RubyGems, sudo, libvirt update in Tumbleweed

Three openSUSE Tumbleweed snapshots were released since the last update.

Several RubyGems were updated in the first two snapshots of the week and an update to sudo came in the most recent 20210127 snapshot.

A 10-year-old Common Vulnerabilities and Exposures that allowed root-level access was fixed with the update to sudo 1.9.5p2. Patches for CVE-2021-3156 were also backported in maintenance updates for openSUSE Leap. A minor version update of virtualbox to 6.1.18 fixed some nested virtualization hangs when executing symmetric multiprocessing with nested-guests under certain conditions on Intel hosts. An update was made to jhead, which is a command-line tool for displaying and manipulating exif header data in jpeg images; the 3.04 version removed an unnecessary warning with some types of GPS data and fixed a few bugs, including one bug that did not clear exif information when processing images. Some buttons were disabled in the update of yast2-network 4.3.41, which also added basic support for writing the network configuration to the NetworkManager backend.

New features from the update of libvirt 7.0.0 arrived in snapshot 20210126. The new version allows control of the qcow2 metadata cache for qemu. Another qemu improvement was the reporting of guest disks informations in virDomainGetGuestInfo; libvirt is now able to report disks and filesystems from the guest’s perspective using guest agent 5.3.0 or newer. The Linux Kernel 5.10.9 updated in the snapshot as well. A few updates were made for the i915 graphics drivers including allowing a sysadmin to override security mitigations for digital rights management. Skopeo, which is a command line utility for container images and image repositories, updated the vendor of containers and integrated tests for the syncing of the k8s.gcr.io directory. Other packages to arrive in the snapshot wree ncurses, xen, email client mutt 2.0.5 and text rendering library pango 1.48.1. A few RubyGems arrived in the snapshot; rubygem-parser 3.0.0.0, rubygem-rspec 3.10.0 and rubygem-rubocop 1.8.1 were among the RubyGems packages to arrive in this snapshot.

The majority of the gem packages arrived in snapshot 20210121. The entire snapshot was filled with more than 40 plus RubyGems updates. Notable packages to update were Ruby’s logging layer rubygem-fluentd 1.12.0, major version updates of rubygem-webpacker 5.2.1 and rubygem-liquid 5.0.0, and rubygem-js-routes 1.4.14. Only four other packages were updated. Those updates were xapps 2.0.6, gstreamer-devtools 1.18.3, gstreamer-editing-services 1.18.3 and python-gst 1.18.3.