Changed packages: ==== MozillaFirefox ==== Version update (33.1 -> 34.0.5) Subpackages: MozillaFirefox-translations-common - update to Firefox 34.0.5 (bnc#908009) * Default search engine changed to Yahoo! for North America * Default search engine changed to Yandex for Belarusian, Kazakh, and Russian locales * Improved search bar (en-US only) * Firefox Hello real-time communication client * Easily switch themes/personas directly in the Customizing mode * Implementation of HTTP/2 (draft14) and ALPN * Disabled SSLv3 * MFSA 2014-83/CVE-2014-1587/CVE-2014-1588 Miscellaneous memory safety hazards * MFSA 2014-84/CVE-2014-1589 (bmo#1043787) XBL bindings accessible via improper CSS declarations * MFSA 2014-85/CVE-2014-1590 (bmo#1087633) XMLHttpRequest crashes with some input streams * MFSA 2014-86/CVE-2014-1591 (bmo#1069762) CSP leaks redirect data via violation reports * MFSA 2014-87/CVE-2014-1592 (bmo#1088635) Use-after-free during HTML5 parsing * MFSA 2014-88/CVE-2014-1593 (bmo#1085175) Buffer overflow while parsing media content * MFSA 2014-89/CVE-2014-1594 (bmo#1074280) Bad casting from the BasicThebesLayer to BasicContainerLayer - rebased patches - limit linker memory usage for %ix86 ==== MozillaThunderbird ==== Version update (31.2.0 -> 31.3.0) Subpackages: MozillaThunderbird-translations-common - update to Thunderbird 31.3.0 (bnc#908009) * MFSA 2014-83/CVE-2014-1587 Miscellaneous memory safety hazards * MFSA 2014-85/CVE-2014-1590 (bmo#1087633) XMLHttpRequest crashes with some input streams * MFSA 2014-87/CVE-2014-1592 (bmo#1088635) Use-after-free during HTML5 parsing * MFSA 2014-88/CVE-2014-1593 (bmo#1085175) Buffer overflow while parsing media content * MFSA 2014-89/CVE-2014-1594 (bmo#1074280) Bad casting from the BasicThebesLayer to BasicContainerLayer ==== antlr ==== Subpackages: antlr-devel antlr-java - Remove java-devel dependency; not needed anymore ==== boost-devel ==== Subpackages: boost-license1_56_0 libboost_atomic1_56_0 libboost_chrono1_56_0 libboost_container1_56_0 libboost_context1_56_0 libboost_coroutine1_56_0 libboost_date_time1_56_0 libboost_filesystem1_56_0 libboost_graph1_56_0 libboost_graph_parallel1_56_0 libboost_iostreams1_56_0 libboost_locale1_56_0 libboost_log1_56_0 libboost_math1_56_0 libboost_mpi1_56_0 libboost_program_options1_56_0 libboost_python1_56_0 libboost_random1_56_0 libboost_regex1_56_0 libboost_serialization1_56_0 libboost_signals1_56_0 libboost_system1_56_0 libboost_test1_56_0 libboost_thread1_56_0 libboost_timer1_56_0 libboost_wave1_56_0 - Revert the python3 building: it resulted in BOTH libboost_python libraries to be using python 3 instructions, resulting in failures of all Py2 related packages. ==== cifs-utils ==== - Use rccifs -> service symlink for proper status (bnc#908023). ==== glew-devel ==== Version update (1.10.0 -> 1.11.0) - Version bump to 0.11.0: * support for OpenGL 4.5 - Removed patches no longer needed: * glew-1.10.0-destdir.patch ==== hyper-v ==== - introduce -n/--no-daemon option (fate#317317533) ==== libzypp ==== - Do not provide/obsolete yast2-packagemanager-devel by the -doc package: the -devel package already does that. - Minor .spec cleanup (remove Authors section). ==== libmjpegutils-2_0-0 ==== Subpackages: mjpegtools - Added baselibs.conf as a source in the spec file (to avoid error message from the Factory check script). - fix bashisms in shell scripts - fix shebang in lavtc.sh that contains bash-specific constructions - add patches: * mjpegtools-2.0.0-fix-bashisms.patch ==== openconnect ==== Version update (6.00 -> 7.00) Subpackages: openconnect-devel - Update to Version 7.00 * Add support for GnuTLS 3.4 system: keys including Windows certificate store. * Add support for HOTP/TOTP keys from Yubikey NEO devices. * Add ---no-system-trust option to disable default certificate authorities. * Improve libiconv and libintl detection. * Stop calling setenv() from library functions. * Support utun driver on OS X. * Change library API so string ownership is never transferred. * Support new NDIS6 TAP-Windows driver shipped with OpenVPN 2.3.4. * Support using PSKC (RFC6030) token files for HOTP/TOTP tokens. * Support for updating HOTP token storage when token is used. * Support for reading OTP token data from a file. * Add full character set handling for legacy non-UTF8 systems (including Windows). * Fix legacy (i.e. not XML POST) submission of non-ASCII form entries (even in UTF-8 locales). * Avoid retrying without XML POST, when we failed to even reach the server. * Fix off-by-one in parameter substitution in error messages. * Improve reporting when GSSAPI auth requested but not compiled in. * Fix parsing of split include routes on Windows. * Fix crash on invocation with --token-mode but no --token-secret. ==== plasma-nm ==== Subpackages: plasma-nm-openvpn plasma-nm-pptp plasma-nm-vpnc - Added openconnect-7-support.patch to support newer openconnect versions - Added 0001-Add-IPv6-tab-for-OpenVPN-connections.patch (kde#339652) ==== libprocps3 ==== Subpackages: procps - Add patch procps-ng-3.3.9-errno.patch to avoid leftover errno from setlocale() (bsc#908516) ==== rrdtool ==== - add rrdtool-1.4.7-CVE-2013-2131-imginfo_format_check.patch that adds check to the imginfo format to prevent crash or exploit bnc#828003, CVE-2013-2131. ==== libdcerpc-binding0 ==== Version update (4.1.13 -> 4.1.14) Subpackages: libdcerpc-binding0-32bit libdcerpc0 libdcerpc0-32bit libgensec0 libgensec0-32bit libndr-krb5pac0 libndr-krb5pac0-32bit libndr-nbt0 libndr-nbt0-32bit libndr-standard0 libndr-standard0-32bit libndr0 libndr0-32bit libnetapi0 libnetapi0-32bit libpdb0 libpdb0-32bit libregistry0 libsamba-credentials0 libsamba-credentials0-32bit libsamba-hostconfig0 libsamba-hostconfig0-32bit libsamba-util0 libsamba-util0-32bit libsamdb0 libsamdb0-32bit libsmbclient-devel libsmbclient-raw0 libsmbclient-raw0-32bit libsmbclient0 libsmbconf0 libsmbconf0-32bit libsmbldap0 libsmbldap0-32bit libtevent-util0 libtevent-util0-32bit libwbclient0 libwbclient0-32bit samba samba-32bit samba-client samba-client-32bit samba-doc samba-libs samba-libs-32bit samba-winbind samba-winbind-32bit - Specify soft dependency for network-online.target in Winbind systemd service file; (bnc#889175). - Update to 4.1.14. + pidl/wscript: Remove --with-perl-* options; revert buildtools/wafadmin/ Tools/perl.py back to upstream state; (bso#10472). + s4-dns: Add support for BIND 9.10; (bso#10620). + nmbd fails to accept "--piddir" option; (bso#10711). + nss_winbind: Add getgroupmembership for FreeBSD; (bso#10835). + S3: source3/smbd/process.c::srv_send_smb() returns true on the error path; (bso#10880). + vfs_glusterfs: Remove "integer fd" code and store the glfs pointers; (bso#10889). + s3-nmbd: Fix netbios name truncation; (bso#10896). + spoolss: Fix handling of bad EnumJobs levels; (bso#10898). + s3: libsmbclient-smb2. MacOSX 10 SMB2 server doesn't set STATUS_NO_MORE_FILES when handed a non-wildcard path; (bso#10904). + spoolss: Fix jobid in level 3 EnumJobs response; (bso#10905). + s3: nmbd: Ensure NetBIOS names are only 15 characters stored; (bso#10920). + s3:smbd: Fix file corruption using "write cache size != 0"; (bso#10921). + pdb_tdb: Fix a TALLOC/SAFE_FREE mixup; (bso#10932). + s3-keytab: Fix keytab array NULL termination; (bso#10933). + Cleanup add_string_to_array and usage; (bso#10942). - Remove and cleanup shares and registry state associated with externally deleted snaphots exposed as shadow copies; (bnc#876312). ==== systemd-presets-branding-openSUSE ==== - remove: enable lvm2-lvmetad.service (bnc#901859) - enable storage-fixup.service by default due to conversion ==== yast2-http-server ==== Version update (3.1.5 -> 3.1.6) - remove X-KDE-Library from desktop file (bnc#899104) ==== yast2-network ==== Version update (3.1.109 -> 3.1.111) - remove X-KDE-Library from desktop file (bnc#899104) - bnc#906694 - fixed exception raised due to modifying frozen string when running in localized mode - 3.1.110 ==== yast2-services-manager ==== Version update (3.1.36 -> 3.1.38) - remove X-KDE-Library from desktop file (bnc#899104) - Fixed adjusting service state according to new settings, already loaded services were ignored (bnc#906730) - 3.1.37 ==== libnis1 ==== Subpackages: yp-tools - Reduce filelists by using wildcards. Remove %doc (it is implicit for documentation paths). - Run build in parallel, and run fdupes to reduce same files. Removed packages: NetworkManager-openconnect > NetworkManager-openconnect-gnome libboost_python3-1_56_0 libGLEW1_10 Added packages: exim libGLEW1_11