Packages changed: bison (3.6.2 -> 3.6.3) chrony festival iptables (1.8.4 -> 1.8.5) kernel-firmware libeconf (0.3.5+git20200203.3144b69 -> 0.3.7+git20200605.c67ef9a) nodejs14 (14.1.0 -> 14.4.0) pcsc-cyberjack rubygem-websocket-extensions (0.1.4 -> 0.1.5) === Details === ==== bison ==== Version update (3.6.2 -> 3.6.3) Subpackages: bison-lang - GNU bison 3.6.3: * Incorrect comments in the generated parsers * Warnings in push parsers (yacc.c) * Incorrect display of gotos in LAC traces (lalr1.cc) ==== chrony ==== - Add chrony-pool-suse and chrony-pool-openSUSE subpackages that preconfigure chrony to use NTP servers from the respective pools for SUSE and openSUSE (bsc#1156884, SLE-11424). - Add chrony-pool-empty to still allow installing chrony without preconfigured servers. - Use iburst in the default pool statements to speed up initial synchronisation (bsc#1172113). ==== festival ==== - Added speech_tools-remove-errneous-decl.patch to fix build error at Tumbleweed (Thanks to github's commit: https://github.com/festvox/speech_tools/pull/21). ==== iptables ==== Version update (1.8.4 -> 1.8.5) Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins - Update to release 1.8.5 * IDLETIMER: Add alarm timer option * nft: CT: add translation for NOTRACK - Drop iptables-apply-mktemp-fix.patch (seemingly applied) ==== kernel-firmware ==== Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd - Don't require coreutils, only mkdir and touch are used ==== libeconf ==== Version update (0.3.5+git20200203.3144b69 -> 0.3.7+git20200605.c67ef9a) Subpackages: libeconf0 libeconf0-32bit - Update to version 0.3.7+git20200605.c67ef9a: * Fix build on i586 - Update to version 0.3.6+git20200529.276359f: * Package meson files with autotools * Use newer version of actions/checkout * Add actions for meson * Create meson.yml * Use meson source root for tests configuration files * Add additional compiler warnings * First useable meson build support including unit tests * Add global options, build with pie and GNU_SOURCE * Fix name of library, add example binary * add support for meson * Add C++ compatibility * Add test case for crash with empty value keys ==== nodejs14 ==== Version update (14.1.0 -> 14.4.0) Subpackages: nodejs14-devel npm14 - Update to version 14.4.0: * napi: fix various types of memory corruption in napi_get_value_string_*() (CVE-2020-8174, bsc#1172443) * http2: fix HTTP/2 Large Settings Frame DoS (CVE-2020-11080, bsc#1172442) * TLS session reuse can lead to host certificate verification bypass (CVE-2020-8172, bsc#1172441) - Update to version 14.3.0: * repl: previews improvements with autocompletion * it's now possible to use the await keyword outside of async functions, with the --experimental-top-level-await flag - Changes in version 14.2.0: * console: Support for console constructor groupIndentation options - skip_no_console.patch: refreshed - versioned.patch, fix_ci_tests.patch: refreshed ==== pcsc-cyberjack ==== - Add patch to enable compile with gcc10 * pcsc-cyberjack-3.99.5final.SP09-gcc10.patch ==== rubygem-websocket-extensions ==== Version update (0.1.4 -> 0.1.5) - updated to version 0.1.5 * CVE-2020-7663: Remove a ReDoS vulnerability in the header parser (bsc#1172445)