Home Home > Tag > nodejs
Sign up | Login

Posts Tagged ‘nodejs’

Tumbleweed Gets New OpenSSH Major Version

October 30th, 2019 by

Since the last update, there have been five openSUSE Tumbleweed snapshots released.

Snapshot 20191027, brought an update to KDE Plasma 5.17.1. The bugfix update fixed the Mouse KCM acceleration profile on X11 on the Plasma Desktop and had a fix for KWIN with visibility of the Context Help button. Part of the update to Plasma 5.17.1 came in the 20191022 snapshot on the day of the release from the KDE Project. The kcalendarcore package was update to KDE Frameworks 5.63.0, which landed in last week’s snapshots. Quite a few YaST packages arrived in the snapshot as well; some of the those YaST packages adapted to new Keyboard handling. The other two packages updated in the snapshot were to the AV1 decoder dav1d  0.5.1, which fixed a build issue in ARM64 assembly if debug info was enabled, and desktop calculator, qalculate 3.5.0, which had a fix for steradian conversion that is related to the surface area of a sphere.  The Tumbleweed snapshot reviewer is being fixed and doesn’t have a rating for the snapshot.

Seven packages arrived in the 20191025 snapshot and the openssh 8.1 was a major upgrade. The new major version added some new features like an experimental lightweight signature and verification ability. According to the changelog, “signatures may be made using regular ssh keys held on disk or stored in a ssh-agent and verified against an authorized_keys-like list of allowed keys. Signatures embed a namespace that prevents confusion and attacks between different usage domains (e.g. files vs email).” The VirtualBox hypervisor for x86 virtualization had a minor update to version 6.0.14; the maintenance release fixed potential issue in the networking with interrupt signalling for network adapters in UEFI guests. The Network Time Protocol package chrony 3.5 added support for hardware timestamping on interfaces with read-only timestamping configuration and Persistent Memory programming package pmdk 1.7 introduced two new Application Program Interface (APIs) in librpmem and libpmemobj.

An update to the Mesa 3D Graphical Library arrived in snapshot 20191024. The 19.2.1 version of the Mesa and Mesa-drivers package brought in several new features and a big RADV performance boost for AMD GPUs. The Linux Kernel was updated to version 5.3.7 and had several fixes for the release of a USB device. Other packages updated worth noting in the snapshot were libX11 1.6.9, libglvnd 1.2.0 and distributed filesystem openafs 1.8.5.

Both snapshot 20191023 and 20191022 were the last two snapshots to record a rating on the Tumbleweed reviewer until it’s fixed. Respectively, the two had pending ratings of  85 and 70. Just a few packages were in the 20191023 snapshot and nodejs12 12.13.0 was one of the more notable packages to update; the new  nodejs12 version addressed eight Common Vulnerabilities and Exposures (CVEs), which included addressing a “Ping Flood” CVE where an attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Besides delivering an update to Plasma 5.17.1 on the day of the release in snapshot 20191022, the snapshot also brought libvirt 5.8.0 and an update for the control management tool mercurial 5.1.2.

Plasma, Applications, Frameworks arrive in Latest Tumbleweed Snapshot

October 17th, 2019 by

Since last week, there have been four openSUSE Tumbleweed snapshots released and the snapshots brought new versions of software from KDE, Mozilla and more.

The most recent snapshot, 20191014, updated several packages around KDE’s projects. Plasma 5.17.0 arrived in the snapshot and there are some extraordinary changes to the new version. The release announcement says this new version is as lightweight and thrifty with resources as ever before. The start-up scripts were converted from a slower Bash to a faster C++ and now run asynchronously, which means it can run several tasks simultaneously, instead of having to run them one after another. Improvements to the widget editing User Experience were made and the Night Color feature became available, which subtly changes the hue and brightness of the elements on the screen when it gets dark; this diminishes glare and makes it more relaxing to the eyes. The same snapshot brought KDE Applications 19.08.2 and the second version of the 19.08 release improved High-DPI support in Konsole and other applications; there were many bugs fixes as well and KMail can once again save messages directly to remote folders. There was more KDE packages arriving in Tumbleweed with the update of KDE Frameworks 5.63.0; KIO, Kirigami and KTextEditor had the most bug fixes in frameworks latest release. The Tumbleweed snapshot had several other software packages updated like the file system utilities package e2fsprogs 1.45.4, which addressed Common Vulnerabilities and Exposures CVE-2019-5094 where an attacker would have been able to corrupt a ext4 partition. The 3.6.10 version of gnutls added support for deterministic Elliptic Curve Digital Signature Algorithm (ECDSA) / Digital Signature Algorithm (DSA). Text editor Nano updated to version 4.5 and offers a new ‘tabgives’ command allowing users to specify per syntax whatthe <Tab> key should produce. The php7 7.3.10 version modified some patches and fixed some bugs. With all these changes, the snapshot is trending at a stable rating of 95, according to the Tumbleweed snapshot reviewer.

The 20191012 snapshot had one package update and it was for Linux Kernel 5.3.5. The single kernel update appears to have increased the stability of Tumbleweed as it is trending at a stable rating of 96, according to the Tumbleweed snapshot reviewer. That’s four rating points up from the snapshot the day before, 20191011, which is trending at a stable rating of 92.

Snapshot 20191011 had updates for ImageMagick 7.0.8.68 that now supports animated WebP encoding/decoding. Both Moxilla Firefox and Thunderbird were updated to version 69.0.2 and 68.1.1 respectively. Firefox had a single fix for a Linux-only crash when changing the playback speed while watching YouTube videos. Thunderbird on the other hand had multiple bug fixes to include various theme fixes and dark theme improvements for the calendar. The fwupd package, which is a daemon to allow session software to update firmware,  version 1.3.1 now allows the disabling of all plugins and added support for thunderbolt interface for kernel safety checks. GStreamer and many of its plugins were updated to version 1.16.1; the new versions offer many performance improvements and fixed a Wayland event source burning CPU in certain circumstances. Other packages updated in the snapshot were nodejs12 12.11.1, python-packaging 19.2 and tcpdump 4.9.3, which addressed more than two dozen CVEs.

Snapshot 20191009 recorded a moderate rating of 90 on the Tumbleweed snapshot reviewer had 10 packages updated in the snapshot. Ultra fast download utility aria2 1.35.0 dropped SSLv3.0 and TLSv1.0 and add TLSv1.3. The wicked framework version 0.6.60 shipped the internal helper library, libwicked, inside of the wicked package and the Linux Kernel sources were updated from version 5.3.2 to 5.3.4.

Applications, PostgreSQL, Zypper Packages Update in Tumbleweed

September 13th, 2019 by

The past week produced four openSUSE Tumbleweed snapshots.

The snapshots brought an update of KDE Plasma and Applications along with an update for the input framework ibus, two PostgreSQL versions and the command line package manager zypper.

KDE Applications 19.08.1 improvements to Kontact, Dolphin, Kdenlive, Konsole, Step, and more arrived in snapshot 20190909. Several regressions in Konsole’s tab handling were fixed and olphin again starts correctly when in split-view mode. The updated of the anti-virus package clamav 0.101.4 address two Common Vulnerabilities and Exposures. The GNOME web browser package epiphany 3.32.5 fixed a memory corruption and broken web process extension connection when using WebKit trunk. An update of links 2.20.1 brought stability improvements and also addressed a bug when connected with tor would send real dns requests outside the tor network when the displayed page contains link elements with rel=dns-prefetch. The Plasma desktop received a minor update to 5.16.5 and fixed KWayland-integration builds with recent frameworks and Qt 5.13. Some notifications were changed in the new minor version and the some functionality was improved for current weather conditions. The qrencode 4.0.2 package improved support for cmake. The snapshot was trending at a rating of 84, according to the Tumbleweed snapshot reviewer.

Multiple packages arrived in snapshot 20190907, which was also trending at a rating of 84. An update of ImageMagick 7.0.8.63 properly identifies the DNG and AI image format. About 15 CVE’s were addressed in the update of Mozilla Firefox to version 68.1.0, which included a fix for type confusion in Mozilla’s JavaScript engine Spidermonkey. An update for the Wayland input-method protocol was made in ibus 1.5.21 and improved Single Instruction, Multiple Data (SIMD) decoding of 24 bit files was made with the Free Lossless Audio Codec (flac) 1.3.3 package update. Improved performance of various Application Program Interface (API) such as JSON.parse and methods called on frozen arrays were made with the nodejs12 12.10.0 update and php7 7.3.9 provided a bug fixing release that fixed an Exchangeable image file format (Exif) crash (bus error) due to wrong alignment and invalid cast. Many other libraries were updated in the snapshot including a couple YaST packages.

(more…)

New node.js LTS, GNU Debugger, libvirt Updates Arrive in Tumbleweed Snapshots

June 13th, 2019 by

The three openSUSE Tumbleweed snapshots released this week updated some key packages for users of the rolling release.

One of those key packages was an update of the GNU Debugger, gdb 8.3, which was released in the 20190607 snapshot. The debugger enabled ada tests on ppc64le and riscv64; multitarget builds for riscv64 were also enabled. The snapshot also added unit test for Logical Volume Manager (LVM) over Modular Disk (MD) with the update of libstorage-ng 4.1.127. Several patches and bug fixes were applied with the update of libvirt 5.4.0, which also made an improvement to avoided unnecessary static linking that results in both the disk and memory footprint being reduced. Libvirt also introduced support for the md-clear CPUID bit. The python-libvirt-python 5.4.0 package added all new Application Programming Interfaces (APIs) and constants in libvirt 5.4.0. Text editor vim 8.1.1467 had multiple fixes, but the Tumbleweed snapshot introduced some new bugs and is currently trending at an 86 rating, according to the snapshot reviewer.

The two previous snapshots recorded an exceptional stable rating of 98 according to the snapshot reviewer.

Snapshot 20190606 updated just two packages. The nodejs10 package put out a new upstream Long-Term-Support (LTS) version with nodejs10 10.16.0, which upgraded upgrade openssl sources to 1.1.1b and libuv to 1.28.0. The other package update in the snapshot was xfdesktop 4.12.5; the package for the Xfce 4 Desktop Environment fixed icon sizes in settings, reset the desktop icon order and fixed a timer leak.

The 20190605 snapshot had three packages updated. Linux Kernel 5.1.7 had some fixes pertaining to Btrfs like fixing the in-core state with a storage device between ranged fsync and writeback of adjacent ranges. The kernel update also removed dependencies with the arch_timer driver internals for the arm architecture and added Ice Lake support for Intel’s x86 power mode or c-state. Time Zones were updated with the libical 3.0.5 package and the libinput 1.13.2 package made some changes for Wacom touchpads and Apple bluetooth touchpad.

Release manager Dominique Leuenberger wrote a review of the previous two weeks and stated that openssl 1.1.1c, Texlive 2019, KDE Plasma 5.16, Qt 5.13, LLVM 8, swig 4.0, and cmake 3.14 were all progressing in the staging projects and will be released soon in upcoming Tumbleweed snapshots.

Tumbleweed Starts Year with New Plasma, Applications, VIM, curl

January 18th, 2019 by

This new year has brought several updated packages to users of openSUSE’s rolling release Tumbleweed.

Three snapshots have been released in 2019 so far and among the packages updated in the snapshots are KDE’s Plasma, VIM, RE2, QEMU and curl.

The 20190112 snapshot brought a little more than a handful of packages. The new upstream Long-Term-Support version of nodejs10 10.15.0 addressed some timing vulnerabilities, updated a dependency with an upgrade to OpenSSL 1.1.0j and the versional also has a 40-seconds timeout that is now applied to servers receiving HTTP headers. The changelog listed several fixes for the highly configurable text editor with vim 8.1.0687, which should now be able to be built with Ruby 2.6.0 that was released at the end of December. Google’s re2 20190101 offered some performance tweaks and bug fixes. The fast real-time compression algorithm of zstd 1.3.8 has better decompression speed on large files. There was a change in the yast2-firewall package, which arrived in the the 20190110 snapshot, that allows new ‘forward_ports’, ‘rich_rules’ and ‘source_ports’ elements in zone entries with yast2-schema 4.1.0.

KDE’s Plasma 5.14.5 arrived in snapshot 20190110; the update fixed the max cache limit for Plasma addons and there were updates for Breeze GTK, Discover, KWin, Plasma Workspace, Powerdevil and more. The Intel tool that provides powersaving modes in userspace, kernel and hardware, powertop 2.10, enabled support for Intel GLK, which was formerly known as Gemini Lake, and support for Intel CNL-U/Y. The geolocations services package geoclue2 2.5.2 had a change that allow multiple clients on the same D-Bus connection and adds an application programming interface (API) for it, which was mainly done for the Flatpak location portal. The IRC client irssi 1.1.2 had multiple fixes and synced a new script. GNOME’s jhbuild 3.28.0 enabled a build of libosinfo tests. Translations were update for Czech with libstorage-ng 4.1.75 through Weblate and several YaST packages were updated, including yast2 4.1.48 and yast2-multipath 4.1.1, which had a fix for the use of a random file name.

The first snapshot of the year was extremely huge. Snapshot 20190108 updated more than a hundred packages. KDE’s Application 18.12.0 were updated and it brought more than 140 bugs fixes for applications like Kontact Suite, Cantor, Dolphin, Gwenview, KmPlot, Okular, Spectacle, Umbrello and more. The update of curl 7.63.0 had a fix for IPv6 numeral address parser along with several other fixes and a support session resume with TLS 1.3 protocol via OpenSSL. Apparmor 2.13.2 fixed a syntax error in rc.apparmor.functions, which could cause policy load failures. The Linux Kernel 4.19.12 was in the first snapshot of the year and should move closer to the latest stable version in the coming weeks. Various fixes and compatibility tweaks were made with the update of libreoffice 6.1.4.2, which removed some patches. The compression format package brotli 1.0.7 now has faster decoding on ARM. The newest version of claws-mail 3.17.3, added support for TLS Server Name Indication (SNI), which enables the sending of a hostname, if available, to the server so that it can select the appropriate certificate for a domain; this is useful for servers that host multiple domains on the same IP address. Other noteworthy updates were  Python-setuptools 40.6.3, qemu 3.1.0 and squid 4.5.

All snapshots have either logged or are treading as moderately stable with a rating of 83 or above, according to the Tumbleweed snapshot reviewer. There are more than 300 packages in staging that will likely be released in several snapshots over the coming weeks.