Removed rpms ============ - glibc-32bit - glibc-devel-static-32bit - glibc-profile-32bit - gstreamer-plugins-bad-chromaprint-32bit - hdf5-openmpi2-devel-32bit - hdf5-openmpi3-devel-32bit - glibc-devel-32bit - hdf5-devel-32bit - hdf5-openmpi4-devel-32bit - libaudit1-32bit - libdcerpc-samr0-32bit - libgstbasecamerabinsrc-1_0-0-32bit - libgstphotography-1_0-0-32bit - libgstplayer-1_0-0-32bit - libgstwayland-1_0-0-32bit - libhdf5_cpp103-openmpi2-32bit - libhdf5_fortran102-openmpi3-32bit - libhdf5_hl100-mvapich2-32bit - libhdf5_hl100-openmpi2-32bit - libhdf5_hl100-openmpi4-32bit - libhdf5_hl_cpp100-32bit - libhdf5_hl_cpp100-openmpi3-32bit - libndr-standard0-32bit - libndr1-32bit - libnetapi-devel-32bit - libpulse-devel-32bit - libreadline7-32bit - libsamba-errors0-32bit - libsamba-policy0-python3-32bit - libsmartcols-devel-32bit - libsmbclient0-32bit - libtirpc3-32bit - libuuid1-32bit - libxcrypt-devel-32bit - nss-mymachines-32bit - perl-base-32bit - systemd-32bit - wine-staging-32bit - xen-libs-32bit - qemu-seabios - libblkid1-32bit - libdcerpc0-32bit - libfdisk-devel-32bit - libgstadaptivedemux-1_0-0-32bit - libgstbadaudio-1_0-0-32bit - libgstinsertbin-1_0-0-32bit - libgstsctp-1_0-0-32bit - libhdf5-103-32bit - libhdf5-103-mvapich2-32bit - libhdf5-103-openmpi3-32bit - libhdf5_cpp103-mvapich2-32bit - libhdf5_fortran102-32bit - libhdf5_fortran102-mvapich2-32bit - libhdf5_hl100-32bit - libhdf5hl_fortran100-openmpi2-32bit - libhdf5hl_fortran100-openmpi4-32bit - libmount1-32bit - libndr-nbt0-32bit - libnetapi0-32bit - libpulse-mainloop-glib0-32bit - libpulse0-32bit - libpython3_9-1_0-32bit - libsamba-credentials0-32bit - libsmartcols1-32bit - libsmbconf0-32bit - libsvn_auth_kwallet-1-0 - libtevent-util0-32bit - libudev-devel-32bit - libuuid-devel-32bit - libvirt-devel-32bit - libzhuyin13-32bit - product-builder-plugin-openSUSE - python2-hdf5storage - python2-piexif - python3-piexif - qemu-ipxe - qemu-sgabios - readline-devel-32bit - samba-winbind-32bit - tftpboot-installation-SLE-15-SP3-ppc64le - tftpboot-installation-SLE-15-SP3-x86_64 - wine-32bit Added rpms ========== - flameshot-zsh-completion - glibc-devel-32bit - hdf5-devel-32bit - hdf5-openmpi4-devel-32bit - glibc-32bit - glibc-devel-static-32bit - glibc-profile-32bit - gstreamer-plugins-bad-chromaprint-32bit - hdf5-openmpi2-devel-32bit - hdf5-openmpi3-devel-32bit - libblkid1-32bit - libdcerpc0-32bit - libfdisk-devel-32bit - libgstadaptivedemux-1_0-0-32bit - libgstbadaudio-1_0-0-32bit - libgstinsertbin-1_0-0-32bit - libgstsctp-1_0-0-32bit - libhdf5-103-32bit - libhdf5-103-mvapich2-32bit - libhdf5-103-openmpi3-32bit - libhdf5_cpp103-mvapich2-32bit - libhdf5_fortran102-32bit - libhdf5_fortran102-mvapich2-32bit - libhdf5_hl100-32bit - libhdf5hl_fortran100-openmpi2-32bit - libhdf5hl_fortran100-openmpi4-32bit - libmount1-32bit - libndr-nbt0-32bit - libnetapi0-32bit - libpulse-mainloop-glib0-32bit - libpulse0-32bit - libpython3_9-1_0-32bit - libsamba-credentials0-32bit - libsmartcols1-32bit - libsmbconf0-32bit - libtevent-util0-32bit - libudev-devel-32bit - libuuid-devel-32bit - libvirt-devel-32bit - libzhuyin13-32bit - readline-devel-32bit - samba-winbind-32bit - wine-32bit - tftpboot-installation-SLE-15-SP3-ppc64le - qemu-ipxe - qemu-sgabios - tftpboot-installation-SLE-15-SP3-x86_64 - kubernetes1.19-apiserver - kubernetes1.19-client - kubernetes1.19-client-common - kubernetes1.19-controller-manager - kubernetes1.19-kubeadm - kubernetes1.19-kubelet - kubernetes1.19-kubelet-common - kubernetes1.19-proxy - kubernetes1.19-scheduler - kubernetes1.20-apiserver - kubernetes1.20-client - kubernetes1.20-client-common - kubernetes1.20-controller-manager - kubernetes1.20-kubeadm - kubernetes1.20-kubelet - kubernetes1.20-kubelet-common - kubernetes1.20-proxy - kubernetes1.20-scheduler - libaudit1-32bit - libdcerpc-samr0-32bit - libgstbasecamerabinsrc-1_0-0-32bit - libgstphotography-1_0-0-32bit - libgstplayer-1_0-0-32bit - libgstwayland-1_0-0-32bit - libhdf5_cpp103-openmpi2-32bit - libhdf5_fortran102-openmpi3-32bit - libhdf5_hl100-mvapich2-32bit - libhdf5_hl100-openmpi2-32bit - libhdf5_hl100-openmpi4-32bit - libhdf5_hl_cpp100-32bit - libhdf5_hl_cpp100-openmpi3-32bit - libndr-standard0-32bit - libndr1-32bit - libnetapi-devel-32bit - libpulse-devel-32bit - libreadline7-32bit - libsamba-errors0-32bit - libsamba-policy0-python3-32bit - libsmartcols-devel-32bit - libsmbclient0-32bit - libtirpc3-32bit - libuuid1-32bit - libxcrypt-devel-32bit - nginx-macros - nss-mymachines-32bit - os-autoinst-qemu-kvm - os-autoinst-qemu-x86 - patterns-cinnamon-cinnamon - patterns-cinnamon-cinnamon_basis - perl-base-32bit - postgresql12-timescaledb - qemu-seabios - ruby2.5-rubygem-railties-5.2 - ruby2.5-rubygem-railties-doc-5.2 - ruby2.5-rubygem-thor-0_19 - ruby2.5-rubygem-thor-doc-0_19 - ruby2.5-rubygem-tilt-1_4 - ruby2.5-rubygem-tilt-doc-1_4 - ruby2.5-rubygem-tilt-testsuite-1_4 - systemd-32bit - wine-staging-32bit - xen-libs-32bit Package Source Changes ====================== afl +- Enable build on non-x86 architectures + alsa-utils +- Fix superfluous asound.state migration (bsc#1183672) + autoyast2 +- fix handling of empty signature-handling element in autoyast + profile (bsc#1180968) +- 4.3.75 + +- Export properly "ask" section "selection" (bsc#1183624) +- 4.3.74 + +- Move default networking section values to the network repository + in order to reduce the redundancy and to avoid an unexpected + behavior (bsc#1180535). +- 4.3.73 + +- Autoyast schema: allow semi-automatic_entry alias for module in + semi-automatic entry as it was already documented in autoyast + documentation (bsc#1183512) +- 4.3.72 + bcm43xx-firmware +- Introduce Raspberry Pi 4 Compute Module's brcmfmac43455 configuration file. + (bsc#1183524) + blitz +- Build without PAPI support for all supported openSUSE versions + (boo#1183759). + +- Fix building for openSUSE >= 1550 by building without papi + support since blitz does not support papi >= 6.0 + (see gh#blitzpp/blitz#162). +- Drop empty install_info post(un) scriptlets and corresponding + Requires handled by rpm triggers. +- Clean up specfile using spec-cleaner. + -- Require the correct version of libblitz0 library for blitz-devel - package - -- Initial package (following spec file from fedora) - celluloid +- Update to version 0.21 + * Add Basque translation by @aldatsa. + * Make the shuffle and loop command line options work properly. + * Make the main menu button toggleable by pressing F10. + * Add a setting for always appending opened files to the + playlist. + * Allow appending files to playlist by holding shift while + dropping files onto the video area. + * Make CSD header bar toggleable via the mpv property "border". + charliecloud +- Update to version 0.22. + - “ch-image” can now push images to a registry, with the “push” subcommand + - As a reminder, “ch-grow” has been renamed to “ch-image”. + The old name still works but will be removed in 0.23. + - ch-image: new subcommand “delete” + - ch-image pull: + * now keeps some metadata from pulled image + * now works with public images in nVidia NGC registry + * setuid/setgid bits in pulled image now cleared + * performance improvements for images with many whiteouts + - ch-image build: + * environment variables now kept from base image + * SHELL instruction now supported + - several scripts now work correctly if image name contains slash + - “sudo make install” now works correctly with restrictive umasks + - miscellaneous bug fixes and improvements + +- Update to version 0.21. + - renamed the internal builder ch-grow to ch-image to reflect + its broader functionality. ch-grow still works but will be + deprecated in 0.23 + - ch-image unprivileged build workarounds using fakeroot + now default to off and must be requested with --force; + the option --no-fakeroot has been removed. ch-image will + by default print a warning if it thinks --force might fix + a build failure. + - ch-image pull now works with registries that use HTTP basic auth + and with images that use manifest schema version 1. + - ch-image build has a new option --bind to bind-mount directories + during build and COPY: improve symlink and directory handling + - miscellaneous bug fixes and improvements + - Full changelog at https://groups.io/g/charliecloud/message/108 +- Update patch + * Replace-hardcode-path.patch + +- Update to version 0.20. + - improvement for unprivileged image build using fakeroot + This feature can be turned off with “ch-grow build --no-fakeroot” + Further details are in the ch-grow man page + - miscellaneous bug fixes and improvements + - Full changelot at https://groups.io/g/charliecloud/message/107 +- Add requirements on fakeroot + +- Update to version 0.19. Two particularly notable changes: + - ch-grow now supports multi-stage build (#768), which as always + is fully unprivileged. This represents a big step forward in + functionality. + - ch-grow now has subcommands; what used to be plain ch-grow + is now ch-grow build, and ch-tug has become ch-grow pull. + - miscellaneous bug fixes and improvements + - Full changelog at https://groups.io/g/charliecloud/message/106 +- Update patch + * Replace-hardcode-path.patch + chromium +- Update to 89.0.4389.90 bsc#1183515 + - CVE-2021-21191: Use after free in WebRTC. + - CVE-2021-21192: Heap buffer overflow in tab groups. + - CVE-2021-21193: Use after free in Blink. + +- Update to 89.0.4389.82 +- Add x11-ozone-fix-two-edge-cases.patch to fix tab drag errors + ckb-next +- Update to version 0.4.4 + Important bugfixes: + * Fixed a crash when creating a new profile + * Fixed lights turning off unexpectedly or not being restored + correctly + * Macros can now be repeated quickly by repeatedly pressing + the keys + * Fixed various deadlocks when resuming from suspend or during + device initialisation + * Fixed devices not functioning during system boot requiring a + daemon restart +- Refreshed ckb-next-use-run.patch + eclipse +- Security fix: [bsc#1183728, CVE-2020-27225] + * The Help Subsystem does not authenticate active help requests + to the local help web server, allowing an unauthenticated local + attacker to issue active help commands to the associated Eclipse + Platform process or Eclipse Rich Client Platform process. +- Add eclipse-CVE-2020-27225.patch + eclipse:bootstrap +- Security fix: [bsc#1183728, CVE-2020-27225] + * The Help Subsystem does not authenticate active help requests + to the local help web server, allowing an unauthenticated local + attacker to issue active help commands to the associated Eclipse + Platform process or Eclipse Rich Client Platform process. +- Add eclipse-CVE-2020-27225.patch + flameshot +- Update to version 0.8.5 + * Fixed Icon Regression + +- Update to version 0.8.4 + * Renamed assets to match DBUS name for flathub support. + * Fixed issue where theme was not applied to widgets. + * Fixed issue where pixelate tool did not properly apply pixel + size and was not symmetric horizontally and vertically. + * Fixed visual artifact in pin to desktop in appimage release. + * Fixed issue where CTRL + S did not save active text in text + tool. + * Imgur tool now opens in the center of the screen. + * Translation Updates + + Brazilian Portuguese + + German + + Korean + + Basque + +- Update to versin 0.8.3 + * Small bug fixes + +- Update to version 0.8.1 + * Auto contrast on circle counter + +- Update to version 0.8.0 + New Features + * Fix capture after pressing ctrl + S during textarea input + * Add translations + * Allow enter key to copy image to clipboard + * side panel: Add thickness slider + * Add support for saving as JPG and BMP files. + * Allow 45 degree adjustment for some tools + * Add a basic launcher panel. + * Add option to auto copy URL after upload + * Add a circle counter tool. + * Replace the blur tool with pixelate tool. + * Convert buildsystem from QMake to CMake. + Fixes + * Exit non-zero when aborting with --raw. + * Enable Pin and Text tool by default. + * Fix the problem that moving or resizing does not affect + screenshot. + * Fix problem with re-enabling disabled tray icon. + * Fix compilation problem against Qt 5.15. +- Drop not longer needed patches: + * 0001-Fix-build-with-Qt-5.15.patch + * 0001-utils-confighandler.cpp-Enable-Pin-and-Text-tool-by-.patch + * desktop-files.patch +- Introduce zsh-completion subpackage + +- Add patch to fix build with Qt 5.15: + * 0001-Fix-build-with-Qt-5.15.patch + +- Supplement against bash-completion, not bash + fwts +- Update to version 21.02.00: + * See provided changelog for detailed list of changes + +- Update to version 21.01.00: + * See provided changelog for detailed list of changes +- Drop upstreamed patch: + * acpi-pmtt-fix-infinite-loops-when-length-is-incorrectly-zero.diff + ghc +- always build against llvm9, also on SLE15 (suse_version == 1500) + otherwise the resulting build is not working (llvm is 7.x there) (bsc#1181571) + +- update to 8.10.4 + * Fix a crash caused by inappropriate garbage of heap-allocated data + reachable from foreign exports + +- update to 8.10.3 + * More robust support for architectures with weak memory ordering + guarantees (e.g. modern ARM hardware). + * GHC can now split dynamic objects to accomodate macOS' RPATH size + limitation when building large projects (#14444) + * Several correctness bugs in the new low-latency garbage collector + * Many, many other bug-fixes)) + +- disable %{ix86} build + +- force multiversion for subpackages + +- add --enable-unregistered to configure phase on unregistered + architectures + +- update to 8.10.2 + * Fixes a code generation bug resulting in incorrect code generation + for foreign calls with complex arguments + * Fixes a bug causing object merging to fail when the lld linker is in use + * Introduces a workaround for a Linux kernel bug in the implementation + of the timerfd mechanism + * Fixes a few specialiser regressions as well introduces a variety + of miscellaneous specialiser improvements + * Fixes a potential loss of sharing due to left operator sections + * Fix bootstrapping of GHC with the LLVM backend on x86-64 + * few important correctness fixes for the low-latency garbage collector. + +- cleanup specfile from Leap 42 and older remrants +- drop fix-unregisterised-v8.4-8.6.patch +- drop fix-build-using-unregisterized-v8.4.patch + gnome-sound-recorder -- Fix JS error during startup (boo#1177168) - * Add patch: gnome-sound-recorder-Remove-usage-of-conditional-catch-statements.patch +- Update to GNOME 3.34 by copying from openSUSE:Factory rev 27 (boo#1183183) + (current factory version is not usable for Leap because of missing + dependencies). + +- Require gjs: /usr/bin/gnome-sound-recorder is a script using + /usr/bin/gjs-console as interpreter (boo#1169340). + +- No longer recommend -lang: supplements are in use + +- Don't use arch-specific libdir (boo#1109687). + +- Update to version 3.34.0: + + Add dual installation support. + + Updated translations. + +- Update to version 3.32.1: + + Keep the same app ID as in 3.30 in the appdata file. + + Add release and OARS tags to appdata file. + + Updated translations. + +- Update to version 3.32.0: + + Updated translations. + +- Update to version 3.31.92: + + Updated translations. + +- Update to version 3.31.90: + + Drop application menu. + + Port to meson. + + Various translation fixes. + + Drop git.mk - it's an autotools leftover. + + Set a minimium width and height size. + + Make record button a "suggested action". + + Require gtk +> 3.13.2. + + Remove old RTL hacks. + + Fix crashes when selecting a recording. + + Fix gjs "Too many arguments" warnings. + + Set a default window title for zero sounds recorded. + + Validate appdata and desktop files. + + Use same application id everywhere in the app. + + Use latest GJS standards for variable and class declarations. + + Port to ES6 classes. + + New icon. + + Updated translations. +- Switch to meson build system, add meson BuildRequires and macros. +- Drop obsolete intltool, pkgconfig(gobject-2.0), + pkgconfig(gdk-3.0) and pkgconfig(gdk-pixbuf-2.0) BuildRequires, + no longer needed. +- Replace gjs with pkgconfig(gjs-1.0) BuildRequires. +- Add appstream-glib BuildRequires. +- Drop pkgconfig(gstreamer-1.0), gstreamer-plugins-bad, + gstreamer-plugins-base and gstreamer-plugins-good BuildRequires: + No longer needed, runtime dependencies are enough. + +- Update to version 3.28.2: + + Remote usage of conditional catch statements. + + Rename icon to match appid, desktop file, about dialog and main + window. + + Updated translations. +- Drop gsr-Remove-usage-conditional-catch-statements.patch: Fixed + upstream. + +- Add gsr-Remove-usage-conditional-catch-statements.patch: Remove + usage of conditional catch statements. They are no longer + supported in mozjs60. + +- Update to version 3.28.1: + + Updated translations. + +- Modernize spec-file by calling spec-cleaner + +- Update to version 3.27.90: + + bgo790682: Fix scoping error caused by deprecated "let" + keyword. + + build: Install appstream metadata to non-deprecated location. + +- Update to version 3.24.0.1+20171218.4d8a9a8: + + gschema: Fix gettext-domain + + Updated translations. +- Stop post(un) handling of glib2_gsettings_schema_post(un) and + desktop_database_post(un), and drop + glib2_gsettings_schema_requires macro file-triggers takes care of + this for us now. +- Minor spec cleanup, use autosetup and make_build macros, pass + disable-static to configure. golang-github-vpenso-prometheus_slurm_exporter +- New version 0.17 + * Export information about shares via sshare +- New version 0.16 + * Add support to provide information about GPU GREs usage + grub2 +- Fix powerpc-ieee1275 lpar takes long time to boot with increasing number of + nvme namespace (bsc#1177751) + 0001-ieee1275-Avoiding-many-unecessary-open-close.patch + hostinfo +- Host information now persistent across reboots (bsc#1183732) +- Fixed output strings + +- Additions to version 1.0.6 + + Only include hostinfo details in /etc/motd (bsc#1170092) + + Fixed CPU load average calculation (bsc#1170094) + + Added program and version to output + + Consolidated memory output + + Understands 3rd party packages on SLES or OpenSUSE (bsc#1170858) + -- Fixed 3rd party detection (bnc#891604) - -- Added CIDR to IP address list -- Only show taint status for SLE12 -- Fixed missing interface (bnc#874878) - -- Update man page -- Fixed FSF address in files -- Change to System/Monitoring spec Group - -- Requires sed - -- Annotated hostinforc -- Updated man page -- Replaced hostinfo-updates with hostinfo-refreash -- hostinfo-refreash is the cron.daily cron -- Added hostinfo-refreash to cron.daily -- Hostinfo creates /var/spool/hostinfo/root-motd - -- Added hostinfo-updates to check patch information -- Installs into .profile -- Hostinfo-updates links to cron.daily -- Added startup switches for hostinfo -- Updated man pages - -- Added hostinfo.changes - -- added kernel taint and install time -- initial - java-1_8_0-openj9 -- Update to OpenJDK 8u2732 build 10 with OpenJ9 0.23.0 virtual +- Update to OpenJDK 8u282 build 08 with OpenJ9 0.24.0 virtual + machine + * including Oracle January 2021 CPU changes (bsc#1181239) + * OpenJ9 changes, see + https://www.eclipse.org/openj9/docs/version0.24 +- Modified template patch: + * openj9-nogit.patch.in + + replace git runs by pre-fetched git hashes in new places + + remove hunks that are irrelevant in new sources + +- Update to OpenJDK 8u272 build 10 with OpenJ9 0.23.0 virtual keepassxc +- Update to 2.6.4 + - Added + - Automatically adapt to light/dark system theme changes + (Windows/macOS only) [#6034] + - Changed + - Show window title as tooltip on system tray [#5948] + - Compress Snap release as LZO for faster initial startup + [#5877] + - Password generator: Set maximum selectable password length to + 999 [#5937] + - Fixed + - Fix crash on app close when using SSH agent [#5935] + - Fix KDF selection showing wrong item when using Argon2id + [#5923] + - Automatically close About dialog on database lock if it is + still open [#5947] + - Linux: Fix automatic launch at system startup with AppImages + [#5901] + - Linux: Fix click-to-move on empty area activating when using + menus [#5971] + - Linux: Try multiple times to show tray icon if tray is not + ready yet [#5948] + - macOS: Fix KeePassXC blocking clean shutdown [#6002] + +- Update to version 2.6.3 + - Added + - Support Argon2id KDF [#5778] + - Support XMLv2 key files [#5798] + - Changed + - Improve CSV Import/Export, include time fields and TOTP + [#5346] + - Support empty area dragging of the application window [#5860] + - Display default Auto-Type sequence in preview pane [#5654] + - Remove strict length limit on generated passwords [#5748] + - Hide key file path by default when unlocking database [#5779] + - Document browser extension use with Edge in managed mode + [#5692] + - Windows: Prevent clipboard history and cloud sync [#5853] + - macOS: Update the application icon to Big Sur styling [#5851] + - Fixed + - Re-select previously selected entry on database unlock + [#5559] + - Properly save special character choice in password generator + [#5610] + - Fix crash in browser integration with multiple similar + entries [#5653] + - Remove offset on username field in classic theme [#5788] + - Ensure entry history is copied when drag/dropping entries and + groups [#5817] + - Close modal dialogs when database is locked [#5820] + - Prevent crash when KeeShare modifies an entry that is + currently being edited [#5827] + - Improve preview of entry attributes [#5834] + - Always activate/focus database open dialog preventing mistype + [#5878] + - Reports: fix calculation of average password length [#5862] + - Linux: Delay startup on login to correct tray icon issues + [#5724] + kernel-64kb +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-debug +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-default +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-docs +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-kvmsmall +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-obs-build +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-obs-qa +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-preempt +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-source +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kernel-syms +- Refresh + patches.suse/ibmvnic-Fix-possibly-uninitialized-old_num_tx_queues.patch. +- Refresh + patches.suse/ibmvnic-always-store-valid-MAC-address.patch. +- commit b49d041 + +- Delete patches.suse/powerpc-Implement-smp_cond_load_relaxed.patch + This has been shown to hurt performance at various levels when + using qspinlocks (bsc#1182161). +- commit 6cec69e + +- Update + patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- Update + patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch + (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number +- commit 49dfaa1 + +- Import kabi reference files from the RC1 submission (commit 52197697dc8) +- commit f143546 + +- Update + patches.suse/scsi-iscsi-ensure-sysfs-attributes-are-limited-to-page_size + (CVE-2021-27365 bsc#1182715). +- Update + patches.suse/scsi-iscsi-restrict-sessions-and-handles-to-admin-capabilities + (CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717). +- Update + patches.suse/scsi-iscsi-verify-lengths-on-passthrough-pdus + (CVE-2021-27365 bsc#1182715). +- commit da2d102 + kiwi-templates-JeOS +- Add systemd.show_status=1 to the kernel cmdline (bsc#1183186) +- Drop plymouth.enable=0, as suggested some time ago +- Drop udev from bootstrap, not needed +- Fix version in .spec + kubernetes1 -- avoid verbose diagnostic print on start of kubelet - sc +- Update to version 1.20.2: + * move all variables in sampleAndWaterMarkHistograms::innerSet + * use default unkown sock for kubeadm cmd if cri detect is not needed + * cherry-pick part of #97451: fix nodeport quota check failure during creating clusterip + * Release reserved GCE IP address after ensure completes. + * Ensure reproducible builds when build through docker + * Fix cadvisor machine metrics + * Create OWNERS for most of the API Priority and Fairness impl + * fix the deadlock in priority and fairness config controller + * Cherry pick 443 and 448 from cloud provider azure + * Fix bug in CPUManager with race on map acccess + * clean up executing request on panic + * fix azure file secret not found issue + * fix: azure file latency issue for metadata-heavy workload + * Update CHANGELOG/CHANGELOG-1.20.md for v1.20.1 + * Add more logging for Mount error -- Update to version 1.18.4: - * enable floating IP for IPv6 - * Extend AWS azToRegion method to support Local Zones and other partitions - * kubelet: block non-forwarded packets from crossing the localhost boundary - * Deflake port-forward e2e test - * Fix fieldType being dropped by older go-clients - * FieldManager: Reset if we receive nil or a list with one empty item - * set dest prefix and port for IPv6 sg rule - * fieldManager: Ignore and log all errors when updating managedFields - * Make kubectl tolerate other versions of the CSR API - * Changes to ManagedFields is not mutation for GC - * fix a number of unbounded dimensions in request metrics - * build: Use debian-hyperkube-base@v1.0.0 image - * Check for GCE finalizer in GetLoadBalancer. - * Fix csi-provisioner image for pd csi driver - * hyperkube: Build v1.0.0 image - * build: Add dependency entries for debian-hyperkube-base - * Update CNI to v0.8.6 - * Fix public IP not shown issues after assigning public IP to Azure VMs - * Skip Pod Conditions from scheduling queue updates - * add test for finalizers - * skip unnecessary scheduling attempt when pod's finalizers change - * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.3 - * Add back anti-affinity to kube-dns pods. - * Check for empty zone string - * Azure - do not use 0 zone or empty string for zone when creating PVs - * Fix client-ca dynamic reload in apiserver - * Fix exclusive CPU allocations being deleted at container restart - * Update strategy used to reuse CPUs from init containers in CPUManager +- Update to version 1.20.1: + * Revert "Use host IP instead of localhost for control plane component kubeconfig files." + * etcd version for 1.19 is 3.4.13 for cve fixes + * Flush FibreChannel devices before deleting + * Fix FibreChannel volume plugin corrupting filesystem on detach + * vendor: update cAdvisor to v0.38.6 + * Update CHANGELOG/CHANGELOG-1.20.md for v1.20.0 + * Revert "iAdd host IP to etcd listen client URLs." + * fix migration logic + * Add AcceleratorStats to cri_stats_provider -- Remove %{?_smp_mflags} to make build more reliable [boo#1172744] +- Add obsoletes to -client-common to facilitate smooth upgrades from older versions -- Add reproducible-buildid.patch to make package build reproducible +- Rebase opensuse-version-checks.patch +- Update to version 1.20.0: + * APF e2e: disable drown-out tests temporarily + * coredns dep.Severity is newdefault, not newDefault + * addressing review comments and supports parallel run + * Update ingress conformance test for finalizers + * vendor: update cAdvisor to v0.38.5 + * fix: change disk client API version for Azure Stack + * service.spec.AllocateLoadBalancerNodePorts followup + * [go1.15] Use go-runner:buster-v2.2.2 image (built on go1.15.5) + * [go1.15] staging/publishing: Set default go version to go1.15.5 + * [go1.15] Update to go1.15.5 + * [go1.15] hack/tools: Update to k/repo-infra@v0.1.3 (supports go1.15.5) + * [go1.15] build: Update to k/repo-infra@v0.1.3 (supports go1.15.5) + * Restore beta os/arch labels on initial node registration + * matches specific usernames instead of "*" + * range_allocator: Test (lack of) double counting + * cidrset: Add test for double counting + * Fix double counting of IP addresses + * ap&f e2e: eliminates client-side rate-limiting + * fix bug: concurrent map writes error + * Bump node-problem-detector to v0.8.5 + * Revert "check volume directories instead of mounts for cleanupOrphanedPodDirs" + * Revert "plumb context with request deadline" + * Revert "use default value when the specified timeout is 0s" + * Revert "add e2e tests for request timeout" + * Deflake ThrottledLogger test + * fix: resize Azure disk issue when it's in attached state + * kube-aggregator: fix apiservice availability gauge + * Fix TestStartingResourceVersion flakiness + * make sure managedFields are written + * generated + * unit and integration tests + * apiserver dedups owner references and adds warning + * Add linuxonly on one multivolume test + * gce: move iptables rule to mangle + * APF e2e tests: add request drown-out fairness test + * add e2e tests for request timeout + * use default value when the specified timeout is 0s + * CHANGELOG: Update error link in 1.20 + * CHANGELOG: Update directory for v1.20.0-beta.2 release + * APF e2e tests: rename request drown-out priority client names + * Mark some storage tests as LinuxOnly + * Add GC unit tests + * Log cluster-scoped owners referencing namespaced owners, avoid retrying lookups forever + * Queue non-matching children for deletion when a virtual node is marked as observed + * Handle virtual delete events when children don't agree on owner coordinates + * Make node removal conditional in processGraphChanges + * Enqueue dependents for deletion when their ownerReference does not match observed parent coordinates + * Short-circuit attemptToDelete loop for virtual nodes that are removed or observed + * Replace virtual node with observed node if identity differs + * Refactor identityFromEvent + * Avoid marking virtual nodes as observed when they haven't been + * Switch GC absentOwnerCache to full reference + * Add GC integration race test + * Plumb event recorder to garbage collector controller + * e2e SCTP test not depend on kubenet + * e2e/node: increase timeouts seconds to 5 for liveness probe restart test + * correct e2e test predicates conflict hostport + * Add a deprecation note to k/k/cluster/log-dump directory + * Update topology tests for windows + * kubelet: dockershim should return grpc status with DeadlineExceeded code + * e2e dualstack test fixes + * convert the runtimeclass API tests to conformance + * APF e2e tests: use snake_case label + * APF e2e tests: move common code into helper functions + * Reduce volume name length for vsphere + * CHANGELOG: add a hyperlink to issue 86282 + * allow configuring ReadIdelTimeout and PingTimeout via env var + * Add a unit test testing the HTTP/2 health check help the REST client detects broken TCP connections. + * plumb context with request deadline + * Fixes fake client test generation + * Integrate defaults marker and remove ContainerPort defaulter + * Remove StripDefaults from BuildSwagger + * Add default for protocol and test that it works + * Strip defaults in new places + * Re-generate with defaults + * Update kube-openapi + * flowcontrol bootstrap: give catch-all PL more concurrency share + * APF matching: fallback to catch-all if nothing matches + * flowcontrol bootstrap: make exempt PL last + * APF: graduate API and types to beta + * Mixed protocol support for Services with type=LoadBalancer (#94028) + * Fix test name in e2e resource metrics api test + * Test CRUD operations on RuntimeClasses API + * vendor: cadvisor v0.38.4 + * Relax matching on pod_memory_working_set_bytes metrics + * configure the ReadIdleTimeout and PingTimeout of the h2 transport + * Match pod resource metrics to pod not container + * add more e2e sctp tests + * remove wrong test for SCTP connectivity + * Update the route table tag in the route reconcile loop + * Fixes sigfault in case of empty TopologyInfo + * Update generated files + * Add service.spec.AllocateLoadBalancerNodePorts + * update golang.org/x/net and golang.org/x/sys + * Update 1.18 changelog with changes from v1.18.11 + * fixup! unblock resources that the storage version manager depends on + * fixup! add storage version garbage collector + * generated + * GC integration test + * unblock resources that the storage version manager depends on + * make storage version manager wait for lease creation + * add storage version garbage collector + * Fix cacheWatcher leak when time jump to the future and jump back + * Correct rebase issues + * Implement shutdown manager in kubelet + * Add systemd package to interface with dbus + * Corrected CSIDriver validation rebase issues + * Remove duplicate CSIDriver name validation + * Adjust CSIDriver validation to check objectmeta + * Enable logging and drop permissive targets for CSI mock driver + * Update the mock driver to use 4.0.2 + * Included e2e test for CSIDriver FSGroupPolicy + * Move CSIVolumeFSGroupPolicy to beta + * Relax validation for CSIVolumeFSGroupPolicy + * Fixed quantization and made monotic time reversal not panic + * Log defaulted kube-scheduler component config at startup + * Updates related to PR feedback + * core/v1: document that topologyKeys requires the ServiceTopology feature gate + * Use K8s in the README + * stop serving deleted APIs + * Increase watch timeout when scaling Deployment Replicas + * CHANGELOG: Update directory for v1.18.12 release + * scheduler: Implement resource metrics at /metrics/resources + * quantity: Allow quantity to be converted to float64 + * plumb service account token down to csi driver + * remove generator from service in kubectl + * add myself to sig-network-api-reviewers + * Add datapolicy tags to staging/src/k8s.io/client-go/ + * cleanup: fix log capitalization in scheduler + * Add --experimental-logging-sanitization flag to Kubelet + * Run ./update-all.sh + * Implement e2e tests for pod scope alignment + * Add tests for getPodDeviceRequest() for devicemanager + * Add tests for GetPodTopologyHints() for devicemanager + * Update topology hints tests to use pod object for devicemanager + * Add tests for GetPodTopologyHints() for cpumanager + * Refactor topology hints tests for cpumanager + * Move scope specific tests from topologymanager under particular scopes + * Move common tests from topologymanager under scope + * Update topologymanager tests after adding scopes + * Implement devicemanager.GetPodLevelTopologyHints() function + * Implement the cpumanager.GetPodTopologyHints() function + * Update logging to use a format util + * Implement topology manager scopes + * Add GetPodTopologyHints() interface to Topology/CPU/Device Manager + * Add flag value validation of TopologyManagerPolicy + * Add flag value validation of TopologyManagerScope + * Add kubelet configuration flag 'topology-manager-scope' + * Support custom tags for cloud provider managed resources + * use uncommon ports for e2e network test + * fix pull image error from multiple ACRs using azure managed identity + * add e2e test for dual-stack secondary service IPs + * Verify iptable rules are applied for tcp, udp and icmp + * Choosing the right source VIP for local endpoints + * Configure StackdriverLogging Windows service to restart on failure. + * Adding sample files to demonstrate how cloud provider leverage CCM. + * Updating EndpointSlice strategy to cover alpha NodeName field + * Support high availability ports + * Allow debugging kubelet image pull times + * Separate in-tree gcepd driver for windows + * Cleaning up EndpointSlice update validation tests + * Removing "IP" from supported EndpointSlice address types in kube-proxy + * Updating ControlPlane to support NodeName field + * Updating EndpointSlice controllers to support NodeName field + * Adding EndpointSliceNodeName feature gate + * Adding NodeName to EndpointSlice API, deprecation updates + * update bazel + * Promote Deployment lifecycle e2e test to Conformance + * CHANGELOG: Update directory for v1.19.4 release + * handle the case for slow cronjob lister, add unit tests + * convert to stardard lister, use []*batchv1.Job instead of []batchv1.Job + * actually retry if we failed to reconcile some objects + * Update storage test suits for Windows + * Promote Pod/PodStatus lifecycle e2e test to Conformance + * Fix failures in TestBindPlugin and TestPreemptWithPermitPlugin + * Set 0 sync period in scheduler integration test + * CHANGELOG: Update directory for v1.17.14 release + * GA of RuntimeClass feature gate and API + * put a message, not a stack, in the log on a timeout + * Update snapshot CRDs + * Set priority of Event v1 higher than v1beta1 + * Implement TopologyInfo and cpu_ids in podresources + * Convert podDevices to struct + * Generate podresources API for TopologyInfo and cpu_ids + * Add TopologyInfo and cpu_ids into podresources + * Change GetDevices interface + * Revert "Merge pull request #92312 from Sh4d1/kep_1860" + * fix all Sting method not check nil in "k8s.io/apimachinery" + * fix the validation logic for Job/CronJob RestartPolicy field + * fix note delete to update according to code + * Fix a bug that DefaultPreemption plugin is disabled when using scheduler policy + * fix(test::npd): provide NPD with proper kubeconfig + * Bump kas to v0.0.14 + * Capture defaulted plugin configs from framework + * move lease controller to k8s.io/component-helpers/apimachinery + * Bug Fix for process_start_time_metric initialization + * add V(4) log when apiserver lease was deleted before this controller reacts + * generated + * integration test + * add apiserver lease garbage collector + * update violation_exceptions.list and make generated + * add cronjob_controllerv2.go + * Add CRI v1 proto + * dualstack: Use Agnhost in place of BusyBox + * Downward API hugepages + * added new runtimeclass test and changed Disruptive to Serial + * kubeadm: mark the "master" label/taint as deprecated + * dualstack: use correct IPFamily list for conntrack checks in e2e + * move service controller config to k8s.io/cloud-provider/controllers/service/config + * Use FilteredDialContext with quobyte API + * Update quobyte client API to v0.1.8 + * import restrictions: allow k8s.io/kubelet to import credentialprovider apis + * hack/.golint: ignore golint for new kubelet and credentialprovider APIs package + * pkg/credentialprovider: export URL parsing and matching helper functions + * pkg/credentialprovider: add initial exec-based credential provider plugin + * kubelet: add initial credentialprovider v1alpha1 APIs + * feature gates: add KubeletCredentialProviders feature gate + * kubelet: support alpha credential provider exec plugins + * kubelet: update pkg/kubelet/apis/config/OWNERS to include api approvers and reviewers + * kubelet: add CredentialProviderConfig API + * Change at which level klog.Fatal is invoked + * Forbid creating clusters with more than 100 nodes without vpc-native + * Change the logic of pod volumes existence check during kubelet cleanupOrphanedPodDirs, cleanupOrphanedPodCgroups and PodResourcesAreReclaimed + * remove label dependency on k8s api in Azure + * Remove duplicate import + * Add --experimental-logging-sanitization flag to control plane components + * FsgroupChange policy test suite + * Improve observability of node authorizer: * Adding some metrics to the graph * Adding log message when node authorizer has synced + * Remove ready directory which created in empty volumeMounter setUp func + * cloud-provider: update docs and guidance for InstanceV2 and Zones + * fixing issue where SMB share paths cannot resolve with CRI-containerD on Windows + * Ignore specific Pod update events in scheduler + * Support customize load balancer health probe protocol + * Move fsGroupChangePolicy feature to beta + * Add WindowsContainerResources to UpdateContainerResourcesRequest + * Change snapshot test to use v1 apis + * Modify storage snapshottable and disruptive test for Windows + * fix: change storage account client API version for Azure Stack + * Fixed failure: ProvisioningFailed: Failed to provision volume with StorageClass "standard": invalid AccessModes [ReadWriteOnce ReadOnlyMany ReadWriteMany]: only AccessModes [ReadWriteOnce ReadOnlyMany] are supported + * Set enable konnectivity service to true by default + * fixup! apiserver correctly validates encoding/decodable versions + * HTTP Prove: Removes Accept-Encoding header from http probe + * Update snapshot CRDs to v1 + * Enable ConfigurableFSGroupPolicy feature gate + * Add dangling volume check for vsphere + * update e2e kubectl test + * prune type in preserve-unknown-fields objects + * Add AddedAffinity to the NodeAffinityArgs + * Remove --redirect-container-streaming functionality (#95935) + * Fix go lint on folder apimachinery/pkg/runtime/serializer/protobuf + * Graduating AppProtocol to GA + * Fix command and arg in NPD e2e + * Call MountDevice only once + * Mark MountDevice as uncertain after failed resize + * Restore staging path creation + * Add unit test for staging path creation + * kubelet: move pkg/kubelet/cri/.import-restrictions to pkg/kubelet/cri/streaming + * kubelet: add feature gate check for exec probe timeouts + * features: add ExecProbeTimeout feature gate + * kubelet: allow dockershim exec timeouts to be longer than 10s + * kubelet: add e2e test for exec readiness probe timeout + * kubelet: stop skipping docker exec livenessprobe timeout test + * kubelet: respect probe exec timeout from CRI by returning utilexec.CodeExitError + * kubelet: respect dockershim exec timeout + * Implement log sanitization + * Update bazel + * apiextensions: adapt error tests to fixed validation messages + * apiextensions: switch validation to kube-openapi + * bump(k8s.io/kube-openapi) + * stops puting a stacktrace of aborted requests in the logs + * require APIServerIdentity to be enabled to run StorageVersionAPI + * apiserver correctly validates encoding/decodable versions + * updater correctly updates storageversion status + * return a Status formatted JSON response + * generated + * Add an integration test. + * make some rbac and scheduling post start hooks tolerate the apiserver bootstrap delay caused by installing storage versions. + * Add a generic filter that blocks certain write requests before StorageVersions are updated during apiserver bootstrap. + * Collect storage versions as ResourceInfo when installing API endpoints. + * Add a feature gate + * add andyzhangx as reviewer + * Add nodeSelector for konnectivity daemonSet + * fix ingress comparaison + * fix defaulting + * add nil case in proxy + * fix build + * fix nit in validation + * fix tests + * Update generated + * fix reviews + * Update generated + * fix review + * fix typo + * add owner for feature gate + * fix rebase + * fix review + * Add tests + * Add route type field to loadbalancer status ingress + * Update docs and fix redundant logic of scheduler perf + * remove kube-proxy/config/v1alpha1 from .golint_failures + * Fix go lint on folder apimachinery/pkg/runtime/serializer/json + * Change the features removal note + * Promote TokenRequest e2e test to Conformance + * cleanup dated wording "NominatedNodeName annotation" + * fix formatting + * generated + * add kube-apiserver-lease-controller poststart hook + * Add constant PodReadyTimeout to e2e test + * Adjusted timings and management of pods in e2e test + * Create Pod+PodStatus resource lifecycle test + * Update UTs + * Fixing expected pod subdomain to match framework.TestContext.ClusterDNSDomain + * e2e: add APF flowcontrol request drown-out test + * Less restrictions for AWS NLB health check config + * scheduler: remove FrameworkFactory. + * PV e2e: fix race in NFS recycling test + * Add support to size memory backed volumes + * update max azure data disk count map + * kubeadm: fix the lint failure where return value is not checked + * Generated changes + * Move the remaining kubectl bits to k8s.io/kubectl + * Introduce kubectl-convert plugin + * Adding config extension to CCM. + * remove annotation cache sync because of code removed + * Increase the timeout to allow summary test pod to start + * removes filter metrics test retries + * Use topology labels instead of old beta names (#96033) + * CRs: Default non-nullable nulls + * Move kubectl get-context validate logic to Validate function + * endpointslice API: rename 'accepting' condition to 'serving' condition + * endpointslice controller: add test cases to TestSyncServiceFull for terminating endpoints + * endpointslice controller: refactor TestSyncServiceFull to use test tables + * endpointslice API strategy: drop disabled fields 'accepting' and 'terminating' + * endpointslice controller: set new conditions 'accepting' and 'terminating' + * feature gate: add gate EndpointSliceTerminatingCondition + * endpointslice API: add accepting and terminating conditions + * kubelet: Use CRI SecurityProfile for Seccomp + * Switch GCP list calls to paginated calls. + * dualstack: cleanup IsIPv4 duplicates in favor of utils + * dualstack: incorporate IsIPv4 updates from utils repo + * abort if namespace doesn't exist or terminating + * proxy: validate each CIDR config seperately and check for errors + * minor changes in adding tests for checking metrics labels + * make flags of TokenRequest required + * default `service-account-extend-token-expiration` to true + * E2E stress test suite for VolumeSnapshots + * Update Microsoft/go-winio to released version + * APF metrics: set StabilityLevel to ALPHA + * kubectl debug: allow set-image-only invocation + * Introduce a simple datapolicy library + * Remove the dependency between create priorityclass command and generators + * Deflake existing configmap count + * update features to indicate beta in comment + * cleanup: use i18n.T on all command descriptions + * Revert "add e2e test for Service ExternalIPs" + * CHANGELOG:Fix kubelet flag enable-cadvisor-json-endpoints + * client-go/rest: fix finalURLTemplate for url base == "/" + * Correctly fix clearing conntrack entry on endpoint changes (nodeport) + * Remove Const IPVSProxyMode + * update changelog-1.20 + * test images: Authenticate in order to push images + * Support multiple standard load balancers in one cluster + * Use user facing field names in validation message + * report UnschedulableAndUnresolvable status instead of an error when PVCs can't find bound persistent volumes + * separate RootCAConfigMap from BoundServiceAccountTokenVolume + * Add mrunalp as node approver + * test images: Removes -p yes flag from qemu-user-static script call + * optimise defaultpreemption: enumerate fewer candidates + * apiserver/filters test: fix data race and do not leak goroutines + * APF: use snake_case in metric labels + * Volume snapshot e2e test to validate VolumeSnapshotContent and PVC finalizer + * minor changes to tests for checking metrics labels based on review comments + * check if kubectl version required values are empty + * Exclude KEP-1933 from verify-all.sh until after alpha status. + * add GVK to fake dynamic client to match actual behavior + * demonstrate existing generated client and fake client behavior is consistent + * remove dead apiserver field + * Adding an owner for addon/dns folder + * fix: pass bearer token to curl using -H instead of --oauth2-bearer + * Remove alpha from kubectl debug + * do not allow inflight watermark histograms to fall too far behind + * test images: set DOCKER_CLI_EXPERIMENTAL=enabled + * Remove maximum volume limit comment which is easily outdated. + * DelegatingAuthenticationOptions: allows for setting a timeout for the TokenReview client that is used by for the webhook authenticator + * Update staging/src/k8s.io/kubectl/pkg/cmd/create/create_rolebinding_test.go + * pause image: Disable DiagTrack service on Windows image + * replace string casting with fmt.sprintf in test + * Fix paging issues when Azure API returns empty values with non-empty nextLink + * change plugin name in fsgroupapplymetrics of csi and flexvolume to distinguish different driver + * test images: sets HOME=/root in cloudbuild.yaml + * Update CHANGELOG link of older releases + * Remove TaintBasedEvictions Feature Gate + * Replace calls to cs.CoreV1().Nodes().Create() with createNode() + * Add a function to ensure created nodes are present in scheduler cache + * local-up-cluster.sh: Use config file instead of flags for kubelet + * Add a verbosity option to exec + * KEP-1933: add static analysis target to hack/ + * kubectl debug: Allow mutating image names + * Increasing withTimeout for ReplicationController Lifecycle test steps + * Propose seccomp/apparmor protobuf type definitions for CRI graduation + * Update Klog dependency + * Remove service load balancer feature gate + * resource-metrics: add pod metrics e2e test + * reenable e2e_node services & debugging improvements + * resource-metrics: add pod/sandbox metrics to endpoint + * Removing Alpha annotation as the feature is graduating to Beta in v1.20 + * Add runtime representation of []v1.PreferredSchedulingTerm + * Move pkg/kubectl/cmd/auth under staging/src/k8s.io/kubectl/pkg/cmd/auth + * use patch instead of replace to test the dry-run option + * CHANGELOG: Update directory for v1.20.0-beta.1 release + * fix CPU time of pod stats with cs.CPU.Time + * Skip the sig-storage e2e test as early as possible + * Remove useless variable and if + * kubectl debug: add tests for Complete,Validate + * Move Snapshot to GA + * register controllermanager.config.k8s.io group. + * fix(test::npd): fix node problem detector test + * fix n to nodeInfo easy to understand + * Update cobra dependency to v1.1.1 + * Adjusted e2e test watch timeouts, logging and pod management + * Update usage information for --http-override + * Bump agnhost version + * Add override option to netexec + * Add a redirect handler to netexec + * Add optional code to netexec echo endpoint + * Honor disabled LocalStorageCapacityIsolation in scheduling + * Build files + * [kubelet] Allow priority to be set for kubelet process on Windows + * add e2e test for Service ExternalIPs + * e2e cases for apf + * Move helpers from pkg/registry/rbac/reconciliation and pkg/registry/rbac/validation under k8s.io/component-helpers + * Add runtime representation of v1.NodeSelector + * Remove variadic argument from storage interface + * Revert "Updated golang/x/net. Also updated golang.org/x/sys" + * Add multi request test + * Fix issue in missing metrics of terminated requests + * Fix bug in JSON path parser where an error occurs when a range is empty + * set webhook retry backoff parameters for kubelet + * thorw error if webhook retry backoof is not specified + * make backoff parameters configurable for webhook + * fix vendor/k8s.io/apimachinery/pkg/api/meta staticcheck + * Updated golang/x/net. Also updated golang.org/x/sys, as required by hack/lint-dependencies.sh. + * Disable watchcache for events + * local-up-cluster.sh: Remove ineffective parameters + * Pass all packages to conversion-gen + * refactor: migrate health checks of control-plane off insecure port in tests + * Implementing ExternalTrafficPolicy: local in winkernel kube-proxy via DSR + * add a jitter to bound token renewal + * Add datapolicy tags to cmd/kubeadm directory + * devicemanager: fix race in stub + * Add datapolicy tags to pkg/volume/ + * change bucket from 0.0s to 0.0001s + * refector service some e2e cases to make it runing in multi providers + * Added tests to check metrics labels + * Move CCM to staging k8s.io/cloud-provider + * mv TokenRequest and TokenRequestProjection to GA + * Populate ClusterIPs on read + * test: remove flacky ut + * Add json-response flag to porter + * local-up-cluster.sh: Pass CLUSTER_CIDR to kube-proxy + * HTTP Probe: Add 'Accept' header by default + * Add keep_time_key setting to fluentd configuration + * Enable filter latency tracking for request filters + * Measure how much time a request spends in server filter(s): + * hack/local-up-cluster.sh: fix API_PORT + * exec credential provider: exec -> client.authentication.k8s.io/exec + * kubectl flush profiling when get a sigterm + * Cleanup non-namespaced objects in e2e test during interrupts + * remove dead negotiation methods + * fake dynamic client: support *List kinds + * Move informer_factory to staging + * Remove behaviors + * add tests that update services while gate is off + * Add datapolicy tags to staging/src/k8s.io/kubectl + * Add datapolicy tags to staging/src/k8s.io/legacy-cloud-providers + * Mark SecondaryRangeName as deprecated. + * Move MatchNodeSelectorTerms to k8s.io/component-helpers + * exec credential provider: k8s.io/client-go/tools/auth/exec helper + * exec credential provider: ProvideClusterInfo and kubeconfig shadow + * Remove FieldMatchingFlags + * Adjust conversion generator to new converter changes + * Add datapolicy tags to pkg/scheduler/ + * Add datapolicy tags to staging/src/k8s.io/kube-aggregator/ + * Add datapolicy tags to test/e2e/framework + * Add datapolicy tags to pkg/apis + * kubeconfig: add explicit path, if specified to loading precedence + * Introduce api-extensions category in k8s apiserver + * refactor(apiserver): ignore the insecure flags + * Allow for configuring etcd progress notify interval on GCE + * Fix seccomp PSP docker/default annotation handling + * fixes max-min fairness + * local-up-cluster.sh: Pass SERVICE_CLUSTER_IP_RANGE to controller manager + * fix kubectl debug link error + * Added config parameter for CPU threads + * Updating EndpointSliceMirroring e2e test to accept multiple slices + * pin to latest k8s version + * more versions + * rev versions + * use current method signatures + * Update csi-proxy version + * add audit-log-compress to apiserver + * Update PriorityClass conformance test to cover DeleteCollection + * SetCondtion updates generation + * Update testing-manifests/storage-csi owners file + * CHANGELOG: Update directory for v1.20.0-beta.0 release + * Re-add the event recorder in the release test + * Don't clear the cached resourcelock when errors occurs on updates + * Add failing test showing release is not working properly + * Wipe some fields on service "type" updates + * Make some methods into non-methods + * If image has stackdriver agent installed, use it. + * remove the deprecated client that we stopped generating + * generated + * Update function setting master node size for GCE + * dualstack endpoints integration tests + * fix case when HC timeout is 0 + * pv controller test: more test cases + * pv controller test: use sub tests + * pv controller test: enable klog output + * cleanup: fix some error log capitalization + * fix unbound variable on upgrade + * add godoc for events to events.k8s.io + * Event: Document TTL and best-effort-ness + * Add the pod_resources_endpoint_requests_total metric + * Update podresources api e2e_node tests + * tombstone-ing IPFamily field(15) + * fake dynamic client: document that List does not preserve TypeMeta in UnstructuredList + * Change function signature for MatchNodeSelectorTerms + * Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck. + * Webhook: handle error when calling wait.ExponentialBackoff + * Fix cacher test after bumping fakeBudget timeout to 2 seconds + * Move pkg/apis/core/v1.IsScalarResourceName under pkg/scheduler/util + * fixed addons fluentd-elasticsearch statefulset format error + * PV controller: don't delete PVs when PVC is not known yet + * follow up for #94109 + * Enable Volume Expansion tests for Windows + * scheduler: make Profile an interface. + * Promote verify PriorityClass endpoints e2e test to Conformance + * add e2e test for services with hostNetwork endpoints + * e2e use functional options to configure NetworkingTest + * fix e2e service test container listening port + * dual stack services (#91824) + * Kubelet now implements the V1 podresources API + * Update generated files + * Add podresources v1 API + * Fix cacher test flakiness + * Make versionconverter functions private + * Reuse SSA type converter for resources in the same API Group + * Change pvc describe test + * add an APIServerIdentity feature gate + * DelegatingAuthorizationOptions: exposes and sets a default timeout for SubjectAccessReview client + * Fix the kube-proxy comment so that the document can be generated correctly + * Fix a lot of typos in Azure codes + * pause image: Stricter registry prefix regex + * apiserver: use canonical egress selection names in EgressSelectorConfiguration API docs + * apiserver: update TestReadEgressSelectorConfiguration to use 'controlplane' egress selector name + * apiserver: add validation for EgressSelection names in EgressSelectorConfiguration API + * apiserver: support egress selection name 'controlplane' and deprecate 'master' + * Update test/e2e/storage owners file + * Report a metric for time taken to perform recursive permission change + * Log PodExec stdout + stderr + * Add e2e test for the newPV Controller metric + * removed whitspace + * added xpack gem to enable ilm support in fluentd-es-image + * Add yaml util to unmarshal numbers into int/float + * Update the frontend IP config when the service's `pipName` annotation is changed + * fix typo in e2e test + * Add MrHohn as an owner of ip-masq-agent addon + * Bump ip-masq-agent version to pick up CVE fixes + * ipvs: check for existence of scheduler module and fail if not found + * fix: do not hardcode nginx image URL in rc e2e test case + * Grant group KUBE_POD_LOG_READERS_GROUP access to read pod logs on gke control-plane. + * Add configuration options to specify --detect-local-mode on kube-proxy. + * Fix static checks for pkg/controller/podautoscaler + * proxy: label kube_proxy test with more unique label + * Optimize NormalizeScore for PodTopologySpread + * Add 5k nodes benchmark for pod topology spreading + * PV Controller: PV plugin and mode metrics + * style: update comments in topology manager + * Optimize string building for NamespacedName + * Clean code: optimize some logs of mount + * extend request interval to make session affinity cases stable + * Add jingxu97 to volume/util owners + * Delete framework/v1alpha1 folder and change remaining import paths + * Fix a bug that Pods with topologySpreadConstraints get scheduled to nodes without required labels + * Fix staticcheck failures on apiserver/plugin/pkg/{authenticator, authorizer} + * Alter wording to describe pods using a pvc + * Deflake PostFilter integration test + * allow component-helpers to import util and klog + * generated + * generalize lease controller + * move node lease controller to component-helpers + * Add integration test for Default PodTopologySpread + * bump qemu version + * Rename flags + * Replacing factory tests with scheduler.New and options + * Add SETUP_KONNECTIVITY_SERVICE flag + * Separate network proxy flag for apiserver egress and starting pods + * kubeadm: validate node-cidr-mask are correct + * kubeadm validate maximum service subnet size + * write checkpoint only when allocated devices updated. + * kubeadm: validate podSubnet against node-cidr-mask + * Properly quote flags passed to Cluster Autoscaler + * Update nodelocaldns yaml to use 1.15.16 image + * remove unused const failedExpiration + * If we set SelectPolicy MinPolicySelect on scaleUp behavior or scaleDown behavior,Horizontal Pod Autoscaler doesn`t automatically scale the number of pods correctly + * format incorrectAddresses in klog + * fix: add missing patch flag for kubeadm init phase control-plane + * fix loop bug for verify attached volume + * test: Add service cluster IP range unit test + * prepare node performance tests to move to separate job + * ipset: Address a TODO, add test for TestEntry() with IPv6 address + * Fix labels for spreading benchmark + * Added functionality and API for pod autoscaling based on container resources + * Add more Pods and relax skew in E2E spread test + * Adjust the acceptable value of UsageNanoCores + * Return non-zero code on logexporter failures + * Fix default values for logrotate in /var/log/ + * Add integration test for kubectl debug + * Fix golint failures in client-go/transport + * Update the PIP when it is not in the Succeeded provisioning state during the LB update. + * Support cross compilation only on amd64. + * Always set relevant variables for cross compiling + * Use host IP instead of localhost for control plane component kubeconfig files. This is a part of work to allow control plane components to be moved off hostNetwork. + * Allow deletion of unhealthy pods if enough healthy + * iAdd host IP to etcd listen client URLs. Allow kube-apiserver to use host IP to connect to etcd. Update etcd/migrate to allow additional client listening URLs. + * Add error detail in log + * CHANGELOG: Update directory for v1.20.0-alpha.3 release + * fix the fake cloud provider + * Warn that hyper-v featuregate will be deprecated in 1.20 and will be removed in 1.21 + * Do not skip externalLB update if some nodes are not found. + * Promote Replication Controller lifecycle e2e test to Conformance + * Promote Replication Controller Lifecycle + * Move client_builder to k8s.io/controller-manager + * Graduate DefaultPodTopologySpread to beta + * e2e: topomgr: fix ginkgo log + * netpol: Add CRUD tests for NetworkPolicy API + * test images: Adds Windows support (part 2) + * refactor: migrate node e2e tests off insecure port + * Generated bazel + * Generated conversions + * exec credential provider: wire in cluster info + * Fix dependency linting + * Kube-proxy: Perf-fix: Shrink INPUT chain + * Fix flaky unit test Test_Run_Positive_VolumeMountControllerAttachEnabledRace data race + * conntrack log delete operations + * Bump github.com/Azure/go-autorest/autorest/adal to 0.9.5 + * kube-proxy: log stale services operations + * staging/publishing: cleanup import restrictions for csi-translation-lib + * tests: Refactor agnhost image pod usage - common (part 2) + * test, e2e: Remove duplication when using PodClient.CreateSync + * fix test flakes + * kubectl: allow users to use args with KUBECTL_EXTERNAL_DIFF + * e2e don't use hardcoded name for containers name + * avoid apiserver/cloud-provider/controller-manager deps from k8s.io/csi-translation-lib + * Add client listening URLs flag to etcd migrate. + * test: Fix using deprecated default cluster IPs + * Disable test for large clusters + * The function shouldRecordEvent will panic when the value of input object is nil + * Fix catch all regex and missing DryRun Options + * fix unbound variable issue in verify.sh + * support multiple bind records (fie nodelocaldns test regression), by first replacing PILLAR_ and then replacing other vars. + * Add back openapi gen for generic types and clean up doc.go + * fix a nil pointer ref in slice allocation + * warn user about resource being deleted + * Use gsutil to download kube binaries and release + * staging/publishing: remove release-1.16 rules + * test images: Switches to buildx + * Add new way to generate leader election lock + * fix staticcheck vendor/k8s.io/metrics/pkg/client/custom_metrics/multi_client.go:49:4: ineffective break statement. Did you mean to break out of the outer loop? (SA4011) vendor/k8s.io/metrics/pkg/client/custom_metrics/versioned_client.go:38:2: var codecs is unused (U1000) + * kube-proxy ensure KUBE-MARK-DROP exist but not modify their rules + * Remove redundant variable + * Switch events conformance metadata from v1.19 to v1.20 + * Fix windows node startup failures. + * CHANGELOG: Update directory for v1.18.10 release + * CHANGELOG: Update directory for v1.17.13 release + * kubelet container status calculation doesn't handle suddenly missing data properly + * enable benchmark by matching test config + * remove debug print from create quota + * Move SCTP to GA + * remove secondary client retries in e2e tests + * Add support for create ingress in kubectl + * Fix metrics reporting in kube-apiserver + * Fix --dry-run invocation in kubectl e2e + * fix: smb valid path error + * Fix staticchecks in vendor/k8s.io/client-go + * Replace non-ascii string under test/ + * add methods to deallocate and starts vms in a scale set + * Removing flaky tag from test + * Use fluentbit as logging agent. Replace stackdriver + * e2e: node: topomgr: avoid plugin leak on test fail + * add a local tlsTransportCache to available_controller + * Move dirExists() to kubelet_test + * Map SelectorSpreadPriority to PodTopologySpread plugin + * CHANGELOG: Update directory for v1.19.3 release + * Fix fcpath + * Ignore deleted pods. + * Make copied `localtime` file write-able + * Reorder default Filter plugins to have UnschedulableAndUnresolvable first + * Add unit tests for dockershim/exec.go + * test: Fix deprecated --dry-run parameter + * Enable XFS tests for recent GKE COS versions + * CHANGELOG: Update directory for v1.20.0-alpha.2 release + * PriorityClass lifecycle tests + * Fix log dumping for GKE + * Add `create ingress` command to `cmd/kubectl` + * Support the node label `node.kubernetes.io/exclude-from-external-load-balancers` + * Remove dependency between create rolebinding + * kube-eviction: Fix SI of process quantity + * add systemd mount options interface to support the no-systemd mount + * Move scheduler interface to pkg/scheduler/framework + * Fix vsphere disk detach failing + * - fix golint errors by adding defition comments - remove /pkg/apiserverinternal from .golint_failures + * [auth]Check verbs for nonresourceurls and resources + * add a OWNERS file under storageversion + * generated + * add the storageversion.Manager interface + * kubeadm: add some output to the generate-csr command + * Fix the busybox image tag in kubemark hollow nodes + * fix azure disk attach failure for disk size bigger than 4TB + * Add PULL_REQUEST_TEMPLATE.md and state the repo does not accept any direct changes + * Run hack/update-vendor.sh + * Add rule for component-helpers into staging/publishing/rules.yaml + * Removing GetPodPriority from pkg/api and importing PodPriority from k8s.io/component-helpers + * Duplicate a single helper from pkg/apis + * simpler addition of nodeport basic validation + * Replace Branch Manager/Patch Release Team with Release Manager + * OWNERS_ALIASES: Add xmudrii to release-engineering-reviewers + * make new command functions to keep private when they are not required to be public + * wrap errors from NodeLabel, NodePorts, NodePreferAvoidPods and NodeResourcesBalancedAllocation plugins + * fix azure disk data loss issue on Windows + * fix upgrade test + * Add defaultingType to PodTopologySpreadArgs + * Don't depend on DNS in NetworkPolicy tests + * kubelet: fix iptables setup under dual-stack + * Improve logging of iptables canary test + * Update addons volumesnapshots owners file + * Clarify that we don't audit events due to performance impact + * don't cache transports for incomparable configs + * Update write-pki-data to give read permissions to KUBE_PKI_READERS_GROUP, for components running as non-root to be able to read the credentials. + * Update to Calico v3.16.2 + * Update Windows Pause version to 1.4.0 + * Move cmd/controller-manager to k8s.io/controller-manager and cloud specific configs to k8s.io/cloud-provider. + * API server: fix default_konnectivity_socket_path typo. + * cleanup: fix golint errors in /pkg/kubelet/stats + * cloud node controller: handle empty providerID from getProviderID + * always collect containerd logs + * Upgrade snapshot controller to 3.0.0 + * log-dump.sh: Fix shellcheck issues + * test-integration: Fix using deprecated default cluster IPs + * Initialize k8s.io/kubernetes/staging/src/k8s.io/component-helpers + * Update the example for kubectl port-forward + * Upgraded aws-sdk-go to v1.35.5 to include more regions, i.e. Millan + * kubelet: Set dual-stack hostNetwork pod IPs on dual-stack nodes + * utilnode: fix incorrect documentation about node name vs hostname + * kubelet: allow specifying dual-stack node IPs on bare metal + * kubelet: Remove unnecessary sorting in NodeAddress tests + * allocate service-account flowschema to global-default + * Fix reporting network_programming_latency metrics in kube-proxy + * Allow configuration of etcd healthcheck timeout + * add ipv6 support to the image issue-74839 + * set lastterminationstate for container status even when CRI fails to return termination (or any) data + * Remove the dependency between create quota command and generators + * make download-or-bust compatible with both sha512/sha1 + * Fix documentation on EndpointSliceCache map + * Adding marosset to test/e2e/windows/OWNERS approver + * Add SELinux labels for kubelet on Fedora CoreOS + * add CAP_NET_RAW capability to CRI stats summery test + * e2e hostexec commands does not need sudo + * Update after code review + * Update cluster/gce/util.sh + * Fix some shellcheck warnings/errors in cluster/gce/util.sh + * Mask bearer token in logs when logLevel >= 9 + * Update test/e2e/framework/network/utils.go add logging about min/max interval Co-authored-by: Antonio Ojea + * scheduler framework: document how to make plugins configurable + * Send node startup scripts to console and journal + * Disable the Accelerator metrics by default + * Adding Bazel dependencies + * Adding failure scenario for long FQDN and setHostnameAsFQDN feature + * add unit tests for network plugin manager metrics + * clarify help for --api-version: note it's API group/version + * include APIVersion in output of 'kubectl api-resources' + * Move cloud related feature gates to controller-manager + * Replace AreLabelsInWhiteList with isSubset + * mark node-problem-detector as serial + * Cleaned up and fixed: the potentially misleading comments around Event struct + * Update DialFromNode to return values as is done w/ other tests. Update comments to clarify missing probability check function (since they need to be updated anyways b/c of the return value introduced) + * Azure: fix node removal race condition on VMSS deletion + * removed links to soon deprecated helm stable repo & added artifact hub link + * get kibana up to speed with es + * rev version of stateful set + * v1.18 support changes + * kubectl: Update triage/support label references to kind/support + * Fix golint failures in pkg/registry/core/replicationcontroller + * kubelet: do dual-stack iptables rules + * use new fluentd image in daemonset + * updated fluentd and all plugins + * fix staticcheck for kubectl pkg files + * Add gate to install CSI proxy + * SetHostnameAsFQDN will be beta in v1.20, enable feature gate by default. + * test: e2e: fix race in pods test + * Fixes high CPU usage in kubectl drain + * proxy: Add tests for kube-proxy config defaulting + * test/e2e/framework/:use the term 'Control Plane' in comment + * Do not update managedFields timestamp when they don't change + * reconcile NLB attributes on service creation + * fix detach azure disk issue when vm not exist + * Mask Ceph RBD adminSecrets in logs when logLevel >= 4 + * Update triage/support label references to kind/support + * Update addon-manager makefile to use the new staging repo - for real + * Remove unused FailfWithOffset() + * Verify pod termination with E2E PreStop hook + * Move predicates and priorities configuration creation to Policy mapping + * Make the creation of namespace using POST and PATCH consistent + * vsphere: improve logging message on node cache refresh event + * Tag LabelSelector with +structType=atomic + * Bump to latest kube-openapi and SMD to pick up structType=atomic support + * just log essential pod info + * Add error text to kube-system wait error + * Change kubectl clusterinfo to non offensive words + * e2e can't use both pod.Name and pod.GenerateName + * Fix test "[sig-windows] DNS should support configurable pod DNS servers" + * Fix lint errors in pkg/contoller/endpoint + * Update Makefile to point to the new addon manager gcr repo + * Fixed percentage behavior in instr + * remove dns_common.go delete configmap stuff + * kubelet: remove some redundant iptables option checking + * Remove federation tests entirely because they break clusters and aren't relevant anymore + * Don't add empty AZ labels to OpenStack volumes + * resolve PR comment ( add nil check ) + * fixes test/integration/ttlcontroller staticcheck + * Add CSI proxy log to fluentd + * Update Windows image patch version + * Updated symbol 'framework.GetAllMasterAddresses' to not use word 'master' + * Updated symbol 'framework.GetMasterHost' to not use word 'master' + * fix: use ">" instead of ">=" in resource allocation + * add configuration for controller migration. + * Watch bookmarks may contain version of objects of other types + * Support sharing one IP address for multiple services + * Add unit tests for feature "Support sharing one IP address for multiple services" + * Graduate SelectorIndex to GA + * correct 'information' spelling errors + * correct 'admission' spelling errors + * add note for kubeadm cert renew + * Fix UpdateSnapshot when Node is partially removed + * Add LookForStringInPodExecToContainer that takes container name parameter, modify LookForStringInPodExec to call the new function. + * Fix test name TestDump + * kubeadm: deprecate self-hosting support + * make update + * fix integration tests + * fix error message + * fix goroutine that lives too long + * wrap errors in selectorspread and podtoplogyspread plugin + * add unit tests for getStorageAccounts in azure_storageaccount.go + * Lint ttl_controller + * Fix staticcheck failure for vendor/k8s.io/client-go/discovery/cached/memory + * kubectl: deprecate --delete-local-data + * wrap errors in service affinity plugin + * [pkg/watch/json]: remove dead code + * wrap errors in taint-toleration plugin + * pause image: moves wincat binary location + * Adds support for building Windows pause image + * tests: Refactors agnhost image pod usage - network + * tests: Refactor agnhost image pod usage - common (part 1) + * gce: redirect handshake server requests to metadata-concealment too + * Disable one subpath test for windows + * Add csiproxy log + * Collect debugs before framework.Failf + * Enable per-zone logexporter pods creation + * e2e/storage: disable caching when writing/reading to block PVCs + * e2e: add option to create pods with different image in pod.Config + * Clean up nits in delete cascade + * wrap errors from DefaultPreemption, ImageLocality and NodeAffinity plugins + * Fix LookForStringInPodExec(...) to take container name as argument, and refactor function usage Ref: PR 92127 review discussion https://github.com/kubernetes/kubernetes/pull/92127/files#r447853904 + * switching to stable version + * Fix kube-addon-manager overwriting resources with EnsureExists + * apiserver self request metric + * address instance_test nits + * It's an 'Instance' of apiserver + * upgrade test for BoundServiceAccountTokenVolume + * kubeadm: make the CP join handling of kubeconfig similar to "init" + * kubeadm: warn but do not error out on missing CA keys on CP join + * using structured logging in scheduler framework runtime + * agnhost image: use actual DNS domain instead of hardcoded cluster.local + * add aojea to test reviewers + * Use the exported struct member directly + * fix: correct glbc ClusterRole + * Updated vendor by `hack/update-vendor.sh` + * Update bazel + * Update dependencies + * Remove kubeconform + * Remove dependency on behaviors for conformance generation + * Fix typo & documentation on kustomize.md + * Remove unmaintained stackdriver logging e2e test + * replace sha1 with sha512 + * Use pager's context instead of TODO + * kubelet: add unit tests for imagePullSecrets keyring + * Keep the imagePullPolicy of kubectl alpha debug consistent with the default + * Remove ext2 + ext3 tests + * Add failure logic to tests that rely on side-effect-free dial functions. + * Adding back in the breadth-first-polling logic. "Revert "Merge pull request #93837 from jayunit100/DialFromContainerB"" + * Update the use message for kubectl debug + * Graduate kubeadm alpha certs command + * Fail test when Cinder volume deletion fails + * Add extra log when Cinder volume deletion fails + * Delete pre-provisioned Cinder volume by ID + * deprecate scheduler metrics BindingLatency and SchedulingAlgorithmPreemptionEvaluationDuration + * modify static check + * Replace e2essh on e2e service tests + * using kubectl apply to create metric adapter + * Allow the lifecycle of kube-proxy to be managed independently of the startup scripts for GCE + * Fix `kubectl describe ingress` format + * check readyz before adding endpoint for kube-apiserver + * Bump network proxy images to v0.0.12 + * Bump konnectivity-client to v0.0.12 + * tests: Refactors agnhost image pod usage in tests + * Revert "Merge pull request #93837 from jayunit100/DialFromContainerB" + * CHANGELOG: Update directory for v1.20.0-alpha.1 release + * Move Kubelet Summary API to staging repo + * removing deprecated scheduler metrics + * refactor(kubeadm): make `alpha kubeconfig user` command accpet --config + * wait until the iptables rules are programmed + * Add test for listing Leases from all namespace + * use GetInstanceProviderID to get instance provider ID + * Remove mattjmcnaughton as a sig-node reviewer + * Enhance the prompt information of verifyRunAsNonRoot, add pod, container information + * Update nodelocaldns yaml to use 1.15.14 image + * handle longer vendor paths without go files + * Show error in status if preserve unknown fields is true for nonstructural schemas + * `find . -type f \( -name "*.go" -or -name "*.md" \) -print0 | xargs -0 gsed -i 's/the the /the /g'` + * endpoinslices must mirror services labels + * kubectl: add a space between effect and operator when printing tolerations + * Return the Kubernetes version which stopped serving deprecated APIs by default + * log-dump.sh: Do not modify logexporter-daemonset.yaml in-place. + * Take into account latency incurred in server filters + * test images: uses nanoserver + * Remove kubeadm audit package + * Do not assume storageclass is still in-tree after csi migration + * fix kube-proxy cleanup + * scheduler_perf: use time.Ticker in throughput measurement + * Remove testcluster check for csi proxy + * Add cheftako to KCM owners. + * Add an unit test for requests including value after token + * Limit the max number of splitting + * fix: detach azure disk broken on Azure Stack + * [pkg/api/podsecuritypolicy]: fixup typo + * Add a check for crio service before starting node e2e tests + * apiextensions: prune array type without items in published OpenAPI + * test: add unit-test for TranslateCSIPVToInTree. + * apiserver: fix healthz vs. livez vs. readyz log output + * test(kubelet): deflake TestRotateShutsDownConnections + * kubeadm: update vendor to exclude kustomize import + * kubeadm: remove the --experimental-kustomize feature + * update-bazel + * use more granular buckets for azure api calls + * fix duplicate testcase names + * Adds filtering of hosts to DialContexts. + * update storageos vendor for FilteredDial change + * kubeadm: remove the --kubelet-version flag for "upgrade node" + * Adding cheftako to CCM owners. + * scheduler_perf: refactor to allow arbitrary workloads + * Tests for empty constraints array when DefaultPodTopologySpread is enabled + * cluster/images/etcd: Build etcd:3.4.13-1 image + * build: Update to debian-base:buster-v1.2.0 + * build: Update to debian-iptables:buster-v1.3.0 + * test(apply): deflake run_kubectl_apply_tests + * fix azure file migration panic + * Add support for s390x + * test images: Fixes echoserver s390x image + * Change code to use staging/k8s.io/mount-utils + * enable gce InstancesV2 + * implement gce InstancesV2 interface + * Update csi proxy to v0.2.1 + * cloud node controller: implement with workqueues and node lister + * CHANGELOG: Update directory for v1.19.2 release + * CHANGELOG: Update directory for v1.18.9 release + * CHANGELOG: Update directory for v1.17.12 release + * test/e2e: Busybox image is not being templatized + * move dashpole to emeritus in kubelet + * LockToDefault the ExternalPolicyForExternalIP feature gate + * Fix resource location for ipv6 pods + * Refactor kubectl without stdin test + * e2e sctp support for ipv6 + * Fix e2e autoscaling namespace error + * reduce cloud api calls in cloud-node-controller by passing instanceMetadata to updateNodeAddress + * Ensuring EndpointSlices are recreated after Service recreation + * Increasing acceptable timeout for EndpointSlice garbage collection + * Delete namespace parameter in create adapter + * verify-generated-swagger-docs: remove unnecessary build + * kubeadm: relax the validation of kubeconfig server URLs + * Graduate WinOverlay to Beta + * count of etcd object should be limited to the specified resource + * Run gofmt + * run hack/update-vendor.sh + * Move podresources api to k8s.io/kubelet/pkg/apis + * optimize the use of informer for scheduler + * Revert "conntrack e2e test debug connections" + * ingore apparmor on non Linux operating systems. + * test: ensure WaitForCacheSync is called after starting sharedInformerFacotry + * Move the RuntimeClass tests out of node-kubelet-orphans + * Test watchcache being updated in multietcd setup + * Enable progress notify events in watchcache + * Allow tracking resource version for reflector store + * Implement etcd3 progress-notify feature in etcd3 layer + * Pipe newFunc to etcd3 storage layer + * Update kubeconfig command-line help message for kube-proxy + * Clean up remaining ns flag + * Revert "Revert "Switch cos version to M85"" + * ubernetes_lite.go: remove image argument from SpreadServiceOrFail + * Don't attempt to detach an FC device if we don't know its name + * follow up cleanup after SupportPodPidLimits GA + * Mount kubelet and container runtime rootdir on LSSD + * avoid potential secret leaking while reading .dockercfg + * clean up podpreset deprecated client + * generated + * remove generated podpreset + * remove pod presets + * test/{images,utils/image}: Add justaugustus as reviewer + * cluster/images: Add justaugustus as reviewer + * hack: Add justaugustus as reviewer + * .github: Add justaugustus as reviewer + * kubeadm init phase upload-certs: add flag --kubeconfig + * portforward: Fix UDP-only ports calculation + * chore: add network rule support in Azure account creation + * Fix misusage of RLock in timeCache lru.Cache.Get() + * e2e test support microk8s + * test(iptables): deflake TestRestoreAllWaitOldIptablesRestore + * feat(iptables): be able to override iptables-1.4-compatible lock path + * test flake: fix data race in csi_test.go + * Move podPassesBasicChecks() to VolumeBinding plugin + * Remove pvcLister from genericScheduler + * add retry for creating metrics grabber to fix test flakes + * Remove tests related to HTTPS support for ingress-gce + * make kube::util::find-binary not dependent on bazel-out/ structure + * output go_binary rule directly from go_binary_conditional_pure + * hack/lib/util.sh: some bash cleanups + * bazel: Replace --features with Starlark build settings flag + * [go1.15] staging/publishing: Set default go version to go1.15.2 + * [go1.15] build: Use go-runner:buster-v2.0.1 (built using go1.15.1) + * [go1.15] Update to go1.15.2 + * [go1.15] hack/tools: Update to k/repo-infra@v0.1.1 (supports go1.15.2) + * [go1.15] build: Update to k/repo-infra@v0.1.1 (supports go1.15.2) + * Graduate ServiceAccountIssuerDiscovery to beta + * avoid logging token in RunDeleteTokens + * gpu device plugin uses EnsureExists addon mode + * Non-zero cfs quota period duration requires feature flag + * Use namespace flag passed to RunKubectl* methods + * Update etcd to dd1b699fc489 + * Fix some shellcheck warnings/errors in cluster/gce/util.sh + * kubeadm: remove stray "alpha phase" command + * kubeadm: remove the "alpha kubelet config enable-dynamic" command + * Fix index out of range panic for kubectl alpha debug + * rename some files + * Fix minor comment in a script + * Wrap errors on VolumeBinding plugin + * Wrap errors on DefaultBinder plugin + * Wrap errors when running Bind plugins + * Wrap errors when running PreBind plugins + * Remove field disablePreemption from internal scheduler codebase + * Run unit tests 2 instead of 3 times via bazel + * Add the storageversion.Manager interface + * pillar_dns_server remove change so as not to break tooling in the near term in the kubernetes/dns repo + * Fix staging/src/k8s.io/apimachinery/pkg/labels golint findings + * Use EphemeralContainers for storage validation + * Hold error in framework's Status + * Increase time it takes for second pod to startup for offline resizing + * Read PV object from apiserver to prevent flake + * Migrate scheduler, controller-manager and cloud-controller-manager to lease lock. + * fix the bug that kubeadm tries to call 'docker info' even if the CRI socket was for another CR + * Update csi-proxy to use beta version + * remove feature gate SupportIPVSProxyMode. + * Revert "Switch cos version to M85" + * bump the version of k8s.io/system-validators to 1.2 + * kubeadm: Update versions for 1.20 + * Handle nil elements when sorting, instead of panicking + * kubeadm: print warnings on invalid cert period instead of erroring out + * CHANGELOG: Update directory for v1.19.1 release + * Prevent deletion of namespace again + * Deprecate Dockershim + * Tolerate NotFound errors when deleting snapshots + * storage E2E: explicitly wait for PV deletion after ephemeral test + * Add vCenter info metric + * Avoid unnecessary calls if other error occurred + * test(portforward): deflake TestGetListener + * Add roundtrip tests for metrics repo + * generated + * Let kube-apiserver host the storage version API + * fixup: add podLister as a member field of DefaultPreemption + * Preemption plugin to fetch pod from informer cache + * Switch cos version to M85 + * generated + * fix import paths + * add internal.apiserver.k8s.io/v1alpha1 to known gvs + * update doc.go and register.go + * move apiserverinternal types to kube-apiserver + * Initialize scheduler's podInformer in sharedInformerFactory + * Sort list of formats for --logging-format description to make it deterministic + * skip TestClientReceivedGOAWAY + * Count storage requests as whole byte values in quota + * Add Stephen Augustus as Reviewer for staging/publishing + * e2e: fix deployment non-unique env vars to avoid SSA error + * Remove pkg/api/endpoints + * Stop container before remove for Docker + * fix golint failures for staging/src/k8s.io/client-go/examples/workqueue + * Revert "fix cluster/log-dump/log-dump.sh shellcheck failures" + * deferredResponseWriter returns after calling the Close() method + * test(tools::events): deflake TestEventSeriesf + * Fix typo in comment of hack/verify-shellcheck.sh + * Fix staticchecks ST1005,S1002,S1008,S1039 in pkg/kubelet + * Remove unnecessary double-pointer + * Add metrics for azure service operations (route and loadbalancer). + * Add tests for daemonset view history + * Add commend for printHistory function + * test(watch-tool): deflake TestRetryWatcherToFinishWithUnreadEvents + * dedup the printHistory logic in DaemonSetHistoryViewer,StatefulSetHistoryViewer + * Describe sts on rollout history if the revision + * kubectl: Use Fprintf + * fix golint for pkg/volume/azure_dd + * test(workqueue): deflake TestMetrics + * build/lib/release: Explicitly use '--platform' in building server images + * build/common.sh: Remove extraneous reference to debian-base image + * test(kuberuntime): deflake TestRecordOperation + * prefer NoError/Error over Nil/NotNil + * Deflake serving options, avoid hard-coding ports + * Deflake port forward tests to avoid hard-coded local ports + * Deflake cpumanager checkpoint unit tests + * Use unique socket name per cm test + * fix(azure::cache): TimedCache.Getter should be called once on the same key + * test(azure::cache): deflake TestCacheNoConcurrentGet + * Run slow kubeadm upgrade tests in parallel + * Ensure kubeadm tests have unique names + * Avoid mutating global variables in kubeadm certs phases + * test(iptables): deflake TestRestoreAllGrabOldLock + * Skip TestGOAWAYConcurrency + * test(apiserver): deflake TestClientReceivedGOAWAY + * Deflake TestSetup + * Deflake TestHTTPProbeProxy + * kubelet: remove alpha warnings for CNI flags + * Add more tests for LRU cache lookup + * Move ResourceQuota admission to k8s.io/apiserver + * do not mutate endpoints in the apiserver + * remove DefaultIngressClass feature gate for 1.20 + * Cleanup custom metrics conversion functions + * feat(kubeadm): specify resource requests in etcd pod spec + * Stop ignoring unit test flakes, require multiple successful passes + * kubeadm: remove the CoreDNS check for supported image digests + * Use ExpectNoError(err) + * allow to map the same container port to different host ports + * Updating winkernel kube-proxy OWNERS file + * consistently use double quotes in proto files + * Deflake TestServiceRegistryExternalTrafficHealthCheckNodePortUserAllocation + * add more testcases for GOAWAY filter + * prefer double quotes and consistent usage in .proto files. + * Improve ability to debug Events e2e failure + * Added support for register-with-taints setting #93608 + * AWS NLB/ELB health check config based on service annotations + * kubeadm: adjust the logic around etcd data directory creation + * fix vendor/k8s.io/apimachinery/pkg/runtime/serializer/versioning staticcheck + * test(csi): deflake TestAttacherWithCSIDriver + * Remove HeadlessService label in endpoints controller before comparing + * Remove default conversions + * Update security contacts for sig-cli + * Allow to disable logrotation of kubernetes and pod logs + * Fix some shellcheck warnings/errors in cluster/gce/util.sh + * Fix some shellcheck warnings/errors in cluster/gce/util.sh + * Fix some shellcheck warnings/errors in cluster/gce/util.sh + * Enhancement on the testcase to cover more possibilities + * fix kubeadm update coredns with skip pending pod + * address review comments + * Update kubectl to use new vendored github.com/fvbommel/sortorder dependency + * Fix broken dependency vbom.ml/util + * Add exp backoff for connection refused errors + * proxy/userspace: clean up and consolidate testcase setup + * proxy/userspace: use waitgroups instead of sketchy atomic ops in testcases + * Start CSI proxy as service + * remove --verbose_failures from .bazelrc + * fix a few missed references + * CHANGELOG: Update directory for v1.16.15 release + * update scripts + * fix doc file + * rename + * partial + * move port definitions to a common location + * remove iperf e2e test ip family tags + * modify DNS-1123 error messages to indicate that RFC 1123 is not followed exactly + * kubeadm: Fix `upgrade plan` for air-gapped setups + * Avoid the API call to update pod if nothing is changed + * moving files from k8s.io/util/mount into staging/src/k8s.io/mount-utils + * fix: return error with fewer mount options on Windows + * fix: smb remount issue + * Remove driver letter assignment during volume format + * Revert "Merge pull request #166 from jingxu97/May/drivename" + * chore: add more logging for mklink on Windows + * fix: remove unnecessary readlink check in IsLikelyNotMountPoint on Windows + * Remove driver letter assignment during volume format + * Switch to klog v2 + * ignore golint for some stutter that we want to keep as-is + * fix bad spelling + * Revert xfs_repair fix + * Fix windows MountSensitive error + * Fix subPath mountpint check + * Fix mount_windows build error + * Introduce paramater for sensitive mount options. + * FormatAndMount unit test only checks for MountErrorValue now and closed gaps for some error values + * Add more detailed error output when disk formatting fails + * Split MajorMinor into two fields + * update after review + * use xfs_repair to check and repair xfs filesystem + * Return typed error when Mount Fails + * Validate the existence of filesystem before attempting to mount it (linux) + * feature: implement Output method for FakeCmd + * Fix golint errors + * Update doc.go to show k8s.io/utils + * Extract pkg/util/mount and drop BUILD + * bind metadata proxy to 0.0.0.0 + * Add e2e multiple endpoint services test + * spdy: add optional periodic Pings on the connection + * fix vendor/k8s.io/apimachinery/pkg/conversion staticcheck + * Handle eviction of pods in deleted namespace + * drain: eviction creates in a deleting namespace will throw a forbidden error + * Fixed reflector not recovering from "Too large resource version" errors with API servers 1.17.0-1.18.5 + * Stop setting SelfLink in kube-apiserver. + * Fix FakeClock::Reset to always succeed + * add myself to sig-node-reviewers + * kubeadm: make the scheduler and KCM connect to local endpoint + * kubeadm: Ensure etcd manifests are regenerated upon upgrade + * Add WatchListPageSize to cache.Config + * Allow 404 error on lb deletion in azure + * add lock for csi node update + * fix typos in cmd/kubeadm + * clean up testutil/metrics content + * Update comments in pkg/scheduler/framework/v1alpha1/interface.go + * Update `kubectl diff --server-side` test. + * Skip TestLoopbackHostPortIPv6 run on non-IPv6 env + * relax matcher for ResourceMetricsAPI test + * fix staticcheck errors in resourcequota + * update test to match validation filter of pods + * Omit optional field when empty + * Update CNI plugins to v0.8.7 + * fix golint failures + * Mark SCTPConnectivity tests as disruptive. + * Add tests for SCTP network policies. + * Ensure getPrimaryInterfaceID not panic when network interfaces for Azure VMSS are null + * Improve the prompt message when kubeadm init is successful + * fixed golint error in pkg/apis/admissionregistration + * Add 1.19.0 API testdata + * Remove 1.17.0 API testdata + * chore: 📦 update generated files + * Update max data disk count with new instance types + * Getting rid of the Salt DNS replacements, addded / back. + * tests: Refactor agnhost image pod usage + * Improve docs for client-go warning handlers + * Override hostname with instance name + * Fix testpattern check + * chore(openapi-spec): 📦 regenerate + * Moving e2e tests to e2e_node directory + * Combine switch case into one case + * Ran hack/update-bazel.sh but discarded changes to root build file + * Move common portion of dynamic snapshot out of switch statement + * Remove custom hash function, generate a random UUID for snapshot and snapcontent name instead + * Stack snapshot tests into one to reuse snapshot resource and reduce time taken on prow. + * Quick commit + * Remove snapshot class from prepv test because it is not needed. + * Combine two tests with overlap to reduce overall snapshot test suite time + * Add pre provisioned snapshot tests + * start kube-apiserver and webhook server only once to shorten the webhook audit test time + * Minor cleanup in snapshot test suite. + * Add a link to liggitt's deflake docs in Flake template (#94243) + * Deprioritize extensions/v1beta1 in discovery + * Update cri-tools to v1.19.0 + * Update default etcd server to 3.4.13 + * fix(azure): check error returned by scaleSet.getVMSS + * fix cluster/log-dump/log-dump.sh shellcheck failures + * Remove azure-load-balancer-disable-tcp-reset annotation + * Remove duplicate nodeSelector + * fix linter issues for pkg/kubelet/cri/remote and staging/src/k8s.io/cri-api/pkg/apis/testing + * Fail early on stress test and improve logging + * kubectl wait add ignore not found flag + * Support kubectl delete foreground + * remove deprecated kubelet endpoint /metrics/resource/v1alpha1 + * Update options.go + * Initialize candidate directly instead of iterating the array of candidates + * Move brendandburns to to emeritus status. + * fix vendor/k8s.io/apimachinery/pkg/apis/meta/v1/unstructured/unstructuredscheme staticcheck + * only update Azure data disks when attach/detach + * Enable IP Tags on Azure LoadBalancer public ips + * Add PR #89069 Action Required + * Update etcd makefile to build 3.4.13 image + * Update etcd client to v3.4.13 + * update drain message to include namespace for pod in kubectl get compatible format + * CHANGELOG: Update directory for v1.19.0 release + * Fix issue on skipTest in storage suits + * Remove file_mode args for Windows test + * Update Calico to v3.15.2 + * Set snapshotType for tests with NTFS. + * Update CHANGELOG-1.18.md + * Add logging if container or pod fails to be killed + * Adding label NodeAlphaFeature to include tests in Node Testgrid + * Add impersonated user to system:authenticated group + * Verify running mirror pod has running containers + * Only process all nodes when incoming pod has no preferred affinity + * test(endpointslice): deflake TestSyncEndpoints + * Remove unnecessary conversion + * Detect change of volume attachability in the middle of attaching + * Promote PidLimits to GA + * Ensure backoff step is set to 1 for Azure armclient + * [pkg/registry/admissionregistration]: fixup wrong copy&paste godoc + * Remove StartupProbe featuregate and related logic + * Make ProjectedVolumeSource optional + * Track pods with required anti-affinity + * Updating kube-proxy to trim space from loadBalancerSourceRanges + * let panics propagate up when processLoop panic + * Allow to configure clustername in creation of kubeconfig using kubeadm command + * Make similar buckets for api and etcd request duration histogram + * .github: remove stackoverflow from support issue template + * Refactored pkg/controllers/resourcequota + * fix: use sensitiveOptions on Windows mount + * Cleanup kubelet TODOs that are no longer pertinent. + * kubelet, cgroupv2: do not create /sys/fs/cgroup/sys with cgroupfs + * Update wait function w/ descriptions of global node states, TODO for kubelet API. + * ARM client: survive empty response and error + * delete tests which use container manager stub + * tests: Use Windows absolute path on Windows pods + * Only lock statuses map when status isn't successful + * Do not allow manual changes to manageFields via subresources + * Change nodeInfolist building logic in scheduler + * do not create StatefulSet pods when PVC is being deleted + * fix misleading comment in expand_volume.go + * Simplify and de-lint GCE Windows kube-up docs. + * Add context to x509 verify failures + * Read ssh username from env variable + * Fix the logging message + * Use /usr/bin/env bash in Makefiles and scripts + * Scheduler auth stop using legacy scheme + * allow adding annotations to pod when using kubectl run and add tests + * kubeadm: Separate argument key/value in log msg + * update ResourceMetricsAPI node-e2e test + * docs(api): 📝 Fix HPA docs with addition of "External" type + * fix vendor/k8s.io/apimachinery/pkg/util/framer staticcheck + * Removed broken link to Analytics + * Make CSI mock driver log parse more flexible + * Verify that an ingress with empty TLS is valid + * Update client-go out of cluster example + * Update yaml files to use seccomp GA syntax + * go fmt fix + * remove some notes about scheduler/algorithm + * get: -o yaml, json set ServerPrint false + * Add test for `pkg/kubelet/util/util_windows_test.go#GetAddressAndDialer` + * back out conversion of DialFromNode->DialFromTestContainer + * kubelet: assume that swap is disabled when /proc/swaps does not exist + * e2e storage: skip multi-volume generic ephemeral volume test + * Reduce test volume sizes + * support ipv6 in e2e policy tests + * modify the warning log format from %d to %v + * Update snapshot controller to use k8s.gcr.io + * Seperate registry and feature gates + * names unnamed testcases, adds name to t.Errorf msg + * Improve running time of TestSchedulerWithVolumeBinding + * Add maxTries logging statement, otherwise the numbers are really hard to interpret + * implement breadth first try + * fix test/e2e_node staticcheck + * Fix error messages + * Fix Poll variable name + * Fix waiting for PVCs to get Bound + * Number of failed jobs should exceed the backoff limit and not big equal. Remove patch in e2e test of backoff limit due to usage of NumRequeues + * fix vendor/k8s.io/apimachinery/pkg/apis/meta/v1/unstructured staticcheck + * Fix some typo + * golint + * fix vendor/k8s.io/apimachinery/pkg/labels staticcheck + * Enable completion for `kubectl config delete-context` + * vsphere: remove inactive members from OWNERS + * sig-network: remove inactive members from OWNERS_ALIASES + * cluster/addons/dashboard: remove inactive members from OWNERS + * apiserver: remove inactive members from OWNERS + * Fast return when no any matched anti-affinity terms + * Update seccomp e2e test for GA + * Fix an error in NodeUnschedulable plugin comment + * Format Codes + * minor logic fix + * e2e test intra-pod breadth first logging and summary + * fix incorrect comment in runtime ObjectKind interface + * Fix job's backoff limit for restart policy Never, rely on number of failures instead of number of NumRequeues + * test(kubelet): add a regression test to verify kubelet would not panic + * fix(kubelet): protect `containerCleanupInfos` from concurrent map writes + * refactor(*): update pvc quota name typo in comment + * fix: azure disk resize error if source does not exist + * chore: add diskclient.Update interface + * chore: add diskclient.ListByResourceGroup interface + * Remove false positive warning in kubeadm cmd + * cloud provider: add zone/region to InstanceMetadata + * Sort kubectl top output when --sort-by and --containers are used together + * add testcases for kubelet getters + * fix a typo in the comment + * Use v1helper.GetPersistentVolumeClass for compatibility + * Add tests for managed fields tracking. + * leaderelection: Remove doubled space in "attempting to acquire leader lease" log + * benchmark-dockerized.sh: set KUBE_ROOT + * kubeadm: reset don't unmount /var/lib/kubelet if it is mounted + * PodReasonUnschedulable is not a pod condition type + * Fix kubelet log message when starting a container + * kubectl describe pod: use ReportingController as an event source + * Fix TestScorePlugin: numScore should be accessed with atomic.LoadInt32 + * expose Run[Pre]ScorePlugins functions in PluginRunner interface + * Cleanup wait forever loops in pv_controller_test.go + * Strip unnecessary security contexts on Windows + * Updating the Reviewers / Approvers for WinKernel Proxier + * fix the remote endpoint cleanup logic + * Add chendave to sig-scheduling REVIEWERS + * Adjust default replica count to 2 replicas + * Run make verify with python3 to fix publishing bot issue + * Document blocking behaviour of RunOrDie and Run + * removed k8s-master label + * Add example of using resource builder to load a manifest file + * tests: Fixes variable expansion false positive test + * revert auto-completed package names + * remove legacy leftovers of portmapping functionality that was moved to CNI + * mark this test serial due to race conditions + * Clean up daemonset test names + * Remove phantoms from dump_requests output + * deps: opencontainers/go-digest -> v1.0.0 + * Update k8s.io/utils dependency and use ebtables from there + * kubectl: Allow --patch-file to be passed to `kubectl patch` + * reduce type conversion and correct variable name + * Fix verbs reporting in kube-apiserver metrics + * kubectl: improve the warning message when doing kubectl apply to the resource without expected annotation + * Fix label reference in deployment checks + * Use NLB Subnet CIDRs instead of VPC CIDRs in updateInstanceSecurityGroupsForNLB + * Update readiness checks + * Update ready condition + * chore: upgrade Azure/go-autorest to v14.2.0 use autorest v0.11.1 + * extend ShouldCallHook benchmark to verify performance imporvement + * [kubectl] Fail when local source file doesn't exist + * nodelocaldns.yaml: remove force_tcp option which used for external dns query + * Create Deployment resource lifecycle test + * apf integration test: ensure no rejection + * skip mismatched webhookAccessor and object + * return err directly when nodename is not consistent in cert + * add bootstrap policy for monitoring roles + * unit test + * move to cadvisor.MachineInfo + * Delete ILB FR in case of changes to port/proto. + * fix windows container root validate + * hack: ensure go version is not specified for master in publishing rules + * publishing: remove go 1.13.9 for master branch for controller-manager + * add test case for kubeadm memory check + * add more testing cases + * Shorten watch restart test, run in parallel + * ipvs: log error if scheduler does not exist and fallback to rr + * fix golint failures in pkg/kubeapiserver/options, fix some incorrect replace of receiver name + * fix golint failures in pkg/kubeapiserver/options, rename receiver name of BuiltInAuthorizationOptions to o + * fix golint failures in pkg/kubeapiserver/options, use API Server in commemts instead of APIServer + * e2e node: fix kubelet service restart failure + * Mention background deletion in kubectl delete cascade help + * fix bazel build file + * correct the sandboxId attribute in unit tests + * address review comments + * add sandbox deletor to delete sandboxes on pod delete event + * Check for sandboxes before deleting the pod from apiserver + * fix(kubectl): warn users that flags cannot be placed before plugin + * Avoid using socket for hints + * regen + * update build + * remove serializers from codec factory + * update + * clean up unused var containerCache + * cleanup: print warning message after timeout + * Revert "cleanup: decrease log level from warn to v3" + * cleanup: decrease log level from warn to v3 + * AWS: increase io1 volume IOPs limit + * Add a preflight check that the control-plane node has at least 2GB RAM + * Handle int -> float conversion in FromUnstructured + * Fixed potential nil dereference in hostpath unit test + * Fixed error string should not be capitalized + * add GetAddressAndDialer unit test + * [k8s.io/apiserver/pkg/server/filters]: fixup go vet warning + * [kubelet/dockershim] : Use local copy for range iterator + * fix(staticcheck): fix static error of package `/pkg/volume/gcepd` + * Filters on kubemark nodegroups when selecting node template to enable hollow node clusters that contain real nodes. + * Move MasterUpgrade() out from e2e framework + * Use temporary directory when creating temporary file in tests + * generated + * add vendorless to client-gen + * use canonical import path in client-gen so that package comments are + * ipvs: ensure selected scheduler kernel modules are loaded + * Fix NetworkPolicy describe for egress-all policies + * Export WaitForCSIDriverRegistrationOnAllNodes to be used by external csi driver repos + * [e2e/storage] fix range issue in getCSINodeLimits + * kubelet: add operations count and error count metrics to network plugin manager + * fix HandleCrash() order + * fix golint failures in pkg/kubeapiserver/options + * remove duplicate path import + * AWS cloudprovider allow nlb-ip and external type lbs to be managed externally + * Move WatchUntilWithoutRetry() from e2e framework + * Add metav1.SetMetaDataLabel func + * Remove resize map code + * lock-free broadcaster, use chan to ensure thread safety + * [test/kubelet]: Fix deadlock in watch manager test + * kubectl: remove the dependency between autoscale command and generators + * cluster/addons/metadata-proxy: cleanup inactive members from OWNERS + * test/images/pets: remove OWNERS to cleanup inactive members + * apimachinery: remove inactive members from OWNERS + * [pkg/controller/certificates]: remove staled func comments + * Remove DeprecatedMightBeMasterNode() + * TestCreateInvokeAdmissionControl: remove unnecessary goroutine in sequential processing + * Add unittest coverage for boottime_util_linux.go + * dual-stack: make nodeipam compatible with existing single-stack clusters when dual-stack feature gate become enabled by default + * Adds additional documentation for job status + * Set the oom_score_adj of guaranteed pod to -997 + * Resolves staticcheck failures for component-base/metrics + * Change the node name from "machine" to "node" + * Fix a typo in PreBindPlugin comment + * Replaced repair with returning error, in delta_fifo.go + * Fix description of conversion generator + * Don't create a new sandbox for pod with RestartPolicyOnFailure if all containers succeeded + * add defer + * SIG node owner files clean up + * Refactoring: Reduce unnecessary lines + * Fix a typo in comment + * code clean for podgc + * fixed e2e vsphere statefulsets test + * Repair instead of panic when data corruption detected in DeltaFIFO + * conntrack e2e test debug connections + * disable goffuzz in binaries + * Add get-users and delete-user to kubectl config + * fix typo in runtime/interfaces.go + * Return nil as error when instance is not found so that node_controller could delete the node + * Cherry pick the fix https://github.com/kubernetes/kubernetes/pull/70291 + * Find what fails pull-kubernetes-e2e-gce-ubuntu-containerd + * Review update + * Sync with master + * Remove previously added '' no longer needed + * No quotes needed/wanted for CURL_RETRY_CONNREFUSED + * Add fix for run-kube-controller-manager-as-non-root + * Updates after review + * Update cluster/gce/gci/configure-helper.sh + * Update cluster/gce/gci/configure-helper.sh + * Update cluster/gce/gci/configure-helper.sh + * Update cluster/gce/gci/configure-helper.sh + * Mitigate newly added shellcheck issues + * Updates after code review + * Update after code review + * Code review update + * Fix shellcheck w/e in cluster/gce/gci/configure-helper.sh + * changes in imports was unintentional + * fix S1000 simplify ch switch cases + * fix S1000 simplify ch switch cases + * fix S1008 simplify bool returns + * fix S1002 omit comp to bool + * Warn when creating roles with custom verbs kubectl + * Fix static check failures for staging/src/k8s.io/apiserver/pkg/server/healthz/healthz_test.go + * cleanup tempfiles in unit test + * Enhance apiextensions-apiserver in standalone mode + * fix CHANGELOG typo + * Mirror pod without OwnerReference should not be created + * Add unit test to kubectl/cmd/run + * remove stale TODO after this PR: #92204 + * add line break when describe hpa + * basic regression test of runDockershim + * fix func name NewCreateCreateDeploymentOptions + * Fix error check logic + * Fix broken format in CHANGELOG-1.18 + * Remove contemplation of invariant violations from delta_fifo.go + * fix expanding rbd volumes without ceph.conf + * Adding tests for Kubelet pod update functions + * Update Calico cpva to v0.8.3 + * cleanup: remove useless methods + * Modify the kubelet document + * fix golint errors for pkg/kubelet/dockershim + * cleanup: no need nil check before range + * Add lease release tests in leader election + * Generate complete leader election record to resolve leader election issues with LeaseLocks + * fix: comments(only create parent dir) + * make kubectl/kubeadm completion script support busybox + * Add node-local-dns headless service + * Made containerd-namespace flag can be used when kubelet config start cmd + * fix comments + * fix: ignore dir check in csi node stage/publish + * Link to krew's new project site + * Remove --include-uninitialized flag documentation + * Use canonical URL for the krew project + * return success if cordon node by replace + * kubectl/drain add support for custom pod filters + * do not wait for node ready when starting kube-proxy in 'nokubelet' mode + * validate KubeletCgroups and KubeReservedCgroup -- Update to version 1.18.3: - * Move nfs-provisioner from quay.io/kubernetes_incubator to staging-csi - * Use staging-csi to work around quay.io availability - * Azure: support non-VMSS instances removal - * deps: Use debian-base:v2.1.0 and debian-iptables:v12.1.0 - * build: Add build-image OWNERS to debian-{base,iptables} and pause dirs - * count no nodes scheduling failure as unschedulable instead of error - * kubeadm: fix flakes when performing etcd MemberAdd on slower setups - * base-images: Update to kube-cross:v1.13.9-5 - * build: Alpha-sort dependencies.yaml - * fix: azure disk dangling attach issue - * kube-proxy: increase the session affinity timeout to ensure that the test passes in ipvs mode - * cluster: ipvs conntrack module vs kernel version - * allow k8s.io/kubernetes/third_party/forked/ipvs in e2e test framework import restrictions (transitive dep from pkg/kubemark) - * add license headers for third_party/forked/ipvs - * third_party/forked/ipvs: check the address family if the netlink address family attribute is not set - * run hack/update-vendor.sh to remove github.com/docker/libnetwork - * remove github.com/docker/libnetwork from go.mod - * update pkg/util/ipvs to use third_party/forked/ipvs - * move github.com/docker/libnetwork/ipvs to third_party/forked - * fix backoff manager timer initialization race - * fix: ACR auth fails in private azure clouds - * Restore cache-control header filter - * kube-scheduler: compatibility with ServerSideApply - * bugfix: initcontainer wasn't considered when calculate resource request - * fix: azure file csi migration failure - * Fix flaws in Azure CSI translation - * Revert "stop defaulting kubeconfig to http://localhost:8080" - * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.2 - * Fix Node initialization for GCP cloud provider - * Simplify unregistration of csiplugin - * Unregister csiplugin even if socket path is gone - * Move PSP tests behind a feature tag - * kube-openapi bump to release-1.18 - * Preserve int/float distinction when decoding raw values - * Check Annotations map against nil for ConfigMapLock#Update() - * Fix CSINodeInfo startup - * Wait for APIServer 'ok' forever during CSINode initialization during Kubelet init - -- Add ConditionPathExists=/var/lib/kubelet/config.yaml to kubelet.service [boo#1146372] - -- Run sysctl -a --system before kubelet to ensure sysctl parameters are correctly loaded [boo#1171770] - -- Update to version 1.18.2: - * Fix GCE ILB for large clusters - * Restore the ability to `kubectl apply --prune` without -n flag - * Fix client watch reestablishment handling of client-side timeouts - * Fix priorityClass typo, add numeric priority to static pods - * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.1 - * Test dropped round-trip annotations in HPA conversion - * Drop round-trip annotations in HPA conversion - * Skip updating cache on pod update if the node was deleted - -- kubelet-common: conflict with other instances of kubelet-common and require kubernetes-kubelet%{baseversion} - -- Update to version 1.18.1: - * Ensure Azure availability zone is always in lower cases - * Even with build error, kubectl apply should apply all valid resources - * fix: update max azure disk max count - * Ensure diff doesn't persist patches - * Fix permissions for endpointslice controller - * Clean up event messages for errors. - * Allow list-resources.sh to continue if a resource fails to list - * fix a bug where spn: prefix is unexpectedly added to kubeconfig apiserver-id setting - * Adds integration test for apply failures when applying multiple resources - * Fixes problem where kubectl apply stops after first error - * fix cpu resource metric type by changing to counter - * fix concurreny issue in lb creation - * Kubeadm: fix Ready condition check - * kubeadm: add missing RBAC for getting nodes on "upgrade apply" - * Check that ImageInspect pointer is not nil - * Fix bug about unintentional scale out during updating deployment. - * Update CHANGELOG/CHANGELOG-1.18.md for v1.18.0 - * build/dependencies: Remove bazel WORKSPACE go_version check - * deps: Update to Golang 1.13.9 - * build: Remove kube-cross image building - * Label Windows test as Serial. - -- Initial Packaging - see kubernetes changelog for historic logs +- Initial Package libstorage-ng +- Translated using Weblate (Dutch) (bsc#1149754) +- 4.3.95 + +- Translated using Weblate (Slovak) (bsc#1149754) +- 4.3.94 + +- Translated using Weblate (Japanese) (bsc#1149754) +- 4.3.93 + +- Translated using Weblate (Finnish) (bsc#1149754) + +- Translated using Weblate (Czech) (bsc#1149754) + +- Translated using Weblate (Portuguese (Brazil)) (bsc#1149754) +- 4.3.92 + +- Translated using Weblate (Catalan) (bsc#1149754) + libtorrent-rasterbar +- Update to version 1.2.13 + * allow no-interest timeouts of peer connections before all + connections slots are full + * fix issue where a DHT message would count as an incoming + connection + * fix issue when failing to parse outgoing_interfaces setting + * fix super-seeding issue that could cause a segfault + * fix data race in python binding of + session::get_torrent_status() + * fix need_save_resume_data() for renaming files, share-mode, + upload-mode, disable- pex, lsd, and dht. + * fix incoming TCP connections when using tracker-only proxy + * fix issue with paths starting with ./ + * fix integer overflow when setting a high DHT upload rate + limit + * improve Path MTU discovery logic in uTP + * fix overflow issue when rlimit_nofile is set to infinity + * fix issue in python binding interpreting int settings > + INT_MAX + * Fix cxxflags and linkflags injection via environment + variables + libvirt +- virtlockd, virtlogd: Fix exec-restart + 6b8e9613-avoid-use-after-free.patch, + eab7ae6b-fix-array-access.patch, + c363f03e-virnetdaemon-intro-virNetDaemonQuitExecRestart.patch, + ccc6dd8f-fix-exec-restart.patch + bsc#1183411 + +- Replace libxl-default-pcistub-name.patch with upstream variant + ee3dc2c2-libxl-default-pcistub-name.patch + libyui-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-ncurses-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-ncurses-pkg-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-ncurses-rest-api -- Require libyui-ncurses (bsc#1181653) -- 4.0.1 - -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - -- Create structure to move handlers to separate classes (bsc#1132247) -- 0.2.3 - -- Use new parent lib SO version libyui.so.14 (bsc#1176402). -- 0.2.2 - -- Use new parent lib SO version libyui.so.13 (bsc#1175115) -- 0.2.1 - -- Trigger update on YCombobox, YSelectionBox, YInputField, - YMultiSelectionBox (bsc#1139747) -- Add support for YDateField and YTimeField -- Add support for YCheckBoxFrame -- 0.2.0 - -- Use new parent lib SO version libyui.so.12 (bsc#1172513) -- 0.1.2 - libyui-qt-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-qt-graph-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-qt-pkg-doc -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - libyui-qt-rest-api -- Require libyui-qt (bsc#1181653) -- 4.0.1 - -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - -- Add activation for YTable (bsc#1139747) -- Create structure to move handlers to separate classes -- 0.2.4 - -- Add activation for Radiobutton (bsc#1139747) -- 0.2.3 - -- Use new parent lib SO version libyui.so.14 (bsc#1176402). -- 0.2.2 - -- Use new parent lib SO version libyui.so.13 (bsc#1175115) -- 0.2.1 - -- Trigger update on YCombobox, YSelectionBox, YInputField, - YMultiSelectionBox (bsc#1139747) -- Add support for YDateField and YTimeField -- Add support for YCheckBoxFrame -- 0.2.0 - -- Use new parent lib SO version libyui.so.12 (bsc#1172513) -- 0.1.2 - libyui-rest-api -- New CMake build environment (bsc#1181653) -- Bumped SO version to 15 -- 4.0.0 - -- Fixed build against the latest libmicrohttpd library - (related to bsc#1173718) -- 0.5.12 - -- Add activation for YTable (bsc#1139747) -- Create structure to move handlers to separate classes -- 0.5.11 - -- Add activation for Radiobutton (bsc#1139747) -- 0.5.10 - -- Add support for the child items in the table (bsc#1139747) -- 0.5.9 - -- Do not set json value to nullptr when YCheckBoxState is - YCheckBox_dont_care (bsc#1139747) -- 0.5.8 - -- Use new parent lib SO version libyui.so.14 (bsc#1176402). -- 0.5.7 - -- Remove log component from YHttpWidgetsActionHandler header file - bsc#1177159 -- 0.5.6 - -- Add item selection in YMenuBar (bsc#1175115) -- 0.5.5 - -- Fixed compilation in SLE15-SP2 (related to the previous fix - bsc#1139747) -- 0.5.4 - -- Serialize value for YDateField and YTimeField (bsc#1139747) -- 0.5.3 - -- Use new parent lib SO version libyui.so.13 (bsc#1175115) -- 0.5.2 - -- Handle MHD result as int or enum depending on libmicrohttpd version - (libmicrohttpd>=0.9.71 uses enum) -- 0.5.1 - -- Trigger update on YCombobox, YSelectionBox, YInputField, - YMultiSelectionBox (bsc#1139747) -- Add support for YDateField and YTimeField -- Allow setting text in editable YComboBox -- Allow selecting row in the table by row id -- Return json format consistently -- Add support for YCheckBoxFrame widget -- Allow reusing port if YUI_REUSE_PORT=1 -- Add json serialization for YBarGraph -- 0.5.0 - -- Use new parent lib SO version libyui.so.12 (bsc#1172513) -- 0.4.1 - -- Replace hard-coded HTML documentation with the url to the actual - documentation in project repo -- Add "/version" endpoint to access to API version -- Use /v1/ prefix in URL path while accessing resources -- 0.4.0 - lua-lmod +- Update to version 8.4.27: + * (8.4.21) + + Add findLuaProg() or die + * (8.4.22) + + Fix luaCmd -> luaprog. + * (8.4.23) + + Fix goto in luaterm pkg. + * (8.4.24) + + Need to quote '?' in csh. + + Make list of modules from spider skip .version* and .modulerc* + + analyzeLmodDB now takes a list of all modules so that zero module + usage can be reported. + * (8.4.26) + + Fix bug with building on Suse linux + + Allow all paths (but MODULEPATH) to have trailing double slashes. + * (8.4.27) + + Fix default for SHORT_TIME + + Adding isAvail() function for Lua modulefiles + + Now reporting that is-avail() is not working for TCL modulefiles + lua-lmod:doc-pdf +- Update to version 8.4.27: + * (8.4.21) + + Add findLuaProg() or die + * (8.4.22) + + Fix luaCmd -> luaprog. + * (8.4.23) + + Fix goto in luaterm pkg. + * (8.4.24) + + Need to quote '?' in csh. + + Make list of modules from spider skip .version* and .modulerc* + + analyzeLmodDB now takes a list of all modules so that zero module + usage can be reported. + * (8.4.26) + + Fix bug with building on Suse linux + + Allow all paths (but MODULEPATH) to have trailing double slashes. + * (8.4.27) + + Fix default for SHORT_TIME + + Adding isAvail() function for Lua modulefiles + + Now reporting that is-avail() is not working for TCL modulefiles + mc +- Midnight Commander 4.8.26: + * Support file names of any length + * Implement persistent command line buffer for subshell + (bash >= 4, zsh and fish are supported) + * Implement shadows of dialog windows and menus + * Allow running clipboard commands if DISPLAY is not set + * Add support of "alacritty", "tmux", and "tmux-256color" terminals + * VFS: Support wim archive format (using wimtools) + * VFS: Support pak archive format (using unar) + * Editor: Add Swift syntax highlighting + * Various bug fixes + metamath +- Update to version 0.196. + * Fix bug causing new axioms to be used by MINIMIZE_WITH. + * Add "Claim" to bib ref types. + * Remove error check for $e <- $f assignments. + * Check for discouragement tags in *ALT, *OLD labels in + VERIFY MARKUP. + * Add underscore checking in VERIFY MARKUP and add /UNDERSCORE- + _SKIP qualifier; also check for trailing space on lines. + * Refine prevention of WRITE SOURCE.../REWRAP from modifying + comments containing "". + * Allow space in TOOLS> BREAK. + * Add checking for mathbox independence to VERIFY MARKUP; + add /MATHBOX_SKIP. + * "PROVE =" will now resume the previous MM-PA session if there + was one; allow "~" to start/end with blank (meaning first/last + statement); add "@1234". + * Add /INCLUDE_MATHBOXES to to IMPROVE; notify user upon ASSIGN + from another mathbox. + * Print message when IMPROVE or MINIMIZE_WITH uses another mathbox. + * Add CONJECTURE, RESULT to [bib] keywords. + * Add HELP BIBLIOGRAPHY. + * Added CONCLUSION FACT INTRODUCTION PARAGRAPH SCOLIA SCOLION + SUBSECTION TABLE to [bib] keywords. + * Added WRITE SOURCE ... /EXTRACT .... + * Make the output of /EXTRACT stable in the sense that, with the + same parameter, extract(extract(file)) = + extract(file) except that the date stamp at the top will be + updated. (The first extraction even if "*" will usually be + different because it discards non-relevant content. Note that + the include file directives "$( $[ Begin..." etc. and comments + with "$j" are currently discarded.) + * Add keyword "htmlexturl" to $t statement in .mm file. + * Prevent "htmlexturl" links from wrapping. + * Temporarily disable /REWRAP until bug fixed. + * Fix bug that deleted comments that were followed by ${, $}, $c, + $v, $d on the same line. +- Relax dependencies. + miller +- Update to version 5.10.2 + Fix: + * Restore mlr manpage to distro file + +- Update to version 5.10.1 + Fix: + * NR is stale after apply remove-empty-columns + * Segfault with --tsv --implicit-csv-header + * Default value of uninitialized variables for multiplication: + docs vs awk + * Bug with uniq + sort + neomutt +- build: Enable pcre2 for regex matching (bsc#1183989) +- Add libprce2-devel as build dependency + +- update to 20210205: + * Features + - Add to skip past message headers in pager + - Add function to attachment menu + * Bug Fixes + - Fix detection of mbox files with new mail + - Fix crash on collapsed thread + - Fix group-chat-reply + - Clear the message window on resize + - Do not crash on return from shell-exec if there's no open mailbox + - Abort IMAP open if condstore/qresync updates fetch fails + - Fix smtp crash on invalid $smtp_authenticators list + - Fix pager dropped input on screen resize + - Fix mime forwarding + - Check config after hooks + - Always recreate a mailbox after folder-hook + * Translations + - 88% Slovakian + * Docs + - Adjust doc to explicitly mention $count_alternative + - Restore correct "$sort_re" documentation + - Clarify pattern completion + - Man pages: Clear up "-H" and "-O" + * Build + - Update to latest acutest + - Update to latest autosetup + - Make the location of /tmp configurable + +- Update to version 20201127: + * Bug Fixes + - Fix crash when saving an alias + * Translations + - 70% Russian + * Code + - Remove redundant function call + netty + * netty-CVE-2021-21295.patch + + backport of upstream fixes for bsc#1183262, CVE-2021-21295: + HTTP/2 request Content-Length header field is not validated + by 'Http2MultiplexHandler' + +- Added patch: nginx -- Update to stable branch 1.16.1 (jsc#ECO-1401) - * add TLS 1.3 support for SLE-15-SP2 (jsc#SLE-9295, bsc#1150711) +- update to 1.19.8: + * Feature: flags in the "proxy_cookie_flags" directive can now contain + variables. + * Feature: the "proxy_protocol" parameter of the "listen" directive, + the "proxy_protocol" and "set_real_ip_from" directives in mail proxy. + * Bugfix: HTTP/2 connections were immediately closed when using + "keepalive_timeout 0"; the bug had appeared in 1.19.7. + * Bugfix: some errors were logged as unknown if nginx was built with + glibc 2.32. + * Bugfix: in the eventport method. + +- Refreshed spec-file via spec-cleaner and manual optimizations. + * Droped obsolete conditional constructs. + * Removed pkg_name macro. + +- Drop nginx_upstream_check module, there is no support for dynamic + loading upstream and the module seems kind of unmaintained. +- Removed patch check_1.9.2+.patch. + +- Update to 1.19.7 + * https://nginx.org/en/CHANGES + * Change: connections handling in HTTP/2 has been changed to + better match HTTP/1.x; the "http2_recv_timeout", + "http2_idle_timeout", and "http2_max_requests" directives have + been removed, the "keepalive_timeout" and "keepalive_requests" + directives should be used instead. + * Change: the "http2_max_field_size" and "http2_max_header_size" + directives have been removed, the "large_client_header_buffers" + directive should be used instead. + * Feature: now, if free worker connections are exhausted, nginx + starts closing not only keepalive connections, but also + connections in lingering close. + * Bugfix: "zero size buf in output" alerts might appear in logs + if an upstream server returned an incorrect response during + unbuffered proxying; the bug had appeared in 1.19.1. + * Bugfix: HEAD requests were handled incorrectly if the "return" + directive was used with the "image_filter" or "xslt_stylesheet" + directives. + * Bugfix: in the "add_trailer" directive. +- Since we only target sle 12 and above we can skip all + conditionals which apply to suse_version before 1315 + With changes in nginx itself we will drop support for sysvinit. + http2, libatomic support and pcre_jit will always be on now. + and we build all binaries with PIE now. +- Moved the last 2 path macros from nginx.spec to the macros file. + (pid and lock path) + +- Update to 1.19.6 + * https://nginx.org/en/CHANGES + * Fix "no live upstreams" errors if a "server" inside "upstream" + block was marked as "down". + * Fix a segmentation fault might occur in a worker process if HTTPS + was used; the bug had appeared in 1.19.5. + * Fix nginx returned the 400 response on requests like + "GET http://example.com?args HTTP/1.0". + * Fix in the ngx_http_flv_module and ngx_http_mp4_module. + +- Update to 1.19.5 + * https://nginx.org/en/CHANGES + * Add the -e switch. + * The same source files can now be specified in different modules + while building addon modules. + * Fix SSL shutdown did not work when lingering close was used. + * Fix "upstream sent frame for closed stream" errors might occur + when working with gRPC backends. + * Fix in request body filters internal API. + +- Refresh spec-file via spec-cleaner and manual optimizations. + +- Update to 1.19.4 + * https://nginx.org/en/CHANGES + * Add the "ssl_conf_command", "proxy_ssl_conf_command", + "grpc_ssl_conf_command", and "uwsgi_ssl_conf_command" directives. + * Add the "ssl_reject_handshake" directive. + * Add the "proxy_smtp_auth" directive in mail proxy. + +- Use the ngx_* macros from the nginx-macros package to simplify + the spec file. + +- Moved all the modules that support dynamic modules into their own + modules: + * nginx-module-geoip2 + * nginx-module-fancyindex + * nginx-module-headers-more +- The rtmp module is replaced with nginx-module-http-flv + +- Update to 1.19.3 + * https://nginx.org/en/CHANGES + * Add the ngx_stream_set_module. + * Add the "proxy_cookie_flags" directive. + * Add the "userid_flags" directive. + * Fix the "stale-if-error" cache control extension was erroneously + applied if backend returned a response with status code 500, 502, + 503, 504, 403, 404, or 429. + * Fix "[crit] cache file ... has too long header" messages might + appear in logs if caching was used and the backend returned responses + with the "Vary" header line. + * Fix "[crit] SSL_write() failed" messages might appear in logs + when using OpenSSL 1.1.1. + * Fix "SSL_shutdown() failed (SSL: ... bad write retry)" messages + might appear in logs; the bug had appeared in 1.19.2. + * Fix a segmentation fault might occur in a worker process when + using HTTP/2 if errors with code 400 were redirected to a proxied + location using the "error_page" directive. + * Fix socket leak when using HTTP/2 and subrequests in the njs module. + +- Update to 1.19.2 + * https://nginx.org/en/CHANGES + * Now nginx starts closing keepalive connections before all free + worker connections are exhausted, and logs a warning about this + to the error log. + * Optimization of client request body reading when using chunked + transfer encoding. + * Memory leak if the "ssl_ocsp" directive was used. + * "zero size buf in output" alerts might appear in logs if a + FastCGI server returned an incorrect response; the bug had + appeared in 1.19.1. + * A segmentation fault might occur in a worker process if + different large_client_header_buffers sizes were used in + different virtual servers. + * SSL shutdown might not work. + * "SSL_shutdown() failed (SSL: ... bad write retry)" messages + might appear in logs. + * In the ngx_http_slice_module. + * In the ngx_http_xslt_filter_module. + +- update nginx-1.6.1-default_config.patch: + * remove geoip_module which is no longer compiled (bsc#1156202) + +- Update to 1.19.1 + * https://nginx.org/en/CHANGES + * The "lingering_close", "lingering_time", and "lingering_timeout" + directives now work when using HTTP/2. + * Now extra data sent by a backend are always discarded. + * Now after receiving a too short response from a FastCGI server + nginx tries to send the available part of the response + to the client, and then closes the client connection. + * Now after receiving a response with incorrect length from a + gRPC backend nginx stops response processing with an error. + * The "min_free" parameter of the "proxy_cache_path", + "fastcgi_cache_path", "scgi_cache_path", + and "uwsgi_cache_path" directives. + * nginx did not delete unix domain listen sockets during + graceful shutdown on the SIGQUIT signal. + * Zero length UDP datagrams were not proxied. + * Proxying to uwsgi backends using SSL might not work. + * In error handling when using the "ssl_ocsp" directive. + * On XFS and NFS file systems disk cache size might be + calculated incorrectly. + * "negative size buf in writer" alerts might appear in logs if + a memcached server returned a malformed response. + +- Update to 1.19.0 + * https://nginx.org/en/CHANGES + * Client certificate validation with OCSP. + * "upstream sent frame for closed stream" errors might occur + when working with gRPC backends. + * OCSP stapling might not work if the "resolver" directive + was not specified. + * Connections with incorrect HTTP/2 preface were not logged. + +- Do not arbitrarily limit the default listen backlog + (NGX_LISTEN_BACKLOG) to 511, instead use -1 to choose the + system's default (sysctl net.core.somaxconn) + +- Update to 1.18.0 + * 1.18.x stable branch. + +- Use sysusers.d to create the nginx user and group +- Remove self-conflict + +- Update to 1.17.10 + * https://nginx.org/en/CHANGES + * The "auth_delay" directive. + - (jsc#SLE-11184, bsc#1156202) -- Start nginx after network is online (boo#1155690) -- Drop upstream patches: - * CVE-2019-9511.patch - * CVE-2019-9513.patch - * CVE-2019-9516.patch - * CVE-2019-20372.patch - - configurations which could have allowed unauthorized web page reads -- (bsc#1160682). - Added CVE-2019-20372.patch -- - -- Fix HTTP/2 related security issues: - - CVE-2019-9511: Fixed a denial of service by manipulating the window size and - stream prioritization (bsc#1145579 CVE-2019-9511.patch). - - CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580 CVE-2019-9513.patch). - - CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582 CVE-2019-9516.patch) + (bsc#1156202) -- Changes with nginx 1.14.2 - - Bugfix: nginx could not be built by gcc 8.1. - - Bugfix: nginx could not be built on Fedora 28 Linux. - - Bugfix: in handling of client addresses when using unix domain - listen sockets to work with datagrams on Linux. - - Change: the logging level of the "http request", "https proxy - request", "unsupported protocol", "version too low", - "no suitable key share", and "no suitable signature algorithm" - SSL errors has been lowered from "crit" to "info". +- Update to 1.17.9 + * https://nginx.org/en/CHANGES + * Now nginx does not allow several "Host" request header lines. + * nginx ignored additional "Transfer-Encoding" request header lines. + * Socket leak when using HTTP/2. + * A segmentation fault might occur in a worker process if OCSP + stapling was used. + * In the ngx_http_mp4_module. + * nginx used status code 494 instead of 400 if errors with code + 494 were redirected with the "error_page" directive. + * Socket leak when using subrequests in the njs module and the + "aio" directive. + +- Update to 1.17.8 + * Feature: variables support in the "grpc_pass" directive. + * Bugfix: a timeout might occur while handling pipelined requests + in an SSL connection; the bug had appeared in 1.17.5. + * Bugfix: in the "debug_points" directive when using HTTP/2. + Thanks to Daniil Bondarev. + +- Use systemd_ordering instead of systemd_requires, nginx is useable + without sysemd, too. + +- Refresh spec-file via spec-cleaner. +- Add in service-file Wants=network-online.target (boo#1155690) +- Update to 1.17.7 + * https://nginx.org/en/CHANGES + * A segmentation fault might occur on start or during + reconfiguration if the "rewrite" directive with an empty + replacement string was used in the configuration. + * A segmentation fault might occur in a worker process if the + "break" directive was used with the "alias" directive or with + the "proxy_pass" directive with a URI. + * The "Location" response header line might contain garbage if + the request URI was rewritten to the one containing a null character. + * Requests with bodies were handled incorrectly when returning redirections + with the "error_page" directive; the bug had appeared in 0.7.12. + * Socket leak when using HTTP/2. + * A timeout might occur while handling pipelined requests in an + SSL connection; the bug had appeared in 1.17.5. + * Bugfix in the ngx_http_dav_module. + * CVE-2019-20372: Fixed an HTTP request smuggling with certain error_page + configurations which could have allowed unauthorized web page reads (bsc#1160682). + +- Update to 1.17.6 + - Feature: the $proxy_protocol_server_addr and + $proxy_protocol_server_port variables. + - Feature: the "limit_conn_dry_run" directive. + - Feature: the $limit_req_status and $limit_conn_status + variables. + +- remove -std=gnu99 -fstack-protector from cflags as they are + no longer needed. + +- Update to 1.17.5 + * https://nginx.org/en/CHANGES + * Now nginx uses ioctl(FIONREAD), if available, to avoid + reading from a fast connection for a long time. + * Incomplete escaped characters at the end of the request URI were ignored. + * "/." and "/.." at the end of the request URI were not normalized. + * In the "merge_slashes" directive. + * In the "ignore_invalid_headers" directive. + * nginx could not be built with MinGW-w64 gcc 8.1 or newer. + +- Update to 1.17.4 + * https://nginx.org/en/CHANGES + * Better detection of incorrect client behavior in HTTP/2. + * In handling of not fully read client request body when + returning errors in HTTP/2. + * The "worker_shutdown_timeout" directive might not work when + using HTTP/2. + * A segmentation fault might occur in a worker process when + using HTTP/2 and the "proxy_request_buffering" directive. + * The ECONNABORTED error log level was "crit" instead of + "error" on Windows when using SSL. + * nginx ignored extra data when using chunked transfer + encoding. + * nginx always returned the 500 error if the "return" directive + was used and an error occurred during reading client request body. + * In memory allocation error handling. + +- update to 1.17.3 + - Security: when using HTTP/2 a client might cause excessive + memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513, + CVE-2019-9516). + - Bugfix: "zero size buf" alerts might appear in logs when using + gzipping; the bug had appeared in 1.17.2. + - Bugfix: a segmentation fault might occur in a worker process if + the "resolver" directive was used in SMTP proxy. + +- update to 1.17.2 + - Change: minimum supported zlib version is 1.2.0.4. + - Change: the $r->internal_redirect() embedded perl method now expects + escaped URIs. + - Feature: it is now possible to switch to a named location using the + $r->internal_redirect() embedded perl method. + - Bugfix: in error handling in embedded perl. + - Bugfix: a segmentation fault might occur on start or during + reconfiguration if hash bucket size larger than 64 kilobytes was used + in the configuration. + - Bugfix: nginx might hog CPU during unbuffered proxying and when + proxying WebSocket connections if the select, poll, or /dev/poll + methods were used. + - Bugfix: in the ngx_http_xslt_filter_module. + - Bugfix: in the ngx_http_ssi_filter_module. + +- update to 1.17.1 + - Feature: the "limit_req_dry_run" directive. + - Feature: when using the "hash" directive inside the "upstream" + block an empty hash key now triggers round-robin balancing. + Thanks to Niklas Keller. + - Bugfix: a segmentation fault might occur in a worker process if + caching was used along with the "image_filter" directive, and + errors with code 415 were redirected with the "error_page" + directive; the bug had appeared in 1.11.10. + - Bugfix: a segmentation fault might occur in a worker process if + embedded perl was used; the bug had appeared in 1.7.3. + +- update to version 1.17.0 + * Feature: variables support in the "limit_rate" directives + * Feature: variables support in the "proxy rate" directies + * Change: min supported OpenSSL is 0.9.8 + * Change: now the postpone filter is always built + * Bugfix: the "include" directive didn't work inside "if" + * Bugfix: in byte ranges processing + +- update to version 1.16.0 + * 1.16 stable branch + * Bugfix: segfault may occur in ssl_certificate worker process + +- update to 1.15.10 + * When using hostname in the 'listen' directive, create new socket + * Port ranges in the 'listen' directive + * Loading of SSL certs/secret keys from variables + * $ssl_server_name var might be empty with OpenSSL 1.1.1 + +- update to 1.15.9 + * Feature: variables support in the "ssl_certificate" directives + * Bugfix: the "proxy_upload_rate" and "proxy_download_rate" + directives in the stream module worked incorrectly with UDP + +- update to 1.15.8 + * Feature: the $upstream_bytes_sent variable + * Feature: new directives in vim syntax highlighting scripts + * Bugfix: in the "proxy_cache_background_update" directive + * Bugfix: in the "geo" directive when using unix domain listen sockets + * Workaround: the "ignoring stale global SSL error" alerts might appear erroneosuly + * Bugfix: in the ngx_http_autoindex_module on x86 + +- update to 1.15.7 + * Feature: the "proxy_requests" directive in the stream module. + * Feature: the "delay" parameter of the "limit_req" directive. + Thanks to Vladislav Shabanov and Peter Shchuchkin. + * Bugfix: memory leak on errors during reconfiguration. + * Bugfix: in the $upstream_response_time, $upstream_connect_time, and + $upstream_header_time variables. + * Bugfix: a segmentation fault might occur in a worker process if the + ngx_http_mp4_module was used on 32-bit platforms. +- fix changes file for submit to Backports + * see https://build.opensuse.org/request/show/653792 + +- update to 1.15.6 + * fix for boo#1115022, boo#1115025 + Security: when using HTTP/2 a client might cause excessive memory + consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844). + * fix for boo#1115015 + Security: processing of a specially crafted mp4 file with the + ngx_http_mp4_module might result in worker process memory disclosure + (CVE-2018-16845). + - Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive", + "grpc_socket_keepalive", "memcached_socket_keepalive", + "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives. + - Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL + 1.1.1, the TLS 1.3 protocol was always enabled. + - Bugfix: working with gRPC backends might result in excessive memory + consumption. +- Fix vim-plugin-nginx rpm group. + +- update to 1.15.5 + - Bugfix: a segmentation fault might occur in a worker process when using OpenSSL 1.1.0h or lower + - Bugfix: minor potential bugs +- update to 1.15.4 + - Feature: now the "ssl_early_data" directive can be used with OpenSSL. + - Bugfix: in the ngx_http_uwsgi_module. + - Bugfix: connections with some gRPC backends might not be cached when + using the "keepalive" directive. + - Bugfix: a socket leak might occur when using the "error_page" + directive to redirect early request processing errors, notably errors + with code 400. + - Bugfix: the "return" directive did not change the response code when + returning errors if the request was redirected by the "error_page" + directive. + - Bugfix: standard error pages and responses of the + ngx_http_autoindex_module module used the "bgcolor" attribute, and + might be displayed incorrectly when using custom color settings in + browsers. + - Change: the logging level of the "no suitable key share" and "no + suitable signature algorithm" SSL errors has been lowered from "crit" + to "info". + +- update to 1.15.3 + - Feature: now TLSv1.3 can be used with BoringSSL. + - Feature: the "ssl_early_data" directive, currently available + with BoringSSL. + - Feature: the "keepalive_timeout" and "keepalive_requests" + directives in the "upstream" block. + - Bugfix: the ngx_http_dav_module did not truncate destination + file when copying a file over an existing one with the COPY + method. + - Bugfix: the ngx_http_dav_module used zero access rights on the + destination file and did not preserve file modification time + when moving a file between different file systems with the MOVE + method. + - Bugfix: the ngx_http_dav_module used default access rights when + copying a file with the COPY method. + - Workaround: some clients might not work when using HTTP/2; the + bug had appeared in 1.13.5. + - Bugfix: nginx could not be built with LibreSSL 2.8.0. + +- update to 1.15.2 + - Feature: the $ssl_preread_protocol variable in the + ngx_stream_ssl_preread_module. + - Feature: now when using the "reset_timedout_connection" + directive nginx will reset connections being closed with the + 444 code. + - Change: a logging level of the "http request", "https proxy + request", "unsupported protocol", and "version too low" SSL + errors has been lowered from "crit" to "info". + - Bugfix: DNS requests were not resent if initial sending of a + request failed. + - Bugfix: the "reuseport" parameter of the "listen" directive was + ignored if the number of worker processes was specified after + the "listen" directive. - - Bugfix: nginx could not be built with LibreSSL 2.8.0. - - Bugfix: if nginx was built with OpenSSL 1.1.0 and used with - OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled. + - Bugfix: SSL session reuse with upstream servers did not work + with the TLS 1.3 protocol. + +- update to 1.15.1 + - Feature: the "random" directive inside the "upstream" block. + - Feature: improved performance when using the "hash" and + "ip_hash" directives with the "zone" directive. + - Feature: the "reuseport" parameter of the "listen" directive + now uses SO_REUSEPORT_LB on FreeBSD 12. + - Bugfix: HTTP/2 server push did not work if SSL was terminated + by a proxy server in front of nginx. + - Bugfix: the "tcp_nopush" directive was always used on backend + connections. - - Bugfix: connections with some gRPC backends might not be cached when - using the "keepalive" directive. - - Bugfix: a segmentation fault might occur in a worker process if the - ngx_http_mp4_module was used on 32-bit platforms. -- Changes with nginx 1.14.1 - - Security: when using HTTP/2 a client might cause excessive memory - consumption (CVE-2018-16843 bsc#1115022) and CPU usage (CVE-2018-16844 bsc#1115025). - - Security: processing of a specially crafted mp4 file with the - ngx_http_mp4_module might result in worker process memory disclosure - (CVE-2018-16845 bsc#1115015). - - Bugfix: working with gRPC backends might result in excessive memory - consumption. +- changes from 1.15.0 + - Change: the "ssl" directive is deprecated; the "ssl" parameter + of the "listen" directive should be used instead. + - Change: now nginx detects missing SSL certificates during + configuration testing when using the "ssl" parameter of the + "listen" directive. + - Feature: now the stream module can handle multiple incoming UDP + datagrams from a client within a single session. + - Bugfix: it was possible to specify an incorrect response code + in the "proxy_cache_valid" directive. + - Bugfix: nginx could not be built by gcc 8.1. + - Bugfix: logging to syslog stopped on local IP address changes. + - Bugfix: nginx could not be built by clang with CUDA SDK + installed; the bug had appeared in 1.13.8. + - Bugfix: "getsockopt(TCP_FASTOPEN) ... failed" messages might + appear in logs during binary upgrade when using unix domain + listen sockets on FreeBSD. + - Bugfix: nginx could not be built on Fedora 28 Linux. + - Bugfix: request processing rate might exceed configured rate + when using the "limit_req" directive. + - Bugfix: in handling of client addresses when using unix domain + listen sockets to work with datagrams on Linux. + - Bugfix: in memory allocation error handling. os-autoinst +- Update to version 4.6.1606482144.ab6cdfe2: + * docker: Add qemu-kvm variant Dockerfile + * docker: Use new convenience image for Dockerfile.qemu-x86 + * Use modern standard asciidoc section title syntax + * README: Add instructions how to use published isotovideo container + * Document mmapi::api_call and mmapi::api_call_2 + * Restore compatibility of mmapi::api_call + * spec: Add qemu specific convenience sub-packages + * Avoid unhandled output in mmapi test + * Log error when mmapi::get_job_autoinst_url can not find corresponding worker info + * Test whether mmapi errors are logged + * docker: Add Dockerfile for isotovideo+qemu-x86 + * README: Fix asciidoc warnings about section titles + * README: Describe command-line test parameters as easy alternative + * isotovideo: Extend synopsis to show command line test parameters + +- Update to version 4.6.1606298538.191b5988: + * mmapi: Enable error logging in all `get_` functions + * Add test for mmapi + * Fix "Use of uninitialized value in numeric eq" on connection errors in mmapi + +- Update to version 4.6.1605852905.39d54910: + * t/22-svirt: Fix sporadic failures of `run_ssh_cmd(keep_open=>0)` + +- Update to version 4.6.1605530625.31c8f336: + * README: Prefer user-centric documentation over developer-centric instructions + * t: Cover all test output in t/13-osutils.t with Test::Output + * driver: Remove confusing log about 'remove_tree' + * driver: No need for explicit exit in process sub + * Use Test::Most instead of Test::More for convenience + * Remove references to Test::More::Color not adding benefit + * t: Mark all .t files as executables consistently + * README: Fix asciidoc syntax problem introduced in 2f3a1e5b + +- Update to version 4.6.1605202386.73d96736: + * Remove GNU Autotools-based build system + +- Update to version 4.6.1604927825.7fa9c1d2: + * Add note to QEMU_DISABLE_SNAPSHOTS to be used with vmdk disks + +- Update to version 4.6.1604525166.912dfbdc: + * t: Cover all expected output in 17-basetest.t with tests + +- Update to version 4.6.1603710234.d64195b7: + * Scale test timeouts during package build (like in CI) + * os-autoinst-openvswitch: Allow to configure timeout with env variable + * Fix qemu failing on ppc64 with "Requested safe cache capability level not supported by kvm" + +- Update to version 4.6.1603469837.f54bdeab: + * Consider Test::Most a module enabling strictures + * Use OpenQA::Test::TimeLimit in some tests, especially ones invoking QEMU + * git subrepo pull (merge) external/os-autoinst-common + * git subrepo pull (merge) external/os-autoinst-common + +- Update to version 4.6.1603368860.d92dff65: + * tests: Reduce timeout for isotovideo execution/shutdown + +- Update to version 4.6.1602650385.42f51057: + * Support FORCE_PUBLISH_HDD_ when the job fails + * Output additional errno value on "encoder not accepting data" + +- Update to version 4.6.1602438027.de365f7d: + * Update perltidy to 20201001 + * Do not export bmwqemu::fileContent or save_vars by default + * Consistently use diag in the bmwqemu namespace + +- Update to version 4.6.1601454562.440df182: + * t: Reorder 14-isotovideo.t to cover the "happy path" first + * Allow autotest and command server to shutdown gracefully + * Avoid possible Perl warning in isotovideo's cleanup code + +- Update to version 4.6.1601113711.059fe38b: + * Extract 'handle_generated_assets' function from isotovideo for easier testing + +- Update to version 4.6.1601022359.53ada7dc: + * t: Prevent .git files to interfer with local 00-compile-check-all runs + * Fix tty key definition after initialization + * Add missing include in consoles/localXvnc + +- Update to version 4.6.1600686504.c9117f1b: + * .gitignore: Ignore files created by current state of tests + * Delete some redundant whitespace in consoles + * Delete some redundant whitespace in consoles/localXvnc + * Fix "sshCommand" after moving to consoles/localXvnc + +- Update to version 4.6.1600179993.7af64f64: + * Delete deprecated method bmwqemu::hashed_string + * Delete unused method bmwqemu::set_ocr_rect + * Die in case of _SKIP_POST_FAIL_HOOKS + * doc: Update coveralls reference to codecov + * Delete some redundant whitespace in consoles/localXvnc + * Move console helper function "sshCommand" to child class where needed + * Make ssh connection persistent enough to display long-time run test result + +- Update to version 4.6.1599830026.77762e38: + * Update perltidy to 20200907 + * Suggest using the check target (instead of test target) in the README + * ci: Adjust path in codecov.yml + * Extend and improve tests for file handling of command server + * Make command server utilize asset cache instead of only relying on ASSETDIR + * Improve command server code for serving files + * Update backend_vars.asciidoc + * Add missing column separators + +- Update to version 4.6.1599143921.f85dd213: + * Remove external/ dir in .spec + * Replace tools/update-deps with symlink to subrepo + * Add external/os-autoinst-common subrepo + * Fix tools/tidy + * Fix error handling for QMP connection when invoking QEMU twice + * Update perltidy to 20200822 + * Refactor tools/tidy + +- Update to version 4.6.1598949244.a169fcf1: + * Improve error handling when connection to QMP socket + +- Update to version 4.6.1598623827.924c995d: + * Show only one newline between serial output lines + * Write tests for mouse_drag + * Disable python3-yamllint when building for SLE < 15 SP2 + * Write tests for _calculate_clickpoint + * Add `mouse_drag` subroutine to support click and drag in tests + +- Update to version 4.6.1598452450.166a4d00: + * Write command server code in a more compact way + * Improve logging in command server + * spec file: Pass %{_unitdir} to CMake build script + * spec file: Do not abuse %{_libexecdir} for '/usr/lib' + * Improve error handling of Git utilities + * Pass the error message as reason if isotovideo fails + +- Update to version 4.6.1598002649.7e971f2c: + * Add `-pix_fmt` parameter in example for EXTERNAL_VIDEO_ENCODER_CMD + +- Update to version 4.6.1597940025.1be33b62: + * Remove unnecesary parameter on a git call in tidy + * Fix warnings in _stop_video_encoder + * Mock start_serial_grab in t/29-backend-generalhw.t to avoid failures + * Add unit test for generalhw backend + * Improve coding style in generalhw backend + * Improve error handling when running commands in generalhw backend + * t: Fix regex for warning (multiline) + * Improve error handling of D-Bus calls to contain full context in any case + * Pass remaining frames to external video encoder as well + * Close video encoder pipes and wait for it to finalize the video before exiting + +- Update to version 4.6.1597142445.a3a8b489: + * Stabilize t/28-signalblocker.t + +- Update to version 4.6.1596783764.cd2b73a9: + * Add tidy-cpp target also to CMake build script and enable tidying headers + * Add option to skip initial SUT restarts on ipmi backend + +- Update to version 4.6.1596703356.52434c7c: + * Prevent confusing error message "unable to inform.*Connection refused" + * t: Also use Mojo::File parsing instead of grep system calls in 14-isotovideo.t + * Invoke prove directly when only executing the Perl test suite + * Mention manual invocation of prove to run tests + * Prevent running tests twice when making coverage report + +- Update to version 4.6.1596198579.6374e804: + * Fix warning "Subroutine OpenQA::Isotovideo::Utils::diag redefined" + * Simplify check_socket methods of backends + * Slightly simplify code of all backends + +- Update to version 4.6.1596123333.53214479: + * Also fix chdir bug in other tests using temp dirs + * Fix issue where 99-full-stack.t can't cleanup temp dir on test failure + * Fix swapped actual/expected args in check in svirt test + * Record a reason if isotovideo received a signal to stop + * Record QEMU stopping unexpectedly as failure reason + * Provide a reason in certain errors encountered by isotovideo + * Merge INSTALL documentation into README + * os-autoinst-openvswitch: Fix spurious network startup race-conditions (2nd) + * Use C-style for loop for iterating testorder to react to length changes + * Revert "Revert "Avoid updating last_good if there's no possible user of it"" + * mergify: Add merge-fast shortcut, same as for openQA + * Use autotools-based build system as fallback on SLE12 + * Re-establish compatibility with OpenCV 3 + * Revert "Avoid updating last_good if there's no possible user of it" + * Make local VM host IPs '10.0.2.2' configurable + * Ensure qemu dbus failures are handled correctly + +- Update to version 4.6.1595922953.775a5164: + * Improve robustness of IPMI + +- Update to version 4.6.1595671685.bac387ad: + * Fix invalid "installprefix" replacement in CMakeLists.txt + * CMake: Install isotovideo as executable + * Use CMake build script within CI and RPM package builds + * CMake: Install openvswitch config directly under /etc + * CMake: Use -output option of xsubpp to fix file paths + * CMake: Make symlinks target work in source-tree builds as well + * CMake: Add autotools-style check target to build and test everything in one go + * CMake: Avoid overriding isotovideo and cv.pm when building within source tree + +- Update to version 4.6.1595530333.7963b3d4: + * Avoid updating last_good if there is no possible user of it + * Simplify runalltests in autotest.pm + * Simplify passing test list in tools/invoke-tests + * Fix link to architecture documentation + * Improve build instructions in README, mainly to cover CMake + * CMake: Tweak test execution + * Improve argument parsing and source directory handling in tools/invoke-tests + * CMake: Add targets for computing test coverage + * CMake: Add targets for invoking tests + * CMake: Add target for updating dependencies + * docker: Bump base OS version to Leap 15.2 + +- Update to version 4.6.1595262693.dc25ddd8: + * Add proper test dependencies for 28-signalblocker previously not run in OBS + * Get rid of unnecessary explicit test list in Makefile.am + * Fix non-git lookup of source files in "check-installed-files" + +- Update to version 4.6.1594969249.36d97eed: + * Use inclusive terminology "blocklist/passlist" + +- Update to version 4.6.1594921384.d00b0724: + * CMake: Improve dependency lookup via pkg-config + * CMake: Add install target for openvswitch files + * CMake: Fix check for pod2html + * Remove unused 'IO::Select' from some backends + * Install the "null" backend as well + * Add "amt" backend and console to installed files + * CMake: Add target to generate documentation + * CMake: Configure install versions of isotovideo and cv.pm + * CMake: Add install targets + * Add CMake build script + +- Update to version 4.6.1594675641.d4771812: + * Extend test for missing file installations with simulated install + * Add yamllint checks + * codecov.yml: Simplify format + * Fix YAML style issues in codecov.yml + * Fix YAML style issues in dependencies.yaml + * Add test for missing install specifications + * spec: Fix missing signalblocker + * Fix missing signalblocker.pm introduced by 809f7df5 + * mergify: Wait for OBS Package Build as well after we have it back + * Add deactivate IPMI SOL for sshXtermIPMI to fix xterm start failure + * Stabialize t/18-qemu-options.t by letting QEMU finish by itself + * Adjust test variable EXPECTED_QEMU_START_S + * Avoid exception in handle_qmp_command when started with QEMU_ONLY_EXEC + * Refactor t/18-qemu-options.t + * Avoid crashes due to signals being handled by OpenCV threads + +- Update to version 4.6.1594300744.d68c85a3: + * Allow video encoder to finalize the file + +- Update to version 4.6.1594109944.6b8fc853: + * os-autoinst-openvswitch: Fix spurious network startup race-conditions + +- Update to version 4.6.1593790773.2f943dc7: + * Improve includes in videoencoder.cpp + * Fix warnings in videoencoder.cpp + * Prevent calling cv::imwrite with an empty image + * mergify: Also block merge on selected labels + * Update Perl::Tidy to 20200619 + * deps: Make cpanfile targets configurable + +- Update to version 4.6.1593540547.a04ac9df: + * Add auto-merge same as in openQA based on single-approval + * Fix space issue + * Fix backend ipmi power off issue + * Workaround for cv::norm() returning NaN (poo#68474) + * Fix the issue that does not show softfail when needle file with boo + +- Update to version 4.6.1592908950.5038d8c2: + * Add support for TPMv2 emulation via swtpm + * Separate lint requires from test requires, don't include in spec + +- Update to version 4.6.1592629510.d2cc1989: + * t: Fix 10-test-image-conversion-benchmark.t + * CI: Install possibly new dependencies + * Fix the issue could not find `ssh_VMwareServer` in ssh_credentials + +- Update to version 4.6.1592454585.b7070d24: + * Remove redundant IKVM of IPMI in documentation test + * Fix test for undocumented backend variables + +- Update to version 4.6.1591983506.fc57286c: + * Handle sound in QEMU via -audiodev as required for qemu 4.2+ - poo#66667 + +- Update to version 4.6.1591792386.f38e8b17: + * spec: Remove tools/ directory + * t: Skip 27-make-update-deps.t when there is no .git + * Move git to %main_requires as git-core + * Remove tools/preparepool + * Add Pod::Html to build_requires + +- Update to version 4.6.1591696864.96b3acb2: + * Move MakeMaker dependency to build_requires + * Fix missing qemu-kvm dependency on non-x86_64 + * Slightly simplify amt backend + * spec: Fix 'update-deps' not to be packaged + * Deps: rename %requires to %main_requires + * Fix wrong comment about replacerect + * Fix YAML::PP dependency + * Add flags for non-verbose output to ffmpeg example + * Use :report_warnings feature of Test::Warnings + * Update documentation of videoencoder.cpp + * Support using an external video encoder + * Mark old issues and pull requests as stale + * Capture isotovideo output in isotovideo test + * Dependencies: Add code to update Dockerfile + * Makefiles: set CXXFLAGS not CFLAGS or CPPFLAGS + * Improve coding style in code file migration of QEMU backend + * Improve 'Migrate to file failed [...]' error message to include unit + * make update-deps + * Dependencies: add tools/update-deps + * Add YAML::PP dependency + * Simplify use of Test::Output with bare blocks rather than sub refs + +- Update to version 4.6.1590082367.4286487f: + * Dockerfile: Remove unused dependencies + * Use new docker image os-autoinst_dev + * Simplify some code + * Remove redundant newline in diag message + * Change BuildTag in Dockerfile + perl-DBD-SQLite +- updated to 1.66 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.66 2020-08-30 + - Switched to a production version + 1.65_03 2020-07-27 + - Upgraded SQLite to 3.32.3 + 1.65_02 2020-02-08 + - Upgraded SQLite to 3.31.1 + 1.65_01 2020-01-18 + - Upgraded SQLite to 3.30.1 + - Added several SQL_ types as alias (pali++) + - Fixed two initialization issues (ppisar++) + - Allowed create_function to return an array reference + to specify the type of the value + +- updated to 1.64 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.64 2019-08-12 + - Switched to a production version + 1.63_05 2019-07-12 + - Upgraded SQLite to 3.29.0 + - Added sqlite_get_autocommit private method (GH#52) + - Addded new db_config constants, notably to prohibit + double-quoted string literals + 1.63_04 2019-05-25 + - Upgraded SQLite to 3.28.0 + - Modified doc for sqlite_db_filename which actually returns undef + or an empty string (GH#50) + - Fixed ->quote($blob, SQL_BLOB) to quote correctly (GH#51, pali++) + 1.63_03 2019-02-15 + - Applied a patch to fix segmentation fault on 32-bit big-endian + platforms by Niko Tyni (GH#45) + 1.63_02 2019-02-14 + - Upgraded SQLite to 3.27.1 + - Let a URI filename test skip if SQLite is compiled with URI filename + support (GH#47) + 1.63_01 2019-01-26 + - Made sure an internal hv is initialized (GH#45) + - Fixed a number of tests to skip + - Bumped up Test::More requirement + - Replaced bundled Test::NoWarnings with Test::FailWarnings + - Handle 'unknown' op in DBD::SQLite::VirtualTable::PerlData (Corion++) + +- updated to 1.62 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.62 2018-12-29 + - Switched to a production version + 1.61_04 2018-12-22 + - Added sqlite_db_config method and new constants for it + - Added sqlite_defensive option to disallow dangerous SQLite features + - Exposed some of the hidden extended result codes + 1.61_03 2018-12-19 + - Upgraded SQLite to 3.26.0, which reportedly has a security fix + 1.61_02 2018-12-01 + - Added sqlite_backup_from_dbh/sqlite_backup_to_dbh methods + - Introduced sqlite_prefer_numeric_type database handle attribute + that changes the value of TYPE statement handle attribute + from an array of string to an array of integer, as an experimental + feature. Setting this may break your applications. + - Changed preferred bugtracker + 1.61_01 2018-12-01 + - Added ability to configure SQLITE_MAX_LENGT with environmental + variable (Roy Storey) + - Added sqlite_limit database handle method to change run-time limits + - Upgraded SQLite to 3.25.3 + - Updated constants + +- updated to 1.60 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.60 2018-12-01 + - Switched to a production version + 1.59_03 2018-11-03 + - Added a note on the long standing bug on TYPE statement + handle attribute + - Applied a doc patch on Virtual::PerlData by Björn Höhrmann + (GH-31) + 1.59_02 2018-09-30 + - Upgraded SQLite to 3.25.2 + 1.59_01 2018-09-17 + - Upgraded SQLite to 3.25.0, with ALTER TABLE ... RENAME COLUMN + and UPSERT among others + - Added ::GetInfo (GH#32, Brendan Byrd) + - Fix to use a PV value as a virtual table column value + where appropriate (RT-124941) + - Add deferrability to foreign_key_info (mohawk2) + +- updated to 1.58 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.58 2018-03-28 + - Switched to a production version. + 1.57_01 2018-03-21 + - Made it an error to fetch attributes from a statement + handle whose database handle is inactive (ribasushi++) + +- updated to 1.56 + see /usr/share/doc/packages/perl-DBD-SQLite/Changes + 1.56 2018-02-28 + - Switched to a production version. + 1.55_07 2018-01-27 + - This is a developer release to help testing DBIx::Class + - Upgraded SQLite to 3.22.0 + - Disabled two STAT compile time options (tentatively), + which fixes RT-124227 anyway + 1.55_06 2018-01-27 + - This is a developer release to help testing DBIx::Class + - Downgraded SQLite to 3.19.3 because of a SQLite regression + (RT-124227, ribasushi++) + - Fixed some tests to adapt to a change in error format + introduced by the latest DBI + - Remove no warnings test from t/43_fts.t which failed under + some environments + 1.55_05 2017-12-16 + - Implemented ParamValues statement handle attribute (RT-123886) + 1.55_04 2017-11-22 + - Updated SQLite to 3.21.0 + - Resolved #122581: statistics_info() doesn't work correctly + (John Deighan) + - Fixed typo (GH#26, ReneNyffenegger) + - Silenced some warnings (GH#25, Jacques Germishuys) + - Fixed no dot in @INC issue (GH#24, ribasushi) + - Fixed zero-length BLOB value is retrieved as undef + (GH#23, SATO Kentaro) + - Fixed VirtualTable::PerlData to use new ops added in SQLite 3.21.0 + (GH#28, fschlich) + - noted on sqlite_extended_result_codes handle attribute + 1.55_03 2017-02-14 + - Updated SQLite to 3.17.0 + 1.55_02 2017-01-08 + - Updated SQLite to 3.16.2 + - Fixed statistics_info when only unique indexes were requested (Dave + Rolsky++). GitHub #21 + 1.55_01 2017-01-04 + - Updated SQLite to 3.16.0 + -- updated to 1.42 - - Switched to a production version. (ISHIGAKI) - 1.41_07 2014-03-13 - - Updated to SQLite 3.8.4.1, which fixed several obscure bugs on - "ORDER BY" or "DISTINCT". (ISHIGAKI) - 1.41_06 2014-02-12 - - Updated to SQLite 3.8.3.1, which fixed a SQLite bug in 3.8.2 - (bundled in DBD::SQLite 1.41_04/5) that could cause queries to - omit valid out rows. (ISHIGAKI) - 1.41_05 2014-01-22 - - Resolved #92322: Failure under heavily parallelized tests - (ISHIGAKI) - - Disabled Test::NoWarnings in a test - 1.41_04 2014-01-12 - - Updated to SQLite 3.8.2 (ISHIGAKI) - - Resolved #90211: Error in documentation (Felix Li) - - Resolved #89351: DBD-SQLite won't compile on Cygwin 64 bit - (Warren Young++) (ISHIGAKI) - - Tweaked sqlite_see_if_its_a_number not to guess data types of - bind values with explicit type specification (via bind_param() - etc) (mje++, ilmari++) (ISHIGAKI) - 1.41_03 2013-09-05 - - Updated to SQLite 3.8.0.2 (ISHIGAKI) - 1.41_02 2013-08-30 - - Updated to SQLite 3.8.0.1 to resolve #88228 (RIBASUSHI++) - (ISHIGAKI) - 1.41_01 2013-08-27 - * ** NOTICE ON NEXT GENERATION QUERY PLANNER *** - - As of SQLite 3.8.0, SQLite's query planner has been rewritten. - According to the author, the new query planner should give - exactly the same result (though perhaps with a little less CPU - time spent planning) for simple queries, and for complex - queries, it can in many cases provide a much faster answer. - See http://www.sqlite.org/queryplanner-ng.html for details. - * ** NOTICE ON PARTIAL INDICES *** - - Database files created by SQLite 3.8.0 are still readable and - writable by prior versions, but if you use partial indices - introduced in SQLite 3.8.0, those files become unreadable and - unwritable by older versions of (DBD::)SQLite. They'll be - readable/writable again by dropping partial indices. - - Resolved #87435: PATCH: statistics_info perldoc (DDICK) - - Resolved #87297: URI filenames in DBD::SQLite (ISHIGAKI) - -- updated to 1.40 - - NetBSD also doesn't like the _XOPEN_SOURCE hack (ISHIGAKI) - - Resolved #86080: PATCH: statistics_info support (DDICK) - -- updated to 1.39 - 1.39 Fri 31 May 2013 - - Production release, no changes from 1.38_05 - 1.38_05 Fri 31 May 2013 - - OpenBSD doesn't like the previous _XOPEN_SOURCE hack (ISHIGAKI) - - Disabled a unicode-related test for older perls (ISHIGAKI) - 1.38_04 Wed 29 May 2013 - - Tentatively defined _XOPEN_SOURCE under *BSD systems to see - if it solves a compilation issue for threaded perls (ISHIGAKI) - 1.38_03 Mon 20 May 2013 - * ** NOTICE ON QUERY OPTIMIZER ENHANCEMENT *** - - As of SQLite 3.7.15, SQLite's query optimizer was enhanced - and the result order of a SELECT statement without an ORDER - BY clause may be different from the one of the previous - versions. If your applications or tests mistakenly depend - on the arbitrary output order, they may be broken with this - enhancement. - - Updated to SQLite 3.7.17 (ISHIGAKI) - - Fixed tests that mistakenly made invalid assumptions about - the result order (ISHIGAKI) - - Added a brief note on useful pragmata. (ISHIGAKI) - - Resolved #85302: type fixes (ISHIGAKI) - 1.38_02 Thu 4 Apr 2013 - - Updated to SQLite 3.7.16.1 (ISHIGAKI) - - Removed two obsolete pragma calls at login time (ISHIGAKI) - - Resolved #80344: Set SQLITE_DISABLE_DIRSYNC on AIX (suggested - by Steve Barnsley) (ISHIGAKI) - - Resolved #81536: primary_key_info returns the wrong KEY_SEQ - (VLYON) - - Resolved #84027: Finalizer() not called in (D. Richard Hipp) - - Resolved #84372: -Wpointer-sign warnings with utf8_hop - (RURBAN) - - Resolved #84373: Add test for RT #26775 "name)" key with - DISTINCT (RURBAN/ISHIGAKI) - - Resolved #70815: DBD::SQLite 1.33 build is broken under - Solaris using Sun C (RURBAN) - - Resolved #84380: Fix WINLIKE for mingw/msys (RURBAN) - - Added a note on DBD::SQLite and File::Temp (suggested by - TOKUHIROM) (ISHIGAKI) - 1.38_01 Mon 24 Sep 2012 - * ** CHANGES THAT MAY POSSIBLY BREAK YOUR OLD APPLICATIONS *** - - Resolved #56444: immediate transaction should be on by - default, and the doc be updated. - If you really need the deferred transaction (which had long - been the default), set sqlite_use_immediate_transaction - to false explicitly. (ISHIGAKI) - - Updated to SQLite 3.7.14 (ISHIGAKI) - - Added support for foreign_key_info (DAMI/ISHIGAKI) - - Added several methods to retrieve internal information such as - table_column_metadata/db_filename/*_status (ISHIGAKI/VOVKASM) - - Added sqlite_load_extension so that extensions can add - functions internally (ISHIGAKI) - - Resolved #77617: atoll () sometimes just is atol () (GAAS) - - Resolved #48084: improper "require utf8" in tests (ISHIGAKI) - - Resolved #77724: bug in primary_key_info with regard to column - -- update to 1.37 - - Updated to SQLite 3.7.12.1 (ISHIGAKI) - - Tweaked Makefile.PL to behave better during the Bsymbolic - check (HMBRAND) - - Added SQLITE_WITHOUT_ZONEMALLOC for older MacOS X (ISHIGAKI) - - Fix >32bit integer truncation and other sqlite_set_result - condition issue (Yuriy Kaminskiy) - - Fix integer overflow in passing argument to perl function - - Convert unsigned -> int64 when possible (Yuriy Kaminskiy) - - Turned datatype mismatch error (introduced in 1.34_02) into - a warning (you can disable this warning by setting PrintWarn - attribute to false). (ISHIGAKI) - - Refactored sqlite_is_number to fix various corner cases - - Downgraded SQLite to 3.7.9, as 3.7.10 turned out to be - broken on the latest MacOS X (due to a missing symbol), - and broke other modules that typically use temporary tables - under a few environments too. As of this writing, would-be - 3.7.11 seems fine, but it would take another month to be - released. (ISHIGAKI) - * ** CHANGES THAT MAY POSSIBLY BREAK YOUR OLD APPLICATIONS *** - Note that this release changed the default schema format - number, that means newly created database files will be - unreadable by SQLite version prior to 3.3.0 (2006-01-10) - (or DBD::SQLite prior to 1.12) unless you explicitly issue - "PRAGMA legacy_file_format=ON". - - Enabled SQLITE_ENABLE_FTS4 - - Enabled SQLITE_ENABLE_STAT3 - - Resolved #73159: FTS tokenizer segfault (ISHIGAKI) - - Resolved #73787: sqlite_see_if_its_a_number causes a buffer - overflow (ISHIGAKI) - - Resolved #73314 for DBD-SQLite: binding of 64bit integers fail - on 1.34_02 (ISHIGAKI) - - Implemented sqlite_trace and sqlite_profile methods for simpler - tracing/profiling; use DBI_TRACE/DBI_PROFILE for more - complicated cases (ISHIGAKI) - -- Add Group: field to subpackages to allow them to build on - distributions with older rpm - -- fix license to be in spdx.org format - -- update to 1.35: - * updated to SQLite 3.7.9 - * one small potential break case if you are using FTS4 and ^ -- cumulated changes from 1.34*: - * adding an explicit dynamic_config => 1 - * bind_param SQL_INTEGER error now actually dies with RaiseError - * CHANGES THAT MAY POSSIBLY BREAK YOUR OLD APPLICATIONS: - - resolved RT#67581: bind_param SQL_INTEGER numifies value; - now DBD::SQLite croaks if you explicitly specify datatype - (with bind_param) and datatype mismatch happens - - datatype set in the bind_param(_array) becomes sticky now - (as per DBI spec); this potentially affects code depending on - current undocumented and broken behavior - * resolved RT#71311: binding output columns as SQL_BLOB returns nothing - * fixed binding named parameters - * moved check for bind_ph/is_inout so it always error-out - * don't set imp_sth->stmt to NULL on error path - * explained an issue of rollback with unfinished statements - * made util/getsqlite.pl work properly for SQLite 3.7.5+ - * Cookbook: don't use globals - * resolved RT#70135 and hopefully other mod_perl/CentOS issues like RT#63873 - and RT#47983 - -- Update to 1.33 - - Updated to SQLite 3.7.6.3 (ISHIGAKI) - - Made util/getsqlite.pl state that it needs fixing to work for - SQLite 3.7.5+ when it dies at the last step, and outline what the - user needs to do manually instead, until getsqlite is fixed (DUNCAND) - - Resolved #67843 for DBD-SQLite: savepoint rollback alters AC - state (ISHIGAKI) - - Resolved #65267 for DBD-SQLite: Add RTree support option; - skip fts3/metadata tests if those features are disabled - (ISHIGAKI) - - Resolved #65267: Add RTree support option (CJFIELDS) - - Added sqlite_see_if_its_a_number database handle attribute - to deal with issues caused by (quoted) bind values against - numbers such as return values from a function etc. (ISHIGAKI) - - Made util/getsqlite.pl work with the amalg distro filename changes - introd by SQLite 3.7.4, and still with older ones also (DUNCAND) - - Updated to SQLite 3.7.4 (DUNCAND) - - Resolved #61355: Fails testing in parallel (ISHIGAKI) - - Resolved #61361: Problems building 1.31 with system SQLite (ISHIGAKI) - - Resolved #61117: Supporting database as an alias for dbname in - DSN (ISHIGAKI) - - Resolved #62370: Segfaults during operations on disconnected - handles (ISHIGAKI) - - Resolved #61958: REGEXP should return NULL when one of its - arguments is NULL (ISHIGAKI) - - Removed PrintWarn tweak introduced in 1.19_09 (Tim Bunce's - advice) (ISHIGAKI) - -- switch to perl_requires macro - -- fix FIXME: need a way of adding our RPM_OPT_FLAGS to CFLAGS without - overwriting its existing contents: - o perl Makefile.PL CCFLAGS="$RPM_OPT_FLAGS" - => - {__perl} Makefile.PL INSTALLDIRS=vendor OPTIMIZE="$RPM_OPT_FLAGS" -- fix devel deps - o Req: perl = {perl_version} - -- Update to 1.31 - - Updated to SQLite 3.7.2 (DUNCAND) - - Resolved # 60860: Slow but steady memory leak on - last_insert_id calls (ISHIGAKI) - - Upgraded ppport.h to the latest version (ADAMK) - - Resolved #60698: "Test failures with SQLite 3.7", using included - patch by Niko Tyni (ntyni@debian.org) of t/lib/Test.pm (DUNCAND) - - Added support for FTS3 tokenizers written in Perl. Added tests - ... - -- Update to 1.30_02 - + Updated to SQLite 3.6.23 - + Added preamble to copy sqlite3.[hc] files into a share - directory (where you can access via File::ShareDir) to allow - extension authors to use the same C source/header as they - used to build DBD::SQLite itself. (ISHIGAKI) - + numerous bugfixes and enhancements. - May break old applications. -- added -devel package to contain the added sqlite3.[hc] - -- enable parallel build - -- Update to 1.29: - + Updated to SQLite 3.6.22 - + Removed the SQLITE_CORE and SQLITE_PRT_SZ flags - + several bugfixes - -- 1.26_07 was released as 1.27 - No changes. - -- update to latest devel version 1.26_07 - + Updated to SQLite 3.6.20 - + Foreign keys support is once again disabled by default. - use "PRAGMA foreign_keys = ON". - -- update to latest devel version 1.26_06 - + Major code refactoring. - + Now DBD::SQLite supports foreign key constraints. - -- update to latest devel version 1.26_05 - - SQLite 3.6.19 (ISHIGAKI) -- using a simpler cpan_name macro to avoid parse warnings during build. - -- update to latest devel version 1.26_04 -- move changes from spec to .changes file - -- update to latest devel version 1.26_03 - -- spec mods - * removed ^---------- - * removed ^#--------- - -- merge factory changes in - -- spec fix for perl-macros - -- added perl-macros - o autogen filelist with perl_gen_filelist - -- update to 1.25 -- 1.25 - o Amalgamation conversion turned out to be quicker than expected. - o Changing to a production release. (ADAMK) -- 1.24_02 - o Merging various externally-contributed annotations from - annocpan.org (ADAMK) - o Created the beginnings of a DBD::SQLite::Cookbook (ADAMK) -- 1.24_01 - o Moved getsqlite.pl into util (ADAMK) - o Switching to the RT queue instead of the RT report page that - does nothing and just refers you to email (ADAMK) - o Now DBD::SQLite also uses amalgamated source recommended at sqlite.org (ISHIGAKI) - o Resolved #45166: better unicode path handling under cygwin (ISHIGAKI) - o Resolved #45171: test failure on CentOS 4.6 (ISHIGAKI) - -- updated to stable release 1.23 - -- updated to pristine 1.22_06 - * All* patches are upstreamed now. Yeah! - Using SQLite 3.6.13 now. - perl-Minion-Backend-SQLite +- updated to 5.0.3 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + v5.0.3 2020-08-02 18:15:20 EDT + - Minion requirement bumped to 10.13. + - Removed experimental support for job sequences. + - Added EXPERIMENTAL expire option to enqueue method to support expiring jobs. + - Added EXPERIMENTAL lax option to enqueue method to support lax dependencies. + - Removed next and previous fields from list_jobs method. + - Added expires and lax fields to list_jobs method. + - Fixed a bug where manual retries would count towards the attempts limit for automatic retries. + - Optimized checking parent job state in job dequeue. + +- updated to 5.0.2 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + v5.0.2 2020-07-23 00:30:45 EDT + - Minion requirement bumped to 10.10. + - Support removing stuck jobs in repair method. + - Added EXPERIMENTAL sequence option to enqueue method and sequences option to list_jobs method + to support job sequences. + - Added next and previous fields to list_jobs method. + +- updated to 5.0.1 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + v5.0.1 2020-06-17 23:20:46 EDT + - Fixed tests to be less sensitive to error message contents. + +- updated to 5.0.0 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + v5.0.0 2020-06-17 01:22:45 EDT + - Minion requirement bumped to 10.03. + - Changed reset method to require options for what to reset and allow for + locks to be reset without resetting the whole queue. + - Added before options to list_jobs and list_workers methods to support + iterating jobs and workers. + +- updated to 4.005 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + 4.005 2019-08-05 11:00:01 EDT + - Allow fields to be removed with note method. + +- updated to 4.004 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + 4.004 2019-07-09 00:53:20 EDT + - Add time field to list_jobs method. + +- updated to 4.003 + see /usr/share/doc/packages/perl-Minion-Backend-SQLite/Changes + 4.003 2019-06-21 18:06:07 EDT + - Ignore missing workers for jobs in the minion_foreground named queue to + make debugging very slow jobs easier. + pgloader +- fix compilation errors with sbcl 2.{1,2} by upgrading ironclad + included version (0.48 to 0.54) +- fix CFLAGS and CXXFLAGS variable name + +- fix compilation errors with sbcl 2.0.9 by using upstream patch + for csv-cl component 82397a78.patch + +- Add patch for a broken dependency gh#fare/command-line-arguments#6 + + command-line-arguments.patch + +- Update to version 3.6.2 + + Permit compilation with sbcl 2+ (module cffi updated to 0.21.0 + + Big improvement in DBF module +- Packaging + + Remove merged related fixes (cffi) + +- Add module cffi to version 0.21.0 in the bundle to fix compilation + error with newer sbcl 2+ +- cleanup spec minimal + -- Adapted .spec for OpenSuSE -- moved %changelog to .changes file -- Added py_compile and fdupes - http://en.opensuse.org/openSUSE:Packaging_Python#Byte_Compiled_Files - -- Update to 2.3.2 - -- Update to 2.3.1 - -- Update to 2.3.0 -- Various spec file fixes - -- Update to 2.2.6 - powerpc-utils +- Add --version option to the ppc64_cpu usage (bsc#1183695 ltc#189235). + + powerpc-utils-Update-ppc64-cpu-usage.patch + +- ofpathname: Use NVMe controller physical nsid (bsc#1182020 ltc#191360). + + ofpathname-Use-NVMe-controller-physical-nsid.patch +- HNV fixes (only NetworkManager supported) (jsc#SLE-13837 bsc#1181956 ltc#190722). + + 0001-hcnmgr-Avoid-cleanup-of-bond-interface-at-boot-time-.patch + + 0002-hcnmgr-Wait-for-sysfs-device-ready-when-looking-up-d.patch + + 0003-hcnmgr-Avoid-using-ifcfg-file-for-checking-bonding-i.patch + + 0004-hcnmgr-Avoid-using-xargs-to-process-NM-show-connecti.patch +- Fix ofpathname race with udev rename (bsc#1183496 ltc#191534). + + powerpc-utils-Fix-ofpathname-race-with-udev-rename.patch + privoxy +- Update to version 3.0.32: + - Security/Reliability (boo#1183129) + - ssplit(): Remove an assertion that could be triggered with a + crafted CGI request. + Commit 2256d7b4d67. OVE-20210203-0001. CVE-2021-20272 + Reported by: Joshua Rogers (Opera) + - cgi_send_banner(): Overrule invalid image types. Prevents a + crash with a crafted CGI request if Privoxy is toggled off. + Commit e711c505c48. OVE-20210206-0001. CVE-2021-20273 + Reported by: Joshua Rogers (Opera) + - socks5_connect(): Don't try to send credentials when none are + configured. Fixes a crash due to a NULL-pointer dereference + when the socks server misbehaves. + Commit 85817cc55b9. OVE-20210207-0001. CVE-2021-20274 + Reported by: Joshua Rogers (Opera) + - chunked_body_is_complete(): Prevent an invalid read of size + two. + Commit a912ba7bc9c. OVE-20210205-0001. CVE-2021-20275 + Reported by: Joshua Rogers (Opera) + - Obsolete pcre: Prevent invalid memory accesses with an invalid + pattern passed to pcre_compile(). Note that the obsolete pcre + code is scheduled to be removed before the 3.0.33 release. + There has been a warning since 2008 already. + Commit 28512e5b624. OVE-20210222-0001. CVE-2021-20276 + Reported by: Joshua Rogers (Opera) + - Bug fixes: + - Properly parse the client-tag-lifetime directive. Previously it was + not accepted as an obsolete hash value was being used. + Reported by: Joshua Rogers (Opera) + - decompress_iob(): Prevent reading of uninitialized data. + Reported by: Joshua Rogers (Opera). + - decompress_iob(): Don't advance cur past eod when looking + for the end of the file name and comment. + - decompress_iob(): Cast value to unsigned char before shifting. + Prevents a left-shift of a negative value which is undefined behaviour. + Reported by: Joshua Rogers (Opera) + - gif_deanimate(): Confirm that that we have enough data before doing + any work. Fixes a crash when fuzzing with an empty document. + Reported by: Joshua Rogers (Opera). + - buf_copy(): Fail if there's no data to write or nothing to do. + Prevents undefined behaviour "applying zero offset to null pointer". + Reported by: Joshua Rogers (Opera) + - log_error(): Treat LOG_LEVEL_FATAL as fatal even when --stfu is + being used while fuzzing. + Reported by: Joshua Rogers (Opera). + - Respect DESTDIR when considering whether or not to install + config files with ".new" extension. + - OpenSSL ssl_store_cert(): Fix two error messages. + - Fix a couple of format specifiers. + - Silence compiler warnings when compiling with NDEBUG. + - fuzz_server_header(): Fix compiler warning. + - fuzz_client_header(): Fix compiler warning. + - cgi_send_user_manual(): Also reject requests if the user-manual + directive specifies a https:// URL. Previously Privoxy would try and + fail to open a local file. + - General improvements: + - Log the TLS version and the the cipher when debug 2 is enabled. + - ssl_send_certificate_error(): Respect HEAD requests by not sending a body. + - ssl_send_certificate_error(): End the body with a single new line. + - serve(): Increase the chances that the host is logged when closing + a server socket. + - handle_established_connection(): Add parentheses to clarify an expression + Suggested by: David Binderman + - continue_https_chat(): Explicitly unset CSP_FLAG_CLIENT_CONNECTION_KEEP_ALIVE + if process_encrypted_request() fails. This makes it more obvious that the + connection will not be reused. Previously serve() relied on + CSP_FLAG_SERVER_CONTENT_LENGTH_SET and CSP_FLAG_CHUNKED being unset. + Inspired by a patch from Joshua Rogers (Opera). + - decompress_iob(): Add periods to a couple of log messages + - Terminate the body of the HTTP snipplets with a single new line + instead of "\r\n". + - configure: Add --with-assertions option and only enable assertions + when it is used + - windows build: Use --with-brotli and --with-mbedtls by default and + enable dynamic error checking. + - gif_deanimate(): Confirm we've got an image before trying to write it + Saves a pointless buf_copy() call. + - OpenSSL ssl_store_cert(): Remove a superfluous space before the serial number. + - Action file improvements: + - Disable fast-redirects for .golem.de/ + - Unblock requests to adri*. + - Block requests for trc*.taboola.com/ + - Disable fast-redirects for .linkedin.com/ + - Filter file improvements: + - Make the second pcrs job of the img-reorder filter greedy again. + The ungreedy version broke the img tags on: + https://bulk.fefe.de/scalability/. + - Privoxy-Log-Parser: + - Highlight a few more messages. + - Clarify the --statistics output. The shown "Reused connections" + are server connections so name them appropriately. + - Bump version to 0.9.3. + - Privoxy-Regression-Test: + - Add the --check-bad-ssl option to the --help output. + - Bump version to 0.7.3. + - Documentation: + - Add pushing the created tag to the release steps in the developer manual. + - Clarify that 'debug 32768' should be used in addition to the other debug + directives when reporting problems. + - Add a 'Third-party licenses and copyrights' section to the user manual. + product-builder +- 1.3.3 + * armv7l support + +- 1.3.2 + * RISC-V support + pulseaudio +- move license to licensedir + +- Fix "Failed to open audio file" for FLAC and OGG (bsc#1183546) + parecord-fix-Failed-to-open-audio-file-for-FLAC-and-.patch + +- Upstream fixes for supporting HFP in native backend (bsc#1167940): + 0001-bluetooth-use-consistent-profile-names.patch + 0002-bluetooth-separate-HSP-and-HFP.patch + 0003-bluetooth-add-correct-HFP-rfcomm-negotiation.patch + 0004-bluetooth-make-native-the-default-backend.patch + 0005-bluetooth-enable-module-bluez5-discover-argument-ena.patch + 0006-bluetooth-fix-headset-auto-ofono-handover.patch + 0007-bluetooth-prefer-headset-HFP-HF-connection-with-nati.patch + 0008-bluetooth-complete-bluetooth-profile-separation.patch + 0009-bluetooth-use-device-flag-to-prevent-assertion-failu.patch + 0010-bluetooth-rename-enable_hs_role-to-enable_shared_pro.patch + 0011-bluetooth-clean-up-rfcomm_write-usage.patch + python-PyYAML -- Add patch pyyaml-5.1.2.patch (bsc#1165439 CVE-2020-1747) - Prevents arbitrary code execution during python/object/* constructors - (This patch contains the git commits 8c5e47f and 5080ba5 applied to the 5.1.2 release) +- update to 5.4.1 (bsc#1174514, CVE-2020-14343): + * Fix stub compat with older pyyaml versions that may unwittingly load it + * Build modernization, remove distutils, fix metadata, build wheels, CI to GHA + * Fix for CVE-2020-14343, moves arbitrary python tags to UnsafeLoader + * Fix memory leak in implicit resolver setup + * Fix py2 copy support for timezone objects + * Fix compatibility with Jython -- Update in SLE-15 (bsc#1140565) +- update to 5.3.1 + * fixes boo#1165439 (cve-2020-1747) Prevents arbitrary code execution + during python/object/new constructor + +- update to 5.3 + * Use `is` instead of equality for comparing with `None` + * fix typos and stylistic nit + * Fix up small typo + * Fix handling of __slots__ + * Allow calling add_multi_constructor with None + * Add use of safe_load() function in README + * Fix reader for Unicode code points over 0xFFFF + * Enable certain unicode tests when maxunicode not > 0xffff + * Use full_load in yaml-highlight example + * Document that PyYAML is implemented with Cython + * Fix for Python 3.10 + * increase size of index, line, and column fields + * remove some unused imports + * Create timezone-aware datetimes when parsed as such + * Add tests for timezone + +- update to 5.2 + * A more flexible fix for custom tag constructors + * Change default loader for yaml.add_constructor + * Change default loader for add_implicit_resolver, add_path_resolver + * Move constructor for object/apply to UnsafeConstructor + * Fix logic for quoting special characters python-SQLAlchemy +- add sqlalchemy-7293b3dc0e9eb3dae84ffd831494b85355df8e73.patch + fix from upstream for a test breakage at + test_pyodbc_extra_connect_azure (bsc#1184038) + python-fastnumbers +- Do not restrict architectures + python-hdf5storage +- Update to 0.1.16 + * Issue #81 and #82. h5py.File will require the mode to be + passed explicitly in the future. All calls without passing it + were fixed to pass it. + * Issue #102. Added support for h5py 3.0 and 3.1. + * Issue #73. Fixed bug where a missing variable in loadmat would + cause the function to think that the file is a pre v7.3 format + MAT file fall back to scipy.io.loadmat which won't work since + the file is a v7.3 format MAT file. + * Fixed formatting issues in the docstrings and the + documentation that prevented the documentation from building. +- Release 0.1.15 + * Issue #68. Fixed bug where str and numpy.unicode_ strings (but + not ndarrays of them) were saved in uint32 format regardless + of the value of Options.convert_numpy_bytes_to_utf16. + * Issue #70. Updated setup.py and requirements.txt to specify + the maximum versions of numpy and h5py that can be used for + specific python versions (avoid version with dropped support). + * Issue #71. Fixed bug where the 'python_fields' attribute + wouldn't always be written when doing python metadata for data + written in a struct-like fashion. The bug caused the field + order to not be preserved when writing and reading. + * Fixed an assertion in the tests to handle field re-ordering + when no metadata is used for structured dtypes that only + worked on older versions of numpy. + * Issue #72. Fixed bug where python collections filled with + ndarrays that all have the same shape were converted to + multi-dimensional object ndarrays instead of a 1D object + ndarray of the elements. +- Skip python2 (dropped upstream) and python36 (NumPy 1.20, NEP 29) +- Don't build for 32-bit gh#frejanordsiek/hdf5storage#109 + python-w3lib -- update to 1.21.1 +- Add 166-add-xfail-test_add_or_replace_parameter_fail.patch, + which makes tests working with CVE-2021-23336 (bsc#1181270). + +- update to 1.22.0 + * Python 3.4 is no longer supported (issue #156) + * :func:`w3lib.url.safe_url_string` now supports an optional ``quote_path`` + parameter to disable the percent-encoding of the URL path + * more small fixes and improvements + +- update to 1.21.0 -- Initial release - qemu +- Fix s390x "mediated device is in use" error condition + (bsc#1183634) + update-linux-headers-Include-const.h.patch + Update-linux-headers-to-5.11-rc2.patch + vfio-ccw-Connect-the-device-request-noti.patch + +- Fix DoS in e1000 emulated device (CVE-2021-20257 bsc#1182577) + e1000-fail-early-for-evil-descriptor.patch + +- Fix incorrect guest data in s390x PCI passthrough (bsc#1183372) + s390x-pci-restore-missing-Query-PCI-Func.patch + +- Include upstream patches designated as stable material and + reviewed for applicability to include here + lsilogic-Use-PCIDevice-exit-instead-of-D.patch + vhost-user-blk-fix-blkcfg-num_queues-end.patch +- Fix potential privilege escalation in virtfs (CVE-2021-20181 + bsc#1182137) + 9pfs-Fully-restart-unreclaim-loop-CVE-20.patch +- Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) + net-vmxnet3-validate-configuration-value.patch + +- Add #!ForceMultiversion to qemu.spec: + + As the spec file defines different Version: fiels for various + subpackages, we must instruct OBS to not ever reset the + checkin-counter, as it would by defalut on a version increase. + Resetting the version counter results in sub-packages reusing + their VERSION-RELEASE from the past (e.g. qemu-ipxe is version + 1.0.0+, and upon checkin of a new qemu version, RELEASE is + reset to 1.1, thus again producing + qemu-ipxe-1.0.0+-1.1.noarch.rpm. + +- Fix GCC11 compiler issue in brotli (edk2) code (boo#1181922) + brotli-fix-actual-variable-array-paramet.patch +- Tweak a few submodule descriptions and summaries +- Fix a backward compatibility issue in ACPI data + i386-acpi-restore-device-paths-for-pre-5.patch + qemu:linux-user +- Fix s390x "mediated device is in use" error condition + (bsc#1183634) + update-linux-headers-Include-const.h.patch + Update-linux-headers-to-5.11-rc2.patch + vfio-ccw-Connect-the-device-request-noti.patch + +- Fix DoS in e1000 emulated device (CVE-2021-20257 bsc#1182577) + e1000-fail-early-for-evil-descriptor.patch + +- Fix incorrect guest data in s390x PCI passthrough (bsc#1183372) + s390x-pci-restore-missing-Query-PCI-Func.patch + +- Include upstream patches designated as stable material and + reviewed for applicability to include here + lsilogic-Use-PCIDevice-exit-instead-of-D.patch + vhost-user-blk-fix-blkcfg-num_queues-end.patch +- Fix potential privilege escalation in virtfs (CVE-2021-20181 + bsc#1182137) + 9pfs-Fully-restart-unreclaim-loop-CVE-20.patch +- Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) + net-vmxnet3-validate-configuration-value.patch + +- Add #!ForceMultiversion to qemu.spec: + + As the spec file defines different Version: fiels for various + subpackages, we must instruct OBS to not ever reset the + checkin-counter, as it would by defalut on a version increase. + Resetting the version counter results in sub-packages reusing + their VERSION-RELEASE from the past (e.g. qemu-ipxe is version + 1.0.0+, and upon checkin of a new qemu version, RELEASE is + reset to 1.1, thus again producing + qemu-ipxe-1.0.0+-1.1.noarch.rpm. + +- Fix GCC11 compiler issue in brotli (edk2) code (boo#1181922) + brotli-fix-actual-variable-array-paramet.patch +- Tweak a few submodule descriptions and summaries +- Fix a backward compatibility issue in ACPI data + i386-acpi-restore-device-paths-for-pre-5.patch + qemu:testsuite +- Fix s390x "mediated device is in use" error condition + (bsc#1183634) + update-linux-headers-Include-const.h.patch + Update-linux-headers-to-5.11-rc2.patch + vfio-ccw-Connect-the-device-request-noti.patch + +- Fix DoS in e1000 emulated device (CVE-2021-20257 bsc#1182577) + e1000-fail-early-for-evil-descriptor.patch + +- Fix incorrect guest data in s390x PCI passthrough (bsc#1183372) + s390x-pci-restore-missing-Query-PCI-Func.patch + +- Include upstream patches designated as stable material and + reviewed for applicability to include here + lsilogic-Use-PCIDevice-exit-instead-of-D.patch + vhost-user-blk-fix-blkcfg-num_queues-end.patch +- Fix potential privilege escalation in virtfs (CVE-2021-20181 + bsc#1182137) + 9pfs-Fully-restart-unreclaim-loop-CVE-20.patch +- Fix OOB access in vmxnet3 emulation (CVE-2021-20203 bsc#1181639) + net-vmxnet3-validate-configuration-value.patch + +- Add #!ForceMultiversion to qemu.spec: + + As the spec file defines different Version: fiels for various + subpackages, we must instruct OBS to not ever reset the + checkin-counter, as it would by defalut on a version increase. + Resetting the version counter results in sub-packages reusing + their VERSION-RELEASE from the past (e.g. qemu-ipxe is version + 1.0.0+, and upon checkin of a new qemu version, RELEASE is + reset to 1.1, thus again producing + qemu-ipxe-1.0.0+-1.1.noarch.rpm. + +- Fix GCC11 compiler issue in brotli (edk2) code (boo#1181922) + brotli-fix-actual-variable-array-paramet.patch +- Tweak a few submodule descriptions and summaries +- Fix a backward compatibility issue in ACPI data + i386-acpi-restore-device-paths-for-pre-5.patch + raspberrypi-firmware +- Fix previous change. No need to set DWC2 in host mode. OTG works fine on + production CM4 IO boards. It was being tested earlier on a pre-release + development board. (bsc#1183241) +- Run pre_checkin.sh, which fixed some style issues. + +- Set CM4's DWC2 in host mode by default (bsc#1183241) + +- Update to 0591568b29 (2021-03-10) (bsc#1183444): + * firmware: video_decode lockup handling + * firmware: isp: Initialise extras to avoid vpitch being random + * firmware: usb: Fix dropouts with USB ethernet gadget + * firmware: imx477: Allow long exposures for the binned modes. + * firmware: arm_dispmanx: Use ALPHA_MIX flag + * firmware: power: Refactor the interface to the PMICs + * firmware: platform: vl805: Get BAR2 address from PCIe BAR2 registers + * firmware: arm_loader: Return all borrowed DMA channels + +- Fix typo s/pannel/panel/ + raspberrypi-firmware-config +- Fix previous change. No need to set DWC2 in host mode. OTG works fine on + production CM4 IO boards. It was being tested earlier on a pre-release + development board. (bsc#1183241) +- Run pre_checkin.sh, which fixed some style issues. + +- Set CM4's DWC2 in host mode by default (bsc#1183241) + +- Update to 0591568b29 (2021-03-10) (bsc#1183444): + * firmware: video_decode lockup handling + * firmware: isp: Initialise extras to avoid vpitch being random + * firmware: usb: Fix dropouts with USB ethernet gadget + * firmware: imx477: Allow long exposures for the binned modes. + * firmware: arm_dispmanx: Use ALPHA_MIX flag + * firmware: power: Refactor the interface to the PMICs + * firmware: platform: vl805: Get BAR2 address from PCIe BAR2 registers + * firmware: arm_loader: Return all borrowed DMA channels + +- Fix typo s/pannel/panel/ + raspberrypi-firmware-dt +- Update to 16991af20b (2021-03-15) (bsc#1183238): + * overlays: Add pcie-32bit-dma overlay + sca-appliance-agent +- Removed references to Novell (bsc#1183471) +- New supportconfigs with xz compression are processed (bsc#1183343) +- setup-sca correctly runs sdagent-config (bsc#1183464) + -- Added email from address - -- Added missing email boundary -- Changed email message to HTML and plain text -- Fixed pattern source links (bnc#881411) -- Fixed HAE preprocessor (bnc#881404) - -- Updated SCA Report subject - -- Created local reportfull.php (bnc#877420) -- Fixed local reportfull.php validation (bnc#876347) - -- Fetch SR number from basic-environment.txt, not filename. - -- Fixed sdagent-supportconfig patternPreProcessor() detection (bnc#876180) - -- Cleaned up pattern errors for defect reports -- Removed clearn screen and -c - -- Fixed pattern evaluation errors (bnc#874027) - -- Changed to lowercase directories -- Removed SLE/all and OES/all preprocessor option - -- Fixed SQL import error on invalid SR numbers (bnc#871657) - -- Removed unused Samba filter - -- Updated man page with sub options -- Moved UPDATE_FROM_PATTERN_REPO to sdagent-patterns.conf - -- Default MAX_ARCHIVE_SIZE changed to 2Gb -- Fixed huge file download issue -- Archives moved to ARCHIVE_DIR when ARCHIVE_MODE enabled -- Added sdagent-supportconfig.conf for ARCHIVE_DIR -- Updated all references from sdagent-worker to sdagent-supportconfig -- Renamed sdagent-worker to sdagent-supportconfig -- Fixed man page headers -- Updated man page references to sections -- Added sdagent-health man page -- Moved section 1 man pages to section 8 - -- Fixed FSF address in files -- Change to System/Monitoring spec Group - -- Fixed sdagent-patterns update within sdagent-config - -- Packaged COPYING.GPLv2 - -- Added changes file - -- SCADIAG_HOME renamed to SCA_WORK -- SPRSRC renamed to SCA_PATTERN_PATH -- Relocated files according to FHS - -- Updated pattern filter in sdagent-patterns -- sdagent-patterns has more explicit zypper startup options -- Separated sca-appliance-common files - -- Added ARCH_LOCATION to sdagent.conf -- sdagent-worker inserts ARCH_LOCATION into SQL import file - -- Separated as individual RPM package -- Sends email for pattern updates when $EMAIL_LEVEL -gt $EMAIL_MIN -- Correctly checks for SUSE Linux Enterpise archives only -- sdagent-patterns now updates from the OBS pattern repo - * using -u prevents updates - sca-appliance-broker +- Correctly check for the web and scripting module (bsc#1183601) + +- Removed Novell references (bsc#1183471) +- New supportconfigs with xz compression are processed (bsc#1183343) +- sdbroker-monitor runs without error (bsc#1183466) + -- Updated man pages -- Uniform email from address - -- Added email from address -- Fixed restart error in setup-sca - -- Fixed header lines -- Removed targets for opening tabs -- Added SR and OES views to index.php (bnc#881000) - -- Fixed pattern source links - -- Fixed FTP server validation (bnc#879714) -- Added summary usage to setup-sca (bnc#879715) - -- Checks for mysqli library with setup-sca - -- Added web module checks to setup-sca -- setup-sca now checks for PHP modules (bnc#877402) -- SDP database reference updated (bnc#876919) -- Report checks web login (bnc#876347) -- Check for reportfull.php before running - -- Added ArchiveID to scadb active,done,pending,error -- Converted reportfull.php to mysqli -- Fixed connection errors -- Converted mysql PHP calls to mysqli (bnc#876918) -- Fixed build errors for common directory - -- Added scadb results to find pattern results in the db - -- Added web password to setup-sdbroker and setup-sca (bnc#874632) -- Removed clear screen -- Added scadb config to show current configuration - -- User password removed from setup-sca -- Fixed setup-sca status checks (bnc#870402) - -- Added current report options to scadb -- Added missing content to scadb man page -- Updated curl error processing -- Corrected man page location -- Fixed man page headers -- Moved section 1 man pages to section 8 -- Updated man page content -- Added setup-sca.8 and sdbroker-monitor.8 man pages - -- Fixed FSF address in files -- Removed setup-sdp.1 (bnc#868235) -- Change to System/Monitoring spec Group - -- Packaged COPYING.GPLv2 - -- added postun -- fixed supportconfig date sort order -- updated docs.html with web-config.php -- added supportconfig run date to index.php -- added report tag to scadb to manuall generate an html report -- Converted to .changes - -- fixed config dir references in websca/docs.html -- added pattern update in websca/docs.html -- commented out debug statements to avoid xss - -- documented backup and restore - -- relocated files according to FHS -- updated DEF_HOME for FHS in /var/tmp -- fixed incorrect bin paths - -- updated docs with archive file link -- updated docs with --no-gpg-checks -- separated sca-appliance-common files - -- setup-sca package names changes -- fixed blank hypervisor lines -- sdbroker no longer inserts FileLocation - -- separated as individual RPM package -- SCA reports page sorts by all columns -- fixed SCA XSS vulnerabilities -- fixed SCA SQL injection vulnerabilities - sca-appliance-common +- Removed reference to Novell in the Makefile, no changes to code + -- Commented out debug statements to avoid xss - -- Clean up unused variable -- Cleaned up spec file -- Added pattern link to login screen -- Fixed pattern report identifier link -- Changed Internal to SRView -- Archive File links of file:// are not supported for hyper links - -- initialized - sca-appliance-patdev +- Removed references to Novell (bsc#1183471) + -- Updated Python documentation -- Removed unnecessary python libraries from template generator - -- Fixed no login requirement - -- Updated Python library documention files -- No login required for pattern development -- Fixed header lines -- Separated module list for better debugging in template-python.php - -- Fixed empty query error template-generator.php -- Fixed missing title in pattern-edit.php - -- Fixed SQL injection vulnerabilities (bnc#876240) -- Fixed login and timeout (bnc#876919) - -- Fixed connection errors -- Fixed build errors for common directory -- Added login using web-config.php credentials -- Converted mysql PHP calls to mysqli (bnc#876918) -- Added string escapes - -- Removed clear screen and -c - -- Moved man pages 1 to 8 -- Moved /var/archives to /var/log/archives per suse-filelist-forbidden-fhs23 - -- Removed package ownership of /var/tmp/sca -- Updated copyright FSF reference -- Change to System/Monitoring spec Group - -- Updated python template -- Updated python documentation - -- Added IGNORE status count to pat -- pat displays library directories - -- Packaged COPYING.GPLv2 - -- updated help-sdp.html docs -- fixed python template generator dumping array - -- commented out debug statements to avoid xss - -- updated paths -- relocated files according to FHS - -- pat displays SPRSRC -- pat vars SPRSRC and DEFAULT_ARCHDIR can be set in the environment - -- sdpdb man page has correct name -- binaries installed in correct locations -- fixed hash plings in template php pages - -- added pat documentation -- added pat pattern tester -- separated sca-appliance-common files - -- separated as individual RPM package - sca-patterns-sle11 +- Changes to version 1.3.1 + + Feb 2021 New Security Announcement Patterns (4) for SUSE-SU-2021:14630-1 SUSE-SU-2021:14634-1 SUSE-SU-2021:14627-1 SUSE-SU-2021:14632-1 + + Jan 2021 New Security Announcement Patterns (6) for SUSE-SU-2021:14198-1 SUSE-SU-2021:14609-1 SUSE-SU-2021:14595-1 SUSE-SU-2021:14598-1 SUSE-SU-2021:14603-1 SUSE-SU-2021:14592-1 + + Dec 2020 New Security Announcement Patterns (7) for SUSE-SU-2020:14553-1 SUSE-SU-2020:14578-1 SUSE-SU-2020:14557-1 SUSE-SU-2020:14590-1 SUSE-SU-2020:14584-1 SUSE-SU-2020:14588-1 SUSE-SU-2020:14579-1 + +- New Security Announcement Patterns for Version 1.3.1 + SUSE-SU-2020:14546-1 SUSE-SU-2020:14549-1 SUSE-SU-2020:14548-1 SUSE-SU-2020:14551-1 SUSE-SU-2020:14550-1 + +- New Security Announcement Patterns for version 1.3.1 + SUSE-SU-2020:14399-1 SUSE-SU-2020:14266-1 SUSE-SU-2020:14400-1 SUSE-SU-2020:14341-1 SUSE-SU-2020:14409-1 SUSE-SU-2020:14440-1 SUSE-SU-2020:14461-1 SUSE-SU-2020:14313-1 SUSE-SU-2020:14263-1 SUSE-SU-2020:14287-1 SUSE-SU-2020:14484-1 SUSE-SU-2020:14354-1 SUSE-SU-2020:14393-1 SUSE-SU-2020:14442-1 SUSE-SU-2020:14337-1 SUSE-SU-2020:14342-1 SUSE-SU-2020:14398-1 SUSE-SU-2020:14396-1 SUSE-SU-2020:14294-1 SUSE-SU-2020:14355-1 SUSE-SU-2020:14424-1 SUSE-SU-2020:14267-1 SUSE-SU-2020:14356-1 SUSE-SU-2020:14423-1 SUSE-SU-2020:14418-1 SUSE-SU-2020:14268-1 SUSE-SU-2020:14290-1 SUSE-SU-2020:14312-1 SUSE-SU-2020:14339-1 SUSE-SU-2020:14359-1 SUSE-SU-2020:14389-1 SUSE-SU-2020:14421-1 SUSE-SU-2020:14456-1 SUSE-SU-2020:14489-1 SUSE-SU-2020:14502-1 SUSE-SU-2020:14522-1 SUSE-SU-2020:14542-1 SUSE-SU-2020:14414-1 SUSE-SU-2020:14415-1 SUSE-SU-2020:14358-1 SUSE-SU-2020:14419-1 SUSE-SU-2020:14541-1 SUSE-SU-2020:14295-1 SUSE-SU-2020:14491-1 SUSE-SU-2020:14493-1 SUSE-SU-2020:14510-1 SUSE-SU-2020:14304-1 SUSE-SU-2020:14289-1 SUSE-SU-2020:14516-1 SUSE-SU-2020:14292-1 SUSE-SU-2020:14306-1 SUSE-SU-2020:14437-1 SUSE-SU-2020:14525-1 SUSE-SU-2020:14490-1 SUSE-SU-2020:14460-1 SUSE-SU-2020:14369-1 SUSE-SU-2020:14334-1 SUSE-SU-2020:14375-1 SUSE-SU-2020:14385-1 SUSE-SU-2020:14444-1 SUSE-SU-2020:14521-1 SUSE-SU-2020:14445-1 SUSE-SU-2020:14447-1 SUSE-SU-2020:14463-1 SUSE-SU-2020:14475-1 + +- New Security Announcement Patterns + sle11sp3/kernel_SUSE-SU-2018_1172-1_11.3.ltss.py + sle11sp3/patch_SUSE-SU-2018_1162-1_11.3.ltss.py + sle11sp3/xen_SUSE-SU-2018_1203-1_11.3.ltss.py + sle11sp4/kernel_SUSE-SU-2018_1171-1_11.4.py + sle11sp4/patch_SUSE-SU-2018_1162-1_11.4.py + sle11sp4/xen_SUSE-SU-2018_1181-1_11.4.py + +- Detects missing shim that fails upgrade + sle11all/shim-upgrade-7022915.py +- New Security Announcement Patterns + sle11sp3/clamav_SUSE-SU-2018_0863-1_11.3.ltss.py + sle11sp3/glibc_SUSE-SU-2018_0565-1_11.3.ltss.py + sle11sp3/java_SUSE-SU-2018_0645-1_11.3.ltss.py + sle11sp3/kernel_SUSE-SU-2018_0660-1_11.3.ltss.py + sle11sp3/microcode_ctl_SUSE-SU-2018_0705-1_11.3.ltss.py + sle11sp3/php53_SUSE-SU-2018_0806-1_11.3.ltss.py + sle11sp3/xen_SUSE-SU-2018_0678-1_11.3.ltss.py + sle11sp4/clamav_SUSE-SU-2018_0863-1_11.4.py + sle11sp4/coreutils_SUSE-SU-2018_0866-1_11.4.py + sle11sp4/glibc_SUSE-SU-2018_0565-1_11.4.py + sle11sp4/java_SUSE-SU-2018_0630-1_11.4.py + sle11sp4/kernel-rt_SUSE-SU-2018_0555-1_11.4.py + sle11sp4/kernel_SUSE-SU-2018_1080-1_11.4.py + sle11sp4/kvm_SUSE-SU-2018_1077-1_11.4.py + sle11sp4/libvirt_SUSE-SU-2018_0838-1_11.4.py + sle11sp4/microcode_ctl_SUSE-SU-2018_0705-1_11.4.py + sle11sp4/openssl_SUSE-SU-2018_0975-1_11.4.py + sle11sp4/php53_SUSE-SU-2018_0806-1_11.4.py + sle11sp4/xen_SUSE-SU-2018_0638-1_11.4.py + -- New Patterns - sle11sp1/mozilla-nss_SUSE-SU-2014_1220-3_11.1.py - sle11sp2/mozilla-nss_SUSE-SU-2014_1220-2_11.2.py - -- New Patterns - sle11sp1/bash_SUSE-SU-2014_1247-1_11.1.py - sle11sp2/bash_SUSE-SU-2014_1247-1_11.2.py - sle11sp3/bash_SUSE-SU-2014_1247-1_11.3.py - sle11sp3/mozilla-nss_SUSE-SU-2014_1220-1_11.3.py - sle11sp3/wireshark_SUSE-SU-2014_1221-1_11.3.py - -- Update bash security patterns with TID and BUG - -- New Patterns - sle11sp1/bash_SUSE-SU-2014_1212-1_11.1.py - sle11sp2/bash_SUSE-SU-2014_1213-1_11.2.py - sle11sp3/bash_SUSE-SU-2014_1213-1_11.3.py - -- New Patterns - sle11all/obsrepo-015683.py - sle11sp1/Kernel_SUSE-SU-2014_1138-1_11.1.py - sle11sp1/MozillaFirefox_SUSE-SU-2014_1112-2_11.1.py - sle11sp1/apache2_SUSE-SU-2014_1081-1_11.1.py - sle11sp1/glibc_SUSE-SU-2014_1122-1_11.1.py - sle11sp2/MozillaFirefox_SUSE-SU-2014_1112-1_11.2.py - sle11sp2/apache2_SUSE-SU-2014_1080-1_11.2.py - sle11sp2/glibc_SUSE-SU-2014_1129-1_11.2.py - sle11sp3/LibreOffice_SUSE-SU-2014_1116-1_11.3.py - sle11sp3/MozillaFirefox_SUSE-SU-2014_1107-1_11.3.py - sle11sp3/dbus-1_SUSE-SU-2014_1146-1_11.3.py - sle11sp3/flash-playe_SUSE-SU-2014_1124-1_11.3.py - sle11sp3/glibc_SUSE-SU-2014_1125-1_11.3.py - sle11sp3/procmail_SUSE-SU-2014_1137-1_11.3.py - sle11sp3/squid3_SUSE-SU-2014_1140-1_11.3.py - -- New Patterns - sle11sp1/NFS_Error88-7010007.py - sle11sp3/MySQL_SUSE-SU-2014_1072-1_11.3.py - -- New Patterns - sle11sp3/flash_SUSE-SU-2014_1035-1_11.3.py - sle11sp3/krb5_SUSE-SU-2014_1028-1_11.3.py - -- New Patterns - sle11sp3/smbmmap-7015515.py - -- New Patterns - sle11sp1/Firefox_SUSE-SU-2014_0960-1_11.1.py - sle11sp2/Firefox_SUSE-SU-2014_0960-1_11.2.py - sle11sp2/scale_rt_power-7015154_0.1.4.py - sle11sp3/Apache_SUSE-SU-2014_0967-1_11.3.py - sle11sp3/Firefox_SUSE-SU-2014_0960-1_11.3.py - sle11sp3/openjdk_SUSE-SU-2014_0961-1_11.3.py - sle11sp3/scale_rt_power-7015154_0.1.4.py - -- New Patterns - sle11sp1/lzo_SUSE-SU-2014_0955-1_11.1.py - sle11sp2/lzo_SUSE-SU-2014_0955-1_11.2.py - -- New Patterns - sle11sp3/libtasn1_SUSE-SU-2014_0931-1_11.3.py - sle11sp3/ppc64-diag_SUSE-SU-2014_0928-1_11.3.py - -- New Patterns - sle11sp3/xen_kdump-7014586.py - sle11sp3/chipset-7014344.py - sle11sp3/gui-7015167.py - sle11sp2/chipset-7014344.py - -- New Patterns - sle11sp3/lzo-SUSE-SU-2014_0904-1.py - sle11sp3/flash-SUSE-SU-2014_0897-1.py - sle11sp3/xalan-SUSE-SU-2014_0870-1.py - sle11sp3/kernel-SUSE-SU-2014_0910-1.py - sle11sp3/php53-SUSE-SU-2014_0869-1.py - sle11sp2/php5-SUSE-SU-2014_0868-1.py - sle11sp2/php53-SUSE-SU-2014_0869-1.py - sle11sp1/php5-SUSE-SU-2014_0873-2.py - -- Fixed invalid header processing in mntspace-00001.pl - -- New Patterns - sle11sp3/novellui-SUSE-SU-2014_0847-1.pl - sle11sp1/firefox-SUSE-SU-2014_0824-2.pl - sle11sp2/firefox-SUSE-SU-2014_0824-3.pl - sle11sp3/firefox-SUSE-SU-2014_0824-1.pl - -- New Patterns - sle11sp3/rxvt-SUSE-SU-2014_0838-1.pl - sle11sp3/flash-SUSE-SU-2014_0806-1.pl - sle11sp2/kernel-SUSE-SU-2014_0837-2.pl - sle11sp1/kernel-SUSE-SU-2014_0807-1.pl - sle11sp1/gnutls-SUSE-SU-2014_0788-1.pl - sle11sp2/gnutls-SUSE-SU-2014_0788-1.pl - sle11sp2/kernel-SUSE-SU-2014_0837-1.pl - sle11sp3/kernel-SUSE-SU-2014_0775-1.pl - sle11sp3/mysql-SUSE-SU-2014_0769-1.pl - sle11sp3/openssl_sm-SUSE-SU-2014_0762-1.pl - sle11sp1/openssl-SUSE-SU-2014_0761-1.pl - sle11sp2/openssl-SUSE-SU-2014_0761-1.pl - sle11sp3/openssl-SUSE-SU-2014_0759-1.pl - sle11sp3/gnutls-SUSE-SU-2014_0758-1.pl - sle11sp3/javaibm-SUSE-SU-2014_0728-3.pl - sle11sp3/javaibm-SUSE-SU-2014_0733-2.pl - sle11sp3/hyperv_kdump-7014585.py - sle11sp2/hyperv_kdump-7014585.py - sle11sp2/javaibm-SUSE-SU-2014_0733-1.pl - sle11sp2/javaibm-SUSE-SU-2014_0728-2.pl - -- Fixed invalid NTP fields in sle11all/ntp-00002.pl - -- Fixed calculation errors in sle11all/parted-00001.pl -- New Patterns - sle11sp2/kernel-SUSE-SU-2014_0696-1.pl - -- New Patterns - sle11sp2/nfs-7014392.py - sle11sp3/nfs-7014392.py - sle11sp2/audit-7014614.py - sle11sp3/audit-7014614.py - sle11sp3/hotmem-7015086.py - sle11sp2/bond-7014947.py - sle11sp3/bond-7014947.py - -- New Patterns - sle11sp2/swapon-7010766.py - sle11all/vfx_inode_table_7015089.py - -- New Patterns - sle11sp3/nagios-SUSE-SU-2014_0682-1.pl - sle11sp3/flash-SUSE-SU-2014_0671-1.pl - sle11sp3/javaopen-SUSE-SU-2014_0639-1.pl - sle11sp1/firefox-SUSE-SU-2014_0665-1.pl - sle11sp2/firefox-SUSE-SU-2014_0638-2.pl - sle11sp3/firefox-SUSE-SU-2014_0638-1.pl - sle11sp3/kvm-SUSE-SU-2014_0623-1.pl - sle11sp3/flash-SUSE-SU-2014_0605-1.pl - sle11sp3/kernel-SUSE-SU-2014_0667-1.pl - sle11all/strongswan-SUSE-SU-2014_0529-1.pl - -- New Patterns - sle11sp3/jakarta-SUSE-SU-2014_0548-1.pl - sle11sp3/flash-SUSE-SU-2014_0535-1.pl - sle11sp3/kernel-SUSE-SU-2014_0531-1.pl - sle11sp2/puppet-SUSE-SU-2014_0510-1.pl - sle11sp3/puppet-SUSE-SU-2014_0510-1.pl - sle11sp3/samba-SUSE-SU-2014_0497-1.pl - sle11sp3/sudo-SUSE-SU-2014_0475-1.pl - sle11sp3/lighttpd-SUSE-SU-2014_0474-1.pl - sle11sp3/mutt-SUSE-SU-2014_0471-1.pl - sle11sp3/kernel-SUSE-SU-2014_0459-1.pl - sle11sp2/kernel-SUSE-SU-2014_0229-1.pl - -- New Patterns - sle11all/sandy-7014951.py - sle11sp1/acpi-7010449.py - sle11sp2/acpi-7010449.py - -- Removed debug pattern - -- Removed obsolete pattern subscription-00002.pl (bnc#710068) -- Removed obsolete pattern patches-00002.pl (bnc#710068) - -- Fixed mntspace-00001.pl df error handling -- Fixed x-00003.pl non numeric comparison error - -- Fixed Use of uninitialized value in addition in bhc-cpucs-00001.pl -- Fixed Argument "like:" isn't numeric in bhc-cpuint-00001.pl -- Fixed Use of uninitialized value in pattern match in fsaio-00002.pl -- Fixed Argument "" isn't numeric in fsaio-00001.pl -- Fixed bhc-kerneltaint-00001.pl to check for invalid taint - -- New Patterns - sle11all/lastlogin-7014881.py - sle11sp3/mcelog_AMD-7013006.py - -- Removed LTSS tag in sle11sp3/xen-SUSE-SU-2014_0373-1.pl - -- New Security Patterns - sle11sp1/xen-SUSE-SU-2014_0446-1.pl - sle11sp2/xen-SUSE-SU-2014_0372-1.pl - sle11sp3/xen-SUSE-SU-2014_0373-1.pl - sle11sp3/flash-SUSE-SU-2014_0387-1.pl - sle11sp3/firefox-SUSE-SU-2014_0418-1.pl - sle11sp1/gnutls-SUSE-SU-2014_0322-1.pl - sle11sp2/gnutls-SUSE-SU-2014_0323-1.pl - sle11sp3/gnutls-SUSE-SU-2014_0319-1.pl - -- New Security Patterns - sle11sp3/flash-SUSE-SU-2014_0290-1.pl - sle11sp3/javaibm-SUSE-SU-2014_0266-3.pl - sle11sp1/javaibm-SUSE-SU-2014_0266-3.pl - sle11sp2/javaibm-SUSE-SU-2014_0266-2.pl - sle11sp2/firefox-SUSE-SU-2014_0248-2.pl - sle11sp1/firefox-SUSE-SU-2014_0248-2.pl - sle11sp3/firefox-SUSE-SU-2014_0248-1.pl - sle11sp3/javaibm-SUSE-SU-2014_0246-1.pl - sle11sp3/flash-SUSE-SU-2014_0221-1.pl - sle11sp2/flash-SUSE-SU-2014_0221-1.pl - sle11sp3/puppet-SUSE-SU-2014_0155-1.pl - sle11sp2/puppet-SUSE-SU-2014_0155-1.pl - sle11sp3/certs-SUSE-SU-2014_0025-1.pl - sle11sp2/certs-SUSE-SU-2014_0025-1.pl - sle11sp3/samba-SUSE-SU-2014_0024-1.pl - sle11sp2/samba-SUSE-SU-2014_0024-1.pl - sle11sp3/acroread-SUSE-SU-2013_1967-1.pl - sle11sp2/acroread-SUSE-SU-2013_1967-1.pl - sle11sp2/libfreebl3-SUSE-SU-2013_1920-1.pl - sle11sp3/firefox-SUSE-SU-2013_1919-1.pl - sle11sp3/flash-SUSE-SU-2013_1896-1.pl - sle11sp2/flash-SUSE-SU-2013_1896-1.pl - sle11sp3/ruby-SUSE-SU-2013_1828-1.pl - sle11sp2/ruby-SUSE-SU-2013_1828-1.pl - sle11sp3/mozilla-SUSE-SU-2013_1807-1.pl - sle11sp2/mozilla-SUSE-SU-2013_1807-1.pl - sle11sp1/mozilla-SUSE-SU-2013_1807-1.pl - -- New patterns - sle11sp3/oops-7014823.pl - -- Fixed spec macro - -- Removed duplicates with fdupes -- Fixed FSF address in all patterns -- Change to System/Monitoring spec Group - -- New patterns - sle11sp2/ipset-7014180.py - sle11sp3/ipset-7014180.py - sle11all/reg-7014660.py - sle11all/chmod-7014410.py - sle11all/login-7014706.py - -- Fixed out of range index errors - sle11all/xfs-7014242.py - sle11sp2/xfs-7013481a.py - sle11sp3/xfs-7013481b.py - sle11all/bhc-memused-00001.pl - -- Packaged COPYING.GPLv2 - -- added - sle11all/net-7007649.py -- includes pertinent patterns from sca-patterns-sleall -- includes pertinent patterns from sca-patterns-samba -- includes pertinent patterns from sca-patterns-basic - -- relocated files according to FHS - -- separated as individual RPM package -- updated vmware-00001.pl link -- added time consideration to lastdown-3301593.py -- additional error checking in lastdown-3301593.py -- added - tmp-7002723.py sleall - firefox-SUSE-SU-2013_1678-1a.pl sle11sp3 - firefox-SUSE-SU-2013_1678-1b.pl sle11sp2 - firefox-SUSE-SU-2013_1678-1c.pl sle11sp1 - flash-SUSE-SU-2013_1716-1a.pl sle11sp3 - flash-SUSE-SU-2013_1716-1b.pl sle11sp2 - java-SUSE-SU-2013_1677-2a.pl sle11sp3 - java-SUSE-SU-2013_1677-2b.pl sle11sp2 - java-SUSE-SU-2013_1677-2c.pl sle11sp1 - java-SUSE-SU-2013_1677-3a.pl sle11sp3 - java-SUSE-SU-2013_1677-3b.pl sle11sp2 - kdev-7003734.py sle11all - kernel-SUSE-SU-2013_1748-1.pl sle11sp2 - kernel-SUSE-SU-2013_1749-1.pl sle11sp3 - xfs-7013481a.py sle11sp2 - xfs-7013481b.py sle11sp3 - xfs-7014242.py sle11all - sca-patterns-sle12 +- Changes to version 1.0.2 + + Feb 2021 New Security Announcement Patterns (67) for SUSE-SU-2021:0477-1 SUSE-SU-2021:0530-1 SUSE-SU-2021:0491-1 SUSE-SU-2021:0432-1 SUSE-SU-2021:0344-1 SUSE-SU-2021:0428-1 SUSE-SU-2021:0299-1 SUSE-SU-2021:0545-1 SUSE-SU-2021:0599-1 SUSE-SU-2021:0449-1 SUSE-SU-2021:0276-1 SUSE-SU-2021:0431-1 SUSE-SU-2021:0527-1 SUSE-SU-2021:0353-1 SUSE-SU-2021:0348-1 SUSE-SU-2021:0652-1 SUSE-SU-2021:0533-1 SUSE-SU-2021:0512-1 SUSE-SU-2021:0275-1 SUSE-SU-2021:0489-1 SUSE-SU-2021:0600-1 SUSE-SU-2021:0528-1 SUSE-SU-2021:0608-1 SUSE-SU-2021:0286-1 SUSE-SU-2021:0503-1 SUSE-SU-2021:0563-1 SUSE-SU-2021:0478-1 SUSE-SU-2021:0491-1 SUSE-SU-2021:0432-1 SUSE-SU-2021:0344-1 SUSE-SU-2021:0479-1 SUSE-SU-2021:0297-1 SUSE-SU-2021:0527-1 SUSE-SU-2021:0434-1 SUSE-SU-2021:0652-1 SUSE-SU-2021:0533-1 SUSE-SU-2021:0512-1 SUSE-SU-2021:0489-1 SUSE-SU-2021:0503-1 SUSE-SU-2021:0478-1 SUSE-SU-2021:0491-1 SUSE-SU-2021:0432-1 SUSE-SU-2021:0344-1 SUSE-SU-2021:0446-1 SUSE-SU-2021:0284-1 SUSE-SU-2021:0527-1 SUSE-SU-2021:0408-1 SUSE-SU-2021:0452-1 SUSE-SU-2021:0652-1 SUSE-SU-2021:0533-1 SUSE-SU-2021:0512-1 SUSE-SU-2021:0489-1 SUSE-SU-2021:0504-1 SUSE-SU-2021:0478-1 SUSE-SU-2021:0491-1 SUSE-SU-2021:0432-1 SUSE-SU-2021:0344-1 SUSE-SU-2021:0451-1 SUSE-SU-2021:0298-1 SUSE-SU-2021:0527-1 SUSE-SU-2021:0408-1 SUSE-SU-2021:0437-1 SUSE-SU-2021:0652-1 SUSE-SU-2021:0533-1 SUSE-SU-2021:0512-1 SUSE-SU-2021:0489-1 SUSE-SU-2021:0504-1 + + Jan 2021 New Security Announcement Patterns (49) for SUSE-SU-2021:0031-1 SUSE-SU-2021:0225-1 SUSE-SU-2021:0217-1 SUSE-SU-2021:0172-1 SUSE-SU-2021:0128-1 SUSE-SU-2021:0196-1 SUSE-SU-2021:0241-1 SUSE-SU-2021:0080-1 SUSE-SU-2021:0133-1 SUSE-SU-2021:0098-1 SUSE-SU-2021:0032-1 SUSE-SU-2021:0019-1 SUSE-SU-2021:0199-1 SUSE-SU-2021:0017-1 SUSE-SU-2021:0018-1 SUSE-SU-2021:0166-1 SUSE-SU-2021:0031-1 SUSE-SU-2021:0226-1 SUSE-SU-2021:0217-1 SUSE-SU-2021:0241-1 SUSE-SU-2021:0080-1 SUSE-SU-2021:0032-1 SUSE-SU-2021:0019-1 SUSE-SU-2021:0199-1 SUSE-SU-2021:0017-1 SUSE-SU-2021:0018-1 SUSE-SU-2021:0166-1 SUSE-SU-2021:0226-1 SUSE-SU-2021:0217-1 SUSE-SU-2021:0022-1 SUSE-SU-2021:0241-1 SUSE-SU-2021:0080-1 SUSE-SU-2021:0032-1 SUSE-SU-2021:0019-1 SUSE-SU-2021:0199-1 SUSE-SU-2021:0017-1 SUSE-SU-2021:0018-1 SUSE-SU-2021:0166-1 SUSE-SU-2021:0232-1 SUSE-SU-2021:0217-1 SUSE-SU-2021:0022-1 SUSE-SU-2021:0241-1 SUSE-SU-2021:0080-1 SUSE-SU-2021:0032-1 SUSE-SU-2021:0019-1 SUSE-SU-2021:0199-1 SUSE-SU-2021:0017-1 SUSE-SU-2021:0018-1 SUSE-SU-2021:0166-1 + + Dec 2020 New Security Announcement Patterns (72) for SUSE-SU-2020:3587-1 SUSE-SU-2020:3880-1 SUSE-SU-2020:3612-1 SUSE-SU-2020:3765-1 SUSE-SU-2020:3596-1 SUSE-SU-2020:3865-1 SUSE-SU-2020:3594-1 SUSE-SU-2020:3629-1 SUSE-SU-2020:3909-1 SUSE-SU-2020:3883-1 SUSE-SU-2020:3740-1 SUSE-SU-2020:3732-1 SUSE-SU-2020:3844-1 SUSE-SU-2020:3931-1 SUSE-SU-2020:3632-1 SUSE-SU-2020:3903-1 SUSE-SU-2020:3717-1 SUSE-SU-2020:3715-1 SUSE-SU-2020:3614-1 SUSE-SU-2020:3939-1 SUSE-SU-2020:3739-1 SUSE-SU-2020:3729-1 SUSE-SU-2020:3582-1 SUSE-SU-2020:3914-1 SUSE-SU-2020:3765-1 SUSE-SU-2020:3596-1 SUSE-SU-2020:3594-1 SUSE-SU-2020:3629-1 SUSE-SU-2020:3740-1 SUSE-SU-2020:3732-1 SUSE-SU-2020:3844-1 SUSE-SU-2020:3632-1 SUSE-SU-2020:3903-1 SUSE-SU-2020:2475-2 SUSE-SU-2020:3653-1 SUSE-SU-2020:3614-1 SUSE-SU-2020:3939-1 SUSE-SU-2020:3918-1 SUSE-SU-2020:3585-1 SUSE-SU-2020:3945-1 SUSE-SU-2020:3631-1 SUSE-SU-2020:3765-1 SUSE-SU-2020:3596-1 SUSE-SU-2020:3594-1 SUSE-SU-2020:3629-1 SUSE-SU-2020:3763-1 SUSE-SU-2020:3632-1 SUSE-SU-2020:3903-1 SUSE-SU-2020:2475-2 SUSE-SU-2020:3656-1 SUSE-SU-2020:3651-1 SUSE-SU-2020:3614-1 SUSE-SU-2020:3939-1 SUSE-SU-2020:3918-1 SUSE-SU-2020:3585-1 SUSE-SU-2020:3913-1 SUSE-SU-2020:3742-1 SUSE-SU-2020:3841-1 SUSE-SU-2020:3765-1 SUSE-SU-2020:3596-1 SUSE-SU-2020:3594-1 SUSE-SU-2020:3629-1 SUSE-SU-2020:3763-1 SUSE-SU-2020:3632-1 SUSE-SU-2020:3903-1 SUSE-SU-2020:2475-2 SUSE-SU-2020:3842-1 SUSE-SU-2020:3651-1 SUSE-SU-2020:3648-1 SUSE-SU-2020:3614-1 SUSE-SU-2020:3939-1 SUSE-SU-2020:3918-1 + +- Additions to version 1.0.2 + + Patterns for TID000019812 sshd process is having high CPU load + +- Patterns for TID000019786 Security Vulnerability: SADDNS attack (CVE-2020-25705) + +- New Security Announcement Patterns for Version 1.0.1 + SUSE-SU-2020:3516-1 SUSE-SU-2020:3354-1 SUSE-SU-2020:3501-1 SUSE-SU-2020:3433-1 SUSE-SU-2020:3379-1 SUSE-SU-2020:3550-1 SUSE-SU-2020:3548-1 SUSE-SU-2020:3464-1 SUSE-SU-2020:3477-1 SUSE-SU-2020:3514-1 SUSE-SU-2020:3367-1 SUSE-SU-2020:3516-1 SUSE-SU-2020:3354-1 SUSE-SU-2020:3503-1 SUSE-SU-2020:3433-1 SUSE-SU-2020:3379-1 SUSE-SU-2020:3550-1 SUSE-SU-2020:3548-1 SUSE-SU-2020:3464-1 SUSE-SU-2020:3477-1 SUSE-SU-2020:3474-1 SUSE-SU-2020:3514-1 SUSE-SU-2020:3516-1 SUSE-SU-2020:3353-1 SUSE-SU-2020:3544-1 SUSE-SU-2020:3379-1 SUSE-SU-2020:3550-1 SUSE-SU-2020:3497-1 SUSE-SU-2020:3548-1 SUSE-SU-2020:3464-1 SUSE-SU-2020:3514-1 SUSE-SU-2020:3415-1 SUSE-SU-2020:3516-1 SUSE-SU-2020:3353-1 SUSE-SU-2020:3379-1 SUSE-SU-2020:3550-1 SUSE-SU-2020:3497-1 SUSE-SU-2020:3548-1 SUSE-SU-2020:3464-1 SUSE-SU-2020:3563-1 SUSE-SU-2020:3360-1 SUSE-SU-2020:3457-1 SUSE-SU-2020:3424-1 SUSE-SU-2020:3414-1 + +- New Security Announcement Patterns for Version 1.0.1 + SUSE-SU-2020:0576-1 SUSE-SU-2020:2634-1 SUSE-SU-2020:3263-1 SUSE-SU-2020:0394-1 SUSE-SU-2020:1210-1 SUSE-SU-2020:1855-1 SUSE-SU-2020:3315-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3262-1 SUSE-SU-2020:1221-1 SUSE-SU-2020:1111-1 SUSE-SU-2020:1045-1 SUSE-SU-2020:0394-1 SUSE-SU-2020:1212-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:1180-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:0261-1 SUSE-SU-2020:0456-1 SUSE-SU-2020:0528-1 SUSE-SU-2020:0628-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:0457-1 SUSE-SU-2020:1534-1 SUSE-SU-2019:3060-2 SUSE-SU-2020:0319-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:0054-1 SUSE-SU-2020:1301-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:1210-1 SUSE-SU-2020:0516-1 radius:SUSE-SU-2020 SUSE-SU-2020:0715-1 SUSE-SU-2020:0586-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:0790-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1514-1 SUSE-SU-2020:0424-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:0390-1 SUSE-SU-2020:0266-1 SUSE-SU-2020:0806-1 SUSE-SU-2020:1497-1 SUSE-SU-2020:0358-1 SUSE-SU-2020:0388-1 SUSE-SU-2020:1612-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:2450-1 SUSE-SU-2020:3149-1 SUSE-SU-2020:1914-1 SUSE-SU-2020:1045-1 SUSE-SU-2020:1732-1 SUSE-SU-2020:2274-1 SUSE-SU-2020:2391-1 SUSE-SU-2020:2998-1 SUSE-SU-2020:3263-1 SUSE-SU-2020:0394-1 SUSE-SU-2020:1212-1 SUSE-SU-2020:2097-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:3024-1 SUSE-SU-2020:2076-1 SUSE-SU-2020:2308-1 SUSE-SU-2020:1180-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:0261-1 SUSE-SU-2020:0456-1 SUSE-SU-2020:0528-1 SUSE-SU-2020:0628-1 SUSE-SU-2020:1571-1 SUSE-SU-2020:1683-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:1686-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:2482-1 SUSE-SU-2020:2861-1 SUSE-SU-2020:3310-1 SUSE-SU-2020:1255-1 SUSE-SU-2020:1597-1 SUSE-SU-2020:2134-1 SUSE-SU-2020:2576-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1486-1 SUSE-SU-2020:1764-1 SUSE-SU-2020:1767-1 SUSE-SU-2020:2491-1 SUSE-SU-2020:2492-1 SUSE-SU-2020:2499-1 SUSE-SU-2020:2502-1 SUSE-SU-2020:2544-1 SUSE-SU-2020:3191-1 SUSE-SU-2020:3219-1 SUSE-SU-2020:3225-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:0457-1 SUSE-SU-2020:1534-1 SUSE-SU-2019:3060-2 SUSE-SU-2020:2900-1 SUSE-SU-2020:0318-1 SUSE-SU-2020:2760-1 SUSE-SU-2020:3143-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:2167-1 SUSE-SU-2020:2117-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:0054-1 SUSE-SU-2020:1301-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:1899-1 SUSE-SU-2020:2100-1 SUSE-SU-2020:2759-1 SUSE-SU-2020:3053-1 SUSE-SU-2020:3331-1 SUSE-SU-2020:1794-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:1193-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:3314-1 SUSE-SU-2020:0474-1 SUSE-SU-2020:0495-1 SUSE-SU-2020:3126-1 radius:SUSE-SU-2020 SUSE-SU-2020:2661-1 SUSE-SU-2020:2856-1 SUSE-SU-2020:1662-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:3343-1 SUSE-SU-2020:0586-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:2157-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1526-1 SUSE-SU-2020:3351-1 SUSE-SU-2020:0512-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:2312-1 SUSE-SU-2020:2724-1 SUSE-SU-2020:3083-1 SUSE-SU-2020:3125-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:2628-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:0661-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1803-1 SUSE-SU-2020:1946-1 SUSE-SU-2020:2471-1 SUSE-SU-2020:0407-1 SUSE-SU-2020:0331-1 SUSE-SU-2020:2898-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:1498-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:2611-1 SUSE-SU-2020:1595-1 SUSE-SU-2020:3279-1 SUSE-SU-2020:1550-1 SUSE-SU-2020:0016-1 SUSE-SU-2020:1135-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:2069-1 SUSE-SU-2020:2232-1 SUSE-SU-2020:0410-1 SUSE-SU-2020:0334-1 SUSE-SU-2020:2234-1 SUSE-SU-2020:2822-1 SUSE-SU-2020:2225-1 SUSE-SU-2020:2331-1 SUSE-SU-2020:2401-1 SUSE-SU-2020:1943-1 SUSE-SU-2020:1612-1 SUSE-SU-2020:1272-1 SUSE-SU-2020:2450-1 SUSE-SU-2020:3149-1 SUSE-SU-2020:1914-1 SUSE-SU-2020:1158-1 SUSE-SU-2020:1748-1 SUSE-SU-2020:1045-1 SUSE-SU-2020:1732-1 SUSE-SU-2020:2274-1 SUSE-SU-2020:2194-1 SUSE-SU-2020:1018-1 SUSE-SU-2020:2998-1 SUSE-SU-2020:3263-1 SUSE-SU-2020:0394-1 SUSE-SU-2020:1212-1 SUSE-SU-2020:2097-1 SUSE-SU-2020:0992-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:3024-1 SUSE-SU-2020:2079-1 SUSE-SU-2020:2304-1 SUSE-SU-2020:1180-1 SUSE-SU-2020:0630-1 SUSE-SU-2020:0024-1 SUSE-SU-2020:0051-1 SUSE-SU-2020:0261-1 SUSE-SU-2020:0456-1 SUSE-SU-2020:0528-1 SUSE-SU-2020:0628-1 SUSE-SU-2020:1571-1 SUSE-SU-2020:1683-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:1686-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:2482-1 SUSE-SU-2020:2861-1 SUSE-SU-2020:3310-1 SUSE-SU-2020:1275-1 SUSE-SU-2020:1596-1 SUSE-SU-2020:1713-1 SUSE-SU-2020:2152-1 SUSE-SU-2020:2582-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1779-1 SUSE-SU-2020:1781-1 SUSE-SU-2020:1784-1 SUSE-SU-2020:2491-1 SUSE-SU-2020:2497-1 SUSE-SU-2020:2498-1 SUSE-SU-2020:2499-1 SUSE-SU-2020:2502-1 SUSE-SU-2020:2544-1 SUSE-SU-2020:3191-1 SUSE-SU-2020:3219-1 SUSE-SU-2020:3225-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:0457-1 SUSE-SU-2020:1534-1 SUSE-SU-2019:3060-2 SUSE-SU-2020:2900-1 SUSE-SU-2020:0317-1 SUSE-SU-2020:2751-1 SUSE-SU-2020:2660-1 SUSE-SU-2020:3095-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:2167-1 SUSE-SU-2020:2117-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:0079-2 SUSE-SU-2020:0054-1 SUSE-SU-2020:1301-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0088-1 SUSE-SU-2020:1839-1 SUSE-SU-2020:0068-1 SUSE-SU-2020:0384-1 SUSE-SU-2020:0717-1 SUSE-SU-2020:0928-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:1563-1 SUSE-SU-2020:1899-1 SUSE-SU-2020:2100-1 SUSE-SU-2020:2759-1 SUSE-SU-2020:3053-1 SUSE-SU-2020:3331-1 SUSE-SU-2020:1794-1 SUSE-SU-2020:1805-1 SUSE-SU-2020:1193-1 SUSE-SU-2020:1859-1 SUSE-SU-2020:3314-1 SUSE-SU-2020:0474-1 radius:SUSE-SU-2020 SUSE-SU-2020:2661-1 SUSE-SU-2020:2856-1 SUSE-SU-2020:1662-1 SUSE-SU-2020:0545-1 SUSE-SU-2020:0715-1 SUSE-SU-2020:3343-1 SUSE-SU-2020:0586-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:2157-1 SUSE-SU-2020:1285-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:0497-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:1524-1 SUSE-SU-2020:1538-1 SUSE-SU-2020:3351-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:0233-1 SUSE-SU-2020:2066-1 SUSE-SU-2020:2721-1 SUSE-SU-2020:3093-1 SUSE-SU-2020:3125-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:2627-1 SUSE-SU-2020:0810-1 SUSE-SU-2020:3085-1 SUSE-SU-2020:3084-1 SUSE-SU-2020:0661-1 SUSE-SU-2020:1227-1 SUSE-SU-2020:1803-1 SUSE-SU-2020:1946-1 SUSE-SU-2020:2471-1 SUSE-SU-2020:0406-1 SUSE-SU-2020:0331-1 SUSE-SU-2020:2898-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:1498-1 SUSE-SU-2020:1791-1 SUSE-SU-2020:2611-1 SUSE-SU-2020:1970-1 SUSE-SU-2020:1595-1 SUSE-SU-2020:3279-1 SUSE-SU-2020:1550-1 SUSE-SU-2020:0016-1 SUSE-SU-2020:1135-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:2069-1 SUSE-SU-2020:2232-1 SUSE-SU-2020:0410-1 SUSE-SU-2020:1630-1 SUSE-SU-2020:1886-1 SUSE-SU-2020:2171-1 SUSE-SU-2020:2787-1 SUSE-SU-2020:2225-1 SUSE-SU-2020:2331-1 SUSE-SU-2020:2401-1 SUSE-SU-2020:1991-1 + +- Additions to version 1.0.1 + + Removed unnecessary README from sp4-5 + + Added sle12sp5 directory to spec file + +- System panic in update_group_capacity() due to a divide error (bsc#1096254) + Pattern: cron-7023601.py +- Expected cron daemon behavior change from SLES11 to SLES12 (bsc#1017160) + Pattern: panic-7023575.py + +- New Security Announcement Patterns + sle12sp0/kernel_SUSE-SU-2018_1221-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1222-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1224-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1226-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1233-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1234-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1235-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1243-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1244-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1247-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1257-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1261-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1267-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1273-1_12.0.ltss.py + sle12sp0/xen_SUSE-SU-2018_1177-1_12.0.ltss.py + sle12sp1/kernel_SUSE-SU-2018_1220-1_12.1.ltss.py + sle12sp1/kernel_SUSE-SU-2018_1220-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1227-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1227-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1229-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1229-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1231-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1231-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1232-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1232-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1237-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1237-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1251-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1251-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1254-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1254-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1255-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1255-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1259-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1259-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1264-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1264-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1266-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1266-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1269-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1269-1_12.1.py + sle12sp1/xen_SUSE-SU-2018_1202-1_12.1.ltss.py + sle12sp1/xen_SUSE-SU-2018_1202-1_12.1.py + sle12sp2/kernel_SUSE-SU-2018_1173-1_12.2.ltss.py + sle12sp2/kernel_SUSE-SU-2018_1173-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1223-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1223-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1230-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1230-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1236-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1236-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1239-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1239-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1241-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1241-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1242-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1242-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1245-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1245-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1250-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1250-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1253-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1253-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1256-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1256-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1258-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1258-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1262-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1262-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1268-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1268-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1272-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1272-1_12.2.py + sle12sp2/xen_SUSE-SU-2018_1216-1_12.2.ltss.py + sle12sp2/xen_SUSE-SU-2018_1216-1_12.2.py + sle12sp3/patch_SUSE-SU-2018_1128-1_12.3.py + sle12sp3/xen_SUSE-SU-2018_1184-1_12.3.py + +- New Security Announcement Patterns + sle12sp0/apache_SUSE-SU-2018_0901-1_12.0.ltss.py + sle12sp0/cups_SUSE-SU-2018_0604-1_12.0.ltss.py + sle12sp0/java_SUSE-SU-2018_0743-1_12.0.ltss.py + sle12sp0/kernel_SUSE-SU-2018_0834-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0562-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0664-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0994-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0995-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0996-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_0999-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1000-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1001-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1006-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1009-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1010-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1016-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1029-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1030-1_12.0.ltss.py + sle12sp0/kgraft-patch_SUSE-SU-2018_1035-1_12.0.ltss.py + sle12sp0/librelp_SUSE-SU-2018_0828-1_12.0.ltss.py + sle12sp0/mariadb_SUSE-SU-2018_0698-1_12.0.ltss.py + sle12sp0/openssl_SUSE-SU-2018_0906-1_12.0.ltss.py + sle12sp0/ucode-intel_SUSE-SU-2018_0708-1_12.0.ltss.py + sle12sp0/xen_SUSE-SU-2018_0601-1_12.0.ltss.py + sle12sp1/apache_SUSE-SU-2018_0879-1_12.1.ltss.py + sle12sp1/apache_SUSE-SU-2018_0879-1_12.1.py + sle12sp1/cups_SUSE-SU-2018_0604-1_12.1.ltss.py + sle12sp1/cups_SUSE-SU-2018_0604-1_12.1.py + sle12sp1/java_SUSE-SU-2018_0663-1_12.1.ltss.py + sle12sp1/java_SUSE-SU-2018_0663-1_12.1.py + sle12sp1/java_SUSE-SU-2018_0665-1_12.1.ltss.py + sle12sp1/java_SUSE-SU-2018_0665-1_12.1.py + sle12sp1/java_SUSE-SU-2018_0743-1_12.1.ltss.py + sle12sp1/java_SUSE-SU-2018_0743-1_12.1.py + sle12sp1/kernel_SUSE-SU-2018_0525-1_12.1.ltss.py + sle12sp1/kernel_SUSE-SU-2018_0525-1_12.1.py + sle12sp1/kernel_SUSE-SU-2018_0848-1_12.1.ltss.py + sle12sp1/kernel_SUSE-SU-2018_0848-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0988-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0988-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0991-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0991-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0992-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_0992-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1005-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1005-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1008-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1008-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1014-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1014-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1015-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1015-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1018-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1018-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1025-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1025-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1026-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1026-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1032-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1032-1_12.1.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1034-1_12.1.ltss.py + sle12sp1/kgraft-patch_SUSE-SU-2018_1034-1_12.1.py + sle12sp1/librelp_SUSE-SU-2018_0828-1_12.1.ltss.py + sle12sp1/librelp_SUSE-SU-2018_0828-1_12.1.py + sle12sp1/mariadb_SUSE-SU-2018_0697-1_12.1.ltss.py + sle12sp1/mariadb_SUSE-SU-2018_0697-1_12.1.py + sle12sp1/openssl_SUSE-SU-2018_0902-1_12.1.ltss.py + sle12sp1/openssl_SUSE-SU-2018_0902-1_12.1.py + sle12sp1/ucode-intel_SUSE-SU-2018_0708-1_12.1.ltss.py + sle12sp1/ucode-intel_SUSE-SU-2018_0708-1_12.1.py + sle12sp1/xen_SUSE-SU-2018_0609-1_12.1.ltss.py + sle12sp1/xen_SUSE-SU-2018_0609-1_12.1.py + sle12sp2/clamav_SUSE-SU-2018_0809-1_12.2.py + sle12sp2/cups_SUSE-SU-2018_0604-1_12.2.py + sle12sp2/java_SUSE-SU-2018_0661-1_12.2.py + sle12sp2/java_SUSE-SU-2018_0663-1_12.2.py + sle12sp2/java_SUSE-SU-2018_0665-1_12.2.py + sle12sp2/java_SUSE-SU-2018_0694-1_12.2.py + sle12sp2/java_SUSE-SU-2018_0743-1_12.2.py + sle12sp2/kernel_SUSE-SU-2018_0785-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0989-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0989-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0990-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0990-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0993-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_0993-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1003-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1003-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1004-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1004-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1007-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1007-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1011-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1011-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1012-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1012-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1019-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1019-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1021-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1021-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1023-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1023-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1031-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1031-1_12.2.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1033-1_12.2.ltss.py + sle12sp2/kgraft-patch_SUSE-SU-2018_1033-1_12.2.py + sle12sp2/librelp_SUSE-SU-2018_0828-1_12.2.py + sle12sp2/libvirt_SUSE-SU-2018_0861-1_12.2.py + sle12sp2/libvncserver_SUSE-SU-2018_0830-1_12.2.py + sle12sp2/mariadb_SUSE-SU-2018_0697-1_12.2.py + sle12sp2/memcached_SUSE-SU-2018_0839-1_12.2.py + sle12sp2/qemu_SUSE-SU-2018_0831-1_12.2.py + sle12sp2/ucode-intel_SUSE-SU-2018_0708-1_12.2.py + sle12sp2/xen_SUSE-SU-2018_0909-1_12.2.py + sle12sp3/clamav_SUSE-SU-2018_0809-1_12.3.py + sle12sp3/cups_SUSE-SU-2018_0604-1_12.3.py + sle12sp3/java_SUSE-SU-2018_0661-1_12.3.py + sle12sp3/java_SUSE-SU-2018_0663-1_12.3.py + sle12sp3/java_SUSE-SU-2018_0665-1_12.3.py + sle12sp3/java_SUSE-SU-2018_0694-1_12.3.py + sle12sp3/java_SUSE-SU-2018_0743-1_12.3.py + sle12sp3/kernel_SUSE-SU-2018_0786-1_12.3.py + sle12sp3/kernel_SUSE-SU-2018_1048-1_12.3.py + sle12sp3/librelp_SUSE-SU-2018_0822-1_12.3.py + sle12sp3/libvirt_SUSE-SU-2018_0920-1_12.3.py + sle12sp3/libvncserver_SUSE-SU-2018_0830-1_12.3.py + sle12sp3/mariadb_SUSE-SU-2018_0697-1_12.3.py + sle12sp3/memcached_SUSE-SU-2018_0839-1_12.3.py + sle12sp3/packagekit_SUSE-SU-2018_1047-1_12.3.py + sle12sp3/qemu_SUSE-SU-2018_0762-1_12.3.py + sle12sp3/ucode-intel_SUSE-SU-2018_0708-1_12.3.py + sle12sp3/zsh_SUSE-SU-2018_1072-1_12.3.py + -- Added sle12sp0 directory -- Added sle12sp0 spec information -- New Patterns - sle12sp0/bash_SUSE-SU-2014_1259-1_12.0.py - sle12sp0/bash_SUSE-SU-2014_1260-1_12.0.py - -- New Pattern - sle12all/obsrepo-7015683.py - -- Removed bhc-lastdown-3301593.py for failing to find proper server failures - -- Fixed invalid header processing in mntspace-00001.pl - -- Fixed invalid NTP fields in sle12all/ntp-00002.pl - -- Fixed calculation errors in sle12all/parted-00001.pl - -- Fixed mntspace-00001.pl df error handling - -- Fixed Use of uninitialized value in addition in bhc-cpucs-00001.pl -- Fixed Argument "like:" isn't numeric in bhc-cpuint-00001.pl -- Fixed Use of uninitialized value in pattern match in fsaio-00002.pl -- Fixed Argument "" isn't numeric in fsaio-00001.pl -- Fixed bhc-kerneltaint-00001.pl to check for invalid taint - -- New pattern - sle12all/lastlogin-7014881.py - -- Fixed spec macro - -- Removed duplicates with fdupes -- Change to System/Monitoring spec Group -- Fixed FSF Address in all patterns - -- Fixed out of range index errors - sle12all/bhc-memused-00001.pl -- New pattern - sle12all/chmod-7014410.py - sle12all/login-7014706.py - -- Ported to sle12 - sle12all/bhc-7014607-cron.py - sle12all/bhc-7014607-cups.py - sle12all/bhc-7014607-dhcp4.py - sle12all/bhc-7014607-dns.py - sle12all/bhc-7014607-nmb.py - sle12all/bhc-7014607-ntp.py - sle12all/bhc-7014607-slp.py - sle12all/bhc-7014607-smb.py - sle12all/bhc-7014607-sshd.py - sle12all/bhc-7014607-winbind.py - -- Packaged COPYING.GPLv2 - -- added - sle11all/net-7007649.py -- includes pertinent patterns from sca-patterns-sleall -- includes pertinent patterns from sca-patterns-samba -- includes pertinent patterns from sca-patterns-basic - -- initial - sca-patterns-sle15 +- Changes to version 1.0.1 + + Feb 2021 New Security Announcement Patterns (15) for SUSE-SU-2021:0536-1 SUSE-SU-2021:0630-1 SUSE-SU-2021:0521-1 SUSE-SU-2021:0529-1 SUSE-SU-2021:0594-1 SUSE-SU-2021:0543-1 SUSE-SU-2021:0544-1 SUSE-SU-2021:0354-1 SUSE-SU-2021:0285-1 SUSE-SU-2021:0551-1 SUSE-SU-2021:0628-1 SUSE-SU-2021:0341-1 SUSE-SU-2021:0440-1 SUSE-SU-2021:0277-1 SUSE-SU-2021:0438-1 + + Jan 2021 New Security Announcement Patterns (17) for SUSE-SU-2021:0109-1 SUSE-SU-2021:0197-1 SUSE-SU-2021:0183-1 SUSE-SU-2021:0129-1 SUSE-SU-2021:0127-1 SUSE-SU-2021:0195-1 SUSE-SU-2021:0117-1 SUSE-SU-2021:0184-1 SUSE-SU-2021:0163-1 SUSE-SU-2021:0183-1 SUSE-SU-2021:0118-1 SUSE-SU-2021:0163-1 SUSE-SU-2021:0023-1 SUSE-SU-2021:0040-1 SUSE-SU-2021:0060-1 SUSE-SU-2021:0029-1 SUSE-SU-2021:0162-1 + + Dec 2020 New Security Announcement Patterns (51) for SUSE-SU-2020:3597-1 SUSE-SU-2020:3930-1 SUSE-SU-2020:3593-1 SUSE-SU-2020:3749-1 SUSE-SU-2020:3933-1 SUSE-SU-2020:3588-1 SUSE-SU-2020:3915-1 SUSE-SU-2020:3615-1 SUSE-SU-2020:3867-1 SUSE-SU-2020:3597-1 SUSE-SU-2020:3930-1 SUSE-SU-2020:3593-1 SUSE-SU-2020:3723-1 SUSE-SU-2020:3737-1 SUSE-SU-2020:3592-1 SUSE-SU-2020:3721-1 SUSE-SU-2020:3736-1 SUSE-SU-2020:3748-1 SUSE-SU-2020:3749-1 SUSE-SU-2020:3933-1 SUSE-SU-2020:3735-1 SUSE-SU-2020:3790-1 SUSE-SU-2020:3895-1 SUSE-SU-2020:3586-1 SUSE-SU-2020:3881-1 SUSE-SU-2020:3611-1 SUSE-SU-2020:3864-1 SUSE-SU-2020:3597-1 SUSE-SU-2020:3930-1 SUSE-SU-2020:3593-1 SUSE-SU-2020:3723-1 SUSE-SU-2020:3737-1 SUSE-SU-2020:3720-1 SUSE-SU-2020:3866-1 SUSE-SU-2020:3718-1 SUSE-SU-2020:3749-1 SUSE-SU-2020:3933-1 SUSE-SU-2020:3733-1 SUSE-SU-2020:3790-1 SUSE-SU-2020:3589-1 SUSE-SU-2020:3864-1 SUSE-SU-2020:3597-1 SUSE-SU-2020:3930-1 SUSE-SU-2020:3593-1 SUSE-SU-2020:3722-1 SUSE-SU-2020:3762-1 SUSE-SU-2020:3882-1 SUSE-SU-2020:3932-1 SUSE-SU-2020:3591-1 SUSE-SU-2020:3749-1 SUSE-SU-2020:3933-1 + + Nov 2020 New Security Announcement Patterns (40) for SUSE-SU-2020:3412-1 SUSE-SU-2020:3376-1 SUSE-SU-2020:3166-1 SUSE-SU-2020:3271-1 SUSE-SU-2020:3161-1 SUSE-SU-2020:3358-1 SUSE-SU-2020:3155-1 SUSE-SU-2020:3115-1 SUSE-SU-2020:3566-1 SUSE-SU-2020:3463-1 SUSE-SU-2020:3476-1 SUSE-SU-2020:3384-1 SUSE-SU-2020:3377-1 SUSE-SU-2020:3373-1 SUSE-SU-2020:3273-1 SUSE-SU-2020:3122-1 SUSE-SU-2020:3330-1 SUSE-SU-2020:3359-1 SUSE-SU-2020:3473-1 SUSE-SU-2020:3152-1 SUSE-SU-2020:3376-1 SUSE-SU-2020:3166-1 SUSE-SU-2020:3372-1 SUSE-SU-2020:3276-1 SUSE-SU-2020:3282-1 SUSE-SU-2020:3358-1 SUSE-SU-2020:3243-1 SUSE-SU-2020:3115-1 SUSE-SU-2020:3566-1 SUSE-SU-2020:3476-1 SUSE-SU-2020:3385-1 SUSE-SU-2020:3377-1 SUSE-SU-2020:3459-1 SUSE-SU-2020:3425-1 SUSE-SU-2020:3413-1 SUSE-SU-2020:3507-1 SUSE-SU-2020:3272-1 SUSE-SU-2020:3330-1 SUSE-SU-2020:3359-1 SUSE-SU-2020:3165-1 + +- Pattern for TID000019883 - iscsiadm crashing when updating target parameter +- Pattern for TID000019637 - cpupower tool unable to read boost states for AMD Rome CPUs + +- Pattern for TID000019825 - Graphic interface no longer working after patches + +- Patterns for TID000019786 Security Vulnerability: SADDNS attack (CVE-2020-25705) + +- Changes to version 1.0.1 + + New Security Announcement Patterns for SUSE-SU-2020:3565-1 SUSE-SU-2020:3568-1 SUSE-SU-2020:3380-1 SUSE-SU-2020:3565-1 SUSE-SU-2020:3568-1 SUSE-SU-2020:3500-1 SUSE-SU-2020:3551-1 SUSE-SU-2020:3460-1 SUSE-SU-2020:3478-1 SUSE-SU-2020:3380-1 SUSE-SU-2020:3565-1 SUSE-SU-2020:3568-1 SUSE-SU-2020:3500-1 SUSE-SU-2020:3551-1 SUSE-SU-2020:3460-1 SUSE-SU-2020:3478-1 SUSE-SU-2020:3380-1 SUSE-SU-2020:3565-1 SUSE-SU-2020:3455-1 SUSE-SU-2020:3568-1 SUSE-SU-2020:3500-1 SUSE-SU-2020:2474-2 SUSE-SU-2020:3551-1 SUSE-SU-2020:3375-1 SUSE-SU-2020:3532-1 SUSE-SU-2020:3532-1 SUSE-SU-2020:3460-1 SUSE-SU-2020:3478-1 SUSE-SU-2020:3552-1 + +- Chanages to version 1.0.1 + + New Security Announcement Patterns + SUSE-SU-2020:1126-1 SUSE-SU-2020:2344-1 SUSE-SU-2020:3067-1 SUSE-SU-2020:3151-1 SUSE-SU-2020:2583-1 SUSE-SU-2020:2914-1 SUSE-SU-2020:1083-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:1379-1 SUSE-SU-2020:2266-1 SUSE-SU-2020:1334-1 SUSE-SU-2020:2767-1 SUSE-SU-2020:1023-1 SUSE-SU-2020:2995-1 SUSE-SU-2020:1220-1 SUSE-SU-2020:2095-1 SUSE-SU-2020:0991-1 SUSE-SU-2020:0820-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:2988-1 SUSE-SU-2020:2073-1 SUSE-SU-2020:2303-1 SUSE-SU-2020:1300-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:0617-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:1569-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2453-1 SUSE-SU-2020:3349-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:2106-1 SUSE-SU-2020:2106-1 SUSE-SU-2020:2610-1 SUSE-SU-2020:2610-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1663-1 SUSE-SU-2020:1769-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:1789-1 SUSE-SU-2020:3244-1 SUSE-SU-2020:0948-1 SUSE-SU-2020:2901-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:2748-1 org:SUSE-SU-2019 SUSE-SU-2020:0130-1 SUSE-SU-2020:0130-1 SUSE-SU-2020:1250-1 SUSE-SU-2020:2969-1 SUSE-SU-2020:0143-1 SUSE-SU-2020:0143-1 SUSE-SU-2020:2116-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:1423-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:1171-1 SUSE-SU-2020:0455-1 SUSE-SU-2020:0455-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1823-1 SUSE-SU-2020:2947-1 SUSE-SU-2020:1219-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:2712-2 SUSE-SU-2020:3313-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:0357-1 SUSE-SU-2020:0357-1 SUSE-SU-2020:2645-1 SUSE-SU-2020:2827-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:1163-1 SUSE-SU-2020:1858-1 SUSE-SU-2020:2814-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:2997-1 SUSE-SU-2020:0589-1 SUSE-SU-2020:0589-1 SUSE-SU-2020:2264-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:1523-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:1179-1 SUSE-SU-2020:3147-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:1151-1 SUSE-SU-2020:1973-1 SUSE-SU-2020:0224-1 SUSE-SU-2020:0224-1 SUSE-SU-2020:1132-1 SUSE-SU-2020:2065-1 SUSE-SU-2020:2719-1 SUSE-SU-2020:3087-1 SUSE-SU-2020:0813-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:2442-1 SUSE-SU-2020:0408-1 SUSE-SU-2020:0408-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:2882-1 SUSE-SU-2020:0598-1 SUSE-SU-2020:1364-1 SUSE-SU-2020:1841-1 SUSE-SU-2020:2045-1 SUSE-SU-2020:3283-1 SUSE-SU-2020:1819-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:1109-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2198-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0370-1 SUSE-SU-2020:0370-1 SUSE-SU-2020:0693-1 SUSE-SU-2020:2326-1 SUSE-SU-2020:2398-1 SUSE-SU-2020:1933-1 SUSE-SU-2020:3264-1 SUSE-SU-2020:1396-2 SUSE-SU-2020:1126-1 SUSE-SU-2020:2344-1 SUSE-SU-2020:3067-1 SUSE-SU-2020:3151-1 SUSE-SU-2020:2914-1 SUSE-SU-2020:1083-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:1023-1 SUSE-SU-2020:2995-1 SUSE-SU-2020:1220-1 SUSE-SU-2020:2095-1 SUSE-SU-2020:0991-1 SUSE-SU-2020:0820-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:2988-1 SUSE-SU-2020:1300-1 SUSE-SU-2020:0819-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:0466-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:1569-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2453-1 SUSE-SU-2020:0204-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0868-1 SUSE-SU-2020:1475-1 SUSE-SU-2020:1769-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:0948-1 SUSE-SU-2020:2901-1 SUSE-SU-2020:0143-1 SUSE-SU-2020:2116-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:1423-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:0455-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:0454-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1823-1 SUSE-SU-2020:2947-1 SUSE-SU-2020:1219-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:3313-1 SUSE-SU-2020:2713-1 SUSE-SU-2020:0357-1 SUSE-SU-2020:2645-1 SUSE-SU-2020:2827-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:2997-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:0737-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:2442-1 SUSE-SU-2020:0408-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:0468-1 SUSE-SU-2020:1109-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2198-1 SUSE-SU-2020:0693-1 SUSE-SU-2020:1933-1 SUSE-SU-2020:3264-1 SUSE-SU-2020:2914-1 SUSE-SU-2020:1083-1 SUSE-SU-2020:2995-1 SUSE-SU-2020:2095-1 SUSE-SU-2020:1584-1 SUSE-SU-2020:1300-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:1684-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:2453-1 SUSE-SU-2020:1769-1 SUSE-SU-2020:1771-1 SUSE-SU-2020:0948-1 SUSE-SU-2020:2901-1 org:SUSE-SU-2019 SUSE-SU-2020:2116-1 SUSE-SU-2020:2197-1 SUSE-SU-2020:1423-1 SUSE-SU-2020:1677-1 SUSE-SU-2020:1850-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:2829-1 SUSE-SU-2020:1576-1 SUSE-SU-2020:1823-1 SUSE-SU-2020:2947-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:3313-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:1920-1 SUSE-SU-2020:2784-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:1177-1 SUSE-SU-2020:1156-1 SUSE-SU-2020:2442-1 SUSE-SU-2020:1551-1 SUSE-SU-2020:3264-1 SUSE-SU-2020:1396-2 + + Removed obsolete README place holders in sp0-2 + +- Added openssh-7023532.py to detect bsc#1115654 + singularity +- New version 3.7.2 + - Bug Fixes + - Fix progress bar display when source image size is unknown. + - Fix a memory usage / leak issue when building from an existing + image file. + - Fix to allow use of ``--library`` flag to point push/pull at + default cloud library when another remote is in use. + - Address false positive loop test errors, and an e2e test registry + setup issue. + +- New version 3.7.1 + - Bug Fixes + - Accommodate /sys/fs/selinux mount changes on kernel 5.9+. + - Fix loop devices file descriptor leak when shared loop devices + is enabled. + - Use MaxLoopDevices variable from config file in all appropriate + locations. + - Use -buildmode=default (non pie) on ppc64le to prevent crashes + when using plugins. + - Remove spurious warning in parseTokenSection() + - e2e test fixes for new kernels, new unsquashfs version. + - Show correct web URI for detached builds against alternate remotes. + +- New version 3.7.0 + - New features / functionalities + - Allow configuration of global custom keyservers, separate from + remote endpoints. + - Add a new global keyring, for public keys only (used for ECL). + - The `remote login` commmand now suports authentication to Docker/OCI + registries and custom keyservers. + - New `--exclusive` option for `remote use` allows admin to lock usage + to a specific remote. + - A new `Fingerprints:` header in definition files will check that + a SIF source image can be verified, and is signed with keys + matching all specified fingerprints. + - Labels can be set dynamically from a build's `%post` section by + setting them in the `SINGULARITY_LABELS` environment variable. + - New `build-arch` label is automatically set to the architecure of + the host during a container build. + - New `-D/--description` flag for `singularity push` sets + description for a library container image. + - `singularity remote status` shows validity of authentication token if + set. + - `singularity push` reports quota usage and URL on successful push + to a library server that supports this. + - A new `--no-mount` flag for actions allows a user to disable + proc/sys/dev/devpts/home/tmp/hostfs/cwd mounts, even if they are + enabled in `singularity.conf`. + - Changed defaults / behaviours + - When actions (run/shell/exec...) are used without `--fakeroot` the + umask from the calling environment will be propagated into the + container, so that files are created with expected permissions. + Use the new `--no-umask` flag to return to the previous behaviour + of setting a default 0022 umask. + - Container metadata, environment, scripts are recorded in a + descriptor in builds to SIF files, and `inspect` will use this if + present. + - The `--nv` flag for NVIDIA GPU support will not resolve libraries + reported by `nvidia-container-cli` via the ld cache. Will instead + respect absolute paths to libraries reported by the tool, and bind + all versioned symlinks to them. + - General re-work of the `remote login` flow, adds prompts and token + verification before replacing an existing authentication token. + - The Execution Control List (ECL) now verifies container + fingerprints using the new global keyring. Previously all users + would need relevant keys in their own keyring. + - The SIF layer mediatype for ORAS has been changed to + `application/vnd.sylabs.sif.layer.v1.sif` reflecting the published + [opencontainers/artifacts](https://github.com/opencontainers/artifacts/blob/master/artifact-authors.md#defining-layermediatypes) + value. + - `SINGULARITY_BIND` has been restored as an environment variable + set within a running container. It now reflects all user binds + requested by the `-B/--bind` flag, as well as via + `SINGULARITY_BIND[PATHS]`. + - `singularity search` now correctly searches for container images + matching the host architecture by default. A new `--arch` flag + allows searching for other architectures. A new results format + gives more detail about container image results, while users and + collections are no longer returned. + - Bug Fixes + - Support larger definition files, environments etc. by passing + engine configuration in the environment vs. via socket buffer. + - Ensure `docker-daemon:` and other source operations respect + `SINGULARITY_TMPDIR` for all temporary files. + - Support double quoted filenames in the `%files` section of build + definitions. + - Correct `cache list` sizes to show KiB with powers of 1024, + matching `du` etc. + - Don't fail on `enable fusemount=no` when no fuse mounts are + needed. + - Pull OCI images to the correct requested location when the cache + is disabled. + - Ensure `Singularity>` prompt is set when container has no + environment script, or singularity is called through a wrapper + script. + - Avoid build failures in `yum/dnf` operations against the 'setup' + package on `RHEL/CentOS/Fedora` by ensuring staged `/etc/` files + do not match distro default content. + - Failed binds to `/etc/hosts` and `/etc/localtime` in a container + run with `--contain` are no longer fatal errors. + - Don't initialize the cache for actions where it is not required. + - Increase embedded shell interpreter timeout, to allow slow-running + environment scripts to complete. + - Correct buffer handling for key import to allow import from STDIN. + - Reset environment to avoid `LD_LIBRARY_PATH` issues when resolving + dependencies for the `unsquashfs` sandbox. + - Fall back to `/sbin/ldconfig` if `ldconfig` on `PATH` fails while + resolving GPU libraries. Fixes problems on systems using Nix / + Guix. + - Address issues caused by error code changes in `unsquashfs` + version 4.4. + - Ensure `/dev/kfd` is bound into container for ROCm when `--rocm` + is used with `--contain`. + - Tolerate comments on `%files` sections in build definition files. + - Fix a loop device file descriptor leak. + spack +- update to version 0.16.1 + * intel-oneapi support through new packages + * HIP/ROCm support (#19715, #20095) + * concretization enhancements + * environment install reporting fix (#20004) + * avoid import in ABI compatibility info (#20236) + * restore ability of dev-build to skip patches (#20351) + * spack find -d spec grouping (#20028) + * spack smoke test support (#19987, #20298) + * abstract spec comparisons (#20341) + * performance improvements for binary relocation (#19690, #20768) + * additional sanity checks for variants in builtin packages (#20373) + * do not pollute auto-generated configuration files with empty lists or + dicts +- added file: basic-exclude-pattern-for-external-find.patch + * adds the functionality to exclude binaries for external search + so that the call 'installdbgsymbols' can be prohibited as this + leads to an endless loop when drkonqui is installed + spack:doc +- update to version 0.16.1 + * intel-oneapi support through new packages + * HIP/ROCm support (#19715, #20095) + * concretization enhancements + * environment install reporting fix (#20004) + * avoid import in ABI compatibility info (#20236) + * restore ability of dev-build to skip patches (#20351) + * spack find -d spec grouping (#20028) + * spack smoke test support (#19987, #20298) + * abstract spec comparisons (#20341) + * performance improvements for binary relocation (#19690, #20768) + * additional sanity checks for variants in builtin packages (#20373) + * do not pollute auto-generated configuration files with empty lists or + dicts +- added file: basic-exclude-pattern-for-external-find.patch + * adds the functionality to exclude binaries for external search + so that the call 'installdbgsymbols' can be prohibited as this + leads to an endless loop when drkonqui is installed + spotify-easyrpm +- Make sure jq is installed +- Make sure a config file exists before querying new options +- When using --set-channel, make sure PREF_PROMPT_CHANNEL is set to no +- unsquashfs -q is not supported in leap version + +- Pull Spotify from the snap store instead of the debian repo +- New option --set-channel to choose the Spotify stable or edge version from snap store +- Improved version compare logic + strawberry +- Update to version 0.9.1: + + Bugfixes: + + Fix duplicating songs in the DB when organizing songs between 2 different collection directories. + + Fix overwriting existing newer last played when importing last played from last.fm. + + Fix memory leak on song change when moodbar is disabled. + + Fix playlist filter search for text with spaces with Qt 6. + + Fix 'Except between tracks on the same album' backend fade option always greyed out. + + Fix read and save vorbis comment grouping tag. + + Fix QAtomicInteger compile error on armv. + + Fix compile error with protobuf 3.15.0 and newer. + + Fix possible tagreader (messagereply) crashes. + + Fix save album cover when album directory and no overwrite is used for saving covers. + + Fix right click save cover action when album has embedded cover. + + Fix temporary art saved to /tmp. + + Fix playlist bitrate sometimes stuck when changing track to previous. + + Enhancements: + + Improve Musixmatch cover and lyrics search. + + Decode any HTML entities in some rare cases they appear in the retrieved lyrics from the API's. + + Use mimetype instead of description from stream metadata by default when updating song filetype. + + Set limits for collection pixmap cache based on size units. + + Convert all signal/slot connections to new Qt 5/6 syntax. + + Improve album cover management. + + Add right click actions to clear set cover, and option delete covers. + + Show artist and album underneath the albums in the cover manager when all Artists is selected. + + Disable unavailable right click cover actions. + + Remove 3rdparty TagLib now that TagLib 1.12 is available. + + New features: + + Add option and support for saving embedded covers for FLAC, Ogg Vorbis, MP3 and MP4/AAC. +- Remove use of deprecated USE_SYSTEM_TAGLIB CMake option. + +- Use cmake_build macro +- Use Qt 6 on tumbleweed + supportutils +- [powerpc] Collect dynamic_debug log files for ibmvNIC #98 (bsc#1183826) + syslinux +- Add syslinux-4.04-reproducible-isohybrid.patch to allow for + deterministic iso image creation (boo#1062303) + +- syslinux-4.04-gcc10.diff: fix gcc10 related issues (bsc#1166605) + * -fno-common is now the default + * provide missing strlen() implementation + systemd +- Import commit 8baed1c6f82798c2374bdbfdd440dd065d09fb99 (merge of v246.11) + For a complete list of changes, visit: + https://github.com/openSUSE/systemd/compare/bb5a31f416d17c5d3521900bebad885ca8f0ba8b...8baed1c6f82798c2374bdbfdd440dd065d09fb99 +- Rebase 0001-conf-parser-introduce-early-drop-ins.patch + +- Import commit bb5a31f416d17c5d3521900bebad885ca8f0ba8b + 846d61e0a1 boot: Move console declarations to missing_efi.h + 171a37228b boot: Add startswith() and endswith() functions with no_case variants + 0fad9f309a boot: Drop unnecessary braces + c38bbb0874 boot: Fix void pointer arithmetic warning + 438210924b boot: Replace raw efivar gets with typed variants + e46cb3e4a0 boot: Add efivar_get/set_uint64_le() functions + e16bee35c8 boot: Rename efivar_get/set_int() to efivar_get/set_uint_string() + 2808d0e9a3 boot: Tighten scope of variables used in loops + d3f3d57743 boot: Add efivar_get_boolean_u8() + 0551ecce71 boot: Make all efivar util functions take the guid as an argument + 8376ba3b9f boot: Turn all guid constants into C99 compound initializers + 166fc2dad2 boot: Enable C99 + c87d66e261 boot: Move Secure Boot logic to new file + da7bba9438 udev: fix memleak +- Rebase 1001-udev-use-lock-when-selecting-the-highest-priority-de.patch + +- Make sure the udev socket units are reloaded during udev package updates + This uses to be done on older SLE distros but got lost when we + branched systemd for SLE15-SP3 from Base:System. + +- Update 1004-udev-don-t-create-by-partlabel-primary-and-.-logical.patch + StandardOutput=syslog+console is deprecated, use 'journal+console' + instead which should achieve the same purpose. + +- fix-machines-btrfs-subvol.sh is only shipped when machined is built + +- Add 1001-udev-use-lock-when-selecting-the-highest-priority-de.patch (bsc#1181192) + +- Import commit 628333aae3e893e225a42fbbd3734d10058edeef + e06139117c nspawn: make rootfs relative to oci bundle path (bsc#1182598) + 8ba587d46c PATCH] Always free deserialized_subscribed on reload (bsc#1180020) + +- Drop 1000-logind-disable-RemoveIPC-by-default.patch + Disabling RemoveIPC is now done through systemd-default-settings + package. + +- systemd requires aaa_base >= 13.2 + This dependency is required because 'systemctl + {is-enabled,enable,disable} " ends up calling + systemd-sysv-install which in its turn calls "chkconfig + - -no-systemctl". + aaa_base package has a weird versioning but the '--no-systemctl' + option has been introduced starting from SLE12-SP2-GA, which shipped + version "13.2+git20140911.61c1681". + Spotted in bsc#1180083. + +- Add 0001-conf-parser-introduce-early-drop-ins.patch + Introduce early configuration drop-in file. This type of drop-ins + are reserved for vendor own purposes only and should never been used + by users. It might be removed in the future without any notice. + +- Drop most of the tmpfiles that deal with generic paths (bsc#1078466 bsc#1181831) + They are problematic because some of them conflict with SUSE + defaults. Therefore it seems better to let the revelant packages + owning these paths to provide their own definitions instead. + +- Drop use of %systemd_postun in %postun + This macro is supposed to operate on units but it was used without + passing any parameters. This call was probably used for issuing a + daemon-reload but the following calls to + %systemd_postun_with_restart imply that already. So let's simply + drop it. + timescaledb:postgresql10 +- update to version 1.7.1 bugfix + https://github.com/timescale/timescaledb/releases/tag/1.7.1 + Please note that with the release of 1.7, support for PostgreSQL + 9.6.x and 10.x are deprecated. version 2 will only support 11,12 +- Packaging : + + Activate postgresql12 supported now + + Modifiy download url to grab a nice named tar.gz + +- update to 1.7.0 + https://github.com/timescale/timescaledb/releases/tag/1.7.0 + +https://github.com/timescale/timescaledb/releases/tag/1.6.1 + https://github.com/timescale/timescaledb/releases/tag/1.6.0 + https://github.com/timescale/timescaledb/releases/tag/1.5.1 + https://github.com/timescale/timescaledb/releases/tag/1.5.0 + timescaledb doesn't offer support for postgresql 12 yet +- Packaging + + spec-cleaner minimal + + add patch to support clang version 9 clang-format9_support.diff + +- update to 1.4.2 + https://github.com/timescale/timescaledb/releases/tag/1.2.1 + https://github.com/timescale/timescaledb/releases/tag/1.2.2 + https://github.com/timescale/timescaledb/releases/tag/1.3.0 + https://github.com/timescale/timescaledb/releases/tag/1.3.1 + https://github.com/timescale/timescaledb/releases/tag/1.3.2 + https://github.com/timescale/timescaledb/releases/tag/1.4.0 + https://github.com/timescale/timescaledb/releases/tag/1.4.1 + https://github.com/timescale/timescaledb/releases/tag/1.4.2 + +- adding postgresql12 to _multibuild + +- Fix grammar. Trim duplicate metadata. + +- Update to release 1.2.0 (2019-01-29) + + Postgres 11 fully supported. + + Deprecation of adaptive chunking + + Advanced data lifecycle management : scheduled policies + support scheduled drop_chunks and reorder. + + Improved performance: support for ordered appends, + Note that ordered appends do not support ordering by time_bucket + at this time. + + first release to include Timescale-Licensed features. + LICENSE_TIMESCALE. This code can be found in tsl. + (tsl is not build on openSUSE) + + 1.1.1 + - Fix issue when upgrading with pg_upgrade + - Fix a segfault that sometimes appeared in long COPYs + - Other bug and stability fixes +- Packaging : + + Add -DAPACHE_ONLY=1 to avoid tsl code and submodules + + Multibuild : add postgresql11 now supported + + Deps : revisit BuildRequires + +- Update to release 1.2.0 (2019-01-29) + + Postgres 11 fully supported. + + Deprecation of adaptive chunking + + Advanced data lifecycle management : scheduled policies + support scheduled drop_chunks and reorder. + + Improved performance: support for ordered appends, + Note that ordered appends do not support ordering by time_bucket + at this time. + + first release to include Timescale-Licensed features. + LICENSE_TIMESCALE. This code can be found in tsl. + (tsl is not build on openSUSE) + + 1.1.1 + - Fix issue when upgrading with pg_upgrade + - Fix a segfault that sometimes appeared in long COPYs + - Other bug and stability fixes +- Packaging : + + Add -DAPACHE_ONLY=1 to avoid tsl code and submodules + + Multibuild : add postgresql11 now supported + + Deps : revisit BuildRequires + transactional-update +- Revert inotify-tools dependency: The package is not available in + SLE. This will probably have to be implemented as a native C + version. + +- Version 3.2.2 + - Don't skip patches with rebootSuggested flag [bsc#1183442] + +- Version 3.2.1 + - t-u: Forward --quiet option to tukit + - Regression: Add /opt as bind mount into update environment + - Remove output indicators of the called command to not tamper + the result line + - Fix /etc syncing with --drop-if-no-change + +- Requires inotify-tool to have --drop-if-no-change available + vala-panel-appmenu +- fix build for Tumbleweed + +- Update to version 0.7.5~git20200915.1e8791e: + * importer: process events after layout parse. For #327 + * importer: small fixes + * meson: fix budgie applet name + * ci: fixed release + * ci: use VERSION only when required + * ci: add VERSION + * all: fully switch to meson + * meson: make docs installation configurable + * meson: clarify or later + * Update .gitlab-ci.yml + xen +- bsc#1177112 - Fix libxc.sr.superpage.patch + The receiving side did detect holes in a to-be-allocated superpage, + but allocated a superpage anyway. This resulted to over-allocation. + +- bsc#1167608 - adjust limit for max_event_channels + A previous change allowed an unbound number of event channels + to make sure even large domUs can start of of the box. + This may have a bad side effect in the light of XSA-344. + Adjust the built-in limit based on the number of vcpus. + In case this is not enough, max_event_channels=/maxEventChannels= + has to be used to set the limit as needed for large domUs + adjust libxl.max_event_channels.patch + +- bsc#1183072 - VUL-0: xen: HVM soft-reset crashes toolstack (XSA-368) + Also resolves, + bsc#1179148 - kdump of HVM fails, soft-reset not handled by libxl + bsc#1181989 - openQA job causes libvirtd to dump core when + running kdump inside domain + xsa368.patch + +- bsc#1177204 - L3-Question: conring size for XEN HV's with huge + memory to small. Inital Xen logs cut + 5ffc58c4-ACPI-reduce-verbosity-by-default.patch +- Upstream bug fixes (bsc#1027519) + 601d4396-x86-EFI-suppress-ld-2-36-debug-info.patch + 602bd768-page_alloc-only-flush-after-scrubbing.patch + 602cfe3d-IOMMU-check-if-initialized-before-teardown.patch + 602e5a8c-gnttab-never-permit-mapping-transitive-grants.patch + 602e5abb-gnttab-bypass-IOMMU-when-mapping-own-grant.patch + 6037b02e-x86-EFI-suppress-ld-2-36-base-relocs.patch +- bsc#1181921 - GCC 11: xen package fails + gcc11-fixes.patch + yast2-adcommon-python +- Remove ad-dc dependency; (jsc#ECO-2527); +- 1.6 + +- Rev version for SLE update; (jsc#ECO-2527); +- 1.5 + yast2-installation +- Expert console: use "dash" if available instead of "bash" shell + to avoid job control error messages (bsc#1183648) +- 4.3.35 + yast2-network +- Always provide the layer2 argument when activating a qeth device + (bsc#1183639). +- 4.3.61 + +- NetworkManager: Added support to write bridge and bonding + configurations (bsc#1181701) +- 4.3.60 + +- AutoYaST: configure but not apply the network configuration at + the end of the 1st stage (bsc#1180535). +- 4.3.59 + +- Add more space before the "Name Servers and Domain Search List" + frame (related to bsc#1183306). +- 4.3.58 + yast2-pkg-bindings +- Added missing runtime dependencies ("ip" from iproute2 + is used for network status detection) (bsc#1183439) +- 4.3.10 + yast2-ruby-bindings +- Fixed password encrypting functions to work correctly also + in older products (SLE15-SP2/Leap 15.2 and older) + (related to bsc#1176924) +- 4.3.14 + yast2-security +- Do not set SELinux mode when it is not configurable (bsc#1182940) +- 4.3.16 + yast2-theme +- Fix the down-arrow color for disabled dropdowns (bsc#1183090). +- Avoid labels being vertically cut (bsc#1183086, bsc#1183306). +- Do not show a white frame around software selection (bsc#1183356). +- Other minor style adjustments and improvements. +- 4.3.8 + yast2-trans +- Update to version 84.87.20210314.90853260a8: + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Italian) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * New POT for text domain 'network'. + * New POT for text domain 'add-on'. + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Dutch) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Catalan) + * Translated using Weblate (Japanese) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Czech) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * Translated using Weblate (Japanese) + * New POT for text domain 'packager'. + * New POT for text domain 'network'. + * New POT for text domain 'installation'. + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Slovak) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Portuguese (Brazil)) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * Translated using Weblate (Dutch) + * New POT for text domain 'storage'. + * New POT for text domain 'country'. + * New POT for text domain 'bootloader'. + * Translated using Weblate (Spanish) + * Translated using Weblate (Japanese) + * Translated using Weblate (French) + * Translated using Weblate (Finnish) + * Translated using Weblate (Croatian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * New POT for text domain 'packager'. + * New POT for text domain 'base'. + * New POT for text domain 'packager'. + * New POT for text domain 'base'. + * Translated using Weblate (Spanish) + * Translated using Weblate (Hindi) + * Translated using Weblate (Spanish) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (German) + * Translated using Weblate (German) + * Translated using Weblate (Italian) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Spanish) + * Translated using Weblate (Spanish) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (French) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Spanish) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (French) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Spanish) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Finnish) + * Translated using Weblate (Portuguese (Portugal)) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Italian) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Galician) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (French) + * Translated using Weblate (Portuguese) + * Translated using Weblate (French) + * Translated using Weblate (French) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (French) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (German) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Turkish) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (French) + * Translated using Weblate (Spanish) + * Translated using Weblate (Italian) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (Chinese (Taiwan)) + * Translated using Weblate (German) + * Translated using Weblate (Spanish) + * Translated using Weblate (French) + * Translated using Weblate (Chinese (Taiwan)) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Added translation using Weblate (Sinhala) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Chinese (China)) + * Translated using Weblate (Italian) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Russian) + * Translated using Weblate (Portuguese) + * Translated using Weblate (Finnish) + * Translated using Weblate (Italian) + * Added translation using Weblate (Portuguese (Portugal)) +