Packages changed: containers-systemd (0.0+git20200324.5f4ae65 -> 0.0+git20200602.25da9c0) kubernetes1.17 libselinux libsemanage mozilla-nss (3.51.1 -> 3.52.1) nghttp2 (1.40.0 -> 1.41.0) openssh perl-Bootloader (0.927 -> 0.928) policycoreutils python-appdirs (1.4.3 -> 1.4.4) python-certifi (2019.11.28 -> 2020.4.5.1) python-distro python-packaging (20.3 -> 20.4) python-pyparsing python-semanage python-six (1.14.0 -> 1.15.0) python-urllib3 (1.25.8 -> 1.25.9) === Details === ==== containers-systemd ==== Version update (0.0+git20200324.5f4ae65 -> 0.0+git20200602.25da9c0) - Update to version 0.0+git20200602.25da9c0: * Fix creation of nginx directories - Update to version 0.0+git20200602.570333a: * Move from sysconfig to /etc/default to seperate defaults from user made changes (containers-systemd#1) * Use conmon-pidfile for better systemd integration (container-registry-systemd#2) ==== kubernetes1.17 ==== - Avoid unncessary kubernetes1.17-kubelet package removal [boo#1168390] ==== libselinux ==== Subpackages: libselinux1 selinux-tools - Added skip_cycles.patch to skip directory cycles and not error out ==== libsemanage ==== - Drop suse_path.patch: replace it with a grep/sed logic replacing /usr/libexec in all files with the correct value for all distros (taking into account that openSUSE is in progress of migrating from /usr/lib to /usr/libexec). - Apply suse_path.patch only for older distributions. Newer use libexec ==== mozilla-nss ==== Version update (3.51.1 -> 3.52.1) - update to NSS 3.52.1 * required for Firefox 77.0 Notable changes * Update NSS to support PKCS#11 v3.0 (bmo#1603628) * Support new PKCS #11 v3.0 Message Interface for AES-GCM and ChaChaPoly (bmo#1623374) * Integrate AVX2 ChaCha20, Poly1305, and ChaCha20Poly1305 from HACL* (bmo#1612493) * CVE-2020-12399 - Force a fixed length for DSA exponentiation (bmo#1631576, boo#1171978) - removed obsolete nss-kremlin-ppc64le.patch ==== nghttp2 ==== Version update (1.40.0 -> 1.41.0) - Update to 1.41.0 * Fix CVE-2020-11080 * lib: Implement max settings option (Patch from James M Snell) * lib: Earlier check for settings flood (Patch from James M Snell) * lib: Fix receiving stream data stall (GH-1444) * build: cmake: Make hard-coded static lib suffix optional (Patch from Viktor Szakats) (GH-1418) * third-party: Bump llhttp to 2.0.4 (GH-1442) * nghttpx: Add PROXY-protocol v2 support (GH-1452) * nghttpx: Fix get_x509_serial for long serial numbers (Patch from Jacky Tian) (GH-1455) * h2load: Allow port in --connect-to * h2load: add --connect-to option (Patch from Lucas Pardue) (GH-1426) ==== openssh ==== - add upstream signing key to actually verify source signature ==== perl-Bootloader ==== Version update (0.927 -> 0.928) - merge gh#openSUSE/perl-bootloader#127 - use correct target name on aarch64 (bsc#1172293) - 0.928 ==== policycoreutils ==== Subpackages: python3-policycoreutils - Pass the right value for LIBEXECDIR to make / make install instead of trying to move the file around post install. This caters for the planned change of libexecdir to change from /usr/lib to /usr/libexec by injecting the right value no matter what. - Move pp binary to libexec directory instead of lib ==== python-appdirs ==== Version update (1.4.3 -> 1.4.4) - update to 1.4.4: - [PR #92] Don't import appdirs from setup.py Project officially classified as Stable which is important for inclusion in other distros such as ActivePython. First of several incremental releases to catch up on maintenance. ==== python-certifi ==== Version update (2019.11.28 -> 2020.4.5.1) - update to 2020.4.5.1: adds Agencia Catalana de Certificacio (NIF Q-0801176-I) OU=Serveis Publics de Certificacio/Vegeu ==== python-distro ==== - %python3_only -> %python_alternative ==== python-packaging ==== Version update (20.3 -> 20.4) - update to 20.4: * Canonicalize version before comparing specifiers. (:issue:`282`) * Change type hint for ``canonicalize_name`` to return ``packaging.utils.NormalizedName``. This enables the use of static typing tools (like mypy) to detect mixing of normalized and un-normalized names. ==== python-pyparsing ==== - unittest2 -> pytest ==== python-semanage ==== - Drop suse_path.patch: replace it with a grep/sed logic replacing /usr/libexec in all files with the correct value for all distros (taking into account that openSUSE is in progress of migrating from /usr/lib to /usr/libexec). - Apply suse_path.patch only for older distributions. Newer use libexec ==== python-six ==== Version update (1.14.0 -> 1.15.0) - update to 1.15.0: - Pull request #331: Optimize `six.ensure_str` and `six.ensure_binary`. ==== python-urllib3 ==== Version update (1.25.8 -> 1.25.9) - update to 1.25.9: * Added ``InvalidProxyConfigurationWarning`` which is raised when erroneously specifying an HTTPS proxy URL. urllib3 doesn't currently support connecting to HTTPS proxies but will soon be able to and we would like users to migrate properly without much breakage. * Drain connection after ``PoolManager`` redirect (Pull #1817) * Ensure ``load_verify_locations`` raises ``SSLError`` for all backends (Pull #1812) * Rename ``VerifiedHTTPSConnection`` to ``HTTPSConnection`` (Pull #1805) * Allow the CA certificate data to be passed as a string (Pull #1804) * Raise ``ValueError`` if method contains control characters (Pull #1800) * Add ``__repr__`` to ``Timeout`` (Pull #1795)