Packages changed: dhcp (4.4.2 -> 4.4.2.P1) exiv2 gcc (10 -> 11) gcc11 (11.0.0+git183291 -> 11.1.1+git121) patterns-base qemu === Details === ==== dhcp ==== Version update (4.4.2 -> 4.4.2.P1) Subpackages: dhcp-client - Add -fno-strict-aliasing to CFLAGS to avoid a segfault in dhcpd (boo#1186631). - Update to 4.4.2-P1: * CVE-2021-25217, bsc#1186382: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient. - Error out, if %version and %isc_version are not in sync. ==== exiv2 ==== - Add 1271.patch: Fix build using GCC 11 (boo#1185218). - Drop the sed hack to remove -fcf-protection: this is properly solved with the above patch. - -fcf-protection doesn't work on i586 with gcc11 either (boo#1185218) ==== gcc ==== Version update (10 -> 11) - Switch gcc to default 11. - Adjust liblto_plugin.so naming for GCC 11. ==== gcc11 ==== Version update (11.0.0+git183291 -> 11.1.1+git121) Subpackages: libgcc_s1 libgomp1 libstdc++6 libubsan1 - Update to gcc-11 branch head (23855a176609fe8dda6abaf2b2), git121 - Disable build-id generation on non-glibc targeting cross compilers. - Update to gcc-11 branch head (cd0a059bd384da58d43674496a7), git67 * Includes GCC 11.1 release - Drop upstreamed gcc11-no-offload.patch. - Update to gcc-11 branch head (7a7fc01b9d20afb1a2b805d93cb), git31 * Includes GCC 11.1 RC2 - Add gcc11-no-offload.patch and gcc11-amdgcn-disable-hot-cold-partitioning.patch. - Enable gfortran for offload compilers. - BuildRequire procps from gcc11-testresults if we test go. - Force using llvm11 for amdgcn offloading since llvm12 doesn't yet work. Package expanded symlinks so concurrent installs do not pull in another llvm-mc. - Add gcc11-gdwarf-4-default.patch to default to DWARF4 generation in SLES15 and older. - Update to gcc-11 branch head (27350b77a92062667427100afb4), git10 * Includes GCC 11.1 RC1 - Bump to 49813aad3292f7f2bef69206274da78a9a7116ed. - Disable nvptx offloading on aarch64 since it doesn't work. - Bump to a87d3f964df31d4fbceb822c6d293e85c117d992. - Remove gcc48-remove-mpfr-2.4.0-requirement.patch which does no longer apply. - Arrange for a C++ 11 capable host compiler to be available. - Do not require ISL for cross compiler builds on old distros. - Bump to 123b3e03c911a43054c1f88f5d3110e1d084dd4e. - Update embedded newlib version from 3.3.0 to 4.1.0. - Pack %{GCCDIST}-gcc%{binsuffix}. - Add a new dependency for libgccjit. - New package, inherits from gcc10 * gcc-add-defaultsspec.diff, add the ability to provide a specs file that is read by default * tls-no-direct.diff, avoid direct %fs references on x86 to not slow down Xen * gcc43-no-unwind-tables.diff, do not produce unwind tables for CRT files * gcc41-ppc32-retaddr.patch, fix expansion of __builtin_return_addr for ppc, just a testcase * gcc44-textdomain.patch, make translation files version specific and adjust textdomain to find them * gcc44-rename-info-files.patch, fix cross-references in info files when renaming them to be version specific * gcc48-libstdc++-api-reference.patch, fix link in the installed libstdc++ html documentation * gcc48-remove-mpfr-2.4.0-requirement.patch, make GCC work with earlier mpfr versions on old products * gcc5-no-return-gcc43-workaround.patch, make build work with host gcc 4.3 * gcc7-remove-Wexpansion-to-defined-from-Wextra.patch, removes new warning from -Wextra * gcc7-avoid-fixinc-error.diff * gcc9-reproducible-builds-buildid-for-checksum.patch * gcc9-reproducible-builds.patch * gcc10-amdgcn-llvm-as.patch * gcc10-foffload-default.patch - libgccjit subpackage is added. - HWASAN is built for aarch64 target. ==== patterns-base ==== Subpackages: patterns-base-base patterns-base-bootloader patterns-base-minimal_base patterns-base-x11 - Suggest openssl from patterns-base-base: in case something requires /usr/bin/openssl or openssl(cli), we want to declare openssl as our default. ==== qemu ==== - Fix CVE-2021-3527 in usb/redir: usb-redir-avoid-dynamic-stack-allocation.patch - Fix issues found upstream: hw-block-nvme-consider-metadata-read-aio.patch sockets-update-SOCKET_ADDRESS_TYPE_FD-li.patch vfio-ccw-Permit-missing-IRQs.patch vhost-user-blk-Check-that-num-queues-is-.patch vhost-user-blk-Don-t-reconnect-during-in.patch vhost-user-blk-Fail-gracefully-on-too-la.patch vhost-user-blk-Get-more-feature-flags-fr.patch vhost-user-blk-Make-sure-to-set-Error-on.patch virtio-blk-Fix-rollback-path-in-virtio_b.patch virtio-Fail-if-iommu_platform-is-request.patch virtiofsd-Fix-side-effect-in-assert.patch monitor-qmp-fix-race-on-CHR_EVENT_CLOSED.patch - Brotli VLA error was already fixed in v5.2 but the patches wasn't included in v6.0. This change fixed that - Patches added: brotli-fix-actual-variable-array-paramet.patch hw-rx-rx-gdbsim-Do-not-accept-invalid-me.patch ui-Fix-memory-leak-in-qemu_xkeymap_mappi.patch - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975)