Packages changed: glib2 (2.66.6 -> 2.66.7) gptfdisk (1.0.5 -> 1.0.6) helm (3.4.2 -> 3.5.2) kbd (2.3.0 -> 2.4.0) kustomize (3.9.2 -> 3.10.0) transactional-update (2.28.3 -> 3.1.4) === Details === ==== glib2 ==== Version update (2.66.6 -> 2.66.7) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.66.7: + Fix various regressions caused by rushed security fixes in 2.66.6. + Fix a silent integer truncation when calling `g_byte_array_new_take()` for byte arrays bigger than `G_MAXUINT`. + Disallow using currently-undefined D-Bus connection or server flags to prevent forward-compatibility problems with new security-sensitive flags likely to be released in GLib 2.68. + Bugs fixed: glgo#GNOME/GLib!1933, glgo#GNOME/GLib!1943, glgo#GNOME/GLib!1944, glgo#GNOME/GLib!1945. ==== gptfdisk ==== Version update (1.0.5 -> 1.0.6) - Update to 1.0.6 * Fixed bug that could cause segfault if GPT header claimed partition entries are oversized. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0256 * Fixed bug that could cause a crash if a badly-formatted MBR disk was read. See: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-0308 * Renamed the partition type "Freedesktop $BOOT" to "XBOOTLDR partition". * Added several more Freedesktop partition table type codes (0x8312 through 0x831C). * Fixed type code definition in diskio-unix.cc that prevented 32-bit builds from correctly handling disks over 4 TiB in size. * Minor tweaks to get the software to compile on FreeBSD; that seems to have fallen into disrepair. ==== helm ==== Version update (3.4.2 -> 3.5.2) - Update to version 3.5.2: * Upgrade to oras v0.9.0 (#9269) * Adding missing replace directive for oras * chore(go.mod): bump Masterminds/{spring,goutils} and deislabs/oras * fix(*): Validate metadata semver and printable characters * Fix dep build with OCI based charts * bump version to * Adding apiserver to mod/sum * Reduce linting severity for users of out-of-date kubernetes (#8608) * Bumping kubernetes to 1.20.1 * Add explanatory comments to action.List and action.History * Address error on deletion of old dependencies * Fixed bug - The flags --cert-file/--key-file where ignored when --insecure-skip-tls-verify flag is set (#9070) * Replace Helm Hub with Artifact Hub (#8626) * fix(pkg/chartutil): Remove warning for nils * Updating to sprig 3.2.0 * Updating to Kuberentes 1.20 packages * Bump github.com/Masterminds/semver/v3 from 3.1.0 to 3.1.1 (#9109) * Bump github.com/Masterminds/squirrel from 1.4.0 to 1.5.0 (#9108) * Bump github.com/lib/pq from 1.8.0 to 1.9.0 (#9107) * Remove OCI boolean from struct * Clean up imports and add doc comments * Implement `helm pull` for OCI registries * Adds the option kube-cafile and env variable HELM_KUBECAFILE for a overwrite of the certificate authority file * Builds with go 1.15 * Updating to Kubernetes 1.19.4 package versions * Add CodeQL Security Scanning * Fix test * Fixes #9083 * [COMMENT]fix comment * Fix typo * fix: ingress path issue * Revert "Add support to judge whether desired version is available or not" * Cleanup tempfiles introduced by unit tests under pkg/ * bump actions/stale to v3.0.14 * increase number of operations per run to 100 * feat(helm): Allow generating markdown docs headers * chore(comp): Remove unnecessary completion code * Added tests for PR 8948 * add unittes for 'helm dep build' with --skip-refresh flag. * Updating to k8s 1.19.3 based packages * lint: lint all documents in a multi-doc yaml file * fix(helm): flag descriptions start with lowercase * List either incubator or stable. * add waitwithjobs instead of changing wait api * add wait-for-jobs flag * fix style conformance * fix test-style error * add test cases * helm upgrade with --wait support jobs in manifest to be completed * completion: move to native zshCompletion * Add remaining tests in TestDependentChartAliases * Clarifies action needed to list new stable repo * feat: Allow helm test to run a subset of tests * Fix that the invalid version number of the helm package command will escape * Updating descriptions * Add support to judge whether desired version is available or not * Add test case for LoadFiles * Fixes Error: could not find protocol handler for * [#7696] Avoid crash in chart loader on unexpected file sequence * helm search supports semver pre version numbers starting with 0 * added test for https://github.com/helm/helm/pull/8913 related to https://github.com/helm/helm/issues/8621 * [#7696] Avoid crash in chart loader on unexpected file sequence * feat(test): Adapt completion tests to Cobra 1.1 * Bump github.com/spf13/cobra from 1.0.0 to 1.1.1 * Update err message to use the regex pattern directly * Fix the lint error message for valid names * do not check YAML if nothing was parsed * fix(test): display error message * bump version to v3.4.0 * Skip tests when running helm template * Add --skip-refresh option in helm dep build * Adjusted import * Reuse kube-client * fix(helm): allow skipping manifests in tests directories * prepare testdata * Bugfix: panic when chart contains requirements.lock ==== kbd ==== Version update (2.3.0 -> 2.4.0) Subpackages: kbd-legacy - Update to version 2.4.0: * po: Update cs and sr translations (from translationproject.org) * libkfont: Use only KDFONTOP * Added support for a few derivatives of neo * Fix use-after-free of pipe_cmd * Update solar24x32 font * vlock's pam config added to destination directory * Update sun12x22.psfu * libkeymap: unify non/unicode accent_table generation * libkeymap: note about --unicode use * libkeymap: remove last ushort * fi.map: use newly added deadkeys * Do not install internal library * Additional deadkeys - Remove kbd-1.15.2-setfont-no-cruft.patch The old ioctls were finally dropped. ==== kustomize ==== Version update (3.9.2 -> 3.10.0) - Update to version 3.10.0 - Pin to api v0.8.0 - Delete dependence on k8s.io/... - Unpin from api. - Refresh vendor.tar.xz ==== transactional-update ==== Version update (2.28.3 -> 3.1.4) Subpackages: transactional-update-zypp-config - Version 3.1.4 - SELinux: Fix syncing of SELinux attributes when using overlays - SELinux: Tag the overlay directory itself (again) - Version 3.1.3 - Fix overlay syncing on SELinux systems - Fix resuming transactions where the parent does not exist any more - Version 3.1.2 - libtukit: Report when application was terminated due to a signal, and return the signal number as a return value. This will cause the transaction to be aborted when called via `execute`. - libtukit: Set PATH variable for internal commands to fixed value to find the helper applications, as in some environments such as PolicyKit PATH wouldn't be set. - Fix compiler warnings - Version 3.1.1 - Fix hang in tukit on aarch64 [bsc#1181844] - Prevent deletion of snapshots when resuming a snapshot where no transaction is open - Make tukit work in non-dbus environments [boo#1181934] - Version 3.1.0 - t-u: Support installing RPMs from the user's directory again - Adapt selfupdate to new packaging - Implement signal handling - Remove empty text files - Add libselinux build time dependency - Remove RPM version check - Fix libstdc++ filesystem ABI incompatibility by using newer gcc version on old distributions. [boo#1181582] - Rework packaging based on Fedora packaging to separate all the components to remove the intrinsic requirement for Zypper - Version 3.0.0 - This release changes the internal structure, but should be identical to the previous release feature wise. - Major parts of the previous Bash only application have been rewritten in C++ with the goal to provide an API around transactions; the transactional-update script is using that new interface internally already, however the API should be considered experimental for now - if you are interested to use it, please notify us in https://github.com/openSUSE/transactional-update/issues/52 - A new tool called "tukit" provides a C++ tool that can be wrapped by scripts to leverage the functionality. Please consider it experimental for now, the commands may still change. - Bugfixes: - Implement support for system offline update [boo#1180808] - Add statistics files to update environment [boo#1173282]