Packages changed: Mesa (20.1.2 -> 20.1.3) Mesa-drivers (20.1.2 -> 20.1.3) ffmpeg-4 gnutls krb5 libzypp (17.24.0 -> 17.24.1) mpg123 (1.26.2 -> 1.26.3) perl-XML-Twig python-idna (2.9 -> 2.10) python-pyrsistent (0.15.7 -> 0.16.0) yast2 (4.3.14 -> 4.3.15) === Details === ==== Mesa ==== Version update (20.1.2 -> 20.1.3) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 20.1.3 * third bugfix release for the 20.1 branch * lots of updates to our testing infrastructure ==== Mesa-drivers ==== Version update (20.1.2 -> 20.1.3) Subpackages: Mesa-dri Mesa-gallium - update to 20.1.3 * third bugfix release for the 20.1 branch * lots of updates to our testing infrastructure ==== ffmpeg-4 ==== Subpackages: libavcodec58_91 libavformat58_45 libavutil56_51 libswresample3_7 - Add librav1e support ==== gnutls ==== - Correctly detect gmp, nettle, and hogweed libraries (bsc#1172666) * add gnutls-detect_nettle_so.patch ==== krb5 ==== - Do not mangle libexecdir, bindir, sbindir and datadir: there is no reasonable justification to step out of the defaults. + No longer install csh/sh profiles into /etc/profiles.d: as we not install to default paths, there is no need to further inject paths into $PATH; also, now sbin binaries are only in path for admin users. ==== libzypp ==== Version update (17.24.0 -> 17.24.1) - Fix bsc#1174011 auth=basic ignored in some cases (bsc#1174011) Proactively send credentials if the URL specifes '?auth=basic' and a username. - ZYPP_MEDIA_CURL_DEBUG: Strip credentials in header log (bsc#1174011) - version 17.24.1 (22) ==== mpg123 ==== Version update (1.26.2 -> 1.26.3) - Update to version 1.26.3 * Fix accurate (--enable-int-quality) ==== perl-XML-Twig ==== - Security fix [bsc#1008644, CVE-2016-9180] * Setting expand_external_ents to 0 or -1 currently doesn't work as expected; To completely turn off expanding external entities use no_xxe. * Update documentation for XML::Twig to mention problems with expand_external_ents and add information about new no_xxe argument * Add test CVE-2016-9180.t * Add test build-requirements: perl-Test-Exception, perl-Text-Iconv, perl-Unicode-Map8 - Add perl-XML-Twig-CVE-2016-9180.patch ==== python-idna ==== Version update (2.9 -> 2.10) - update to 2.10: - Update to Unicode 13.0.0. - Throws a more specific exception if "xn--" is provided as a label. - This is expected to be the last version that supports Python 2. ==== python-pyrsistent ==== Version update (0.15.7 -> 0.16.0) - update to 0.16.0: * No major updates but Python 2 support no longer guaranteed. * Fix #192, 'ignore_extra' for 'pvector_field'. Thanks @ss18 for this! * Fix #191, include LICENCE in distribution. Thanks @johnthagen for this! * Fix #190, minor MyPy errors. Thanks @Qhesz for this! ==== yast2 ==== Version update (4.3.14 -> 4.3.15) - Better management of libzypp repovars (eg. those enclosed in curly brackets) introducing the new Y2Packager::ZyppUrl class - Do not crash during the upgrade process if some repository URL cannot be parsed (bsc#1172867) - 4.3.15