Snapshot 20171010, which is the most recent release, fixed numerous memory leaks with ImageMagick 188.8.131.52 and apache 2.4.28 fixed Optionsbleed or Common Vulnerabilities and Exposures (CVE)-2017-9798, which allows remote attackers to read secret data from process memory. Cmake 3.9.4 added support for Boost 1.65.0 and 1.65.1 and hplip 3.17.9 added support for several new printers. New features were added for the Quick Emulator (QEMU) with the new libvirt 3.8.0 version. Two major version updates were also available in the snapshot; some targets may rebuild when upgrading with the software construction tool SCons 3.0.0 and the memory allocator Jemalloc 5.0.1 added several improvements and new features including the addition of mutex profiling, which collects a variety of statistics useful for diagnosing overhead/contention issues.
Tumbleweed KDE users saw Plasma 5.11 make its way into snapshot 20171009 less than 24 hours after the official upstream release. The new Plasma 5.11 brings a redesigned settings app, improved notifications and a more powerful task manager. The release is the first release to contain the new “Vault”, a system to allow the user to encrypt and open sets of documents in a secure and user-friendly way. Several CVE fixes were made with the update of Mozilla Firefox 56.0, but users should be aware that Firefox has no 32-bit builds for the application. The Linux Kernel was also upgraded to version 4.13.5 in the snapshot.
Several libraries and XFCE plugins were updated in the 20171007 snapshot and Mesa 17.2.2 had several Vulkan ANV/RADV driver fixes. Support for LLVM 5.0 for the Gallium3D architecture when using SCons was also added with the new Mesa version. YaST 4.0.10 fixed the handling of Pretty Good Privacy (PGP) signatures when running in insecure mode.
GNOME Tumbleweed users received a variety of bug fixes to many packages and translation updates with GNOME 3.26.1 in snapshot 20171006. GTK 3.22.24 fixed some issues with the new resizable tiling and the terminal emulator widget vte’s 0.50.1 version fixed a crash with hyperlinks if the mouse is over the padding. The OpenType text shaping engine package harfbuzz 1.5.1 added a new Application Programming Interface (API) for appending a buffer to another and for comparing contents of two buffers for type of differences.
The two snapshots beginning the week, which were snapshot 20171005 and 20171003, updated several python packages. Openvpn 2.4.3 fixed a potential 1-byte overread in the Transmission Control Protocol (TCP) option parsing. Snapper 0.5.2 fix compilation with boost 1.65.0 and libgphoto2 2.5.15 made new capture properties for Fuji cameras and added USB identifiers to Sony, Cannon, Fuji, Nikon and Olympus cameras. Xterm had the most changes with an update to version 330 in snapshot 20171003.
Tags: Apache Boost cameras cmake CVE gnome 3.26 gphoto GTK3 harfbuzz imagemagick Jemalloc libvert Mesa 17.2.2 opensuse opentype optionsbleed Plasma 5.11 qemu Scons Snapper Tumbleweed Vulkan drivers xfce yast