Home Home > Tag > openssl
Sign up | Login

Posts Tagged ‘openssl’

New node.js LTS, GNU Debugger, libvirt Updates Arrive in Tumbleweed Snapshots

June 13th, 2019 by

The three openSUSE Tumbleweed snapshots released this week updated some key packages for users of the rolling release.

One of those key packages was an update of the GNU Debugger, gdb 8.3, which was released in the 20190607 snapshot. The debugger enabled ada tests on ppc64le and riscv64; multitarget builds for riscv64 were also enabled. The snapshot also added unit test for Logical Volume Manager (LVM) over Modular Disk (MD) with the update of libstorage-ng 4.1.127. Several patches and bug fixes were applied with the update of libvirt 5.4.0, which also made an improvement to avoided unnecessary static linking that results in both the disk and memory footprint being reduced. Libvirt also introduced support for the md-clear CPUID bit. The python-libvirt-python 5.4.0 package added all new Application Programming Interfaces (APIs) and constants in libvirt 5.4.0. Text editor vim 8.1.1467 had multiple fixes, but the Tumbleweed snapshot introduced some new bugs and is currently trending at an 86 rating, according to the snapshot reviewer.

The two previous snapshots recorded an exceptional stable rating of 98 according to the snapshot reviewer.

Snapshot 20190606 updated just two packages. The nodejs10 package put out a new upstream Long-Term-Support (LTS) version with nodejs10 10.16.0, which upgraded upgrade openssl sources to 1.1.1b and libuv to 1.28.0. The other package update in the snapshot was xfdesktop 4.12.5; the package for the Xfce 4 Desktop Environment fixed icon sizes in settings, reset the desktop icon order and fixed a timer leak.

The 20190605 snapshot had three packages updated. Linux Kernel 5.1.7 had some fixes pertaining to Btrfs like fixing the in-core state with a storage device between ranged fsync and writeback of adjacent ranges. The kernel update also removed dependencies with the arch_timer driver internals for the arm architecture and added Ice Lake support for Intel’s x86 power mode or c-state. Time Zones were updated with the libical 3.0.5 package and the libinput 1.13.2 package made some changes for Wacom touchpads and Apple bluetooth touchpad.

Release manager Dominique Leuenberger wrote a review of the previous two weeks and stated that openssl 1.1.1c, Texlive 2019, KDE Plasma 5.16, Qt 5.13, LLVM 8, swig 4.0, and cmake 3.14 were all progressing in the staging projects and will be released soon in upcoming Tumbleweed snapshots.

Tumbleweed Snapshots Bring New Mesa, php, python-setuptools

March 1st, 2019 by

Snapshots Trending Stable

There were three quality openSUSE Tumbleweed snapshot released this week bringing updates for python-setuptools, Mesa, php, Flatpak and both Mozilla Firefox and Thunderbird.

Eleven packages were updated in the latest snapshot of the week. Snapshot 20190226 updated the efivar 37 package, which is a tools and libraries package to work with Extensible Firmware Interface variables; the package add support for Embedded MultiMediaCard devices and for Peripheral Component Interconnect (PCI) root nodes without a device link in pseudo file system sysfs. The sensors 3.5.0 package add detection of Microchip MCP9808 and Nuvoton NCT6793D, which has yet to appear on the companies website. Bug fixes were made to the xclock 1.0.8, xev 1.2.3 and xfsinfo 1.0.6 packages. The xfsinfo package fixed a bug in 64-bit builds that caused the maximum request size to be incorrectly calculated. Other packages updated in the snapshot were File 5.36, python-idna 2.8 and python-python-dateutil 2.8.0.

A little more than a handful of packages were updated in the 20190225 snapshot. Mozilla Firefox 65.0.1 improved playback of interactive Netflix videos and provided various stability and security fixes. The libyui-qt-pkg 2.45.26 fixed an icon display to a new libyui-qt function. A suggestion by a user at EuroPython 2018 was made in the python-decorator 4.3.2 package and now the path to the decorator module appears in the tracebacks. The caching proxy squid 4.6 is able to detect IPv6 loopback binding errors and fixed OpenSSL builds that define OPENSSL_NO_ENGINE.  The sysconfig 0.85.2 package fixed the changes file to mention relevant github pull requests. (more…)

Tumbleweed Gets New grep, Linux Kernel 4.20

January 25th, 2019 by

A total of two snapshots have arrived in openSUSE Tumbleweed since last week’s article about the rolling release.

The two snapshots delivered new versions of grep, VLC, KDE Applications and Frameworks, Thunderbird, wireshark and more.

The latest snapshot, 20190121, provided updates of KDE Applications 18.12.1 and Frameworks 5.54.0. Applications 18.12.1 offers about 20 bug fixes. Sorting columns in the JuK music player has been fixed, Akregator now works with WebEngine from Qt 5.11 or newer and Konsole once again correctly renders box-drawing characters. Breeze Icons added YaST and new preference icons with the update to Frameworks 5.54.0, which also fixed a bug in KIO that made the open url in the tab feature a bit more discoverable. Kwayland also fixed XDGForeign Client header installs. Support for 12 bits decoding of AV1 was added with vlc 3.0.6. A minor update to GNU Compiler Collection 8 includes a backport of asm inline. The lightweight Integrated Development Environment geany 1.34.1 now automatically detects the GTK version to build against. A patch was made to the update of java-12-openjdk 12.0.0.0~26, which included a fix that introduces a diagnostic flag to abort Virtual Machines operating too long. A fix for Mariabackup that failed to copy encrypted InnoDB system tablespace of the log sequence numbers (LSN) was made with mariadb 10.2.21. Visual diff and merge tool meld 3.20.0 added an Enter as a Compare accelerator in folder comparisons. The update of mutt 1.11.2 fixed a compilation with the latest OpenSSL version along with various other bug fixes. Several rubygem packages were also updated in the snapshot. Two recent issues were fixed in the purple-facebook 0.9.6 package; one addressed a failed to get sync_sequence_id and the other was a failed to read fixed header. Samba 4.9.4 addressed two Common Vulnerabilities and Exposures(CVE)  including a fix of a CNAME loop prevention using counter regression.

The snapshot that started the week was 20190115 and it brought the 4.20.0 Linux Kernel and Mozilla Thunderbird 60.4.0, which added WebExtensions FileLink Application Programming Interface (API) to facilitate FileLink add-ons. More than 30 performance improvements were made with the update of grep 3.3, which now diagnoses stack overflow. The Advanced Linux Sound Architecture  package alsa  1.1.8 dropped some obsolete patches and added a Unified Change Management  (UCM) setting for Dell Edge IoT platforms. Parser generator bison updated to version 3.2.4. An update to GNOME’s personal information management application evolution 3.30.4 clamps GSettings values before restoring window size. A jump was make from libvirt-glib 1.0.0 to 2.0.0 and it modernize gobject macro usage. Among notable packages updated in the snapshot were gucharmap 11.0.3, mercurial 4.8.2, python-pyOpenSSL 18.0.0, sqlite3 3.26.0 and wireshark 2.6.6.

Snapshot 20190115 recorded an unstable rating of 61, according to the Tumbleweed snapshot reviewer. Snapshot 20190121 is trending at as moderately stable with a rating of 78.

Tumbleweed Starts Year with New Plasma, Applications, VIM, curl

January 18th, 2019 by

This new year has brought several updated packages to users of openSUSE’s rolling release Tumbleweed.

Three snapshots have been released in 2019 so far and among the packages updated in the snapshots are KDE’s Plasma, VIM, RE2, QEMU and curl.

The 20190112 snapshot brought a little more than a handful of packages. The new upstream Long-Term-Support version of nodejs10 10.15.0 addressed some timing vulnerabilities, updated a dependency with an upgrade to OpenSSL 1.1.0j and the versional also has a 40-seconds timeout that is now applied to servers receiving HTTP headers. The changelog listed several fixes for the highly configurable text editor with vim 8.1.0687, which should now be able to be built with Ruby 2.6.0 that was released at the end of December. Google’s re2 20190101 offered some performance tweaks and bug fixes. The fast real-time compression algorithm of zstd 1.3.8 has better decompression speed on large files. There was a change in the yast2-firewall package, which arrived in the the 20190110 snapshot, that allows new ‘forward_ports’, ‘rich_rules’ and ‘source_ports’ elements in zone entries with yast2-schema 4.1.0.

KDE’s Plasma 5.14.5 arrived in snapshot 20190110; the update fixed the max cache limit for Plasma addons and there were updates for Breeze GTK, Discover, KWin, Plasma Workspace, Powerdevil and more. The Intel tool that provides powersaving modes in userspace, kernel and hardware, powertop 2.10, enabled support for Intel GLK, which was formerly known as Gemini Lake, and support for Intel CNL-U/Y. The geolocations services package geoclue2 2.5.2 had a change that allow multiple clients on the same D-Bus connection and adds an application programming interface (API) for it, which was mainly done for the Flatpak location portal. The IRC client irssi 1.1.2 had multiple fixes and synced a new script. GNOME’s jhbuild 3.28.0 enabled a build of libosinfo tests. Translations were update for Czech with libstorage-ng 4.1.75 through Weblate and several YaST packages were updated, including yast2 4.1.48 and yast2-multipath 4.1.1, which had a fix for the use of a random file name.

The first snapshot of the year was extremely huge. Snapshot 20190108 updated more than a hundred packages. KDE’s Application 18.12.0 were updated and it brought more than 140 bugs fixes for applications like Kontact Suite, Cantor, Dolphin, Gwenview, KmPlot, Okular, Spectacle, Umbrello and more. The update of curl 7.63.0 had a fix for IPv6 numeral address parser along with several other fixes and a support session resume with TLS 1.3 protocol via OpenSSL. Apparmor 2.13.2 fixed a syntax error in rc.apparmor.functions, which could cause policy load failures. The Linux Kernel 4.19.12 was in the first snapshot of the year and should move closer to the latest stable version in the coming weeks. Various fixes and compatibility tweaks were made with the update of libreoffice 6.1.4.2, which removed some patches. The compression format package brotli 1.0.7 now has faster decoding on ARM. The newest version of claws-mail 3.17.3, added support for TLS Server Name Indication (SNI), which enables the sending of a hostname, if available, to the server so that it can select the appropriate certificate for a domain; this is useful for servers that host multiple domains on the same IP address. Other noteworthy updates were  Python-setuptools 40.6.3, qemu 3.1.0 and squid 4.5.

All snapshots have either logged or are treading as moderately stable with a rating of 83 or above, according to the Tumbleweed snapshot reviewer. There are more than 300 packages in staging that will likely be released in several snapshots over the coming weeks.

Latest Tumbleweed Snapshot Brings Major Versions of Flatpak, qemu, Thunderbird , Nano

September 14th, 2018 by

Since the last openSUSE Tumbleweed update, three snapshots have been released and the latest snapshot has brought two new major versions of both Flatpak and qemu.

On the heels of the Libre Application Summit last week, which is a conference focusing on sandboxing and application distribution, a new major version of Flatpak was released in Snapshot 20180911. Flatpak 1.0 marks a significant improvement in performance and reliability, and includes a big collection of bug fixes with a collection of new features. Naturally, libostree 2018.8 was updated with Flatpak and added a new feature that provides an auto-update-summary config option for repositories. Full-system emulation with qemu 3.0.0 isn’t necessarily significant. The changelog states not to “read anything into the major version number update. It’s been decided to increase the major version number each year.” Yet there is improved support for nested Kernel-based Virtual Machine (KVM) guests running on Hyper-V. The project did emphasized that ongoing feature deprecation is tracked at both http://wiki.qemu-project.org/Features/LegacyRemoval and in Appendix B of the qemu-doc.* files installed with the qemu package. Mesa 18.1.7 had a handful of fixes and once again added wayland to egl_platforms. The Linux Kernel 4.18.7 added support for Intel Ice Lake microarchitecture in the snapshot. There were several other minor updates in the snapshot, but the nodejs10 update to version 10.9.0 brought a few Common Vulnerability and Exposure (CVE) fixes and upgraded dependencies to OpenSSL 1.0.2.

Mozilla Thunderbird also received a major version update this week in snapshot 20180910. Thunderbird 60.0 improved message handling and composing and also provided Internet Message Access Protocol (IMAP) fixes. A list of CVEs were addressed with the update and the email client also added support for OAuth2 and FIDO U2F. Pixel format translation library babl updated its license to LGPL 3.0 in with the version update to 0.1.56. The library and command-line tool for transferring data using various protocols known as curl had several changes in version 7.61.1 and warn the user if a given file name looks like an option. The GNOME Web browser package epiphany 3.28.4 fixes a crash on homedepot.com and improved the performance of adblocker. The 4.18.6 kernel was made available in this snapshot. Text editor nano 3.0  also had a major version update and provided some speed improvements. Pdf renderer poppler 0.68.0 added Reason and Location to SignatureInfo. Web developers will be happy to see webkit2gtk3 2.22.0. The updated webkit2gtk3 package provides a new JavaScriptCore GLib application programming interface (API) and added playbin3 support to GStreamer media backend.

(more…)

Tumbleweed Has Updates for Frameworks, Applications, Plasma

February 22nd, 2018 by

The were plenty of updated packages in openSUSE Tumbleweed this week and KDE updates were made available for Frameworks, Applications and Plasma.

While the most recent snapshot didn’t include an update of a KDE package, four out of the six snapshots this week did.

Snapshot 20180220 brought a few lesser known packages. The C library for asynchronous DNS requests known as c-ares updated to version 1.14.0. The c-ares update provided a patch for Common Vulnerabilities and Exposures (CVE)-2017-1000381 to protect against a network attack. The image view Eye of GNOME updated translations with the eog-plugins 3.26.2. The Xfce library targeted at application development known as Exo now has version 0.12.0, which was released from upstream six day before being released in this 20180220 snapshot. The requirements were updated for exo 0.12.0 and they include GTK 2.24, GTK 3.22, GLib 2.42, libxfce4ui 4.12 and libxfce4util 4.12. Developers looking to generate random numbers will find the update of the haveged 1.9.2 package. The Haveged package contains a daemon that generates an unpredictable stream of random numbers and feeds the /dev/random device.

Linux Kernel 4.15.4 provided a fix to auto-negotiate security settings mismatches the 20180219 snapshot. Issues with AppStream required appstream-glib to revert from version 0.7.5 back to 0.7.4. The snapshot brought the first point release for KDE’s Long Term Support release of Plasma 5.12. The Plasma 5.12.1 version fixed several bugs including a fix for the mouse settings module that was crashing on Wayland.

(more…)

From Drivers to Kernel, A Week Full of Tumbleweed Snapshots

November 3rd, 2017 by

There has been an openSUSE Tumbleweed snapshot every day this week and KDE Frameworks along with AppArmor and Plasma began a week full of new software releases for openSUSE’s rolling distribution.

The most recent snapshot was  20171101 and the update of appstream-glib to 0.7.3 added support for URL launchable types; it also provided write XML for newer AppStream specification versions. Ethtool 4.13 added some features and fixed a few issues like  the formatting of advertise bitmask. Also in the snapshot, both glib-networking 2.54.1 and glib2 2.54.2 updated translations.

The OpenType text shaping engine Harfbuzz was updated in the 20171031 snapshot to version 1.6.3, which brought new emojis through an update to Unicode 10. Postfix 3.2.4 was upgraded and builds with OpenSSL 1.0.0 or 1.0.1, but is noted to have failed to send email to some sites with “TLSA 2 X X” DNS records associated with an intermediate CA certificate.

Linux Kernel 4.13.10 was made available in the 20171030 snapshot and included several improvements for xfs.

Stricter permissions on cron directories were made with the upgrade for permissions 20171025 in snapshot 20171029 and python-qt5 also had a configuration patch added in the snapshot. (more…)

Tumbleweed Goes Astronomical

October 5th, 2017 by

Astronomers using openSUSE Tumbleweed received some major software enhancements in a snapshot this week and the four snapshots released also addressed some architecture issues and critical bug fixes.

The snapshots also brought new versions of the Linux Kernel, git, GNU Compiler Collection and mpg123.

The most recent snapshot to be released, snapshot 20171001, provided an update to the programming tool binutils 2.29.1. An update of the branch head of GNU Compiler Collection 7 disabled a patch to verify a test case. The network authentication protocol krb5 1.15.2 fixed a Key Distribution Center (KDC) Denial of Service (DoS) vulnerability caused by unset status strings; Common Vulnerabilities and Exposures (CVE-2017-11368).

Snapshot 20170929 updated ImageMagick 7.0.7.4 and fixed numerous memory leaks. The Linux Kernel was updated to version 4.13.4 and made several changes, which included fixes for PowerPC and S390. The KBD Project, which offers the package that helps with managing the Linux console, virtual terminals, keyboards and more, received an update to kbd 2.0.4. Git 2.14.2 provided various fixes for output correctness. An updated version of the Router Advertisement Daemon to radvd 2.17 added systemd service file. Several bugs were fixed with the update of php7 7.1.10 including bug 75093 that affected curl detection for OpenSSL, which was not detected. A proper fix for the xrpnt overflow problems were made for the MPEG Audio Player and decoder library mpg123 with version 1.25.7.

(more…)

GStreamer, Mesa Packages Updated in Tumbleweed

June 29th, 2017 by

Three openSUSE Tumbleweed snapshots this week brought a few major release packages and a clear example for how the automated testing tool openQA  can prevents a snapshot from being released.

The unicode character map Gucharmap, which uses the gtk+ toolkit and runs on any platform that gtk+ supports, was updated to version 10.0.0 in the repositories in the 20170625 snapshot. The GNOME project updated translations and support of editors like Bluefish as well as many others. Other major release were also in the 20170625 snapshot. An update of net-tools to version 2.0 dropped the network statistics (netstat) Extended Internet Daemon (xinetd) service to phase out xinetd. Users of the proc file-system get cgroup namespaces with the arrival of the psmisc 23.0 package.

Some minor version updates in the 20170625 snapshot were made to kexec-tools 2.0.14, which had backport upstream with fixes, and drbd 9.0.8, which is a block device which is designed to build high availability clusters, merged some changes preparing for compatibility with the Linux Kernel 4.12. Yast2-bootloader made some changes to autoYaST configurations in version 3.3.0.

(more…)

Samba, Ceph, LightDM Update in Tumbleweed Snapshots

April 20th, 2017 by

Snapshots released the past two weeks of openSUSE Tumbleweed have slowed down a bit, but new software continues to be updated in the five snapshots that have been release since April 6.

The most recent snapshot, 20170417, brought Samba 4.6.2, which had an enormous amount of bug fixes and addressed regression issues introduced by the security fixes for CVE-2017-2619. gPhoto had lots of improvements thanks to the update to libgphoto2 2.5.13. The snapshot also updated ethtool to version 4.10, which synchronized the utility used for displaying and modifying some parameters of network interface controllers with the upstream release, and yast2-fonts’ 3.2.0 version fixed regression introduced in version 3.1.17 and added UTF-8 encoding to Ruby strings.

Snapshot 20170414  provided the 3.5.25 version of squid in the repositories, which fixed aspects involved with data connections and FTP traffic intercepts, and yast2-dhcp-server’s 3.2.2 version fixed a crash happens with the latest yast2-core and yast2-ruby-bindings packages. The premier library for Internationalization Components for Unicode (ICU), which provides globalized support for software applications, was updated to version  58.2 and fixed some issues for Cantonese, Greek and Arabic users as well as updated Emoji characters and 19 new symbols for the new 4K TV standard.

Mozilla Firefox fixed a startup crash on Linux with it’s 52.0.2 release in Tumbleweed’s 20170413 snapshot and the Linux Kernel was updated to version 4.10.9. Linux Kernel initiator open-iscsi had a large amount of patch removals and additions. The btrfs file system matured even more with the release of version 4.10.2. The suite and art application Calligra received a fix for crash when using arrow keys in version 3.0.1 and it’s Flow chart added undo commands. The snapshot also merged upstream Ceph fixes for the codestream. WindowMaker 0.95.8 added some patches and new features for veteran users. (more…)