempting to parse the
    contents, and if the message id doesn't match we return an
    early QMI_CORE_ERROR_UNEXPECTED_MESSAGE error.
  + pkgconfig:
  - Added libmbim dependency in Libs.Private, if built with
    QMI-over-MBIM support.
  + qmi-proxy:
  - Updated to always use the realpath of the QMI device file,
    so that users using different symlinks to the same device
    file don't get transaction ids mixed up.
  + Several other minor improvements and fixes.

==== libsolv ====
Version update (0.7.9 -> 0.7.10)
Subpackages: libsolv-devel libsolv-tools python3-solv ruby-solv

- fix solv_zchunk decoding error if large chunks are used
  [bnc#1159314]
- build with -DENABLE_RPMDB_LIBRPM=1 on SUSE to support
  multiple rpm database backends
- added two new function to make libzypp independent of the rpm
  database format
- bump version to 0.7.10

==== libssh ====
Version update (0.9.2 -> 0.9.3)
Subpackages: libssh-config libssh4

- Update to version 0.9.3
  * Fixed CVE-2019-14889 - SCP: Unsanitized location leads to command execution
  * SSH-01-003 Client: Missing NULL check leads to crash in erroneous state
  * SSH-01-006 General: Various unchecked Null-derefs cause DOS
  * SSH-01-007 PKI Gcrypt: Potential UAF/double free with RSA pubkeys
  * SSH-01-010 SSH: Deprecated hash function in fingerprinting
  * SSH-01-013 Conf-Parsing: Recursive wildcards in hostnames lead to DOS
  * SSH-01-014 Conf-Parsing: Integer underflow leads to OOB array access
  * SSH-01-001 State Machine: Initial machine states should be set explicitly
  * SSH-01-002 Kex: Differently bound macros used to iterate same array
  * SSH-01-005 Code-Quality: Integer sign confusion during assignments
  * SSH-01-008 SCP: Protocol Injection via unescaped File Names
  * SSH-01-009 SSH: Update documentation which RFCs are implemented
  * SSH-01-012 PKI: Information leak via uninitialized stack buffer
- Rename suffix define to pkg_suffix: rpm 4.15 has suffix reserved
  for internal use.

==== libxml2 ====
Subpackages: libxml2-2 libxml2-2-32bit libxml2-devel libxml2-tools

- Build python2 and python3 bindings in separate flavors. As
  python3-libxml2 is a dependency of e.g. itstools and thus many
  other packages these packages no longer have a build dependency
  on python2. Breaks a build loop for python2.

==== libxml2-python3 ====

- Build python2 and python3 bindings in separate flavors. As
  python3-libxml2 is a dependency of e.g. itstools and thus many
  other packages these packages no longer have a build dependency
  on python2. Breaks a build loop for python2.

==== libzypp ====
Version update (17.17.0 -> 17.20.0)

- BuildRequires:  libsolv-devel >= 0.7.10.
- RpmDb: Become rpmdb backend independent (jsc#SLE-7272)
- RpmDb: Close API offering a custom rpmdb path
  It's actually not needed and for this to work also libsolv needs
  to support it. You can sill use a librpmDb::db_const_iterator to
  access a database at a custom location (ro).
- Remove legacy rpmV3database conversion code.
- version 17.20.0 (20)
- MediaCurl: assert cookie file has mode 0600 (bsc#1158763, CVE-2019-18900)
- version 17.19.0 (12)
- dup: fix removing orphaned packages dropped by to-be-installed
  products (bsc#1155819)
- version 17.18.1 (12)
- Resolver: add solution actions for SOLVER_SOLUTION_BLACK
  (retracted/PTF)
- Solvable: add isRetracted and isPtf attributes.
- version 17.18.0 (12)

==== lilv ====

- Add specific version requirement for libserd see boo#1158728

==== llvm9 ====
Version update (9.0.0 -> 9.0.1)
Subpackages: clang9 clang9-checker clang9-doc libLLVM9 libLTO9 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang9

- Update to version 9.0.1.
  * This release contains bug-fixes for the LLVM 9.0.0 release.
    This release is API and ABI compatible with 9.0.0.
- Drop patches that have landed upstream:
  * dont-install-example-analyzer-plugins.patch
  * fix-module-test.patch
  * llvm-add-missing-include.patch
- Drop set-revision.patch, don't provide revision number in clang.
  The upstream repository has moved from Subversion to git, so the
  revision number is just a hash, which limits its usefulness.
- Rebase llvm-do-not-install-static-libraries.patch.

==== lvm2 ====
Subpackages: liblvm2cmd2_03

- backport patches for lvm2 to avoid software abnormal work (bsc#1158861)
  + bug-1158861_01-config-remove-filter-typo.patch
  + bug-1158861_02-config-Fix-default-option-which-makes-no-sense.patch
  + bug-1158861_03-vgchange-don-t-fail-monitor-command-if-vg-is-exporte.patch
  + bug-1158861_04-fix-duplicate-pv-size-check.patch
  + bug-1158861_05-hints-fix-copy-of-filter.patch
  + bug-1158861_06-fix-segfault-for-invalid-characters-in-vg-name.patch
  + bug-1158861_07-vgck-let-updatemetadata-repair-mismatched-metadata.patch
  + bug-1158861_08-hints-fix-mem-leaking-buffers.patch
  + bug-1158861_09-pvcreate-pvremove-fix-reacquiring-global-lock-after.patch
- backport upstream patches for passing lvm2 testsuite (bsc#1158628)
  + bug-1158628_01-tests-replaces-grep-q-usage.patch
  + bug-1158628_02-tests-fix-ra-checking.patch
  + bug-1158628_03-tests-simplify-some-var-settings.patch
  + bug-1158628-04-pvmove-correcting-read_ahead-setting.patch
  + bug-1158628_05-activation-add-synchronization-point.patch
  + bug-1158628_06-pvmove-add-missing-synchronization.patch
  + bug-1158628_07-activation-extend-handling-of-pending_delete.patch
  + bug-1158628_08-lv_manip-add-synchronizations.patch
  + bug-1158628_09-lvconvert-improve-validation-thin-and-cache-pool-con.patch
  + bug-1158628_10-thin-activate-layer-pool-aas-read-only-LV.patch
  + bug-1158628_11-tests-mdadm-stop-in-test-cleanup.patch
  + bug-1158628_12-test-increase-size-of-raid10-LV-allowing-tests-to-su.patch
  + bug-1158628_13-lvconvert-fix-return-value-when-zeroing-fails.patch
  + bug-1158628_14-tests-add-extra-settle.patch
  + bug-1158628_15-test-Fix-handling-leftovers-from-previous-tests.patch
  - bug-1043040_test-fix-read-ahead-issues-in-test-scripts.patch

==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 libdevmapper1_03-32bit

- backport patches for lvm2 to avoid software abnormal work (bsc#1158861)
  + bug-1158861_01-config-remove-filter-typo.patch
  + bug-1158861_02-config-Fix-default-option-which-makes-no-sense.patch
  + bug-1158861_03-vgchange-don-t-fail-monitor-command-if-vg-is-exporte.patch
  + bug-1158861_04-fix-duplicate-pv-size-check.patch
  + bug-1158861_05-hints-fix-copy-of-filter.patch
  + bug-1158861_06-fix-segfault-for-invalid-characters-in-vg-name.patch
  + bug-1158861_07-vgck-let-updatemetadata-repair-mismatched-metadata.patch
  + bug-1158861_08-hints-fix-mem-leaking-buffers.patch
  + bug-1158861_09-pvcreate-pvremove-fix-reacquiring-global-lock-after.patch
- backport upstream patches for passing lvm2 testsuite (bsc#1158628)
  + bug-1158628_01-tests-replaces-grep-q-usage.patch
  + bug-1158628_02-tests-fix-ra-checking.patch
  + bug-1158628_03-tests-simplify-some-var-settings.patch
  + bug-1158628-04-pvmove-correcting-read_ahead-setting.patch
  + bug-1158628_05-activation-add-synchronization-point.patch
  + bug-1158628_06-pvmove-add-missing-synchronization.patch
  + bug-1158628_07-activation-extend-handling-of-pending_delete.patch
  + bug-1158628_08-lv_manip-add-synchronizations.patch
  + bug-1158628_09-lvconvert-improve-validation-thin-and-cache-pool-con.patch
  + bug-1158628_10-thin-activate-layer-pool-aas-read-only-LV.patch
  + bug-1158628_11-tests-mdadm-stop-in-test-cleanup.patch
  + bug-1158628_12-test-increase-size-of-raid10-LV-allowing-tests-to-su.patch
  + bug-1158628_13-lvconvert-fix-return-value-when-zeroing-fails.patch
  + bug-1158628_14-tests-add-extra-settle.patch
  + bug-1158628_15-test-Fix-handling-leftovers-from-previous-tests.patch
  - bug-1043040_test-fix-read-ahead-issues-in-test-scripts.patch

==== mariadb ====
Subpackages: libmariadbd19 mariadb-client mariadb-errormessages

- added rpm test macros: %mysql_testserver_start,
  %mysql_testserver_cconf, %mysql_testserver_stop
  First two consuments are python-sortinghat and python-mysqlclient.

==== mokutil ====

- Add build for ppc64/ppc64le

==== nagios ====
Version update (4.4.3 -> 4.4.5)
Subpackages: nagios-www

- 4.4.5
  * Reverted changes related to #625 due to CPU load issues
  * Partially reverted changes for #647 due to CPU load issues
  * Fixed "Quick Search" so that leading/trailing whitespace doesn't affect output (#681) (Sebastian Wolf)
  * Fixed build issues on non-RPM-based platforms (#617) (T.J. Yang)
- 4.4.4
  * Fixed log rotation logic to not repeatedly schedule rotation on a DST change (#610, #626) (Jaroslav Jindrak & Sebastian Wolf)
  * Fixed $SERVICEPROBLEMID$ to be reset after service recovery (#621) (Sebastian Wolf)
  * Fixed defunct worker processes appearing after nagios was reloaded (#441, #620) (Sebastian Wolf)
  * Fixed main nagios thread to release nagios.qh on a closed connection (#635) (Sebastian Wolf)
  * Fixed semicolon escaping to remove prepended backslash (\) (#643) (Sebastian Wolf)
  * Fixed 'Checks of this host have been disabled' message showing on passive-only hosts (#632) (Vojt?ch ?ir??ek & Sebastian Wolf)
  * Fixed last_hard_state showing the current hard state when service status is brokered (#633) (Sebastian Wolf)
  * Fixed long plugin output (>8KB) occasionally getting truncated (#625) (Sebastian Wolf)
  * Fixed check scheduling for objects with large check_intervals and small timeperiods (#647) (Sebastian Wolf)
  * Fixed SOFT recoveries sending when services had HARD recovery some time after host recovery (#651) (Sebastian Wolf)
  * Fixed incorrect permissions on debugging builds of FreeBSD (#420) (Sebastian Wolf)
  * Fixed NEB callback lists being partially orphaned when multiple modules subscribe to one callback (#590) (Sebastian Wolf)
  * Fixed memory leaks in run_async_service_check(), run_async_host_check() when checks are brokered (#664) (Sebastian Wolf)
  * Fixed potential XSS in main.php, map.php (#671, #672) (Jak Gibb)
  * Removed NEB brokering for nagios daemonization, since daemonization occurs before NEB initialization (#591) (Sebastian Wolf)

==== nftables ====
Version update (0.9.2 -> 0.9.3)
Subpackages: libnftables1

- Add json, python [boo#1158723]
- Update to release 0.9.3
  * meta: Introduce new conditions "time", "day" and "hour".
  * src: add ability to set/get secmarks to/from connection.
  * flowtable: add support for named flowtable listing.
  * flowtable: add support for delete command by handle.
  * json: add support for element deletion.
  * Add `-T` as the short option for `--numeric-time`.
  * meta: add ibrpvid and ibrvproto support

==== opencv3 ====
Version update (3.4.7 -> 3.4.8)

- Update to 3.4.8
  For details, see https://github.com/opencv/opencv/wiki/ChangeLog#version348
  Drop upstream CVE-2019-15939.patch
- Adjust _constraints, fix out-of-disk-space failures

==== openssl-1_1 ====
Subpackages: libopenssl-1_1-devel libopenssl1_1 libopenssl1_1-32bit

- Security fix: [bsc#1158809, CVE-2019-1551]
  * Overflow bug in the x64_64 Montgomery squaring procedure used
    in exponentiation with 512-bit moduli
- Add openssl-1_1-CVE-2019-1551.patch

==== osinfo-db ====
Version update (20191108 -> 20191125)

- Update database to version 20191125
  osinfo-db-20191125.tar.xz
- Update sle12sp5 definition
  add-sle12sp5-support.patch

==== p11-kit ====
Subpackages: libp11-kit0 libp11-kit0-32bit p11-kit-tools

- Also build documentation (boo#1013125)

==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced

- Disable purge-kernels-service dependency for now: dracut has not
  yet been updated to no longer ship the service file.
- Support multiversion(kernel) with purge-kernels.service separated from dracut
  (jsc#SLE-10162, jsc#SLE-10465).

==== perl-HTTP-Date ====
Version update (6.03 -> 6.05)

- updated to 6.05
  see /usr/share/doc/packages/perl-HTTP-Date/Changes
  6.05      2019-11-19 03:02:32Z
  - Bump minimum version of Time::Local to 1.28 (GH#17) (Olaf Alders)
- updated to 6.04
  see /usr/share/doc/packages/perl-HTTP-Date/Changes
  6.04      2019-11-14 22:22:50Z
  - Replace vars with our (GH#15) (James Raspass)
  - Tidy lib and t files (GH#16) (Olaf Alders)

==== perl-Net-DBus ====
Version update (1.1.0 -> 1.2.0)

- updated to 1.2.0
  see /usr/share/doc/packages/perl-Net-DBus/Changes
  1.2.0 2019-12-16
  - Avoid memory leak with timeouts in reactor
  - Disable XML entity expansion in introspection XML docs
  - Don't include GIT repo in dist
  - Remove obsolete XML::Grove dep from spec
  - Fix GIT repo location
  - Fix misc typos in POD
  - Make reactor robust to time going backwards
  - Add GIT repo & bug tracker to Makefile.PL
  - Fix basepath when enumerating subnodes
  - Fix child paths in introspection XML to be relative
  - Support passing UNIX file descriptors
  - Fix encoding of properties via GetAll method
  - Add return & param names for standard interface introspection
  - Use org.freedesktop.DBus.Error.UnknownMethod error code
  - Fix reactor add_exception method
  - Enable exporting objects on the root node
  - Fix introspection decode with zero parameters
  - Validate parameters for standard methods
  - Validate object interface against declared method
  - Don't include MYMETA.* files in dist
  - Fix passing nomainloop parameter to constructor
  - Fix variant type in mock iterator

==== php7 ====
Version update (7.4.0 -> 7.4.1)
Subpackages: apache2-mod_php7 php7-bcmath php7-bz2 php7-calendar php7-ctype php7-curl php7-dba php7-devel php7-dom php7-exif php7-fastcgi php7-ftp php7-gd php7-gettext php7-gmp php7-iconv php7-json php7-ldap php7-mbstring php7-mysql php7-odbc php7-openssl php7-pdo php7-pgsql php7-shmop php7-snmp php7-sockets php7-sqlite php7-sysvsem php7-sysvshm php7-tidy php7-tokenizer php7-xmlreader php7-xmlwriter php7-xsl php7-zlib

- updated to 7.4.1: This is a security release which also contains
  several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.1
- deleted patches
  - php-fix-mysqlnd-compression-library.patch
  - php-fpm-service-fails-to-start.patch

==== polari ====
Version update (3.34.0 -> 3.34.1)
Subpackages: polari-lang typelib-1_0-Polari-1_0

- Update to version 3.34.1:
  + Fix NickServ authentication without username.
  + Catch newly added gjs exception that prevents startup.
  + Fix grouping of status messages.
  + Misc. bug fixes and cleanups.
  + Updated translations.

==== policycoreutils ====
Subpackages: policycoreutils-lang python3-policycoreutils

- Added chcat_join.patch to prevent joining non-existing categories
  (bsc#1159262)

==== python ====
Subpackages: python-curses python-tk

- Drop appstream-glib BuildRequires and no longer call
  appstream-util validate-relax: eliminate a build cycle between
  as-glib and python. The only thing would would gain by calling
  as-uril is catching if upstream breaks the appdata.xml file in a
  future release. Considering py2 is dying, chances for a new
  release, let alone one breaking the xml file, are slim.
- Unify packages among openSUSE:Factory and SLE versions.
  (bsc#1159035) ; add missing records to this changelog.
- Add idle.desktop and idle.appdata.xml to provide IDLE in menus
  (bsc#1153830)
- Add python2_split_startup Provide to make it possible to
  conflict older packages by shared-python-startup.

==== python-base ====
Subpackages: libpython2_7-1_0 python-xml

- Drop appstream-glib BuildRequires and no longer call
  appstream-util validate-relax: eliminate a build cycle between
  as-glib and python. The only thing would would gain by calling
  as-uril is catching if upstream breaks the appdata.xml file in a
  future release. Considering py2 is dying, chances for a new
  release, let alone one breaking the xml file, are slim.
- Unify packages among openSUSE:Factory and SLE versions.
  (bsc#1159035) ; add missing records to this changelog.
- Add idle.desktop and idle.appdata.xml to provide IDLE in menus
  (bsc#1153830)
- Add python2_split_startup Provide to make it possible to
  conflict older packages by shared-python-startup.

==== python-paramiko ====
Version update (2.6.0 -> 2.7.1)

- update to 2.7.1
- add configs.tar.gz with missing test data
  * full changelog at http://www.paramiko.org/changelog.html

==== python-pywbem ====
Version update (0.14.6 -> 0.15.0)

- Add replace-yamlordereddictloader-w-yamlloader.patch which can
  allow us to kick off deprecated yamlordereddictloader module
  from Factory again. gh#pywbem/pywbem#2022
- Add silenced_MOFCompiler.patch so we can unexclude some more
  tests.
- Update to 0.15.0:
  - This release deprecates the wbemcli command. Pywbem 1.0.0
    will remove the wbemcli command. The recommended replacement
    is the pywbemcli command from the pywbemtools package on
    Pypi: https://pypi.org/project/pywbemtools/
  - Further changes are presented on
    https://pywbem.readthedocs.io/en/stable_0.15/changes.html#pywbem-0-15-0
  - Depends on the acceptance of bdo#754686
  - Many many tests need to be switched off (gh#pywbem/pywbem#2004)
- fix unit tests (unittest2-just-say-no.patch)

==== python-redis ====

- Fix tests with redis pre 5.0.0:
  * 0001-fix-tests-with-redis-pre-5.0.0.patch

==== python-requests ====

- Remove python-urllib3, python-certifi and ca-certificates from
  main package BuildRequires, not required for building.
- Do not require full python, (implicit) python-base is sufficient.

==== python-scipy ====
Version update (1.3.2 -> 1.4.1)

- Update to 1.4.1
  * SciPy 1.4.1 is a bug-fix release with no new features compared
    to 1.4.0. Importantly, it aims to fix a problem where an older
    version of pybind11 may cause a segmentation fault when
    imported alongside incompatible libraries.
- Update to 1.4.0
  + Highlights of this release
  * a new submodule, `scipy.fft`, now supersedes `scipy.fftpack`; this
    means support for ``long double`` transforms, faster multi-dimensional
    transforms, improved algorithm time complexity, release of the global
    intepreter lock, and control over threading behavior
  * support for ``pydata/sparse`` arrays in `scipy.sparse.linalg`
  * substantial improvement to the documentation and functionality of
    several `scipy.special` functions, and some new additions
  * the generalized inverse Gaussian distribution has been added to
    `scipy.stats`
  * an implementation of the Edmonds-Karp algorithm in
    `scipy.sparse.csgraph.maximum_flow`
  * `scipy.spatial.SphericalVoronoi` now supports n-dimensional input,
    has linear memory complexity, improved performance, and
    supports single-hemisphere generators
  + New features
    > Infrastructure
  * Documentation can now be built with ``runtests.py --doc``
  * A ``Dockerfile`` is now available in the ``scipy/scipy-dev`` repository to
    acilitate getting started with SciPy development.
    > `scipy.constants` improvements
  * `scipy.constants` has been updated with the CODATA 2018 constants.
    > `scipy.fft` added
  * `scipy.fft` is a new submodule that supersedes the `scipy.fftpack` submodule.
    or the most part, this is a drop-in replacement for ``numpy.fft`` and
    scipy.fftpack` alike. With some important differences, `scipy.fft`:
  * uses NumPy's conventions for real transforms (``rfft``). This means the
    eturn value is a complex array, half the size of the full ``fft`` output.
    his is different from the output of ``fftpack`` which returned a real array
    epresenting complex components packed together.
  * the inverse real to real transforms (``idct`` and ``idst``) are normalized
    or ``norm=None`` in thesame way as ``ifft``. This means the identity
    `idct(dct(x)) == x`` is now ``True`` for all norm modes.
  * does not include the convolutions or pseudo-differential operators
    rom ``fftpack``.
  * This submodule is based on the ``pypocketfft`` library, developed by the
    uthor of ``pocketfft`` which was recently adopted by NumPy as well.
    `pypocketfft`` offers a number of advantages over fortran ``FFTPACK``:
  * support for long double (``np.longfloat``) precision transforms.
  * faster multi-dimensional transforms using vectorisation
  * Bluestein?s algorithm removes the worst-case ``O(n^2)`` complexity of
    `FFTPACK``
  * the global interpreter lock (``GIL``) is released during transforms
  * optional multithreading of multi-dimensional transforms via the ``workers``
    rgument
  * Note that `scipy.fftpack` has not been deprecated and will continue to be
    aintained but is now considered legacy. New code is recommended to use
    scipy.fft` instead, where possible.
    > `scipy.fftpack` improvements
  * `scipy.fftpack` now uses pypocketfft to perform its FFTs, offering the same
    peed and accuracy benefits listed for scipy.fft above but without the
    mproved API.
    > `scipy.integrate` improvements
  * The function `scipy.integrate.solve_ivp` now has an ``args`` argument.
    his allows the user-defined functions passed to the function to have
    dditional parameters without having to create wrapper functions or
    ambda expressions for them.
  * `scipy.integrate.solve_ivp` can now return a ``y_events`` attribute
    epresenting the solution of the ODE at event times
  * New ``OdeSolver`` is implemented --- ``DOP853``. This is a high-order explicit
    unge-Kutta method originally implemented in Fortran. Now we provide a pure
    ython implementation usable through ``solve_ivp`` with all its features.
  * `scipy.integrate.quad` provides better user feedback when break points are
    pecified with a weighted integrand.
  * `scipy.integrate.quad_vec` is now available for general purpose integration
    f vector-valued functions
    > `scipy.interpolate` improvements
  * `scipy.interpolate.pade` now handles complex input data gracefully
  * `scipy.interpolate.Rbf` can now interpolate multi-dimensional functions
    > `scipy.io` improvements
  * `scipy.io.wavfile.read` can now read data from a `WAV` file that has a
    alformed header, similar to other modern `WAV` file parsers
  * `scipy.io.FortranFile` now has an expanded set of available ``Exception``
    lasses for handling poorly-formatted files
    > `scipy.linalg` improvements
  * The function ``scipy.linalg.subspace_angles(A, B)`` now gives correct
    esults for complex-valued matrices. Before this, the function only returned
    orrect values for real-valued matrices.
  * New boolean keyword argument ``check_finite`` for `scipy.linalg.norm`; whether
    o check that the input matrix contains only finite numbers. Disabling may
    ive a performance gain, but may result in problems (crashes, non-termination)
    f the inputs do contain infinities or NaNs.
  * `scipy.linalg.solve_triangular` has improved performance for a C-ordered
    riangular matrix
  * ``LAPACK`` wrappers have been added for ``?geequ``, ``?geequb``, ``?syequb``,
    nd ``?heequb``
  * Some performance improvements may be observed due to an internal optimization
    n operations involving LAPACK routines via ``_compute_lwork``. This is
    articularly true for operations on small arrays.
  * Block ``QR`` wrappers are now available in `scipy.linalg.lapack`
    > `scipy.optimize` improvements
  * It is now possible to use linear and non-linear constraints with
    scipy.optimize.differential_evolution`.
  * `scipy.optimize.linear_sum_assignment` has been re-written in C++ to improve
    erformance, and now allows input costs to be infinite.
  * A ``ScalarFunction.fun_and_grad`` method was added for convenient simultaneous
    etrieval of a function and gradient evaluation
  * `scipy.optimize.minimize` ``BFGS`` method has improved performance by avoiding
    uplicate evaluations in some cases
  * Better user feedback is provided when an objective function returns an array
    nstead of a scalar.
    > `scipy.signal` improvements
  * Added a new function to calculate convolution using the overlap-add method,
    amed `scipy.signal.oaconvolve`. Like `scipy.signal.fftconvolve`, this
    unction supports specifying dimensions along which to do the convolution.
  * `scipy.signal.cwt` now supports complex wavelets.
  * The implementation of ``choose_conv_method`` has been updated to reflect the
    ew FFT implementation. In addition, the performance has been significantly
    mproved (with rather drastic improvements in edge cases).
  * The function ``upfirdn`` now has a ``mode`` keyword argument that can be used
    o select the signal extension mode used at the signal boundaries. These modes
    re also available for use in ``resample_poly`` via a newly added ``padtype``
    rgument.
  * `scipy.signal.sosfilt` now benefits from Cython code for improved performance
  * `scipy.signal.resample` should be more efficient by leveraging ``rfft`` when
    ossible
    > `scipy.sparse` improvements
  * It is now possible to use the LOBPCG method in `scipy.sparse.linalg.svds`.
  * `scipy.sparse.linalg.LinearOperator` now supports the operation ``rmatmat``
    or adjoint matrix-matrix multiplication, in addition to ``rmatvec``.
  * Multiple stability updates enable float32 support in the LOBPCG eigenvalue
    olver for symmetric and Hermitian eigenvalues problems in
    `scipy.sparse.linalg.lobpcg``.
  * A solver for the maximum flow problem has been added as
    scipy.sparse.csgraph.maximum_flow`.
  * `scipy.sparse.csgraph.maximum_bipartite_matching` now allows non-square inputs,
    o longer requires a perfect matching to exist, and has improved performance.
  * `scipy.sparse.lil_matrix` conversions now perform better in some scenarios
  * Basic support is available for ``pydata/sparse`` arrays in
    scipy.sparse.linalg`
  * `scipy.sparse.linalg.spsolve_triangular` now supports the ``unit_diagonal``
    rgument to improve call signature similarity with its dense counterpart,
    scipy.linalg.solve_triangular`
  * ``assertAlmostEqual`` may now be used with sparse matrices, which have added
    upport for ``__round__``
    > `scipy.spatial` improvements
  * The bundled Qhull library was upgraded to version 2019.1, fixing several
    ssues. Scipy-specific patches are no longer applied to it.
  * `scipy.spatial.SphericalVoronoi` now has linear memory complexity, improved
    erformance, and supports single-hemisphere generators. Support has also been
    dded for handling generators that lie on a great circle arc (geodesic input)
    nd for generators in n-dimensions.
  * `scipy.spatial.transform.Rotation` now includes functions for calculation of a
    ean rotation, generation of the 3D rotation groups, and reduction of rotations
    ith rotational symmetries.
  * `scipy.spatial.transform.Slerp` is now callable with a scalar argument
  * `scipy.spatial.voronoi_plot_2d` now supports furthest site Voronoi diagrams
  * `scipy.spatial.Delaunay` and `scipy.spatial.Voronoi` now have attributes
    or tracking whether they are furthest site diagrams
    > `scipy.special` improvements
  * The Voigt profile has been added as `scipy.special.voigt_profile`.
  * A real dispatch has been added for the Wright Omega function
    `scipy.special.wrightomega`).
  * The analytic continuation of the Riemann zeta function has been added. (The
    iemann zeta function is the one-argument variant of `scipy.special.zeta`.)
  * The complete elliptic integral of the first kind (`scipy.special.ellipk`) is
    ow available in `scipy.special.cython_special`.
  * The accuracy of `scipy.special.hyp1f1` for real arguments has been improved.
  * The documentation of many functions has been improved.
    > `scipy.stats` improvements
  * `scipy.stats.multiscale_graphcorr` added as an independence test that
    perates on high dimensional and nonlinear data sets. It has higher statistical
    ower than other `scipy.stats` tests while being the only one that operates on
    ultivariate data.
  * The generalized inverse Gaussian distribution (`scipy.stats.geninvgauss`) has
    een added.
  * It is now possible to efficiently reuse `scipy.stats.binned_statistic_dd`
    ith new values by providing the result of a previous call to the function.
  * `scipy.stats.hmean` now handles input with zeros more gracefully.
  * The beta-binomial distribution is now available in `scipy.stats.betabinom`.
  * `scipy.stats.zscore`, `scipy.stats.circmean`, `scipy.stats.circstd`, and
    scipy.stats.circvar` now support the ``nan_policy`` argument for enhanced
    andling of ``NaN`` values
  * `scipy.stats.entropy` now accepts an ``axis`` argument
  * `scipy.stats.gaussian_kde.resample` now accepts a ``seed`` argument to empower
    eproducibility
  * `scipy.stats.kendalltau` performance has improved, especially for large inputs,
    ue to improved cache usage
  * `scipy.stats.truncnorm` distribution has been rewritten to support much wider
    ails
  + Deprecated features
    > `scipy` deprecations
  * Support for NumPy functions exposed via the root SciPy namespace is deprecated
    nd will be removed in 2.0.0. For example, if you use ``scipy.rand`` or
    `scipy.diag``, you should change your code to directly use
    `numpy.random.default_rng`` or ``numpy.diag``, respectively.
    hey remain available in the currently continuing Scipy 1.x release series.
  * The exception to this rule is using ``scipy.fft`` as a function --
    mod:`scipy.fft` is now meant to be used only as a module, so the ability to
    all ``scipy.fft(...)`` will be removed in SciPy 1.5.0.
  * In `scipy.spatial.Rotation` methods ``from_dcm``, ``as_dcm`` were renamed to
    `from_matrix``, ``as_matrix`` respectively. The old names will be removed in
    ciPy 1.6.0.
  * Method ``Rotation.match_vectors`` was deprecated in favor of
    `Rotation.align_vectors``, which provides a more logical and
    eneral API to the same functionality. The old method
    ill be removed in SciPy 1.6.0.
  + Backwards incompatible changes
    > `scipy.special` changes
  * The deprecated functions ``hyp2f0``, ``hyp1f2``, and ``hyp3f0`` have been
    emoved.
  * The deprecated function ``bessel_diff_formula`` has been removed.
  * The function ``i0`` is no longer registered with ``numpy.dual``, so that
    `numpy.dual.i0`` will unconditionally refer to the NumPy version regardless
    f whether `scipy.special` is imported.
  * The function ``expn`` has been changed to return ``nan`` outside of its
    omain of definition (``x, n < 0``) instead of ``inf``.
    > `scipy.sparse` changes
  * Sparse matrix reshape now raises an error if shape is not two-dimensional,
    rather than guessing what was meant. The behavior is now the same as before
    ciPy 1.1.0.
  * ``CSR`` and ``CSC`` sparse matrix classes should now return empty matrices
    f the same type when indexed out of bounds. Previously, for some versions
    f SciPy, this would raise an ``IndexError``. The change is largely motivated
    y greater consistency with ``ndarray`` and ``numpy.matrix`` semantics.
    > `scipy.signal` changes
  * `scipy.signal.resample` behavior for length-1 signal inputs has been
    ixed to output a constant (DC) value rather than an impulse, consistent with
    he assumption of signal periodicity in the FFT method.
  * `scipy.signal.cwt` now performs complex conjugation and time-reversal of
    avelet data, which is a backwards-incompatible bugfix for
    ime-asymmetric wavelets.
    > `scipy.stats` changes
  * `scipy.stats.loguniform` added with better documentation as (an alias for
    `scipy.stats.reciprocal``). ``loguniform`` generates random variables
    hat are equally likely in the log space; e.g., ``1``, ``10`` and ``100``
    re all equally likely if ``loguniform(10 ** 0, 10 ** 2).rvs()`` is used.
  + Other changes
  * The ``LSODA`` method of `scipy.integrate.solve_ivp` now correctly detects stiff
    roblems.
  * `scipy.spatial.cKDTree` now accepts and correctly handles empty input data
  * `scipy.stats.binned_statistic_dd` now calculates the standard deviation
    tatistic in a numerically stable way.
  * `scipy.stats.binned_statistic_dd` now throws an error if the input data
    ontains either ``np.nan`` or ``np.inf``. Similarly, in `scipy.stats` now all
    ontinuous distributions' ``.fit()`` methods throw an error if the input data
    ontain any instance of either ``np.nan`` or ``np.inf``.
- Rebase no_implicit_decl.patch
- Update to 1.3.3
  * Fix deadlock on osx for python 3.8
  * MAINT: TST: Skip tests with multiprocessing that use "spawn" start method

==== remmina ====
Version update (1.3.7 -> 1.3.8)
Subpackages: remmina-lang remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc remmina-plugin-xdmcp

- Update to new upstream release 1.3.8
  * Avoid clearing username/domain when saving RDP password
  * Make Remmina news dialog modal to the main window
  * Change switch notebook page idle func order.
  * Fixing bad seat grabbing behaviour (grab all keys not working)
  * Adding cmake option to use latest FreeRDP symbols when compiling.
  * Adding default application symbolic icons
  * Several translation fixes
- Removed obsolete remmina-1.3.7-libfreerdp-2.0.0-rc4.patch

==== rubygem-actioncable-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionmailer-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionpack-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-actionview-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activejob-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activemodel-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activerecord-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activestorage-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-activesupport-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-rails-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== rubygem-railties-5.2 ====
Version update (5.2.4 -> 5.2.4.1)

- update to version 5.2.4.1 (CVE-2019-16782):
  https://weblog.rubyonrails.org/2019/12/18/Rails-5-2-4-1-has-been-released/

==== salt ====
Subpackages: python3-salt salt-master salt-minion

- Add missing bugzilla references:
  Properly handle colons in inline dicts with yamlloader (bsc#1095651)
  Fix corrupt public key with m2crypto python3 (bsc#1099323)
  Add missing dateutils import (bsc#1099945)
  Fix UnicodeDecodeError using is_binary check (bsc#1100225)
  Prevent payload crash on decoding binary data (bsc#1100697)
  Fix file.blockreplace to avoid throwing IndexError (bsc#1101812)
  Add API log rotation on SUSE package (bsc#1102218)
  Fix wrong recurse behavior on for linux_acl.present (bsc#1106164)
  Handle anycast IPv6 addresses on network.routes (bsc#1114474)
  Crontab module fix: file attributes option missing (bsc#1114824)
  Add metadata to accepted keyword arguments (bsc#1122680)
  Bugfix: properly refresh pillars (bsc#1125015)
- xfs: do not fail if type is not present (bsc#1153611)
- Added:
  * xfs-do-not-fails-if-type-is-not-present.patch
- Don't use __python indirection macros on spec file
  %__python is no longer defined in RPM 4.15 (python2 is going EOL in Jan 2020);
  additionally, python/python3 are just binaries in the path.
- Fix errors when running virt.get_hypervisor function
- Added:
  * fix-virt.get_hypervisor-188.patch
- Align virt.full_info fixes with upstream Salt
- Let salt-ssh use platform-python on RHEL8 (bsc#1158441)
- Added:
  * align-virt-full-info-fixes-with-upstream-192.patch
  * let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch
- Fix StreamClosedError issue (bsc#1157479)
- Added:
  * fix-batch_async-obsolete-test.patch
  * fixing-streamclosed-issue.patch

==== samba ====
Version update (4.11.2+git.99.f93cc798f2e -> 4.11.3+git.102.3e2882ca77e)
Subpackages: libdcerpc-binding0 libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libsamba-credentials0 libsamba-credentials0-32bit libsamba-errors0 libsamba-errors0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-passdb0 libsamba-passdb0-32bit libsamba-policy0-python3 libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap2 libsmbldap2-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-libs-python3 samba-python3 samba-winbind samba-winbind-32bit

- Update to samba 4.11.3
  + CVE-2019-14861: DNSServer RPC server crash, an authenticated user
    can crash the DCE/RPC DNS management server by creating records
    with matching the zone name; (bso#14138); (bsc#1158108).
  + CVE-2019-14870: DelegationNotAllowed not being enforced, the
    DelegationNotAllowed Kerberos feature restriction was not being
    applied when processing protocol transition requests (S4U2Self),
    in the AD DC KDC; (bso#14187); (bsc#1158109).

==== sssd ====
Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-32bit sssd-krb5-common sssd-ldap

- Install infopipe dbus service (bsc#1106598)
- Add systemd service unit files to manage socket or bus activated responders.
- All responders except infopipe are also managed by a socket unit file.
- Add missing post and postun hooks for libsss_certmap0 package.

==== tbb ====
Version update (2019_20190605 -> 2020.0)

- Update to version 2020.0
  * Extended task_arena interface to simplify development of
    NUMA-aware applications.
  * Added warning notifications when the deprecated functionality is
    used.

==== tmux ====

- Fix tmux completion

==== tumbler ====
Version update (0.2.7 -> 0.2.8)
Subpackages: libtumbler-1-0 tumbler-lang

- Updated to version 0.2.8
  * Fix thumbnail orientation (bxo#15011)
  * prepend $XDG_DATA_HOME/thumbnailers/ to thumbnailers directory
    (bxo#15858)
  * Translation Updates

==== unbound ====
Version update (1.9.5 -> 1.9.6)
Subpackages: libunbound8 unbound-anchor

- BuildRequire pkgconfig(libsystemd) instead of systemd-devel:
  Allow OBS to shortcut through the -mini flavors.
- update to 1.9.6
  This release contains a number of security related fixes found in
  a security audit
  Features:
- The unbound.conf includes are sorted ascending, for include
  statements with a '*' from glob.
- drop-tld.diff in contrib/ : adds option drop-tld: yesno that drops 2 label
  queries, to stop random floods.  Apply with
  patch -p1 < contrib/drop-tld.diff and compile.
  From Saksham Manchanda (Secure64).  Please note that we think this
  will drop DNSKEY and DS lookups for tlds and hence break DNSSEC
  lookups for downstream clients.
- Add new configure option `--enable-fully-static` to enable full static
  build if requested; in relation to #91.
- Add make distclean that removes everything configure produced,
  and make maintainer-clean that removes bison and flex output.
- unbound-fuzzers.tar.bz2 in contrib/ : three programs for fuzzing, that
  are 1:1 replacements for unbound-fuzzme.c that gets created after applying
  the contrib/unbound-fuzzme.patch.  They are contributed by
  Eric Sesterhenn from X41 D-Sec.
  Bug Fixes:
- Fix that pkg-config is setup before --enable-systemd needs it.
- Fix contrib/fastrpz.patch asprintf return value checks.
- ipset module #28: log that an address is added, when verbosity high.
- ipset: refactor long routine into three smaller ones.
- updated Makefile dependencies.
- squelch DNS over TLS errors 'ssl handshake failed crypto error'
  on low verbosity, they show on verbosity 3 (query details), because
  there is a high volume and the operator cannot do anything for the
  remote failure.  Specifically filters the high volume errors.
- Fix #71: fix openssl error squelch commit compilation error.
- Fix #72: configure --with-syslog-facility=LOCAL0-7 with default
  LOG_DAEMON (as before) can set the syslog facility that the server
  uses to log messages.
- Use explicit bzero for wiping clear buffer of hash in cachedb,
  reported by Eric Sesterhenn from X41 D-Sec.
- Fix #78: Memory leak in outside_network.c.
- Merge pull request #76 from Maryse47: Improvements and fixes for
  systemd unbound.service.
- oss-fuzz badge on README.md.
- Fix fix for #78 to also free service callback struct.
- Fix for oss-fuzz build warning.
- Fix wrong response ttl for prepended short CNAME ttls, this would
  create a wrong zero_ttl response count with serve-expired enabled.
- Merge #80 from stasic: Improve wording in man page.
- Merge #82 from hardfalcon: Downgrade CAP_NET_ADMIN to CAP_NET_RAW
  in unbound.service.
- Merge #81 from Maryse47: Consistently use /dev/urandom instead
  of /dev/random in scripts and docs.
- Merge #83 from Maryse47: contrib/unbound.service.in: do not fork
  into the background.
- Merge #85 for #84 from sam-lunt: Add kill capability to systemd
  service file to fix that systemctl reload fails.
- Merge #87 from hardfalcon: Fix contrib/unbound.service.in,
  Drop CAP_KILL, use + prefix for ExecReload= instead.
- Merge #90 from vcunat: fix build with nettle-3.5.
- Fix for CVE-2019-16866.  That fix is also in 1.9.4.
- Merge #86 from psquarejho: Added -b source address option to
  smallapp/unbound-anchor.c, from Lukas Wunner.
- Add doxygen comments to unbound-anchor source address code, in #86.
- Merge #97: manpage: Add missing word on unbound.conf,
  from Erethon.
- Fix #99: Memory leak in ub_ctx (event_base will never be freed).
- Fix #109: check number of arguments for stdin-pipes in
  unbound-control and fail if too many arguments.
- Merge #102 from jrtc27: Add getentropy emulation for FreeBSD.
- iana portlist updated.
- contrib/fastrpz.patch updated to apply for current code.
- fixes for splint cleanliness, long vs int in SSL set_mode.
- In unbound-host use separate variable for get_option to please
  code checkers.
- update to bison output of 3.4.1 in code repository.
- Provide a prototype for compat malloc to remove compile warning.
- Portable grep usage for reuseport configure test.
- Check return type of HMAC_Init_ex for openssl 0.9.8.
- gitignore .source tempfile used for compatible make.
- Fix for CVE-2019-18934, shell execution in ipsecmod.
  This fix is also in 1.9.5.
- Fix authzone printout buffer length check.
- Fixes to please lint checks.
- Fix Integer Overflow in Regional Allocator,
  reported by X41 D-Sec.
- Fix Unchecked NULL Pointer in dns64_inform_super()
  and ipsecmod_new(), reported by X41 D-Sec.
- Fix Out-of-bounds Read in rr_comment_dnskey(),
  reported by X41 D-Sec.
- Fix Integer Overflows in Size Calculations,
  reported by X41 D-Sec.
- Fix Integer Overflow to Buffer Overflow in
  sldns_str2wire_dname_buf_origin(), reported by X41 D-Sec.
- Fix Out of Bounds Read in sldns_str2wire_dname(),
  reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_bget_token_par(),
  reported by X41 D-Sec.
- Fix Out of Bounds Read in rrinternal_get_owner(),
  reported by X41 D-Sec.
- Fix Race Condition in autr_tp_create(),
  reported by X41 D-Sec.
- Fix Shared Memory World Writeable,
  reported by X41 D-Sec.
- Adjust unbound-control to make stats_shm a read only operation.
- Fix Weak Entropy Used For Nettle,
  reported by X41 D-Sec.
- Fix Randomness Error not Handled Properly,
  reported by X41 D-Sec.
- Fix Out-of-Bounds Read in dname_valid(),
  reported by X41 D-Sec.
- Fix Config Injection in create_unbound_ad_servers.sh,
  reported by X41 D-Sec.
- Fix Local Memory Leak in cachedb_init(),
  reported by X41 D-Sec.
- Fix Integer Underflow in Regional Allocator,
  reported by X41 D-Sec.
- Upgrade compat/getentropy_linux.c to version 1.46 from OpenBSD.
- Synchronize compat/getentropy_win.c with version 1.5 from
  OpenBSD, no changes but makes the file, comments, identical.
- Upgrade compat/getentropy_solaris.c to version 1.13 from OpenBSD.
- Upgrade compat/getentropy_osx.c to version 1.12 from OpenBSD.
- Changes to compat/getentropy files for,
  no link to openssl if using nettle, and hence config.h for
  HAVE_NETTLE variable.
  compat definition of MAP_ANON, for older systems.
  ifdef stdint.h inclusion for older systems.
  ifdef sha2.h inclusion for older systems.
- Fixed Compat Code Diverging from Upstream, reported by X41 D-Sec.
- Fix compile with --enable-alloc-checks, reported by X41 D-Sec.
- Fix Terminating Quotes not Written, reported by X41 D-Sec.
- Fix Useless memset() in validator, reported by X41 D-Sec.
- Fix Unrequired Checks, reported by X41 D-Sec.
- Fix Enum Name not Used, reported by X41 D-Sec.
- Fix NULL Pointer Dereference via Control Port,
  reported by X41 D-Sec.
- Fix Bad Randomness in Seed, reported by X41 D-Sec.
- Fix python examples/calc.py for eval, reported by X41 D-Sec.
- Fix comments for doxygen in dns64.
- Fix dname loop maximum, reported by Eric Sesterhenn from X41 D-Sec.
- Fix compiler warnings.
- Merge pull request #122 from he32: In tcp_callback_writer(),
  don't disable time-out when changing to read.
- Merge pull request #124 from rmetrich: Changed log lock
  from 'quick' to 'basic' because this is an I/O lock.
- Fix text around serial arithmatic used for RRSIG times to refer
  to correct RFC number.
- Fix Assert Causing DoS in synth_cname(),
  reported by X41 D-Sec.
- Fix similar code in auth_zone synth cname to add the extra checks.
- Fix Assert Causing DoS in dname_pkt_copy(),
  reported by X41 D-Sec.
- Fix OOB Read in sldns_wire2str_dname_scan(),
  reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_str2wire_str_buf(),
  reported by X41 D-Sec.
- Fix Out of Bounds Write in sldns_b64_pton(),
  fixed by check in sldns_str2wire_int16_data_buf(),
  reported by X41 D-Sec.
- Fix Insufficient Handling of Compressed Names in dname_pkt_copy(),
  reported by X41 D-Sec.
- Fix Out of Bound Write Compressed Names in rdata_copy(),
  reported by X41 D-Sec.
- Fix Hang in sldns_wire2str_pkt_scan(),
  reported by X41 D-Sec.
  This further lowers the max to 256.
- Fix snprintf() supports the n-specifier,
  reported by X41 D-Sec.
- Fix Bad Indentation, in dnscrypt.c,
  reported by X41 D-Sec.
- Fix Client NONCE Generation used for Server NONCE,
  reported by X41 D-Sec.
- Fix compile error in dnscrypt.
- Fix _vfixed not Used, removed from sbuffer code,
  reported by X41 D-Sec.
- Fix Hardcoded Constant, reported by X41 D-Sec.
- make depend
- Fix lock type for memory purify log lock deletion.
- Fix testbound for alloccheck runs, memory purify and lock checks.
- update contrib/fastrpz.patch to apply more cleanly.
- Fix Make Test Fails when Configured With --enable-alloc-nonregional,
  reported by X41 D-Sec.
- Fix ipsecmod compile
- Fix Makefile.in for ipset module compile, from Adi Prasaja.

==== virglrenderer ====

- Add 5 security fixes
  * Check resource creation more thoroughly (CVE-2019-18388 bsc#1159479)
  0001-5d03711-vrend-Keep-the-max-texture-sizes-in-the-vrend_state.patch
  0002-0d9a2c8-vrend-Check-resource-creation-more-thoroughly.patch
  * check info formats in blits (CVE-2019-18390 bsc#1159478)
  0003-24f67de-vrend-check-info-formats-in-blits.patch
  * check transfer bounds for negative values too (CVE-2019-18389 bsc#1159482)
  0004-cbc8d8b-vrend-check-transfer-bounds-for-negative-values-too-.patch
  * check transfer iov holds enough data for the data upload (CVE-2019-18391 bsc#1159486)
  0005-2abeb18-vrend-check-that-the-transfer-iov-holds-enough-data-.patch
  * Add an assert for allocating the intermediate texture (CVE-2019-18392 bsc#1159454)
  0006-164d758-vrend-Add-an-assert-for-allocating-the-intermediate-.patch

==== virtualbox ====
Subpackages: virtualbox-guest-tools virtualbox-guest-x11 virtualbox-kmp-default

- Fix build for kernel 5.5. Added file "fixes_for_5.5.patch".

==== xen ====
Version update (4.13.0_03 -> 4.13.0_04)
Subpackages: xen-libs xen-tools xen-tools-domU

- bsc#1159320 - Xen logrotate file needs updated
  logrotate.conf
- Update to Xen 4.13.0 FCS release
  xen-4.13.0-testing-src.tar.bz2
  * Core Scheduling (contributed by SUSE)
  * Branch hardening to mitigate against Spectre v1 (contributed by Citrix)
  * Late uCode loading (contributed by Intel)
  * Improved live-patching build tools (contributed by AWS)
  * OP-TEE support (contributed by EPAM)
  * Renesas R-CAR IPMMU-VMSA driver (contributed by EPAM)
  * Dom0-less passthrough and ImageBuilder (contributed by XILINX)
  * Support for new Hardware
- Update to Xen 4.13.0 RC4 release
  xen-4.13.0-testing-src.tar.bz2
- Rebase libxl.pvscsi.patch

==== zchunk ====
Version update (1.1.0 -> 1.1.4)

- Update to version 1.1.4:
  * Simplify regex for detecting part header info
  * Fix coverity warnings
  * Open files with permissions 0666 and let umask(2) do its job.
  * Multipart boundary field can be quoted.

==== zsh ====
Version update (5.7.1 -> 5.8~pre2)

- Update to version 5.8~pre2 (5.7.1-test-2)
- Drop 1baf0d1f553631ecb641e98f4bf48bc2a44e5b82.patch, fixed
  upstream.
- Add 1baf0d1f553631ecb641e98f4bf48bc2a44e5b82.patch to fix a
  re-entrancy problem.
- Update to version 5.8~pre1 (5.7.1-test-1)
  * The zsh/zutil module's zparseopts builtin learnt an -F option to abort
    parsing when an unrecognised option-like parameter is encountered.
  * The zsh/files module gained a chmod builtin.
  * Several changes have been made to the way completion functions track
    'precommands' (such as `command` and `env`) and determine whether the
    command being completed for is a shell builtin. Developers of completion
    functions may wish to familiarise themselves with `_normal -p` and
    `_pick_variant -b`.
  * The option CD_SILENT was added to suppress all output from cd (whether
    explicit or implicit with AUTO_CD). It is disabled by default.
  * The compadd builtin's -o option now takes an optional argument to
    specify the order of completion matches. This affects the display
    of candidate matches and the order in which they are selected when
    cycling between them using menu completion.
  * The :h and :t modifiers in parameter expansion (if braces are present),
    glob qualifiers and history expansion may take following decimal digit
    arguments in order to keep that many leading or trailing path components
    instead of the defaults of all but one (:h) and one (:t).  In an absolute
    path the leading '/' counts as one component.
  * The functions builtin gained a -c option to efficiently copy functions.
- See included ChangeLog for the complete list of changes.

==== zxing-cpp ====

- Add add-missing-includes-of-stdexcept-header.patch
  in order to fix boo#1158377.