NetworkManager
- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.
NetworkManager-libnm
- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.
NetworkManager-team
- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.
NetworkManager-tui
- Update to 1.18.8 relase
- ifcfg-rh: handle "802-1x.{,phase2-}ca-path" (rh #1841397, CVE-2020-10754)
- ifcfg-rh: handle 802-1x.pin properties.
acl
- do not follow symlinks without -L (#1714077)
- update project URL (#1579173)
acpid
- Switched kacpimon to dynamic connections (increased max connections
  from 20 to 1024)
  Resolves: rhbz#1450980
aic94xx-firmware
- Mass rebuild 2013-12-27
alsa-firmware
- Fix the alsa-tools-firmware dependency (not updated)
- Resolves: rhbz#1112207
alsa-lib
- Updated to 1.1.8
- Resolves: rhbz#1658083
alsa-tools-firmware
- Updated to 1.1.0
- Enable hda-verb, hdajackretast, hdajacksensetest for i686/x86_64
- Resolves: rhbz#1172560
audit
resolves: #1696709 - updating auditd is enabling disabled service
audit-libs
resolves: #1696709 - updating auditd is enabling disabled service
augeas-libs
- Krb5: support realms that start with numbers; add more pkinit_* options;
  improve handling of [dbmodules]; allow include/includedir directives
  everywhere (RHBZ#1670420)
- Grub: handle '+' in kernel command line options (RHBZ#1758357)
authconfig
- do not use /usr and LIBDIR together (#1455233)
basesystem
- Mass rebuild 2013-12-27
bash
- BASH_CMD should not be writable in restricted shell
  Resolves: #1693181
bc
- Mass rebuild 2014-01-24
bind-export-libs
- Fix EDNS512 loops on broken servers
binutils
- Allow the BFD library to handle the copying of files which contain secondary reloc sections.  (#1785294)
- Implement assembler workaround for Intel JCC microcode bug.  (#1778892)
biosdevname
- prevent infinite recursion in dmidecode.c::smbios_setslot (#1642706)
- fix indentation in the man page (#1642706)
boost-regex
- Add patch for scoped_thread (#1676674)
btrfs-progs
- New upstream release (#1430004)
bzip2-libs
- resolves: #1123489
  recompiled with -O3 flag for ppc64le arch
ca-certificates
- Update to CKBI 2.41 from NSS 3.53.0
-    Removing:
-     # Certificate "AddTrust Low-Value Services Root"
-     # Certificate "AddTrust External Root"
-     # Certificate "UTN USERFirst Email Root CA"
-     # Certificate "Certplus Class 2 Primary CA"
-     # Certificate "Deutsche Telekom Root CA 2"
-     # Certificate "Staat der Nederlanden Root CA - G2"
-     # Certificate "Swisscom Root CA 2"
-     # Certificate "Certinomis - Root CA"
-    Adding:
-     # Certificate "Entrust Root Certification Authority - G4"
- fix permissions on ghosted files.
chkconfig
- alternatives setService(): Add missing error mesg - (#1711171)
chrony
- update to 3.4 (#1636117, #1565544, #1565548, #1596239, #1600882)
- drop support for HW timestamping on kernels < 3.10.0-613
coreutils
- doc: improve description of the --kibibytes option of ls (#1527391)
- doc: fix typo in date example (#1620624)
- stat,tail: sync the list of file systems with coreutils-8.31 (#1659530)
- df: avoid stat() for dummy file systems with -l (#1668137)
- df: prioritize mounts nearer the device root (#1042840)
cpio
- Improper input validation when writing tar header fields (#1766222)
cracklib
- move python files to libdir
cracklib-dicts
- move python files to libdir
cronie
- Make cronie restart on failure
- Resolves: rhbz#1651730
cronie-anacron
- Make cronie restart on failure
- Resolves: rhbz#1651730
crontabs
- Mass rebuild 2013-12-27
cryptsetup-libs
- patch: Reinstate missing backing file hint for loop device
  during unlock.
- Resolves: #1726287
curl
- http: free protocol-specific struct in setup_connection callback (#1836773)
cyrus-sasl-lib
- Avoid undefined symbols on s390x (#1516193)
dbus
- Fix CVE-2020-12049 (#1851992)
dbus-glib
- Mass rebuild 2014-01-24
dbus-libs
- Fix CVE-2020-12049 (#1851992)
dbus-python
- Move modules to libdir to avoid multilib conflicts
- And comment out test suite, since we were not actually
  failing if it failed, but it trips up an rpmdiff check
  on the output of the suite.
- Resolves: #1076411
device-mapper
- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.
device-mapper-libs
- Fix pvs/lvs/vgs failing due empty VG spotted in metadata when under load.
dhclient
- Related: #1668696 - Fix syntax error in dhclient script
dhcp-common
- Related: #1668696 - Fix syntax error in dhclient script
dhcp-libs
- Related: #1668696 - Fix syntax error in dhclient script
diffutils
- Resolves: #1611281, diff -y produces garbage
dmidecode
- Revert this patch("Use larger units for memory device and BIOS size")
- Resolves: rhbz#1767323
dracut
- 95znet: Add a rd.znet_ifname= option
dracut-network
- 95znet: Add a rd.znet_ifname= option
e2fsprogs
- fix issues with meta_bg when resizing file system (#1849718)
e2fsprogs-libs
- fix issues with meta_bg when resizing file system (#1849718)
ebtables
- Fix for potentially stale lock files (RHBZ#1495893)
elfutils-default-yama-scope
- Add elfutils-0.176-gcc-pr88835.patch.
elfutils-libelf
- Add elfutils-0.176-gcc-pr88835.patch.
elfutils-libs
- Add elfutils-0.176-gcc-pr88835.patch.
ethtool
- Added support for 200Gbps (50Gbps/lane) link mode
expat
- add security fixes for CVE-2018-20843, CVE-2019-15903
file
- remove wrong magic for JFFS file system (#1773477)
file-libs
- remove wrong magic for JFFS file system (#1773477)
filesystem
- own /usr/share/locale and /usr/lib/modules
- improve filesystem content file to include symlinks and rootdir
findutils
- fix file descriptor leak with --execdir option (#1309633)
fipscheck
- handle empty hmac file as checksum mismatch
fipscheck-lib
- handle empty hmac file as checksum mismatch
firewalld
- feat(service): add RH-Satellite-6-Capsule
firewalld-filesystem
- feat(service): add RH-Satellite-6-Capsule
freetype
- Fix rendering in monochrome mode
- Resolves: #1657479
fxload
- Mass rebuild 2014-01-24
gawk
- Fix calls to chksize to avoid gawk being killed by SIGABRT (bug #1441689)
gdbm
- Mass rebuild 2014-01-24
gdisk
- Fix spurious exit code (#1656300)
gettext
- fix CVE-2018-18751: double-free in xgettext (rhbz#1648433)
gettext-libs
- fix CVE-2018-18751: double-free in xgettext (rhbz#1648433)
glib2
- Backport patch to limit access to files when copying (CVE-2019-12450)
  Resolves: #1722099
glibc
- add extra debug file list check [1125320]
glibc-common
- add extra debug file list check [1125320]
gmp
- Macro in previous changelog entry escaped
gnupg2
- fix CVE-2018-12020 - missing sanitization of original filename
gobject-introspection
- Update to 1.56.1
- Resolves: #1569272
gpgme
- Mass rebuild 2014-01-24
grep
- Speedup DFA for long patterns and fixed begline/endline matching
  Resolves: rhbz#1413029
- Added support for GREP_LEGACY_EGREP_FGREP_PS environmental variable which
  controls how egrep, fgrep show in ps output
  Resolves: rhbz#1297441
groff-base
- Mass rebuild 2014-01-24
grub2
- rebuild for SLES ES platform 7
grub2-common
- rebuild for SLES ES platform 7
grub2-pc
- rebuild for SLES ES platform 7
grub2-pc-modules
- rebuild for SLES ES platform 7
grub2-tools
- rebuild for SLES ES platform 7
grub2-tools-extra
- rebuild for SLES ES platform 7
grub2-tools-minimal
- rebuild for SLES ES platform 7
grubby
- Exclude building on i686
  Related: rhbz#1476273
- Fix grubby removing wrong kernel command line parameter
  Resolves: rhbz#1476273
- Improve man page for --info option (jstodola)
  Resolves: rhbz#1651673
- Print default image even if isn't a suitable one
  Resolves: rhbz#1323842
gzip
- doc change: missing grep options are now mentioned in the zgrep 
  man pages/help message
  Resolves: #1437002
hardlink
- Mass rebuild 2014-01-24
hostname
- Fix fqdn buffer size
hwdata
- Update pci, usb, vendor ids and hwdb files
  Resolves: #1788059
info
- Fix upstream test failure in Pod-Simple-Texinfo
  Resolves: #970986
- Fix @enumerate does not support start numbers greater than nine
  Resolves: #1134160
initscripts
- rwtab: Add support for chrony (bug #1838260)
iproute
- tc_util: Fix format of TCA_STATS_BASIC_HW statistics (Andrea Claudi) [1637437]
iprutils
- Resolves: #1763626 - iprconfig hangs while raiding drives on crow3
ipset
- Rebase to 7.1 (RHBZ#1649080):
  - Add compatibility support for strscpy()
  - Correct the manpage about the sort option
  - Add missing functions to libipset.map
  - configure.ac: Fix build regression on RHEL/CentOS/SL (Serhey Popovych)
  - Implement sorting for hash types in the ipset tool
  - Fix to list/save into file specified by option (reported by Isaac Good)
  - Introduction of new commands and protocol version 7, updated kernel include files
  - Add compatibility support for async in pernet_operations
  - Use more robust awk patterns to check for backward compatibility
  - Prepare the ipset tool to handle multiple protocol version
  - Fix warning message handlin
  - Correct to test null valued entry in hash:net6,port,net6 test
  - Library reworked to support embedding ipset completely
  - Add compatibility to support kvcalloc()
  - Validate string type attributes in attr2data() (Stefano Brivio)
  - manpage: Add comment about matching on destination MAC address (Stefano Brivio)
    (RHBZ#1649079)
  - Add compatibility to support is_zero_ether_addr()
  - Fix use-after-free in ipset_parse_name_compat() (Stefano Brivio) (RHBZ#1649073)
  - Fix leak in build_argv() on line parsing error (Stefano Brivio) (RHBZ#1649073)
  - Simplify return statement in ipset_mnl_query() (Stefano Brivio) (RHBZ#1649073)
  - tests/check_klog.sh: Try dmesg too, don't let shell terminate script (Stefano Brivio) 
- Fixes:
  - Fix all shellcheck warnings in init script (RHBZ#1649073)
  - Make error reporting consistent, introduce different severities (RHBZ#1649877)
  - While restoring, on invalid entries, remove them and retry (RHBZ#1650297)
  - Fix covscan SC2166 warning in init script (RHBZ#1649073)
  - Hardcode triggerin, triggerun versions for ipset-service (RHBZ#1646666)
ipset-libs
- Rebase to 7.1 (RHBZ#1649080):
  - Add compatibility support for strscpy()
  - Correct the manpage about the sort option
  - Add missing functions to libipset.map
  - configure.ac: Fix build regression on RHEL/CentOS/SL (Serhey Popovych)
  - Implement sorting for hash types in the ipset tool
  - Fix to list/save into file specified by option (reported by Isaac Good)
  - Introduction of new commands and protocol version 7, updated kernel include files
  - Add compatibility support for async in pernet_operations
  - Use more robust awk patterns to check for backward compatibility
  - Prepare the ipset tool to handle multiple protocol version
  - Fix warning message handlin
  - Correct to test null valued entry in hash:net6,port,net6 test
  - Library reworked to support embedding ipset completely
  - Add compatibility to support kvcalloc()
  - Validate string type attributes in attr2data() (Stefano Brivio)
  - manpage: Add comment about matching on destination MAC address (Stefano Brivio)
    (RHBZ#1649079)
  - Add compatibility to support is_zero_ether_addr()
  - Fix use-after-free in ipset_parse_name_compat() (Stefano Brivio) (RHBZ#1649073)
  - Fix leak in build_argv() on line parsing error (Stefano Brivio) (RHBZ#1649073)
  - Simplify return statement in ipset_mnl_query() (Stefano Brivio) (RHBZ#1649073)
  - tests/check_klog.sh: Try dmesg too, don't let shell terminate script (Stefano Brivio) 
- Fixes:
  - Fix all shellcheck warnings in init script (RHBZ#1649073)
  - Make error reporting consistent, introduce different severities (RHBZ#1649877)
  - While restoring, on invalid entries, remove them and retry (RHBZ#1650297)
  - Fix covscan SC2166 warning in init script (RHBZ#1649073)
  - Hardcode triggerin, triggerun versions for ipset-service (RHBZ#1646666)
iptables
- Unbreak nfnl_osf tool and fix duplicate entries handling (RHBZ#1829820)
iputils
- fix pmtu discovery for ipv6 (#1444281)
irqbalance
- Refine document for IRQBALANCE_BANNED_CPUS
- Resolves: #1361654
ivtv-firmware
- Mass rebuild 2013-12-27
iwl100-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl1000-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl105-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl135-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl2000-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl2030-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl3160-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl3945-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl4965-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl5000-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl5150-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl6000-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl6000g2a-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl6000g2b-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl6050-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
iwl7260-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
jansson
- Update to 2.10 [1389805]
- Merge spec file with Fedora
json-c
- fix has collision CVE-2013-6371
- fix buffer overflow CVE-2013-6370
- enable upstream test suite
kbd
- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015
kbd-legacy
- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015
kbd-misc
- Add man page for kbdinfo, link open man page to openvt man page
  Related: #949015
kernel
- rebuild for SLES ES platform
kernel-tools
- rebuild for SLES ES platform
kernel-tools-libs
- rebuild for SLES ES platform
kexec-tools
- Add a new option 'rd.znet_ifname' in order to use it in udev rules
keyutils-libs
- Mass rebuild 2014-01-24
kmod
- weak-modules: update_modules_for_krel: always finish sandbox
- weak-modules: groupping: use dependencies of extra/ provider
  Resolves: rhbz#1774925
kmod-libs
- weak-modules: update_modules_for_krel: always finish sandbox
- weak-modules: groupping: use dependencies of extra/ provider
  Resolves: rhbz#1774925
kpartx
- Add 0270-RHBZ-1775481-segfault-fix.patch
krb5-libs
- Disable smoke tests on s390x and remove sleep
- Resolves: #1782492
less
- The --use-backslash option documented in the man page
  was missing from online help for less.
  Resolves: #1109090
libacl
- do not follow symlinks without -L (#1714077)
- update project URL (#1579173)
libassuan
- Mass rebuild 2014-01-24
libattr
- remove unreliable tests from the test suite (#1367730)
libblkid
- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
libcap
- changed url
libcap-ng
- resolves: #1253220 - captest list sys_psacct instead of sys_pacct
libcom_err
- fix issues with meta_bg when resizing file system (#1849718)
libcroco
- Rebuild with 7.9-z target
  Related: #1835951
libcurl
- http: free protocol-specific struct in setup_connection callback (#1836773)
libdaemon
- Mass rebuild 2014-01-24
libdb
- Optimize trickle thread CPU usage (#1608749)
libdb-utils
- Optimize trickle thread CPU usage (#1608749)
libdrm
- Add some new i915 pci ids, and amd marketing names
libedit
- Mass rebuild 2014-01-24
libestr
- Mass rebuild 2014-01-24
libfastjson
Resolves: #1591493 - add support for array item deletion
libffi
- Allow libffi-devel uninstall even when docs are not installed (#1609331)
libgcc
- fix pr92950.c test (#1784759)
libgcrypt
- add DRBG CAVS driver and other necessary CAVS driver updates (#1172568)
- allow ath reinitialization in FIPS mode
- allow for auto-initialization of DRBG
libgomp
- fix pr92950.c test (#1784759)
libgpg-error
- Mass rebuild 2014-01-24
libgudev1
- avoid double free (#1832816)
libicu
- Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch
- Apply ICU-20958-Prevent-SEGV_MAPERR-in-append.patch
- Resolves: rhbz#1808235
libidn
- fix building on ppc64le (#1125577)
libmnl
- Mass rebuild 2014-01-24
libmodman
- Mass rebuild 2014-01-24
libmount
- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
libndp
- ndptool: add -T target support
- ndptool: fix target parameter typo
libnetfilter_conntrack
- Resolves: rhbz#1426412 libnetfilter_conntrack does not support Ipv6 NAT
libnfnetlink
- Mass rebuild 2014-01-24
libnl
- Mass rebuild 2014-01-24
libnl3

      
libnl3-cli

      
libpciaccess
- libpciaccess 0.14
libpipeline
- Mass rebuild 2014-01-24
libpng
- Fix CVE-2017-12652
- Resolves: #1744870
libproxy
- Rebuilt for mozjs soname reversion (#1436515)
libpwquality
- fix brittle configuration settings (#1259633)
- fix abort when generating large passwords on some architectures
libseccomp
- Added statx syscall
libselinux
- Build libselinux-python3 subpackage (#1756015)
libselinux-python
- Build libselinux-python3 subpackage (#1756015)
libselinux-utils
- Build libselinux-python3 subpackage (#1756015)
libsemanage
- Include user name in ROLE_REMOVE audit events (#1622045)
- Improve "reset umask before creating directories"
libsepol
- Add support for the SCTP portcon keyword (rhbz#1603571)
libsmartcols
- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
libsolv
- Polish the changelog
libss
- fix issues with meta_bg when resizing file system (#1849718)
libssh2
- fix integer overflow in SSH_MSG_DISCONNECT logic (CVE-2019-17498)
libstdc++
- fix pr92950.c test (#1784759)
libsysfs
- Mass rebuild 2014-01-24
libtasn1
- Updated to the 4.x branch (#1360639)
libteam
- teamd: fix ctx->hwaddr value assignment [1838954]
libunistring
- Mass rebuild 2014-01-24
libuser
- Update Japanese translation
  Resolves: #1480537
libutempter
- Mass rebuild 2014-01-24
libuuid
- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
libverto
- Mass rebuild 2014-01-24
libxml2
- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)
libxml2-python
- Fix CVE-2019-19956 (#1793000)
- Fix CVE-2019-20388 (#1810057)
- Fix CVE-2020-7595 (#1810073)
- Fix xsd:any schema validation (#1812145)
libzypp
- add dist .el7 to version suffix
linux-firmware
- Update to latest upstream linux-firmware image for assorted updates (rhbz 1828390)
logrotate
- related #1631218 - eliminate a time-of-check/time-of-use race condition
lshw
- Fixes: f914f225975b ("report CPU family/model/stepping")
lsscsi
- Append a space if [hctl] is too long. (RHBZ #1429361)
lua
- Also use lib64 instead of lib on aarch64 (#1283705)
lz4
- Rebase to 1.8.3
- Drop the patch from 1.7.5-3. It is now part of the upstream archive
- Resolves: #1813245
lzo
- Built with -fno-strict-aliasing (rpmdiff)
  Related: CVE-2014-4607
m2crypto
- Fix spurious failures of test_cookie_str_changed_mac
  Resolves: #1073950
- Add support for IP addresses in subjectAltName
  Resolves: #1080142
mailcap
- Mass rebuild 2013-12-27
make
- Change fatal() to error() when a mix of explicit and implicit
  targets (in that order) is detected.
  Resolves: #1582545
man-db
- related: #1515352
  build and install all translated man pages
mariadb-libs
- Rebase to 5.5.68
  This is the last upstream release. This major version reached upstream EOL
- Related to: rhbz#1834835
microcode_ctl
- Update Intel CPU microcode to microcode-20200609 release (#1826589):
  - Fixed a typo in the release note file.
mozjs17
- Switch to upstream aarch64 48bit VA patch
  This reverts the previous API/ABI break on aarch64, so dependencies
  must be rebuilt again.
- Resolves: #1393548
ncurses
- fix crash in libtinfo initialization (#1426215)
ncurses-base
- fix crash in libtinfo initialization (#1426215)
ncurses-libs
- fix crash in libtinfo initialization (#1426215)
net-tools
- Resolves: #1632905 - The output of `route -A inet6` does not display properly when the 'Use' column output is over 6 digits
newt
- Mass rebuild 2014-01-24
newt-python
- Mass rebuild 2014-01-24
nspr
- Rebuild to fix wrong dist tag
nss
- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles
nss-pem
- reintroduce implementation of the WaitForSlotEvent callback (#1615980)
nss-softokn
- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
nss-softokn-freebl
- turn of ALTIVEC instruction for powerpc because they require
  power8 and we need to support power7 on RHEL7 still.
- Fix typo in measure.
- Make sure only 2048 and greater primes are used in FIPS mode
  for dh.
nss-sysinit
- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles
nss-tools
- Disable dh timing test because it's unreliable on s390 (from Bob Relyea)
- Explicitly enable upgradedb/sharedb test cycles
nss-util
- Rebase to NSS 3.53.1
numactl-libs
- Fix crashes when using the "--touch" option
nvme-cli
- Fix show_regs over RDMA with get_prop fix.
openldap
- Fix CVE-2020-12243 openldap: denial of service via nested boolean expressions in LDAP search filters (#1838405)
openssh
- Avoid double comma in the default cipher list in FIPS mode (#1722446)
openssh-clients
- Avoid double comma in the default cipher list in FIPS mode (#1722446)
openssh-server
- Avoid double comma in the default cipher list in FIPS mode (#1722446)
openssl
- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
openssl-libs
- close the RSA decryption 9 lives of Bleichenbacher cat
  timing side channel (#1649568)
os-prober
- Fix regular expression that missed a corner case when detecting
  extended dos partitions.
  Resolves: rhbz#1322957
p11-kit
- Avoid reference to thread-unsafe strerror rhbz#1378947
- Fix PKCS#11 OAEP interface rhbz#1191209
- Update documentation to follow RFC7512 rhbz#1165977
p11-kit-trust
- Avoid reference to thread-unsafe strerror rhbz#1378947
- Fix PKCS#11 OAEP interface rhbz#1191209
- Update documentation to follow RFC7512 rhbz#1165977
pam
- pam_get_authtok_verify: ensure no double verification happens
- manual page fixes for pam_tty_audit and pam_wheel
- pam_unix: lower the excessive maximum number of closed fd descriptors
  when spawning handlers
- pam_loginuid: do not prevent login in unprivileged containers
parted
- libparted: Fix starting CHS in protective MBR
  Resolves: rhbz#1702778
passwd
- Fix incorrect -S output when password field in /etc/passwd is empty but the
  password information in /etc/shadow is set
  Resolves: #1686436
pciutils-libs
- fix update-pciids url (#1493772)
pcre
- Let [:graph:], [:print:], and [:punct:] POSIX classes to handle Unicode
  characters in UCP mode to match Perl behavior (bug #1400267)
- Fix matching Unicode ranges in JIT mode (bug #1402288)
perl
- Fix a file mode of a perl-example.stp example (bug #1806523)
perl-Business-ISBN
- Mass rebuild 2013-12-27
perl-Business-ISBN-Data
- Mass rebuild 2013-12-27
perl-Carp
- Mass rebuild 2013-12-27
perl-Compress-Raw-Bzip2
- Mass rebuild 2014-01-24
perl-Compress-Raw-Zlib
- Mass rebuild 2014-01-24
perl-Crypt-SSLeay
- Mass rebuild 2014-01-24
perl-Data-Dumper
- Mass rebuild 2014-01-24
perl-Digest
- Mass rebuild 2013-12-27
perl-Digest-MD5
- Mass rebuild 2014-01-24
perl-Encode
- Mass rebuild 2014-01-24
perl-Encode-Locale
- Mass rebuild 2013-12-27
perl-Exporter
- Mass rebuild 2013-12-27
perl-File-Listing
- Mass rebuild 2013-12-27
perl-File-Path
- Mass rebuild 2013-12-27
perl-File-Temp
- Mass rebuild 2013-12-27
perl-Filter
- Mass rebuild 2014-01-24
perl-Getopt-Long
- Provide perl(newgetopt.pl) (bug #1492742)
perl-HTML-Parser
- Mass rebuild 2014-01-24
perl-HTML-Tagset
- Mass rebuild 2013-12-27
perl-HTTP-Cookies
- Mass rebuild 2013-12-27
perl-HTTP-Daemon
- Fix formatting numerical non-local specific IPv6 addresses (bug #1578026)
perl-HTTP-Date
- Mass rebuild 2013-12-27
perl-HTTP-Message
- Mass rebuild 2013-12-27
perl-HTTP-Negotiate
- Mass rebuild 2013-12-27
perl-HTTP-Tiny
- Mass rebuild 2013-12-27
perl-IO-Compress
- Mass rebuild 2013-12-27
perl-IO-HTML
- Mass rebuild 2013-12-27
perl-IO-Socket-IP
- Fix constructing sockets without specifying host or family (bug #1492760)
perl-IO-Socket-SSL
- Default to system wide CA certificate store (bug #1402588)
perl-LWP-MediaTypes
- Mass rebuild 2013-12-27
perl-LWP-Protocol-https
- Modernize spec file
perl-Mozilla-CA
- Specify all dependencies
perl-Net-HTTP
- Mass rebuild 2013-12-27
perl-Net-LibIDN
- Mass rebuild 2014-01-24
perl-Net-SSLeay
- Deleted support for SSL_get_tlsa_record_byname (bug #1422435)
- Removed tests which fails due to changes openssl 1.0.1h and later
perl-PathTools
- Mass rebuild 2014-01-24
perl-Pod-Escapes
- Fix a file mode of a perl-example.stp example (bug #1806523)
perl-Pod-Perldoc
- Mass rebuild 2013-12-27
perl-Pod-Simple
- Mass rebuild 2013-12-27
perl-Pod-Usage
- Mass rebuild 2013-12-27
perl-Scalar-List-Utils
- Mass rebuild 2014-01-24
perl-Socket
- Make Socket::inet_aton() thread safe (bug #1693293)
perl-Storable
- Mass rebuild 2014-01-24
perl-Sys-Syslog
- Mass rebuild 2014-01-24
perl-Text-ParseWords
- Mass rebuild 2013-12-27
perl-Time-HiRes
- Mass rebuild 2014-01-24
perl-Time-Local
- Mass rebuild 2013-12-27
perl-TimeDate
- Mass rebuild 2013-12-27
perl-URI
- Mass rebuild 2013-12-27
perl-WWW-RobotRules
- Mass rebuild 2013-12-27
perl-XML-Parser
- Mass rebuild 2014-01-24
perl-XML-Writer
- Mass rebuild 2013-12-27
perl-constant
- Mass rebuild 2013-12-27
perl-libs
- Fix a file mode of a perl-example.stp example (bug #1806523)
perl-libwww-perl
- Mass rebuild 2013-12-27
perl-macros
- Fix a file mode of a perl-example.stp example (bug #1806523)
perl-parent
- Mass rebuild 2013-12-27
perl-podlators
- Mass rebuild 2013-12-27
perl-threads
- Mass rebuild 2014-01-24
perl-threads-shared
- Mass rebuild 2014-01-24
pinentry
- rebuilt for SLES ES platform
pkgconfig
- Mass rebuild 2014-01-24
plymouth
- Drop spool code to hide selinux problem
  Resolves: #1705083
plymouth-core-libs
- Drop spool code to hide selinux problem
  Resolves: #1705083
plymouth-scripts
- Drop spool code to hide selinux problem
  Resolves: #1705083
policycoreutils
- Update translations (#1734011)
polkit
- Refined upstream fix of CVE-2018-1116 to avoid ABI changes
- Related: rhbz#1601411
polkit-pkla-compat
- Mass rebuild 2014-01-24
popt
- Mass rebuild 2014-01-24
postfix
- Compiled with USE_LDAP_SASL if both "ldap" and "sasl" options are enabled
  Resolves: rhbz#1733938
procps-ng
- pgrep: uid/gid conversion overflow
- vmstat: manpage line about I/O blocked procs unclear
- Resolves: rhbz#1624514, rhbz#1796043
pth
- update pth-config for ppc64le
pyOpenSSL
- fix various testsuite failures
- fix exception propagation from private key passphrase callback (#1227505)
- add optional digest parameter to CRL.export method (#1523772)
pygobject2
- Mass rebuild 2014-01-24
pygpgme
- Drop %check to avoid a hang in pinentry-curses >= 0.8.1-12
  Resolves: #1064349
pyliblzma
- Mass rebuild 2014-01-24
python
- Security fix for CVE-2019-16935
Resolves: rhbz#1797998
python-configobj
- Mass rebuild 2013-12-27
python-decorator
- Mass rebuild 2013-12-27
python-dmidecode
- Disable loading the dmidecodemodule on non-x86_64
- Resolves: #1688725
python-ethtool
- Fix missing error checking when reading from /proc/net/dev
- Resolves: rhbz#1467845
python-firewall
- feat(service): add RH-Satellite-6-Capsule
python-gobject-base
- Bump release to allow rebuild to fix BZ#1510160
python-gudev
- Mass rebuild 2014-01-24
python-hwdata
- Mass rebuild 2013-12-27
python-iniparse
- Mass rebuild 2013-12-27
python-libs
- Security fix for CVE-2019-16935
Resolves: rhbz#1797998
python-linux-procfs
- Need to apply the patch in prep
Resolves: rhbz#1654311
python-perf
- rebuild for SLES ES platform
python-pycurl
- introduce SSLVERSION_TLSv1_[0-2] (#1260407)
python-pyudev
- The libudev library loaded in context to workaround cleanup problems
  Resolves: rhbz#1252833
- Retry interrupted calls
  Resolves: rhbz#1108921
python-schedutils
- python-schedutils-Update-URL-in-python-schedutils.sp.patch
- schedutils.c-added-support-for-SCHED_DEADLINE.patch
Resolves: rhbz#1298388
python-slip
- Fix upstream and source URL's
Resolves: rhbz#1502397
python-slip-dbus
- Fix upstream and source URL's
Resolves: rhbz#1502397
python-urlgrabber
- Support HTTP CONNECT method with reget.
- Resolves: bug#1585596
pyxattr
- Mass rebuild 2014-01-24
qemu-guest-agent
- qemuga-qga-ignore-non-present-cpus-when-handling-qmp_guest_.patch [bz#1611062]
- qemuga-qemu-guest-agent.spec-add-systemd-devel-dependency.patch [bz#1635571]
- qemuga-configure-add-test-for-libudev.patch [bz#1635571]
- qemuga-qga-linux-report-disk-serial-number.patch [bz#1635571]
- qemuga-qga-linux-return-disk-device-in-guest-get-fsinfo.patch [bz#1635571]
- Resolves: bz#1611062
  ("virsh vcpucount --guest" fails after hotunplug a vcpu with intermediate order by "setvcpu")
- Resolves: bz#1635571
  ([RFE] Report disk device name and serial number (qemu-guest-agent on Linux))
qrencode-libs
- Mass rebuild 2014-01-24
readline
- Add support for bracketed paste mode
  Resolves: #1573899
rng-tools
- Convert jent_get_nstime to use rdtsc on x86_64 (bzi 1796077)
rootfiles
- Mass rebuild 2013-12-27
rpm
- Actually apply the previous patch
rpm-build-libs
- Actually apply the previous patch
rpm-libs
- Actually apply the previous patch
rpm-python
- Actually apply the previous patch
rsyslog
RHEL 7.9 ERRATUM
- added patch resolving buffer overflows in select() function
  resolves: rhbz#1858297
sed
- Fix: "in-place edits on FUSE filesystems create files with all-zero mode bits"
  Resolves: #1836317
selinux-policy
- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496
selinux-policy-targeted
- Allow certmonger add new entries in a generic certificates directory
Resolves: rhbz#1879496
- Allow slapd add new entries in ldap certificates directory
Resolves: rhbz#1879496
- Add miscfiles_add_entry_generic_cert_dirs() interface
Resolves: rhbz#1879496
setup
- add pcp to /etc/aliases (#1609875)
- set PATH if it is empty in csh.login (#1625629)
sg3_utils
- Reorder 59-fc-wwpn-id.rules to run after 60-persistent-storage.rules (#1785303)
- Fix the 59-fc-wwpn-id.rules syntax (#1750417)
- Add 59-fc-wwpn-id.rules (#1684302)
sg3_utils-libs
- Reorder 59-fc-wwpn-id.rules to run after 60-persistent-storage.rules (#1785303)
- Fix the 59-fc-wwpn-id.rules syntax (#1750417)
- Add 59-fc-wwpn-id.rules (#1684302)
shadow-utils
- use lckpwdf() again to disable concurrent edits of databases by
  other applications
shared-mime-info
- support new toplevel font types
  Resolves: #1678448
slang
- Mass rebuild 2014-01-24
sles_es-logos
- Added: icons/hicolor for 256 size
sles_es-release-server
- adding RMT support for SLL 7.
snappy
- Mass rebuild 2014-01-24
sqlite
- Fixes for CVE-2019-13734 (#1786505)
sudo
- RHEL-7.9
- sudo allows privilege escalation with expire password
  Resolves: rhbz#1788196
suseRegisterInfo
- version 3.0.2-1
- fix file permissions (bsc#970550)
suseconnect-ng
- Ignore missing build ids
systemd
- avoid double free (#1832816)
systemd-libs
- avoid double free (#1832816)
systemd-sysv
- avoid double free (#1832816)
sysvinit-tools
- Mass rebuild 2014-01-24
tar
- fix --keep-directory-restore (rhbz#1513946)
tcp_wrappers-libs
- Mass rebuild 2014-01-24
teamd
- teamd: fix ctx->hwaddr value assignment [1838954]
tuned
- Fixed SIGHUP handling
  Resolves: rhbz#1702724
- Tune irqbalance service
  Resolves: rhbz#1720042
- Added netcat requirement
  Resolves: rhbz#1746436
- sysctl: made reapply_sysctl ignore configs from /usr
  Resolves: rhbz#1776149
- profiles: define variables before use
  Resolves: rhbz#1781664
tzdata
- Rebase to tzdata-2020a
  - Morocco will spring forward on 2020-05-31 rather than
    previously predicted 2020-05-24.
  - Canada's Yukon region changed to year round UTC -07
    effective 2020-03-08.
  - America/Godthab was renamed to America/Nuuk.
usermode
- Fix inconsistent capitalization in userhelper.8
  Fix URL and Source
  Fix bogus dates
  Resolves: #1349840, #1502441
ustr
- Mass rebuild 2014-01-24
util-linux
- fix #1826719 - mount -a tries to mount already mounted cifs shares when we cannot query up to root dir
- fix #1745657 - mismatch between spec file and uuidd runtime directory
vim-minimal
- 1743070 - manpage of vim is garbled in Japanese locale
virt-what
- Add patch to recognize ppc64le virtualization.
  resolves: rhbz#1147876
which
- Mass rebuild 2014-01-24
wpa_supplicant
- Ignore unauthenticated encrypted EAPOL-Key data (CVE-2018-14526)
xfsprogs
- xfs_repair: fix progress reporting (#1813557)
xz
- rebase to stable release (rhbz#1190713, rhbz#1160193)
xz-libs
- rebase to stable release (rhbz#1190713, rhbz#1160193)
yum
- bugfix: process metalink option correctly per #BZ1221223
yum-metadata-parser
- Mass rebuild 2014-01-24
zlib
- Link with -z now for full RELRO
zypper
- el7 dist added to version suffix