Home Home
Sign up | Login

Author Archive

Firefox, Graphene, Krita update in Tumbleweed

September 19th, 2019 by

Two openSUSE Tumbleweed snapshots were released this week.

The snapshots furnished the update for KDE Applications 19.08.1 and updated several libraries including Intel’s Graphene library OS.

Snapshot 20190917 delivered four packages. The Graphene package updated to 1.10.0 and now uses an ancillary library called (micro) µTest for its test suite, which makes possible to build and run the test suite without depending on GLib. Mozilla Firefox 69.0 provided Enhanced Tracking Protection (ETP) with stronger privacy protections and added support for receiving multiple video codecs to makes it easier for WebRTC conferencing services to mix video from different clients. The other two package updates in the snapshot were icecream 1.3, which takes compile jobs from a build and distributes it among remote machines allowing a parallel build, and the HTTP client/server library for GNOME libsoup 2.66.3. The update of  icecream 1.3 improved the speed of creating compiler tarballs. The snapshot is trending at a moderately stable rating of 87, according to the Tumbleweed snapshot reviewer.

The 20190916 snapshot finished the updates of KDE Applications 19.08.1, which were in the previous week’s snapshots. The 5.2.14 version of the Linux Kernel had some fixes for Ceph buffers and Advanced Linux Sound Architecture. The graphics editor written in Qt, Krita 4.2.6 had several fixes and added a new layer from visible to layer right-click context menu. Among the most key libraries updated in the snapshot were an update to glib2 2.60.7, which fixed more than a handful of bugs; libvirt 5.7.0, which added apparmor-abstractions as a required package for daemon; and gtk3 3.24.11, which added Wayland support for xdg-output v3 and has improved the monitoring of metadata with X11. The User Interface manager for GTK, amtk updated it’s first five series minor release to 5.0.1 that fixed a small new compilation warning. Rendering engine webkit2gtk3 2.26.0 added support for HSTS (HTTP Strict Transport Security). The only major release to come in the snapshot was perl-HTML-Clean  1.2 from version 0.9. Other notable packages updated in the snapshot were flatpak-builder 1.0.8, texinfo 6.6 and virtualbox 6.0.12 that fixed a potential crash when using the medium Input/Output functionality of VBoxManage. The snapshot is trending at a moderately stable rating of 80, according to the Tumbleweed snapshot reviewer.

Applications, PostgreSQL, Zypper Packages Update in Tumbleweed

September 13th, 2019 by

The past week produced four openSUSE Tumbleweed snapshots.

The snapshots brought an update of KDE Plasma and Applications along with an update for the input framework ibus, two PostgreSQL versions and the command line package manager zypper.

KDE Applications 19.08.1 improvements to Kontact, Dolphin, Kdenlive, Konsole, Step, and more arrived in snapshot 20190909. Several regressions in Konsole’s tab handling were fixed and olphin again starts correctly when in split-view mode. The updated of the anti-virus package clamav 0.101.4 address two Common Vulnerabilities and Exposures. The GNOME web browser package epiphany 3.32.5 fixed a memory corruption and broken web process extension connection when using WebKit trunk. An update of links 2.20.1 brought stability improvements and also addressed a bug when connected with tor would send real dns requests outside the tor network when the displayed page contains link elements with rel=dns-prefetch. The Plasma desktop received a minor update to 5.16.5 and fixed KWayland-integration builds with recent frameworks and Qt 5.13. Some notifications were changed in the new minor version and the some functionality was improved for current weather conditions. The qrencode 4.0.2 package improved support for cmake. The snapshot was trending at a rating of 84, according to the Tumbleweed snapshot reviewer.

Multiple packages arrived in snapshot 20190907, which was also trending at a rating of 84. An update of ImageMagick 7.0.8.63 properly identifies the DNG and AI image format. About 15 CVE’s were addressed in the update of Mozilla Firefox to version 68.1.0, which included a fix for type confusion in Mozilla’s JavaScript engine Spidermonkey. An update for the Wayland input-method protocol was made in ibus 1.5.21 and improved Single Instruction, Multiple Data (SIMD) decoding of 24 bit files was made with the Free Lossless Audio Codec (flac) 1.3.3 package update. Improved performance of various Application Program Interface (API) such as JSON.parse and methods called on frozen arrays were made with the nodejs12 12.10.0 update and php7 7.3.9 provided a bug fixing release that fixed an Exchangeable image file format (Exif) crash (bus error) due to wrong alignment and invalid cast. Many other libraries were updated in the snapshot including a couple YaST packages.

(more…)

Multiple YaST Packages, Major Versions of Gawk, Swig Update in Tumbleweed

September 5th, 2019 by

Three openSUSE Tumbleweed snapshots were released this week.

The snapshots brought two new major versions and two Linux Kernel updates.

Snapshot 20190902 brought the second Linux Kernel update for the week with an update of kernel 5.2.11; the new kernel brought several fixes for ASoC audio drivers. The snapshot also provided an updated version of Ceph to address a Common Vulnerabilities and Exposures.The IRC Client irssi 1.2.2 version fixed a crash and libreoffice 6.3.1.1 removed some patches. The updated libsolv 0.7.6 fixed repository priority handling for multiversion packages and the network discovery and security auditing utility nmap 7.80 resolved a compatibility issue with OpenSSL library configured with security level 2. Qt4 support was removed with the polkit-qt5-1 version 0.113.0. MicroOS integration tests and an added required cryptomount coding for EFI boot were added with core appliance builder python-kiwi 9.18.12. The interface compiler connecting programs written in C and C++ with scripting languages, Swig, received the 4.0 update in the snapshot; the new major version improves support for parsing C++11 and C++14 code and removes php5 support. Several YaST packages updated the name type X-SuSE-YaST-AutoInstResource. The snapshot is trending at a rating of 88, according to the Tumbleweed snapshot reviewer.

Snapshot 20190829 updated three packages. The three package updates were freeipmi 1.6.4, texlive-specs-m and texlive-specs-n. The snapshot recorded a moderate rating of 90, according to the Tumbleweed snapshot reviewer.

Mesa 19.1.5 arrived in snapshot 20190828 and provided some bug fixes. Mozilla browser Firefox had a minor update to 68.0.2 and provided a fix that cut off some images that weren’t displaying on Google Maps as well as a fix for special characters there were being cut off from the end of the search terms. KDE music player amarok received an update to version 2.9.70 and re-added the gstreamer-plugins-ugly. The 3.7.3 version of ccache corrected the cache size on filesystems that use more or less disk blocks than conventional filesystems. A compiler warning was fixed in e2fsprogs 1.45.3. A major version release of gawk 5.0.1 was in the snapshot; the pattern searcher makes some stronger assumptions about a C99 environment and adds support for the POSIX standard %a and %A printf formats. There was an update for GNU Compiler Collection from 9.1.1 to 9.2.1 and a patch was added to make symbols for aggregated global constructor names stable when using Link Time Optimization (LTO). Improvements to User Interface, workflow and features were made with the update of git 2.23.0. This snapshot provided the first kernel update of the week with kernel 5.2.10. Several translations were made with the libstorage-ng 4.2.2 update and text editor nano 4.4 made a change on startup to allow the cursor to be put on the first or last occurrence of a string by preceding the filename with +/string or +?string. The welcome window for openSUSE received more translations for global users with an update of the opensuse-welcome 0.1.6 package and several YaST packages were updated for the handling multiple versions of Ruby versions by updating tags in the spec file. The snapshot recorded a moderate rating of 81, according to the Tumbleweed snapshot reviewer.

MariaDB, VLC, Plopper, Apache Packages Update in Tumbleweed

August 29th, 2019 by

There have been three openSUSE Tumbleweed snapshots released this week.

The snapshots brought new versions of VLC, Apache, Plopper and an update of the Linux Kernel.

Snapshot 20190824 delivered a  fix that was made to the swirl option, which produced an unexpected result, with the update of ImageMagick’s 7.0.8.61 version. Improved adaptive streaming and a fix for stuttering for low framerate videos became available in VLC 3.0.8; 13 issues, including 5 buffer overflows we fixed and 11 Common Vulnerabilities and Exposures were assigned and addressed in the media player version. More than a handful of CVEs were addressed with the apache2 2.4.41 update. One of the CVEs addressed was that of a malicious client that could perform a Denial of Services attack by flooding a connection with requests and basically never reading responses on the TCP connection. The new version also improves the balancer-manager protection against XSS/XSRF attacks from trusted users. The x86 emulation library fixed a compiler warning in the 2.4 version and the X11 RandR utility updated the geometry text file configure.ac for gitlab migration with the xrandr 1.5.1 version. The snapshot is trending at a rating of 86, according to the Tumbleweed snapshot reviewer.

The HP Linux Imaging and Printing package hplip 3.19.6 added support for several new color and enterprise printer, which was released in snapshot 20190823. The Linux Kernel was updated to version 5.2.9 and offered more than a handful of commits for the Direct Rendering Manager for AMD hardware and offered some memory leak bugs related to the Advanced Linux Sound Architecture. The utility library for rendering PDFs, poppler, also fixed some memory allocation in the PostScriptFunction with version 0.79.0; the version also fixed regressions on TextSelectionPainter. Minor updates were also made in the snapshot for xfce4-settings 4.14.1 and yast2-fonts 4.2.1, yast2-instserver 4.2.3 and yast2-support 4.2.2 all had changes related to a newer Ruby version. The snapshot is trending at a rating of 84, according to the Tumbleweed snapshot reviewer.

The first snapshot of the week, 20190822, updated five packages. MariaDB’s 10.3.17 package had the most changes in the snapshot and provided merge relevant storage engine changes from MySQL 5.7.27 as well as five CVE fixes. Small bug fixes and fuzzer fixes were made to libetonyek 0.1.9. GNOME’s photo manager shotwell 0.30.7 fix compatibility with programming language Vala 0.46. The other two package updates were libsrtp2  2.2.0 and rubygem-sassc 2.1.0. The snapshot recorded a rating of 78, according to the Tumbleweed snapshot reviewer.

Xfce 4.14 Lands in Tumbleweed

August 23rd, 2019 by

Ahoy! openSUSE Xfce team is pleased to announce that the long awaited Xfce 4.14 has been released for Tumbleweed.

After a long development cycle (4 years!), all of the core components and applications have been ported to GTK 3.

Among the main new features and improvements, the xfwm4 window manager has finally gained support for VSync, HiDPI, hardware GLX and various compositor improvements.

You can check out the neat new features in the official Xfce 4.14 tour and the official release announcement.

openSUSE Changes

For openSUSE, we continued to polish the default experience by adding new packages that complete the desktop and make it more approachable to new users.

We:

Switched to xfce4-screensaver, the new Xfce screenlocker, from xscreensaver

– Added xfce4-panel-profiles, a tool to back up and restore your panel layout configuration as well as layout presets

– Added mugshot, a tool to easily input personal information and a user avatar. It is integrated into the Whisker Menu

– Added lightdm-gtk-greeter-settings, a tool to easily configure LightDM

– Added gnome-disk-utility, a disk management tool that allows you to partition disks and mount ISO files

New GTK Theme

In the process of updating to Xfce 4.14, we decided that we wanted to have our very own GTK theme. Thus, Greybird Geeko was born.

Based on the popular Greybird Xfce theme, Greybird Geeko is an official spin with an openSUSE look & feel and other improvements, such as a dark variant of the theme. 

A special shout out to Carson Black who carried out the work and maintains this theme! For a quick overview, please check out the screenshots.

A big “thank you” to everyone who got involved in this release! 

More information about Xfce on openSUSE is available at https://en.opensuse.org/Portal:Xfce.

Kata Containers Packages are Available officially in openSUSE Tumbleweed

August 17th, 2019 by

Kata Containers is an open source container runtime that is crafted to seamlessly plug into the containers ecosystem.

We are now excited to announce that the Kata Containers packages are finally available in the official openSUSE Tumbleweed repository.

It is worthwhile to spend few words explaining why this is a great news, considering the role of Kata Containers (a.k.a. Kata) in fulfilling the need for security in the containers ecosystem, and given its importance for openSUSE and Kubic.

What is Kata

As already mentioned, Kata is a container runtime focusing on security and on ease of integration with the existing containers ecosystem. If you are wondering what’s a container runtime, this blog post by Sascha will give you a clear introduction about the topic.

Kata should be used when running container images whose source is not fully trusted, or when allowing other users to run their own containers on your platform.

Traditionally, containers share the same physical and operating system (OS) resources with host processes, and specific kernel features such as namespaces are used to provide an isolation layer between host and container processes. By contrast, Kata containers run inside lightweight virtual machines, adding an extra isolation and security layer, that minimizes the host attack surface and mitigates the consequences of containers breakout. Despite this extra layer, Kata achieves impressive runtime performances thanks to KVM hardware virtualization, and when configured to use a minimalist virtual machine manager (VMM) like Firecracker, a high density of microVM can be packed on a single host.

If you want to know more about Kata features and performances:

  • katacontainers.io is a great starting point.
  • For something more SUSE oriented, Flavio gave a interesting talk about Kata at SUSECON 2019,
  • Kata folks hang out on katacontainers.slack.com, and will be happy to answer any quesitons.

Why is it important for Kubic and openSUSE

(more…)

New 4.0.2 Version of Uyuni is Released

August 2nd, 2019 by

Contributors of Uyuni Project have released a new version of Uyuni 4.0.2, which is an open-source infrastructure management solution tailored for software-defined infrastructure.

Uyuni, a fork of the Spacewalk project, modernizing Spacewalk with SaltStack, provides more operating systems support and better scalability capabilities. Uyuni is now the upstream for SUSE Manager.

With this release, Uyuni provides powerful new features such as monitoring, content lifecycle management and virtual machine management.

Both the Uyuni Server node and the optional proxy nodes work on top of openSUSE Leap 15.1 and support Leap 15.1, CentOS, Ubuntu and others as clients. Debian support is experimental. The new version of Uyuni uses Salt 2019.2, Grafana 6.2.5, Cobbler 3.0 and Python 3.6 in the backend.

“The upgrade involves the complete replacement of the underlying operating system,” according to a post on July 9 by Hubert Mantel on Github. “This is a very critical operation and it is impossible to handle any potential failure in a graceful way. For example, an error during upgrade of the base OS might lead to a completely broken system which cannot be recovered.

Given that the upgrade of Uyuni also involves upgrading the base operating system from Leap 42.3 to Leap 15.1, it is highly advisable to create a backup of the server before running the migration. If the Uyuni server is running in a virtual machine, it is recommended to take a snapshot of the machine before running the migration.

Migration is performed by first updating the susemanager package:

zypper ref && zypper in susemanager

Then run the migration script:

/usr/lib/susemanager/bin/server-migrator.sh

“This script will stop the services, subscribe the new software repositories and finally perform the actual update to the new version,” Mantel wrote on Github. “After successful migration, services will not be started automatically. The system needs to be rebooted and this will also re-start all the services. There is nothing additional the admin needs to do.”

The intention of the fork was to provide new inspiration to a Spacewalk, which had been perceived as idling in recent years. Uyuni is using Salt for configuration management, thereby inheriting its name: Uyuni refers to the world’s largest Salt flat, Salar de Uyuni in Southwest Bolivia.

Interested members can follow the project on https://github.com/uyuni-project, www.uyuni-project.org, via Twitter at @UyuniProject, or join #uyuni at irc.freenode.org.

Mesa, ImageMagick, Plasma, Frameworks Update in Tumbleweed

August 1st, 2019 by

There have been three openSUSE Tumbleweed snapshots released since last week.

The snapshots brought a single major version update and new versions of KDE’s Plasma and Frameworks.

ImageMagick’s 7.0.8.56 version arrived in snapshot 20190730 and added support for the TIM2 image format, which is commonly used in PlayStation 2 and sometimes in PlayStation Portable games. The snapshot also delivered an update for Mesa 3D Graphics Library with version 19.1.3 that mostly provided fixes for ANV and RADV drivers, as well as NIR backend fixes. File searching tool catfish 1.4.8 provided some fixes with directories and a fix running on Wayland. The GNU Compiler Collection 7 added a patch and fixed for a Link Time Optimization (LTO) linker plugin. The 9.0.1 glu, which is the OpenGL Utility library for Mesa, fixed a possible memory leak. The Linux Kernel was updated to 5.2.3; the new version made a few fixes for PowerPC and added Bluetooth for some new devices. Serval Python packages were updated in the snapshot. LLVM tools and libraries were updated in Tumbleweed with llvm8 8.0.1 but the changelog states not to run LLVM tests on PowerPC because of sporadic hangs. The 2.4.7 version of openvpn in the snapshot added support for tls-ciphersuites for TLS 1.3 and updated openvpn.keyring with public key downloaded from https://swupdate.openvpn.net/community/keys/security-key-2019.asc. A lengthy list of fixes were made to the VIM text editor in version 8.1.1741. Other packages updated in the snapshot were ucode-intel 20190618, xapps 1.4.8, ypbind 2.6.1 and zstd 1.4.1. The snapshot is trending as moderately stable with a rating of 79, according to the Tumbleweed snapshot reviewer.

KDE’s Frameworks and Plasma were updated in the 20190726 snapshot. Frameworks 5.60.0 had multiple fixes for KTextEditor, KWayland, KIO and Baloo. The new version requires Qt 5.11 now that Qt 5.13 was released. Plasma 5.16.3 adds new translations and fixes including the fix of compilation without libinput and an improved appearance and reduce memory consumption with Plasma Audio Volume Control. There was a major version update for the checkmedia to version 5.2, which fixed a compat issue with older GCC. The new major version also allows to set a specific GPG key for signature verification. GNOME’s bijiben updated to version 3.32.2 and the update of curl 7.65.3 fixed several bugs and makes the progress meter appear again. A Common Vulnerabilities and Exposures that could allow remote attackers to execute other programs with root privileges was fixed in the message transfer agent exim 4.92.1. The 11.0.4.0 version of java-11-openjdk also fixed several CVEs and cleaned up the sources and code. Phonon, which is the multimedia Application Programming Interface (API) for KDE, removed the QFOREACH function in the headers when building for Qt 5 in version 4.10.3. The snapshot is trending as moderately stable with a rating of 76, according to the Tumbleweed snapshot reviewer.

Snapshot 20190724 had just three packages updated. GCC 9 received a small update that Included a fix for openCV3 builds with LTO and provided a fix for vector shift mis-compilation on IBM’s s390 architecture. The update of osc 0.165.3 fixed broken TLS certificate handling and the package ristretto, which is a fast and lightweight image viewer for the Xfce desktop, added support for Canon CR2 format and improved the “Sorting” menu with the 0.8.5 version update. The snapshot posted a moderately stable rating of 72, according to the Tumbleweed snapshot reviewer.

GNOME Packages, More Updated in Tumbleweed This Week

July 25th, 2019 by

Two openSUSE Tumbleweed snapshots have been released since our last Tumbleweed update on Saturday.

The most recent snapshot, 20190723, updated Mozilla Firefox to version 68.0.1. The browser fixed the missing Full-Screen button when watching videos in full screen mode on HBO GO. The new 68 version enhanced the Dark Mode reader view to include darkening the controls, sidebars and toolbars. It also addressed several Common Vulnerabilities and Exposures (CVE). The snapshot provided an update to GNOME 3.32.4, which fixed an issue that led to some packages with multiple appdata files not correctly showing up on the updates page. The Guile programming language package update to 2.2.6 fixed regression introduced in the previous version that broke HTTP servers locale encoding. Hardware library hwinfo 21.67 fixed Direct Access Storage Devices (DASD) detection. A major 7.0 version of hylafax+ arrived in the snapshot. The Linux Kernel brought several new features with the 5.2.1 kernel and enhanced security for a hardware vulnerability affecting Intel processors. The open-source painting program Krita 4.2.3 version offered a variety of fixes including a copy and paste fix of the animation frames. A few libraries like libgphoto2, libuv and libva received update. There were also several Perl and Rubygem packages that were updated in the snapshot. The file manager for the Xfce Desktop Environment, thunar 1.8.8, fixed XML declaration in uca.xml and the 2.15 transactional-update package enable network during updates and allow updates of the bootloader on EFI systems. The snapshot is currently trending at a 93 rating, according to the Tumbleweed snapshot reviewer.

Among the top packages to update in snapshot 20190721 were gnome-builder 3.32.4, wireshark 3.0.3 and an update for GNU Compiler Collection 9. GNOME Builder fixed the initial selection in project-tree popovers, Wireshark fixed CVE-2019-13619 and GCC9 added a patch to provide more stable builds for single value counters. The dracut package updated from 044.2 to 049; this update removed several patches and added support for compressed kernel modules. The Distributed Replicated Block Device (drbd) 9.0.19 package fixed resync stuck at near completion and introduced allow-remote-read configuration option. GNOME’s personal information management application evolution updated to version 3.32.4, which added an [ECompEditor] to ensure attendee changes are stored before saving. GNOME’s Grilo, which is a framework focused on making media discovery and browsing easy for application developers, updated to 0.3.9 fixed core keys extraction. GNOME’s Virtual file system (gvfs) and programming language Vala were updated to versions 1.40.2 and 0.44.6 respectively. Krita was also updated in this snapshot. The 0.5.1 version of python-parso fixed some unicode identifiers that were not correctly tokenized.  The snapshot is currently trending at a 90 rating, according to the Tumbleweed snapshot reviewer.

KDE Applications, Squid, SQLite, VIM Update in Tumbleweed

July 20th, 2019 by

Three openSUSE Tumbleweed snapshots in the middle of this week brought new minor version updates to ImageMagick, Squid, SQLite, VIM and more. The new KDE Applications 19.04.3 version arrived in the first two snapshots.

The more recent snapshot, 20190718, brought a half-dozen new packages, which include fix for the UrbanCode Deploy (UCD) script data for Unicode 10+ scripts for the OpenType text shaping engine package harfbuzz 2.5.3. A two-year old Common Vulnerabilities and Exposures (CVE) was fixed with the update of libpng12 1.2.59. The tool that cleans RPM spec files, spec-cleaner 1.1.4, added a temporary patch to fix a test that fails if there is no internet connection. Caching proxy squid 4.8 fixed GNU Compiler Collection (GCC) 9 build issues and added a fix to prevent parameter parsing used for a potential Denial of Service (DoS). RISC-V support was added with the virt-manager 2.2.1 update and xclock 1.0.9 was also updated in the snapshot, which is trending at a 97 rating, according to the Tumbleweed snapshot reviewer.

Updates for KDE Applications 19.04.3 were completed in snapshot 20190717. More than 60 bugfixes were made and improvements were made to Konqueror and Kontact so there is no longer a crash on exit with QtWebEngine 5.13. Cutting groups with compositions no longer crash the Kdenlive video editor and the Python importer in Umbrello’s Unified Modeling Language (UML) designer now handles parameters with default arguments. ImageMagick fixed a parsing issue and optimized the PDF reader with the 7.0.8.53 update. GNOME’s hex editor ghex 3.18.4 migrated the build system to meson and added Open Age Ratings Service (OARS) metadata. The kernel-firmware was updated in the snapshot. The newer php7 7.3.7 provided more than a dozen bug fixes to include a fix for reproducible builds that failed with OpenSSL 1.1.1c. The update of text editor vim from version 8.1.1600 to 8.1.1694 provided a large amount of fixes to include a fix for tests that get stuck when running into an existing swap file. The snapshot is also trending at a 97 rating, according to the Tumbleweed snapshot reviewer.

Snapshot 20190716 started updating KDE Applications 19.04.3 and brought users of the rolling release 10 CVE fixes for Mozilla Thunderbird 60.8.0; the updated version also fixed problems when editing event times that related to AM/PM setting in non-English locations. The update to Ceph in the snapshot removed SuSEfirewall2 support. The update of gpg2 2.2.17 provided a new command –locate-external-key to locate the keys given as arguments. LibreOffice 6.2.5.2 removed some merged patches. Relational database management system sqlite3 3.29.0 added the “sqlite_dbdata” virtual table for extracting raw low-level content from an SQLite database to also include a database that is corrupt. The new major version of xreader 2.2.1 fixed incompatible pointer type issues and Linux syscall tracer strace 5.2 enhanced decoding of bpf, clone, inotify_init, mbind, and set_mempolicy syscalls. Other packages that received updates were python-qt5 5.13.0, python-sip 4.19.18 and rubygem-coffee-rails 5.0.0, which removed support for Rails below version 5.2 and added support for Rails 6. The snapshot is trending to project a 95 rating, according to the Tumbleweed snapshot reviewer