Home Home > Distribution
Sign up | Login

Archive for the ‘Distribution’ Category

New Python3, LibreOffice, Google RE2 Packages Released in Tumbleweed

January 11th, 2018 by

Several openSUSE Tumbleweed snapshots arrive before and after the new year and this post will focus on the most recent snapshots released this week.

Much of the efforts of developers this week have focused on patching the Meltdown and Spectre vulnerabilities. openSUSE’s rolling distribution produced four openSUSE Tumbleweed snapshots so far this week.

While the Long-Term Support 4.4 Linux Kernel has patched many of the vulnerabilities associated with Meltdown and Spectre, the 4.14.12 Linux Kernel released in snapshot 20180107  hasn’t, but Tumbleweed users will likely see the vulnerabilities patched soon.

The most recent snapshot 20180109, which was released within the past hour, brought KDE Frameworks 5.41.0, which brought 70 addon libraries to Qt. A major version was released for LibreOffice as the libreoffice 6.0.0.1 package had many fixes in gpg4libre and new features for Writer, Calc and Draw. Poppler 0.62.0 was also included in the snapshot and removed Qt4 poppler package following upstream change

Newer packages that arrived in the 20180107 snapshot were Chat Client irssi 1.0.6, which fixed some random memory bugs, and the llvm 5.0.1, which delete intermediate files during build to reduce total disk usage. And kcm_sddm 5.11.5 was a bug fix release.

(more…)

Future Tumbleweed Snapshot to Bring YaST Changes

January 9th, 2018 by

What you need to know about the new storage stack (storage-ng)

Changes to YaST are coming and people using openSUSE Tumbleweed will be the first to experience these planned changes in a snapshot that is expected to be released soon.

Those following the YaST Team blog may have been read about the implementation changes expected for libstorage-ng, which have been discussed for nearly two years. Libstorage is the component used by YaST; specially used in the installer, the partitioner and AutoYaST to access disks, partitions, LVM volumes and more.

This relatively low-level component has been a constant source of headaches for YaST developers for years, but all that effort is about to bear fruit. The original design has fundamental flaws that limited YaST in many ways and the YaST Team have been working to write a replacement for it: the libstorage-ng era has begun.

This document offers an incomplete but very illustrative view of the new things that libstorage-ng will allow in the future and the libstorage limitations it will allow to leave behind. For example, it already makes possible to install a fully encrypted system with no LVM using the automatic proposal and to handle much better filesystems placed directly on a disk without any partitioning. In the short future, it will allow to fully manage Btrfs multi-device filesystems, bcache and many other technologies that were impossible to accommodate into the old system.

What’s new, right here right now

(more…)

Current Status: openSUSE and “Spectre” & “Meltdown” vulnerabilities

January 4th, 2018 by

Hi folks,

By now you probably heard about the new “Spectre” and “Meltdown” side channel
attacks against current processors.

openSUSE, same as almost all other current operating systems, is affected by
these problems.

For SUSE Linux Enterprise we posted these blog and technical information
pages that in their descriptions also match openSUSE, so I would not duplicate
all of this information:

https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/

https://www.suse.com/support/kb/doc/?id=7022512

SUSE engineers have been working with other hardware and operating systems
vendors to prepare patches to mitigate these flaws over the last weeks
and have been preparing updates.

As the embargo was lifted last night, we could now also start openSUSE
updates.

For openSUSE Leap 42.2 and 42.3, we have the advantage that the
kernel codebase is shared between SUSE Linux Enterprise 12 SP2 and SP3
respectively, so the work mostly consisted of simply merging git branches.

The openSUSE Leap 42.2 and 42.3 kernel updates are currently building
and once they have passed a quick openQA check they will be released.

For openSUSE Tumbleweed we have ported patches on top of Linux Kernel 4.14
and a submission against the Factory projects has been done.

Here also a quick openQA check will be run and then it will be released
for our Tumbleweed users in the next days.

Additionally, these updates are accompanied also by ucode-intel,
kernel-firmware and qemu updates needed for one variant of the Spectre
Attack.

Regards,

Marcus Meissner & the openSUSE Security Team

Update to Kernel 4.14 Among This Week’s Tumbleweed Snapshots

November 23rd, 2017 by

The past week brought new features to openSUSE Tumbleweed with a snapshot that included Linux Kernel 4.14. New features like HDMI Consumer Electronics Control support for Raspberry Pi and the merging of Heterogeneous Memory Management to the mainline this Long-Term Support Kernel are promising.

openSUSE’s rolling distribution produced four openSUSE Tumbleweed snapshots this week and brought many other goodies.

Topping off the latest snapshot, 20171121, was a service release of mono-core 5.4.1. Mono,  which is the open source implementation of Microsoft’s .NET Framework based on the ECMA standards for C# and the Common Language Runtime, provided a handful of bugfixes. Code-cleaning in setup.py was made available with the update to python-ldap 2.5.2. The administration and debugging tool for the XFS file system had an enormous amount of updates with the xfsprogs 4.13.1 version, which has new extent lookup helpers.

The 20171120 snapshot, which provided Linux Kernel 4.14, had updated versions for the IP lookup program GeoIP and the expat library. GeoIP 1.6.11 provided a fix for the use of a NULL pointer when opening a corrupt database with GeoIP_open and expat 2.2.5 provided several fixes including a security fix. Text editor GNU nano introduced the ability to record and replay keystrokes with version 2.9.0 and python-setuptools 36.7.2 fixed duplicate test discovery on Python 3.

(more…)

From Drivers to Kernel, A Week Full of Tumbleweed Snapshots

November 3rd, 2017 by

There has been an openSUSE Tumbleweed snapshot every day this week and KDE Frameworks along with AppArmor and Plasma began a week full of new software releases for openSUSE’s rolling distribution.

The most recent snapshot was  20171101 and the update of appstream-glib to 0.7.3 added support for URL launchable types; it also provided write XML for newer AppStream specification versions. Ethtool 4.13 added some features and fixed a few issues like  the formatting of advertise bitmask. Also in the snapshot, both glib-networking 2.54.1 and glib2 2.54.2 updated translations.

The OpenType text shaping engine Harfbuzz was updated in the 20171031 snapshot to version 1.6.3, which brought new emojis through an update to Unicode 10. Postfix 3.2.4 was upgraded and builds with OpenSSL 1.0.0 or 1.0.1, but is noted to have failed to send email to some sites with “TLSA 2 X X” DNS records associated with an intermediate CA certificate.

Linux Kernel 4.13.10 was made available in the 20171030 snapshot and included several improvements for xfs.

Stricter permissions on cron directories were made with the upgrade for permissions 20171025 in snapshot 20171029 and python-qt5 also had a configuration patch added in the snapshot. (more…)

Start Using Qt 5.10 Beta in KDE Unstable repositories: Krypton and Argon

October 20th, 2017 by

The Qt project has recently released the first beta version of Qt 5.10. This release brings a lot of new features, such as initial support for Vulkan, text to speech functionality, and lots of other improvements.

The Qt libraries are heavily used by KDE software and especially Plasma often pushes them to the limits. This means that bugs or planned changes in Qt can also negatively affect the Plasma experience.

Early testing of Qt releases definitely helps because either bugs are discovered or KDE software is adjusted to work with the new version. The KDE:Unstable repos in OBS, which are used by Argon and Krypton to carry the latest builds of KDE software from git, are now built against Qt 5.10.

This allows to test the latest combination of Qt and KDE software by installing the packages through the live images Krypton and Argon, which allow testing without a local installation, and also through openQA, which regularly tests snapshots of KDE software every day.

If your interested in the latest and greatest in KDE software, give it a try!

(Update provided by openSUSE KDE Team)

GNU Compiler Collection 6 Removed from Tumbleweed

October 19th, 2017 by

Two openSUSE Tumbleweed snapshots were released this week and the Open Build Service is warming up after last weekend’s scheduled power outage.

Since the power interruption, OBS has been running a little slower, but that didn’t stop the developers from getting out snapshots of new software.

The latest snapshot, 20171017, made a significant change regarding the GNU Compiler Collection; GCC 6 is no longer available in Tumbleweed. A patch for the Common Vulnerabilities and Exposures deemed KRACK or CVE-2017-15361 also made its way into Tumbleweed. The cross-platform library Simple DirectMedia Layer, which is designed to make it easy to write multimedia software, such as games and emulators, added support for many game controllers, including the Nintendo Switch Pro Controller with the update to SDL2 2.0.6. The update for gutenprint 5.2.13 added support for two Epson Inkjet printers and corrected a mis-defined paper type that collided with standard A4 paper. (more…)

Plasma 5.11, GNOME 3.26.1 Land in Tumbleweed

October 12th, 2017 by

The week has been pretty exciting for desktop enthusiast running openSUSE Tumbleweed since two of this week’s snapshots delivered new versions of GNOME and KDE respectively.

Snapshot 20171010, which is the most recent release, fixed numerous memory leaks with ImageMagick 7.0.7.6 and apache 2.4.28 fixed Optionsbleed or Common Vulnerabilities and Exposures (CVE)-2017-9798, which allows remote attackers to read secret data from process memory. Cmake 3.9.4 added support for Boost 1.65.0 and 1.65.1 and hplip 3.17.9 added support for several new printers. New features were added for the Quick Emulator (QEMU) with the new libvirt 3.8.0 version. Two major version updates were also available in the snapshot; some targets may rebuild when upgrading with the software construction tool SCons 3.0.0 and the memory allocator Jemalloc 5.0.1 added several improvements and new features including the addition of mutex profiling, which collects a variety of statistics useful for diagnosing overhead/contention issues.

Tumbleweed KDE users saw Plasma 5.11 make its way into snapshot 20171009 less than 24 hours after the official upstream release. The new Plasma 5.11 brings a redesigned settings app, improved notifications and a more powerful task manager. The release is the first release to contain the new “Vault”, a system to allow the user to encrypt and open sets of documents in a secure and user-friendly way.    Several CVE fixes were made with the update of Mozilla Firefox 56.0, but users should be aware that Firefox has no 32-bit builds for the application. The Linux Kernel was also upgraded to version 4.13.5 in the snapshot.

Several libraries and XFCE plugins were updated in the 20171007 snapshot and Mesa 17.2.2 had several Vulkan ANV/RADV driver fixes. Support for LLVM 5.0 for the Gallium3D architecture when using SCons was also added with the new Mesa version. YaST 4.0.10 fixed the handling of Pretty Good Privacy (PGP) signatures when running in insecure mode. (more…)

Special Edition Highlights openSUSE, KDE

October 11th, 2017 by

Getting the masses to move to a Linux distribution can be challenging, but the openSUSE Project is doing its part to get people started with open-source software.

Members of the openSUSE community recently worked with Linux Magazine to publish a special edition of a Getting Started With Linux magazine with the purpose of increasing the openSUSE user base and teaching beginners how to make the switch to Linux.

The 100-page special edition focuses on installing openSUSE Leap 42.3, using the installation and configuration tool YaST, understanding security and many other topics specific for Linux beginners.

It also provides a crash course on Linux and goes in depth about the several applications available on Linux distributions and openSUSE’s default desktop selection, which currently is KDE’s Long Term Support version Plasma 5.8. Many of the articles written in the magazine are from community members of both openSUSE and KDE among others.

(more…)

Tumbleweed Goes Astronomical

October 5th, 2017 by

Astronomers using openSUSE Tumbleweed received some major software enhancements in a snapshot this week and the four snapshots released also addressed some architecture issues and critical bug fixes.

The snapshots also brought new versions of the Linux Kernel, git, GNU Compiler Collection and mpg123.

The most recent snapshot to be released, snapshot 20171001, provided an update to the programming tool binutils 2.29.1. An update of the branch head of GNU Compiler Collection 7 disabled a patch to verify a test case. The network authentication protocol krb5 1.15.2 fixed a Key Distribution Center (KDC) Denial of Service (DoS) vulnerability caused by unset status strings; Common Vulnerabilities and Exposures (CVE-2017-11368).

Snapshot 20170929 updated ImageMagick 7.0.7.4 and fixed numerous memory leaks. The Linux Kernel was updated to version 4.13.4 and made several changes, which included fixes for PowerPC and S390. The KBD Project, which offers the package that helps with managing the Linux console, virtual terminals, keyboards and more, received an update to kbd 2.0.4. Git 2.14.2 provided various fixes for output correctness. An updated version of the Router Advertisement Daemon to radvd 2.17 added systemd service file. Several bugs were fixed with the update of php7 7.1.10 including bug 75093 that affected curl detection for OpenSSL, which was not detected. A proper fix for the xrpnt overflow problems were made for the MPEG Audio Player and decoder library mpg123 with version 1.25.7.

(more…)