Home Home > Tag > CVE
Sign up | Login

Posts Tagged ‘CVE’

Tumbleweed Gets New OpenSSH Major Version

October 30th, 2019 by

Since the last update, there have been five openSUSE Tumbleweed snapshots released.

Snapshot 20191027, brought an update to KDE Plasma 5.17.1. The bugfix update fixed the Mouse KCM acceleration profile on X11 on the Plasma Desktop and had a fix for KWIN with visibility of the Context Help button. Part of the update to Plasma 5.17.1 came in the 20191022 snapshot on the day of the release from the KDE Project. The kcalendarcore package was update to KDE Frameworks 5.63.0, which landed in last week’s snapshots. Quite a few YaST packages arrived in the snapshot as well; some of the those YaST packages adapted to new Keyboard handling. The other two packages updated in the snapshot were to the AV1 decoder dav1d  0.5.1, which fixed a build issue in ARM64 assembly if debug info was enabled, and desktop calculator, qalculate 3.5.0, which had a fix for steradian conversion that is related to the surface area of a sphere.  The Tumbleweed snapshot reviewer is being fixed and doesn’t have a rating for the snapshot.

Seven packages arrived in the 20191025 snapshot and the openssh 8.1 was a major upgrade. The new major version added some new features like an experimental lightweight signature and verification ability. According to the changelog, “signatures may be made using regular ssh keys held on disk or stored in a ssh-agent and verified against an authorized_keys-like list of allowed keys. Signatures embed a namespace that prevents confusion and attacks between different usage domains (e.g. files vs email).” The VirtualBox hypervisor for x86 virtualization had a minor update to version 6.0.14; the maintenance release fixed potential issue in the networking with interrupt signalling for network adapters in UEFI guests. The Network Time Protocol package chrony 3.5 added support for hardware timestamping on interfaces with read-only timestamping configuration and Persistent Memory programming package pmdk 1.7 introduced two new Application Program Interface (APIs) in librpmem and libpmemobj.

An update to the Mesa 3D Graphical Library arrived in snapshot 20191024. The 19.2.1 version of the Mesa and Mesa-drivers package brought in several new features and a big RADV performance boost for AMD GPUs. The Linux Kernel was updated to version 5.3.7 and had several fixes for the release of a USB device. Other packages updated worth noting in the snapshot were libX11 1.6.9, libglvnd 1.2.0 and distributed filesystem openafs 1.8.5.

Both snapshot 20191023 and 20191022 were the last two snapshots to record a rating on the Tumbleweed reviewer until it’s fixed. Respectively, the two had pending ratings of  85 and 70. Just a few packages were in the 20191023 snapshot and nodejs12 12.13.0 was one of the more notable packages to update; the new  nodejs12 version addressed eight Common Vulnerabilities and Exposures (CVEs), which included addressing a “Ping Flood” CVE where an attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Besides delivering an update to Plasma 5.17.1 on the day of the release in snapshot 20191022, the snapshot also brought libvirt 5.8.0 and an update for the control management tool mercurial 5.1.2.

GNOME, LLVM, Samba, Ruby Packages Update in Tumbleweed

October 24th, 2019 by

Two openSUSE Tumbleweed snapshots were released this week that updated several libraries as well as updates for GNOME, Ruby, Samba, Mozilla and the LLVM compiler.

Snapshot 20191018 provided minor updates for both Mozilla Firefox 69.0.3 and Thunderbird 68.1.2. The update to Firefox fixed a bug that prompted Yahoo mail users to download files when clicking on emails and the Thunderbird update fixed some glitches and fixed the address book import from a CSV. GNOME software updated to version 3.34,which could be the version that will come in openSUSE Leap 15.2. GNOME’s Thessaloniki release includes visual refreshes for a number of applications and the background selection settings also received a redesign, making it easier to select custom backgrounds. Developers using GNOME 3.34 will notices more data sources in Sysprof that make performance profiling of applications easier. Improvements to Builder include an integrated D-Bus inspector. Javascript bindings for GNOME were also updated with the gjs 1.58.1 version and gtk3 3.24.12 fixed a pointer offsets under X11 and Wayland. Python2 runtime support was removed with the updated of the samba 4.11.0 package; python 3.4 or later is required.

Also in the 20191018 snapshot was an update for the new programing language vala 0.46.3 that focuses on GNOME developers had multiple additions to the package. Programing language ruby 2.6.5 fixed a code injection vulnerability along with three other Common Vulnerabilities and Exposures. openSUSE’s snapper 0.8.5 package updated to allow trailing comments in configuration files. The Linux Kernel updated to 5.3.6. NetworkManager 1.18.4 improved the handling of externally added policy routing rules and for rules that are taken over after a restart of a NetworkManager service. The NetworkManager-applet 1.8.24 package added support for SAE authentication (WPA3 Personal). Fix regression fixes were made in both the 2.62.1 versions of glib2 and glib-networking; the latter also made two memory leak fixes. Other noteworthy packages that were updated in the snapshot were webkit2gtk3 2.26.1, libsoup 2.68.2, grilo 0.3.10, and dconf 0.34.0. The snapshot is trending at a stable rating of 92, according to the Tumbleweed snapshot reviewer.

Most of the package updates for the 20191016 snapshot were YaST2 packages. A crash caused by a widget method was fixed in yast2-network 4.2.23 and at least 10 languages were updated in the yast2-trans package. People can contribute to the project by translating via openSUSE’s Weblate instance. There were about a handful of other packages updated in the snapshot, but the biggest one to note is a new major version of llvm9. The new major version of the compiler require only a python3-base instead of the full python3 packages. The LLVM optimizer will now convert calls to memcmp into a calls to bcmp in some circumstances. The major version also no longer views the RISCV target as “experimental.” It’s now built by default, rather than needing to be enabled with LLVM_EXPERIMENTAL_TARGETS_TO_BUILD. The snapshot recorded a stable rating of 91, according to the Tumbleweed snapshot reviewer.

Tumbleweed Snapshots Trending High with Bash, PulseAudio, Curl Updates

September 26th, 2019 by

Three openSUSE Tumbleweed snapshots released this week brought about two dozen new versions of software.

The snapshots brought one new major version update for pulseaudio and an updated version of bash.

The major version update to pulseaudio 13.0 came in Snapshot 20190921. The sound server program improved the initial card profile selection for Advanced Linux Sound Architecture (ALSA) cards and improved the play 5.1 surround audio that now treats both “side” or “rear” channels identically when the user has a 5.1 speaker setup; the 7.1 setup still has a difference which channel pair gets used. The libreoffice package had some stability tweaks and addressed two Common Vulnerabilities and Exposures (CVE), which one had an unsafe URL assembly flaw. The cabextract program that un-archives files in the Microsoft cabinet file format modernized the spec file in its 1.9.1 version. Another package updated in the snapshot was osinfo-db, which is a package that provides a database of information about operating systems for virtualization provisioning tools. The snapshot is trending at a stable rating of 95, according to the Tumbleweed snapshot reviewer.

The 20190920 snapshot is also trending at a stable rating of 95. This snapshot updated bash from version 5.0 to 5.0.11. The minor update to bash change posix mode behavior. The Mesa 3D graphics library 19.1.7. The update fixed a KWin compositor crashes on launch as well as a few other bugs. Command line tool and library curl 7.66.0 added experimental feature for HTTP/3 that is disabled by default but can be enabled and works, according to this tutorial from Daniel Stenberg. Two CVEs were also fixed with the curl update. The 26.3 version of the emacs text editors has a newly assigned codepoint U+32FF that was added to the Unicode Character Database compiled into Emacs, which now supports the new Japanese Era name. Software development tool swig 4.0.1 added Python 3.8 support and fixed some minor regressions that were introduced in the 4.0.0 major release. An updated version of plymouth added a time delay of 8 seconds to fit an AMD graphics card for graphical boot animation.

The snapshot that started off the week, 20190918, brought an update for Mozilla Thunderbird. The mail clients 68.1.0 squashed bugs like a car speeding on the autobahn on a muggy day; A total of six CVEs were addressed in the update including CVE-2019-11739, which allowed for a Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message. File searching utility catfish 1.4.10 added some new features and improved the application menu to make better use of space, padding, and margins. The snapshot is recorded a moderately stable rating of 90, according to the Tumbleweed snapshot reviewer.

MariaDB, VLC, Plopper, Apache Packages Update in Tumbleweed

August 29th, 2019 by

There have been three openSUSE Tumbleweed snapshots released this week.

The snapshots brought new versions of VLC, Apache, Plopper and an update of the Linux Kernel.

Snapshot 20190824 delivered a  fix that was made to the swirl option, which produced an unexpected result, with the update of ImageMagick’s version. Improved adaptive streaming and a fix for stuttering for low framerate videos became available in VLC 3.0.8; 13 issues, including 5 buffer overflows we fixed and 11 Common Vulnerabilities and Exposures were assigned and addressed in the media player version. More than a handful of CVEs were addressed with the apache2 2.4.41 update. One of the CVEs addressed was that of a malicious client that could perform a Denial of Services attack by flooding a connection with requests and basically never reading responses on the TCP connection. The new version also improves the balancer-manager protection against XSS/XSRF attacks from trusted users. The x86 emulation library fixed a compiler warning in the 2.4 version and the X11 RandR utility updated the geometry text file configure.ac for gitlab migration with the xrandr 1.5.1 version. The snapshot is trending at a rating of 86, according to the Tumbleweed snapshot reviewer.

The HP Linux Imaging and Printing package hplip 3.19.6 added support for several new color and enterprise printer, which was released in snapshot 20190823. The Linux Kernel was updated to version 5.2.9 and offered more than a handful of commits for the Direct Rendering Manager for AMD hardware and offered some memory leak bugs related to the Advanced Linux Sound Architecture. The utility library for rendering PDFs, poppler, also fixed some memory allocation in the PostScriptFunction with version 0.79.0; the version also fixed regressions on TextSelectionPainter. Minor updates were also made in the snapshot for xfce4-settings 4.14.1 and yast2-fonts 4.2.1, yast2-instserver 4.2.3 and yast2-support 4.2.2 all had changes related to a newer Ruby version. The snapshot is trending at a rating of 84, according to the Tumbleweed snapshot reviewer.

The first snapshot of the week, 20190822, updated five packages. MariaDB’s 10.3.17 package had the most changes in the snapshot and provided merge relevant storage engine changes from MySQL 5.7.27 as well as five CVE fixes. Small bug fixes and fuzzer fixes were made to libetonyek 0.1.9. GNOME’s photo manager shotwell 0.30.7 fix compatibility with programming language Vala 0.46. The other two package updates were libsrtp2  2.2.0 and rubygem-sassc 2.1.0. The snapshot recorded a rating of 78, according to the Tumbleweed snapshot reviewer.

Mesa, ImageMagick, Plasma, Frameworks Update in Tumbleweed

August 1st, 2019 by

There have been three openSUSE Tumbleweed snapshots released since last week.

The snapshots brought a single major version update and new versions of KDE’s Plasma and Frameworks.

ImageMagick’s version arrived in snapshot 20190730 and added support for the TIM2 image format, which is commonly used in PlayStation 2 and sometimes in PlayStation Portable games. The snapshot also delivered an update for Mesa 3D Graphics Library with version 19.1.3 that mostly provided fixes for ANV and RADV drivers, as well as NIR backend fixes. File searching tool catfish 1.4.8 provided some fixes with directories and a fix running on Wayland. The GNU Compiler Collection 7 added a patch and fixed for a Link Time Optimization (LTO) linker plugin. The 9.0.1 glu, which is the OpenGL Utility library for Mesa, fixed a possible memory leak. The Linux Kernel was updated to 5.2.3; the new version made a few fixes for PowerPC and added Bluetooth for some new devices. Serval Python packages were updated in the snapshot. LLVM tools and libraries were updated in Tumbleweed with llvm8 8.0.1 but the changelog states not to run LLVM tests on PowerPC because of sporadic hangs. The 2.4.7 version of openvpn in the snapshot added support for tls-ciphersuites for TLS 1.3 and updated openvpn.keyring with public key downloaded from https://swupdate.openvpn.net/community/keys/security-key-2019.asc. A lengthy list of fixes were made to the VIM text editor in version 8.1.1741. Other packages updated in the snapshot were ucode-intel 20190618, xapps 1.4.8, ypbind 2.6.1 and zstd 1.4.1. The snapshot is trending as moderately stable with a rating of 79, according to the Tumbleweed snapshot reviewer.

KDE’s Frameworks and Plasma were updated in the 20190726 snapshot. Frameworks 5.60.0 had multiple fixes for KTextEditor, KWayland, KIO and Baloo. The new version requires Qt 5.11 now that Qt 5.13 was released. Plasma 5.16.3 adds new translations and fixes including the fix of compilation without libinput and an improved appearance and reduce memory consumption with Plasma Audio Volume Control. There was a major version update for the checkmedia to version 5.2, which fixed a compat issue with older GCC. The new major version also allows to set a specific GPG key for signature verification. GNOME’s bijiben updated to version 3.32.2 and the update of curl 7.65.3 fixed several bugs and makes the progress meter appear again. A Common Vulnerabilities and Exposures that could allow remote attackers to execute other programs with root privileges was fixed in the message transfer agent exim 4.92.1. The version of java-11-openjdk also fixed several CVEs and cleaned up the sources and code. Phonon, which is the multimedia Application Programming Interface (API) for KDE, removed the QFOREACH function in the headers when building for Qt 5 in version 4.10.3. The snapshot is trending as moderately stable with a rating of 76, according to the Tumbleweed snapshot reviewer.

Snapshot 20190724 had just three packages updated. GCC 9 received a small update that Included a fix for openCV3 builds with LTO and provided a fix for vector shift mis-compilation on IBM’s s390 architecture. The update of osc 0.165.3 fixed broken TLS certificate handling and the package ristretto, which is a fast and lightweight image viewer for the Xfce desktop, added support for Canon CR2 format and improved the “Sorting” menu with the 0.8.5 version update. The snapshot posted a moderately stable rating of 72, according to the Tumbleweed snapshot reviewer.

GNOME Packages, More Updated in Tumbleweed This Week

July 25th, 2019 by

Two openSUSE Tumbleweed snapshots have been released since our last Tumbleweed update on Saturday.

The most recent snapshot, 20190723, updated Mozilla Firefox to version 68.0.1. The browser fixed the missing Full-Screen button when watching videos in full screen mode on HBO GO. The new 68 version enhanced the Dark Mode reader view to include darkening the controls, sidebars and toolbars. It also addressed several Common Vulnerabilities and Exposures (CVE). The snapshot provided an update to GNOME 3.32.4, which fixed an issue that led to some packages with multiple appdata files not correctly showing up on the updates page. The Guile programming language package update to 2.2.6 fixed regression introduced in the previous version that broke HTTP servers locale encoding. Hardware library hwinfo 21.67 fixed Direct Access Storage Devices (DASD) detection. A major 7.0 version of hylafax+ arrived in the snapshot. The Linux Kernel brought several new features with the 5.2.1 kernel and enhanced security for a hardware vulnerability affecting Intel processors. The open-source painting program Krita 4.2.3 version offered a variety of fixes including a copy and paste fix of the animation frames. A few libraries like libgphoto2, libuv and libva received update. There were also several Perl and Rubygem packages that were updated in the snapshot. The file manager for the Xfce Desktop Environment, thunar 1.8.8, fixed XML declaration in uca.xml and the 2.15 transactional-update package enable network during updates and allow updates of the bootloader on EFI systems. The snapshot is currently trending at a 93 rating, according to the Tumbleweed snapshot reviewer.

Among the top packages to update in snapshot 20190721 were gnome-builder 3.32.4, wireshark 3.0.3 and an update for GNU Compiler Collection 9. GNOME Builder fixed the initial selection in project-tree popovers, Wireshark fixed CVE-2019-13619 and GCC9 added a patch to provide more stable builds for single value counters. The dracut package updated from 044.2 to 049; this update removed several patches and added support for compressed kernel modules. The Distributed Replicated Block Device (drbd) 9.0.19 package fixed resync stuck at near completion and introduced allow-remote-read configuration option. GNOME’s personal information management application evolution updated to version 3.32.4, which added an [ECompEditor] to ensure attendee changes are stored before saving. GNOME’s Grilo, which is a framework focused on making media discovery and browsing easy for application developers, updated to 0.3.9 fixed core keys extraction. GNOME’s Virtual file system (gvfs) and programming language Vala were updated to versions 1.40.2 and 0.44.6 respectively. Krita was also updated in this snapshot. The 0.5.1 version of python-parso fixed some unicode identifiers that were not correctly tokenized.  The snapshot is currently trending at a 90 rating, according to the Tumbleweed snapshot reviewer.

KDE Applications, Squid, SQLite, VIM Update in Tumbleweed

July 20th, 2019 by

Three openSUSE Tumbleweed snapshots in the middle of this week brought new minor version updates to ImageMagick, Squid, SQLite, VIM and more. The new KDE Applications 19.04.3 version arrived in the first two snapshots.

The more recent snapshot, 20190718, brought a half-dozen new packages, which include fix for the UrbanCode Deploy (UCD) script data for Unicode 10+ scripts for the OpenType text shaping engine package harfbuzz 2.5.3. A two-year old Common Vulnerabilities and Exposures (CVE) was fixed with the update of libpng12 1.2.59. The tool that cleans RPM spec files, spec-cleaner 1.1.4, added a temporary patch to fix a test that fails if there is no internet connection. Caching proxy squid 4.8 fixed GNU Compiler Collection (GCC) 9 build issues and added a fix to prevent parameter parsing used for a potential Denial of Service (DoS). RISC-V support was added with the virt-manager 2.2.1 update and xclock 1.0.9 was also updated in the snapshot, which is trending at a 97 rating, according to the Tumbleweed snapshot reviewer.

Updates for KDE Applications 19.04.3 were completed in snapshot 20190717. More than 60 bugfixes were made and improvements were made to Konqueror and Kontact so there is no longer a crash on exit with QtWebEngine 5.13. Cutting groups with compositions no longer crash the Kdenlive video editor and the Python importer in Umbrello’s Unified Modeling Language (UML) designer now handles parameters with default arguments. ImageMagick fixed a parsing issue and optimized the PDF reader with the update. GNOME’s hex editor ghex 3.18.4 migrated the build system to meson and added Open Age Ratings Service (OARS) metadata. The kernel-firmware was updated in the snapshot. The newer php7 7.3.7 provided more than a dozen bug fixes to include a fix for reproducible builds that failed with OpenSSL 1.1.1c. The update of text editor vim from version 8.1.1600 to 8.1.1694 provided a large amount of fixes to include a fix for tests that get stuck when running into an existing swap file. The snapshot is also trending at a 97 rating, according to the Tumbleweed snapshot reviewer.

Snapshot 20190716 started updating KDE Applications 19.04.3 and brought users of the rolling release 10 CVE fixes for Mozilla Thunderbird 60.8.0; the updated version also fixed problems when editing event times that related to AM/PM setting in non-English locations. The update to Ceph in the snapshot removed SuSEfirewall2 support. The update of gpg2 2.2.17 provided a new command –locate-external-key to locate the keys given as arguments. LibreOffice removed some merged patches. Relational database management system sqlite3 3.29.0 added the “sqlite_dbdata” virtual table for extracting raw low-level content from an SQLite database to also include a database that is corrupt. The new major version of xreader 2.2.1 fixed incompatible pointer type issues and Linux syscall tracer strace 5.2 enhanced decoding of bpf, clone, inotify_init, mbind, and set_mempolicy syscalls. Other packages that received updates were python-qt5 5.13.0, python-sip 4.19.18 and rubygem-coffee-rails 5.0.0, which removed support for Rails below version 5.2 and added support for Rails 6. The snapshot is trending to project a 95 rating, according to the Tumbleweed snapshot reviewer

Tumbleweed’s July Snapshots Are Trending Strong

July 11th, 2019 by

There have been a total of five openSUSE Tumbleweed snapshots since the beginning of July and all the snapshots have a strong, stable rating.

The rolling release had the most updates arrive in the 20190702 snapshot. The packages update in that snapshot included Mesa 19.1.1 and Mesa-drivers 19.1.1 that had fixes for Intel ANV and AMD RADV driver as well as Nouveau and R300 Gallium3D drivers. The bzip2 file compression application fixed undefined behavior in the macros in version 1.0.7 and fixed a low impact Common Vulnerabilities and Exposures (CVE). The programing language package guilef was updated to version 2.2.5 and provided bootstrap optimization. Portability improvements were made in the library for encryption, decryption, signatures and password hashing with libsodium 1.0.18. A major release of the PulseAudio’s Volume Control package pavucontrol 4.0 was made; the new version dropped support for Gtk+ 2 and added more than a handful of new language translations.

The most recent snapshot, 20190708, didn’t offer a changelog due to the server that the web app uses to produce the changelogs being upgraded to Leap 15.1. The changelog is expected to be included in the next snapshot that is released.

Just two packages were updated in the 20190704 snapshot. The newer vhba-kmp file system package from April 2019 fixed a crash when mounting disk image with the 5.1 Linux Kernel. The vm-install 0.10.07 package, which is a tool to define a Virtual Machine and Install Its Operating System, addressed the use of the ‘builder’ option in the config file that produces an error because it is deprecated.

The first snapshot of the month, 20190701, didn’t provide any new package releases, but there were some changes made to a few packages like the one to llvm8 (Low Level Virtual Machine) that increase RAM for armv6/7 to avoid the undesirable state of Out of memory (OOM). A patch was also dropped from the same package.

A few package updates were made available in the 20190703 snapshot. The Linux Kernel was updated to 5.1.15. The updated kernel offered some fixes for mediatek MultiMediaCard (MMC) flow and detection issues and it enabled System Management Bus (SMBus) on Lenovo ThinkPad E480 and E580. KDE’s Hex editor for viewing and editing binary files okteta 0.26.2 improved the maximum array size in structures extended to 64K.

All snapshots released this month so far have recorded a stable rating of 93 or higher, according to the Tumbleweed snapshot reviewer.

Mesa, VirtualBox, Ceph, NetworkManager Packages Update in Tumbleweed

June 6th, 2019 by

Three openSUSE Tumbleweed snapshots have been released in the first four days of June, which bring several minor package updates to the rolling release.

The 20190604 snapshot brought babl  0.1.64, which provided some code consistency, gitlab Continuous Integration (CI), autotools and meson build improvements. An accident in naming caused the 0.3.2 version of bubblewrap to become version 0.3.3. However, bubblewrap 0.3.3. did address a Common Vulnerabilities and Exposures (CVE), provided a few smaller fixes and added the JSON Application Programming Interface (API) that allows reading the inner process exit code. GNU Compiler Collection 8 had some updates that included a couple patches with one that makes builds without profiling reproducible. Generic Graphics Library gegl 0.4.16 also added gitlab CI and uses a custom allocator for tile data, which aligns data and groups allocations in blocks; this was achieved on Linux by using the GNU extension malloc_trim to permit forcing invocation of the glibc malloc/free allocators garbage collection function. Oracle’ virtualbox 6.0.8 had a minor maintenance release that fixed a crash when powering off a Virtual Machine without a graphics controller and xorg-x11-server 1.20.5 fixed some input. The snapshot is currently trending at a 96 rating, according to the snapshot reviewer.

Snapshot 20190603 updated Mesa and Mesa-drivers to version 19.0.5 and took care of some core code and drivers. NetworkManager 1.16.2 fixed some wrong permissions of the /var/lib/NetworkManager/secret_key file. Ceph’s minor version update disabled Link Time Optimisation in spec when being used. GNOME 3.32.2 had several package updates and fixes including the fix of a regression that caused the fonts category to go missing. Tumbleweed skipped over the 1.3.0 series of Flatpak directly to version 1.4.0. The major changes since 1.2.4 is the improved I/O use for system-installed applications, and the new format for pre-configured remotes. Glib2 2.60.3 updated translations and provided various fixes to small key/value support in GHashTable. Scripting language php7 7.3.6 added a missing curl_version and fixed several other bugs. The snapshot is currently trending at a 95 rating, according to the snapshot reviewer.

The snapshot that started out the month, 20190601, update the Linux Kernel to 5.1.5 that fixed a data loss bug. Flatpak-builder 1.0.7 fixed some details in how to create platform commits to fix font cache mtime issues. Among the other package updates in the snapshot were GNOME’s image viewer gthumb 3.8.0, ibus-libpinyin 1.11.1, libopenmpt 0.4.5, qalculate 3.2.0, rdesktop 1.8.6, which fixed the protocol code handling new licenses, and yast2-support 4.1.1. The snapshot is currently trending at a 90 rating, according to the snapshot reviewer.

Tumbleweed Snapshots Deliver Curl, Salt, FFmpegs Packages Updates

April 18th, 2019 by

Three quality openSUSE Tumbleweed snapshot were released since last Thursday with updated packages for Curl, Salt, FFmpeg and more.

Mozilla Firefox had a minor release of version 66.0.3 in the latest Tumbleweed 20190415 snapshot. The browser addressed some performance issues with some HTML5 games and provided a Baidu search plugin for Chinese users and China’s Internet space. The command-line tool for transferring data using various protocols, curl 7.64.1 fixed many bugs and added additional libraries to check for Lightweight Directory Access Protocol (LDAP) support. The update of libvirt 5.2.0 dropped a few patches and added several new features like Storage Pool Capabilities to get a more detailed list XML output for the virConnectGetStoragePoolCapabilites Application Programming Interface (API) and libvirt also enabled firmware autoselection for the open-source emulator QEMU. The newest salt 2019.2.0 package in Tumbleweed enhanced network automation and broadened support for a variety of network operating systems, and features for configuration manipulation or operational command execution. Salt also  added running playbooks to the 2019.2.0 release with the playbooks function and it includes an ansible playbooks state module, which can be used on a targeted host to run ansible playbooks, or used in an orchestration state runner. The snapshot was trending at a 95 rating at the time of publishing this article, according to the Tumbleweed snapshot reviewer.

Snapshot 20190412 was trending at a 94 and that package brought an update to Ceph that added a separate option to config a Secure Sockets Layer (SSL) port. The cifs-utils 6.9 package, which is part of the Samba Project, added fixes for Azure and removed several patches. The libssh2_org 1.8.2 package fixed a misapplied patch that broke its previous version. A few YaST packages had some updates like the yast2-storage-ng 4.2.5 package that allows for a new format for importing/exporting Network File System (NFS) drives.

The 20190411 snapshot started off the week and it posted a moderately stable rating of 89. This snapshot brought the 5.0.7 Linux Kernel and it offered up a mitigation potential for a ptrace system call for PowerPC. There were some bug fixes for codecs, filters and formats in the ffmpeg 4.1.3 update. The JavaScript Bindings for GNOME, gjs 1.56.0, had a significantly large changelog recording info from the previous 1.54.3 version that was in Tumbleweed. The previous logs identified a GNU Compiler Collection 9 bug and added some ESLint rules. The new version was a stable version bump. The python-kiwi  9.17.35 package fixed regressions for the kiwi-repart dracut module. The wget 1.20.3 package fixed the buffer overflow vulnerability found in Common Vulnerabilities and Exposures (CVE)-2019-5953. Text editor vim 8.1.1137 fixed several bugs including a Python test that didn’t wipe out hidden buffer and a space in number column that was on wrong side with ‘rightleft’ set.