| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
______________________________________________________________________________
Announcement ID: openSUSE-SU-2015:0042-1
Rating: moderate
References: #909474 #909475
Cross-References: CVE-2014-8137
Affected Products:
openSUSE 13.1
______________________________________________________________________________
An update that solves one vulnerability and has one errata
is now available.
Description:
The follow issues were fixed with this update:
- CVE-2014-8137 double-free in jas_iccattrval_destroy()(bnc#909474)
- CVE-2014-8138 heap overflow in jas_decode() (bnc#909475)
References:
http://support.novell.com/security/cve/CVE-2014-8137.html
https://bugzilla.suse.com/show_bug.cgi?id=909474
https://bugzilla.suse.com/show_bug.cgi?id=909475
|
|
______________________________________________________________________________
Announcement ID: openSUSE-SU-2015:0041-1
Rating: moderate
References: #911796
Cross-References: CVE-2014-9496
Affected Products:
openSUSE 13.2
openSUSE 13.1
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
Changes in libsndfile: two buffer read overflows in sd2_parse_rsrc_fork()
(CVE-2014-9496, bnc#911796): backported upstream fix patches
References:
http://support.novell.com/security/cve/CVE-2014-9496.html
https://bugzilla.suse.com/show_bug.cgi?id=911796
|
|
one".
|
|
|
|
Bump PKGREVISION.
This commit was approved by wiz@.
|
|
|
|
one has a simple i386-generating dynamic recompiler... which looks
intriguingly plausible to expand on if anyone's bored and finds this
kind of thing interesting.
|
|
|
|
|
|
|
|
|
|
requires openpty from libutil. (I think some Linux libcs even support
this, or used to. But I'm not sure, so I'm leaving that out.)
|
|
|
|
works for you, let me know. (I haven't tried, just systematizing what's
already here.)
|
|
isn't all LP64PLATFORMS. Open question whether this package is worth fixing,
though.
|
|
|
|
CVS history. This package is very not 64-bit clean.
|
|
in PR 48865.
|
|
OK'd by pkgsrc-pmc@ in private mail. This fixes build failure with
wip/skype4.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the sqlite3 shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the sqlite3 shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the gstreamer shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the gstreamer shared libraries.
|
|
Bump PKGREVISION to 4.
openSUSE Security Update: Security update for jasper
______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:1644-1
Rating: moderate
References: #906364
Cross-References: CVE-2014-9029
Affected Products:
openSUSE 13.2
openSUSE 13.1
openSUSE 12.3
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
jasper was updated to fix one security issue.
This security issue was fixed:
- Heap overflows in libjasper (CVE-2014-9029).
|
|
Thank you, wiz@.
|
|
Thank you, wiz@.
|
|
Changelog:
# System emulation
## Future incompatible changes
* Three options are using different names on the command line and in configuration file. In particular:
** The "acpi" configuration file section matches command-line option "acpitable";
** The "boot-opts" configuration file section matches command-line option "boot";
** The "smp-opts" configuration file section matches command-line option "smp".
Starting with QEMU xyz.jkl, -readconfig will standardize on the name for the command line option.
## ARM
* Support for loading a device tree even with no -kernel option or when booting ELF images
* Support for input interrupts in the PL061 GPIO controller
* TCG can emulate breakpoints and watchpoints.
* Support for PSCI firmware interface emulating in TCG
** enables clean shutdown from non-kvm guests
## MIPS
* Support for MIPS64 Release 6 emulation.
* Support for MIPS SIMD Architecture emulation.
* Fix for incorrectly handled delay slots in MIPS16 and microMIPS.
## PowerPC
* Mac OS X 10.2, 10.3 and 10.4 guests run with the mac99 machine type.
* Bugfixes and optimization for TCG emulation of PowerPC targets.
### IBM (pSeries)
* Support for the "nmi" monitor command, to enter the kernel debugger.
* Live migration support for NVRAM
### Freescale (BookE)
* Breakpoint support on KVM.
* Support for the e500 platform bus and dynamic instantiation of FreeScale eTSEC devices (-device eTSEC).
* Support for MPC8XXX gpio controller to enable shutdown with 3.19+ Linux guests
## s390
* Enhance support for boot from DASD to handle more formats.
* Support for memory hotplug.
* Support for cpu state handling and migration.
* Support for booting newer kernels under TCG.
* Improved SMP startup and cpu online/offline performance especially for large guests
## SPARC
* Emulation of TCX hardware acceleration (allows X to run under NetBSD and Solaris)
* NetBSD and OpenBSD can now run under qemu-system-sparc64 in -nographic mode
## TriCore
* New target.
## x86
* Support for IOMMU (VT-d) emulation on the Q35 machine type, enabled with "-machine iommu=on".
* Support for specifying drives in short form on the command-line (i.e. using -cdrom, -hda, -drive if=ide) on the Q35 machine type.
* TCG is reported to run QNX.
* All CPUs now work with "-cpu MODEL,enforce", of course as long as TCG or KVM support the CPU's set of features. Previously, a few CPUs included extraneous CPUID flags that cause "-cpu MODEL,enforce" to fail.
## KVM
* More robust live migration of the kvm pv clock
* Support for AVX512
## Xen
* QEMU can now boot a bzImage or multiboot kernel under Xen, using the command line option -kernel.
## Xtensa
* New script for automatic core import from xtensa configuration overlay.
## Device emulation and assignment
* The boot order set for hot-plugged devices will take effect during reboot. In addition, the boot order can be dynamically modified via QOM.
### IDE
* More accurate emulation of AHCI, especially visible with Windows guests.
### SCSI
* Passthrough of vendor-specific commands now works (only with the virtio-scsi HBA).
* Initial support in virtio-scsi for a threaded backend, which is used in the same way as virtio-blk ("-object iothread,id=id" and "-device virtio-scsi-pci,iothread=id"). Note that the code has known thread-safety problems that can lead to QEMU using freed memory. They should not happen in normal use, they can be triggered easily by malicious guests. This option should only be used if you are interested in making relevant parts of QEMU thread safe.
* Support for LSI MegaRAID SAS 2108 HBAs (-device megasas-gen2). Note that booting from this device does not work yet.
* virtio-scsi can now execute Abort Task and Abort Task Set task management functions asynchronously.
### PCI/PCIe
* MSIs are now (correctly) disabled until bus master DMA is enabled for the device.
* Support for ARI forwarding on PCIe root ports.
### USB
* Support for hot-plugging XHCI/EHCI/UHCI controllers (in the case of EHCI/UHCI, only if there are no companion controllers).
* Support for USB 2.0 (high speed) mice and keyboards, complementing the existing support for high speed USB tablets. High speed devices avoid the less efficient UHCI controller, and thus use less CPU on the host.
### VGA
* The default vga device on x86 has been switched from cirrus to stdvga, which works better for most guests. However, Windows XP will not suspend to RAM anymore; the change can be undone with "-vga cirrus" and does not affect PC machine types of versions 2.1 and earlier.
## Character devices
* Support for automatic reconnection of client sockets (e.g. "-chardev socket,host=localhost,port=12345,nowait,reconnect=5").
## GUI
### Monitor
* The "info pcmcia" command was removed. PCMCIA hotplug was never implemented, and thus the command could only return static information.
## Network
* Samba 4.1 is now supported.
## Block devices in system emulation
* The list of functionality now supported in threaded virtio-blk backend is growing: new in 2.2 are resizing of disks, device hot-unplug, the embedded NBD server, and background jobs (backup, stream, mirror, commit).
# Block devices and tools
* QEMU is more resistent against failure of large allocations in the block layer
* Support for Archipelago as a QEMU block backend
* Support for Parallels images larger than 2TB.
* Migration now works when using qcow2 over Ceph.
* Network-based drivers (NBD, libiscsi, etc.) now work on Win32 hosts too.
* Source image cache mode can be set for qemu-img check, convert and rebase
* qemu-nbd has a new --detect-zeroes option.
* Progress report for qemu-img commit and qemu-img amend
# TCG
* In icount mode, it is possible to slow down emulation to match the requested CPU frequency (thus ensuring that the host and guest clocks remain aligned). This is enabled with "-icount N,align=on".
* A new "victim TLB" provides a 5-10% performance improvement.
# Tracing
* QEMU provides a SystemTap script that outputs binary trace data, for use in flight-recorder mode. The resulting traces can be parsed with QEMU's simpletrace.py script (using the --no-header command-line option).
# User-mode emulation
* New option: setting AT_RANDOM auxval with -seed option or QEMU_RAND_SEED env variable
* New system calls supported
** timerfd_create, timerfd_gettime and timerfd_settime
** ioprio_get and ioprio_set
** setns
** unshare
* epoll_pwait has been enabled on ARM
* Signal handling support added for PPC64
* Emulated contents of /proc/self/maps fixed
|
|
|
|
|
|
Add workaround for OpenBSD's srand/srandom breakage.
|
|
|
|
Changelog:
[20140817] Release 0.6.0.1. It has been a while since the last
release, and the SVN repository mirror at Sourceforge seems to be
broken, so it felt reasonable to package the current code into a
patch release. Not much has happened feature-wise since 0.6.0.
[20140816] On FreeBSD/amd64 with GCC 4.2.1 as the default compiler,
you may need to install GCC 4.8.4 and run the configure script like
this to avoid triggering a bug in the default compiler:
CXX=c++48 CXXFLAGS=-Wl,-rpath,/usr/local/lib/gcc48 ./configure
[20110820] Not much coding lately. The only thing worth mentioning
is that the Dreamcast emulation mode now gets further when running
Marcus Comstedt's test programs, and also shows "something" when
booting the PROM from my real Dreamcast. (This was in the legacy
Dreamcast mode, for fun. I haven't had time to work on the new
framework at all.)
[20100729] Uploaded a clip to YouTube, showing the NetBSD/pmax
install procedure in GXemul.
|
|
|
|
|
|
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the gstreamer shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the gstreamer shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the sqlite3 shared libraries.
|
|
Linux compatibility package based on the openSUSE Linux distribution.
Please visit http://www.opensuse.org/ for more information about openSUSE
Linux.
This package supports running ELF binaries linked with glibc2 that
require the sqlite3 shared libraries.
|
|
|
|
|
|
|
|
required for the latest version of Skype. As a side note, none of the sites
in MASTER_SITE_SUSE work. Bump PKGREVISION.
|
|
openSUSE Recommended Update: dbus-1
______________________________________________________________________________
Announcement ID: openSUSE-RU-2014:1548-1
Rating: moderate
References:
Affected Products:
openSUSE 13.2
openSUSE 13.1
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This recommended update for dbus-1 fixes the following issues:
- Update to 1.8.12:
+ Partially revert the CVE-2014-3639 patch by increasing the default
authentication timeout on the system bus from 5 seconds back to 30
seconds, since this has been reported to cause boot regressions for
some users, mostly with parallel boot (systemd) on slower hardware. On
fast systems where local users are considered particularly hostile,
administrators can return to the 5 second timeout (or any other value
in milliseconds) by saving this as /etc/dbus-1/system-local.conf:
<busconfig> <limit name="auth_timeout">5000</limit> </busconfig>
(fdo#86431)
+ Add a message in syslog/the Journal when the auth_timeout is exceeded
(fdo#86431)
+ Send back an AccessDenied error if the addressed recipient is not
allowed to receive a message (and in builds with assertions enabled,
don't assert under the same conditions). (fdo#86194)
|
|
Huge improvements to the FDC emulation
Support for STX files on any OS (with Hatari's own open source code), as well as support for IPF/CTR files
Write support for STX files, using .wd1772 files
Some various fixes to the video emulation
Many changes to the CPU related to prefetch
Some fixes to STE sound (microwire and LMC) and to Falcon sound
Some fixes to Gemdos HD emulation : clip filenames, autostart
Some fixes to ASCI HD : larger image, improve some commands
Changes to the UI : 2nd line of information at the bottom, better performances under SDL, more options in some screens
For developpers : more Natfeats commands, better tracing of OS calls (bios, xbios, ...), many additions to the debugger
|
|
|
|
PR pkg/49274.
|
|
|
|
-------------------
User-visible changes in version 1.5 (since version 1.4.1):
* New features/improvements:
* VMIPS now includes a basic direct-mapped cache simulation. The
cache isolation and cache swap bits in the CP0 Status register are
now honored.
* The boot monitor distributed with VMIPS now sets up a dummy
`argv[0]' value for the loaded program. Also, it halts by entering
an infinite loop rather than attempting to execute a `break'
instruction when it encounters an unexpected exception.
* The setup assembly routine distributed with VMIPS has been made
more TLB-friendly. Identity virtual-to-physical mappings for the
first few pages of physical RAM are installed in the TLB at program
start time.
* When `-o excmsg' is on, TLB miss addresses will be printed to
stderr.
* When `-o ttydev=stdout' is specified, simulated program output
will be sent to VMIPS's standard output, even if it is not a tty.
* The interactor can now disassemble memory. Also, stepping in the
interactor now prints the PC after each step.
* VMIPS now supports more of the GDB remote serial protocol, in
support of the GDB `info threads' and `detach' commands. The debug
protocol TCP port is now configurable via the `-o debugport'
option. Also, if something halts the program while the debugger
interface is active, VMIPS will tell GDB that the program exited.
* Bug fixes:
* A bug was fixed in the debugger interface where disconnecting from
the debugger socket could cause vmips to enter an infinite loop.
* The interactor will refuse to dump raw memory words at
non-word-aligned addresses.
* The CP0 Cause register IP field is now recomputed whenever the
register is read, rather than only when exceptions happen. This
makes polling loops with interrupts disabled work correctly.
* A bug was fixed in the DECstation-compatible clock device which was
preventing some of its registers from being zeroed properly.
* Some endianness bugs were fixed in the generic memory-mapped device
code and in the DECstation-compatible serial device.
|
|
openSUSE Security Update: openssl: fixed elliptic curve handshake failure
______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:1474-1
Rating: low
References: #905037
Affected Products:
openSUSE 13.2
openSUSE 13.1
openSUSE 12.3
______________________________________________________________________________
An update that contains security fixes can now be installed.
Description:
This openssl update fixes a TLS handshake problem when elliptic curves are
in use.
|
