September 2024 - openSUSE ARM - openSUSE Mailing Lists

ARMv9
by Matwey V. Kornilov 10 Sep '24

10 Sep '24

Hello, There was an announce of ARMv9 architecture recently: https://www.arm.com/company/news/2021/03/arms-answer-to-the-future-of-ai-ar… As soon as I could understand it is still old good aarch64 instruction set with mandatory SVE2 extensions. But what does it mean exactly from the packaging perspective? For instance, will we have two separate flavours of glibc for armv8 and for armv9 as it was for i586 and i686 in good old times? -- With best regards, Matwey V. Kornilov

4 3

New Arm Tumbleweed snapshot 20240908 released!
by Guillaume Gardet 09 Sep '24

09 Sep '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox SDL2 (2.30.6 -> 2.30.7) aaa_base (84.87+git20240821.fbabe1d -> 84.87+git20240906.742565b) expat (2.6.2 -> 2.6.3) gnome-autoar (0.4.4 -> 0.4.5) gnutls (3.8.6 -> 3.8.7) graphviz inxi (3.3.35 -> 3.3.36) iputils (20240117 -> 20240905) kernel-firmware (20240826 -> 20240903) kernel-source (6.10.7 -> 6.10.8) kwalletmanager libXi (1.8.1 -> 1.8.2) libjxl libjxl-gtk libqt5-qtbase (5.15.14+kde143 -> 5.15.15+kde127) libqt5-qtdeclarative (5.15.14+kde28 -> 5.15.15+kde25) libqt5-qtgraphicaleffects (5.15.14+kde0 -> 5.15.15+kde0) libqt5-qtlocation (5.15.14+kde7 -> 5.15.15+kde7) libqt5-qtquickcontrols (5.15.14+kde0 -> 5.15.15+kde0) libqt5-qtquickcontrols2 (5.15.14+kde5 -> 5.15.15+kde5) libqt5-qtspeech (5.15.14+kde1 -> 5.15.15+kde1) libqt5-qtsvg (5.15.14+kde5 -> 5.15.15+kde5) libqt5-qttranslations (5.15.14+kde0 -> 5.15.15+kde0) libqt5-qtwayland (5.15.14+kde57 -> 5.15.15+kde59) libqt5-qtwebchannel (5.15.14+kde3 -> 5.15.15+kde3) libqt5-qtwebengine libqt5-qtx11extras (5.15.14+kde0 -> 5.15.15+kde0) libqt5-qtxmlpatterns (5.15.14+kde0 -> 5.15.15+kde0) libvirt (10.6.0 -> 10.7.0) libwebp (1.3.2 -> 1.4.0) libzypp (17.35.9 -> 17.35.10) llvm18 mariadb (11.4.2 -> 11.5.2) mozilla-nss (3.102.1 -> 3.103) openSUSE-release (20240904 -> 20240908) openssl-3 osinfo-db pam-config (2.11+git.20240620 -> 2.11+git.20240906) power-profiles-daemon (0.21 -> 0.22) procps python-libvirt-python (10.6.0 -> 10.7.0) python-looseversion python-olefile (0.46 -> 0.47) python-zope.event rsync ruby3.3 (3.3.4 -> 3.3.5) salt selinux-policy supermin (5.3.4 -> 5.3.5) timezone u-boot-rpiarm64 vim (9.1.0636 -> 9.1.0718) xen xfsprogs (6.9.0 -> 6.10.1) xxhash zxing-cpp (2.1.0 -> 2.2.1) zypper (1.14.76 -> 1.14.77) === Details === ==== MozillaFirefox ==== - _constraints: increase RAM on s390x to fix the build ==== SDL2 ==== Version update (2.30.6 -> 2.30.7) - Update to release 2.30.7 * Added support for the Retro-bit Controller in PS3 mode * Fixed the cursor becoming visible when using relative mode under XWayland * Fixed Direct Rendering Manager initialization failure on some Linux systems * Fixed a crash when the current mouse capture window is destroyed ==== aaa_base ==== Version update (84.87+git20240821.fbabe1d -> 84.87+git20240906.742565b) Subpackages: aaa_base-extras - Update to version 84.87+git20240906.742565b: * yama-enable-ptrace: enforce changed behavior upon installation (bsc#1221763) * Avoid unnecessary /bin/bash dependency * sysctl: Fixup of not setting kernel.pid_max on 32b archs (bsc#1227117) ==== expat ==== Version update (2.6.2 -> 2.6.3) Subpackages: libexpat1 - Update to 2.6.3: * Security fixes: - CVE-2024-45490, bsc#1229930 -- Calling function XML_ParseBuffer with len < 0 without noticing and then calling XML_GetBuffer will have XML_ParseBuffer fail to recognize the problem and XML_GetBuffer corrupt memory. With the fix, XML_ParseBuffer now complains with error XML_ERROR_INVALID_ARGUMENT just like sibling XML_Parse has been doing since Expat 2.2.1, and now documented. Impact is denial of service to potentially artitrary code execution. - CVE-2024-45491, bsc#1229931 -- Internal function dtdCopy can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX). Impact is denial of service to potentially artitrary code execution. - CVE-2024-45492, bsc#1229932 -- Internal function nextScaffoldPart can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX). Impact is denial of service to potentially artitrary code execution. * Other changes: - Autotools: Sync CMake templates with CMake 3.28 - Autotools: Always provide path to find(1) for portability - Autotools: Ensure that the m4 directory always exists. - Autotools: Simplify handling of SIZEOF_VOID_P - Autotools: Support non-GNU sed - Autotools|CMake: Fix main() to main(void) - Autotools|CMake: Fix compile tests for HAVE_SYSCALL_GETRANDOM - Autotools|CMake: Stop requiring dos2unix - CMake: Fix check for symbols size_t and off_t - docs|tests: Convert README to Markdown and update - Windows: Drop support for Visual Studio <=15.0/2017 - Drop needless XML_DTD guards around is_param access - Fix typo in a code comment - Version info bumped from 10:2:9 (libexpat*.so.1.9.2) to 10:3:9 (libexpat*.so.1.9.3); see https://verbump.de/ for what these numbers do ==== gnome-autoar ==== Version update (0.4.4 -> 0.4.5) Subpackages: libgnome-autoar-0-0 libgnome-autoar-gtk-0-0 - Update to version 0.4.5: + mime-types: Add tar variant of bzip2 + extractor: Fix source string leak ==== gnutls ==== Version update (3.8.6 -> 3.8.7) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.7: * libgnutls: New configure option to compile out DSA support The --disable-dsa configure option has been added to completely disable DSA algorithm support. * libgnutls: Experimental support for X25519Kyber768Draft00 key exchange in TLS. For testing purposes, the hybrid post-quantum key exchange defined in draft-tls-westerbaan-xyber768d00 has been implemented using liboqs. Since the algorithm is still not finalized, the support of this key exchange is disabled by default and can be enabled with the --with-liboqs configure option. * Rebase patches: - gnutls-FIPS-140-3-references.patch - gnutls-FIPS-HMAC-nettle-hogweed-gmp.patch ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - For bug boo#1225776 add patches * graphviz-2.49.3-boo1225776-gcc14.patch silent warning/error on incompatible pointer type * graphviz-87cc546.patch also fix incompatible pointer type ==== inxi ==== Version update (3.3.35 -> 3.3.36) - Update to version 3.3.36: * Phase 2 of the big CPU upgrade a few years back is now done, I'd left one part inadequate in terms of the data structures, mainly because I did not have data samples to test, but also because no corner cases that required a more robust data structure for die > cluster > core counts showed up during the initial development phase. This led to somewhat predictable issues and bug reports when someone had a CPU that did require that structure to show correct core/die type data. ==== iputils ==== Version update (20240117 -> 20240905) - Update to version 20240905 (mostly ping fixes release) https://github.com/iputils/iputils/releases/tag/20240905 - Fix tarball url ==== kernel-firmware ==== Version update (20240826 -> 20240903) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240903 (git commit 96af55bd3d0b): * amdgpu: Revert sienna cichlid dmcub firmware update (bsc#1230007) * iwlwifi: add Bz FW for core89-58 release * rtl_nic: add firmware rtl8126a-3 * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) - Update to version 20240830 (git commit d6c600d46981): * amdgpu: update DMCUB to v0.0.232.0 for DCN314 and DCN351 * qcom: vpu: restore compatibility with kernels before 6.6 ==== kernel-source ==== Version update (6.10.7 -> 6.10.8) - Linux 6.10.8 (bsc#1012628). - drm/amdgpu/mes: fix mes ring buffer overflow (bsc#1012628). - erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails (bsc#1012628). - ALSA: seq: Skip event type filtering for UMP events (bsc#1012628). - ALSA: hda/realtek: Enable mute/micmute LEDs on HP Laptop 14-ey0xxx (bsc#1012628). - ALSA: hda/realtek: support HP Pavilion Aero 13-bg0xxx Mute LED (bsc#1012628). - LoongArch: Remove the unused dma-direct.h (bsc#1012628). - LoongArch: Add ifdefs to fix LSX and LASX related warnings (bsc#1012628). - tpm: ibmvtpm: Call tpm2_sessions_init() to initialize session support (bsc#1012628). - btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1012628). - btrfs: run delayed iputs when flushing delalloc (bsc#1012628). - smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1012628). - pinctrl: rockchip: correct RK3328 iomux width flag for GPIO2-B pins (bsc#1012628). - pinctrl: single: fix potential NULL dereference in pcs_get_function() (bsc#1012628). - netfs, ceph: Partially revert "netfs: Replace PG_fscache by setting folio->private and marking dirty" (bsc#1012628). - wifi: wfx: repair open network AP mode (bsc#1012628). - wifi: mwifiex: duplicate static structs used in driver instances (bsc#1012628). - net: mana: Fix race of mana_hwc_post_rx_wqe and new hwc response (bsc#1012628). - mptcp: close subflow when receiving TCP+FIN (bsc#1012628). - mptcp: sched: check both backup in retrans (bsc#1012628). - mptcp: pr_debug: add missing \n at the end (bsc#1012628). - mptcp: pm: reuse ID 0 after delete and re-add (bsc#1012628). - mptcp: pm: skip connecting to already established sf (bsc#1012628). - mptcp: pm: reset MPC endp ID when re-added (bsc#1012628). - mptcp: pm: send ACK on an active subflow (bsc#1012628). - mptcp: pm: fix RM_ADDR ID for the initial subflow (bsc#1012628). - mptcp: pm: do not remove already closed subflows (bsc#1012628). - mptcp: pm: fix ID 0 endp usage after multiple re-creations (bsc#1012628). - mptcp: avoid duplicated SUB_CLOSED events (bsc#1012628). - mptcp: pm: ADD_ADDR 0 is not a new address (bsc#1012628). - selftests: mptcp: join: cannot rm sf if closed (bsc#1012628). - selftests: mptcp: join: check removing ID 0 endpoint (bsc#1012628). - selftests: mptcp: join: no extra msg if no counter (bsc#1012628). - selftests: mptcp: join: check re-re-adding ID 0 endp (bsc#1012628). - binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined (bsc#1012628). - drm/v3d: Disable preemption while updating GPU stats (bsc#1012628). - drm/i915/dsi: Make Lenovo Yoga Tab 3 X90F DMI match less strict (bsc#1012628). - drm/i915/dp_mst: Fix MST state after a sink reset (bsc#1012628). - drm/amdgpu: align pp_power_profile_mode with kernel docs (bsc#1012628). - drm/amdgpu/swsmu: always force a state reprogram on init (bsc#1012628). - drm/vmwgfx: Prevent unmapping active read buffers (bsc#1012628). - drm/vmwgfx: Fix prime with external buffers (bsc#1012628). - video/aperture: optionally match the device in sysfb_disable() (bsc#1012628). - drm/xe: Prepare display for D3Cold (bsc#1012628). - drm/xe/display: Make display suspend/resume work on discrete (bsc#1012628). - drm/xe/vm: Simplify if condition (bsc#1012628). - drm/xe/exec_queue: Rename xe_exec_queue::compute to xe_exec_queue::lr (bsc#1012628). - drm/xe: prevent UAF around preempt fence (bsc#1012628). - drm/amdgpu: Do not wait for MP0_C2PMSG_33 IFWI init in SRIOV (bsc#1012628). - drm/amdgpu: fix eGPU hotplug regression (bsc#1012628). - pinctrl: qcom: x1e80100: Update PDC hwirq map (bsc#1012628). - ASoC: SOF: amd: move iram-dram fence register programming sequence (bsc#1012628). - ASoC: SOF: amd: Fix for incorrect acp error register offsets (bsc#1012628). - ASoC: amd: acp: fix module autoloading (bsc#1012628). - ASoC: SOF: amd: Fix for acp init sequence (bsc#1012628). - ALSA: hda: cs35l56: Don't use the device index as a calibration index (bsc#1012628). - ASoC: cs-amp-lib-test: Force test calibration blob entries to be valid (bsc#1012628). - ASoC: cs-amp-lib: Ignore empty UEFI calibration entries (bsc#1012628). - backing-file: convert to using fops->splice_write (bsc#1012628). - pinctrl: mediatek: common-v2: Fix broken bias-disable for PULL_PU_PD_RSEL_TYPE (bsc#1012628). - pinctrl: qcom: x1e80100: Fix special pin offsets (bsc#1012628). - pinctrl: starfive: jh7110: Correct the level trigger configuration of iev register (bsc#1012628). - nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open (bsc#1012628). - mm: Fix missing folio invalidation calls during truncation ... changelog too long, skipping 178 lines ... - commit 64dc967 ==== kwalletmanager ==== - Add upstream fix (kde#492138): * 0001-Fix-service-file-name.patch ==== libXi ==== Version update (1.8.1 -> 1.8.2) - Update to version 1.8.2 * This release includes fixes for malloc failures and a double alignment issue on some machines. XFreeDeviceInfo can now be called with NULL and XGetFeedbackControl is more robust in the face of a malicious X server sending random data. Plus a typo fix in the man page. ==== libjxl ==== - Update libjxl.spec: Add compiler condition to fix SLE-15-SP7 ppc64le build env. (bsc#1229831) ==== libjxl-gtk ==== Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update libjxl.spec: Add compiler condition to fix SLE-15-SP7 ppc64le build env. (bsc#1229831) ==== libqt5-qtbase ==== Version update (5.15.14+kde143 -> 5.15.15+kde127) Subpackages: libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.15+kde127, rebased upstream: * Add LGPL header to qcalendar.cpp * Move some flaky text tests into Lancelot * Update Harfbuzz to 7.2.0 * doc: Make docs for ElideNone a bit more precise * tst_QImageReader: fix missing checks for "newly"-added ImageOptions * tst_QMainWindow: for UB (use of reserved names) * Update bundled libjpeg-turbo to version 3.0.0 * Update to Freetype 2.13.1 * [docs] Link from QtConcurent::run() to QThreadPool::start(Callable&&) * Docs: State that OpenSSL3 is available from 5.15.1 * Simplify (and fix) initialization of a list of time-zones * ODBC/MySQL: fix compilation with MySQL < 5.7.9 * SQLite: Update SQLite to v3.42.0 * tst_QHostInfo: fix mem-leaks in threadSafetyAsynchronousAPI() * tst_QSortFilterProxyModel: fix mem-leaks II: sortStable() * tst_QNetworkDiskCache: fix mem-leak * tst_QAbstractItemModelTester: fix mem-leak * tst_QSortFilterProxyModel: fix mem-leaks * Fix screens not always updating if order changes * Update the list of CLDR-based files * Return TZ time-zone backend's tranCache() as a const reference * tst_QTcpSocket: fix mem-leak * tst_QNetworkCookieJar: fix memleak * tst_QParallelAnimationGroup: fix memleak * tst_QXmlStream::tokenErrorHandling() - register test directory in CMake * Fix transparency in 16 bit and 24 bit ico files * QVariant: always compare floating point with double precision * Doc: Document QMAKE_APPLE_DEVICE_ARCHS * Update bundled libpng to version 1.6.40 * fbconvenience: use smart pointer for QFbCursor * Doc: Clarify that the rich text engine has limited support for HTML tags * autotest: Blacklist tst_QTableView::columnViewportPosition for winrt * autotest: Blacklist QTimeLine::interpolation for winrt * QFuture: mention the work-stealing algorithm in the docs * QtDoc Global: Add macros for Qt Design Studio in qtdoc * Fix specific overflow in qtextlayout * Remove QEglFSCursor's inheritance of QOpenGLFunctions * tst_QPixmapCache: QVERIFY a failed replace() * tst_QPixmapCache: check insert() reports failure * QPixmapCache: add a comment on how failed insert() invalidates cacheKey * tst_QPixmapCache: rewrite QVERIFY(x != 0) to QVERIFY(x) * QVariant: remove outdated docs about reimplementing clear() * Bump version to 5.15.15 * Update The-Qt-Company-Commercial * Fix crash on QLocale::monthName().simplified() * Android: fix QDir::entryInfoList() with content URIs * Android: fix content url handling of filenames with spaces - Commits dropped by the rebase: * tst_QXmlStream: remove unneeded _ba UDLs * Fix specific overflow in qtextlayout (CVE-2023-32763) ==== libqt5-qtdeclarative ==== Version update (5.15.14+kde28 -> 5.15.15+kde25) - Update to version 5.15.15+kde25, rebased upstream: * QV4::ArrayData: Fix offset calculation for sort() * Fix pointer delivery to child items of items with clip:true * doc: Remove Calendar Example link * PointerHandler: cancel all grabs when item changes scene * qintrusivelvist_p.h: Silence nullpointer subtraction warning * Doc: Fix mislabelled diagram for Context2D.arc() * Bump version to 5.15.15 ==== libqt5-qtgraphicaleffects ==== Version update (5.15.14+kde0 -> 5.15.15+kde0) - Update to version 5.15.15+kde0, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qtlocation ==== Version update (5.15.14+kde7 -> 5.15.15+kde7) - Update to version 5.15.15+kde7, rebased upstream: * Bump version to 5.15.15 * CoreLocation plugin: introduce RequestAlwaysPermission parameter ==== libqt5-qtquickcontrols ==== Version update (5.15.14+kde0 -> 5.15.15+kde0) - Update to version 5.15.15+kde0, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qtquickcontrols2 ==== Version update (5.15.14+kde5 -> 5.15.15+kde5) Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Update to version 5.15.15+kde5, rebased upstream: * Bump version to 5.15.15 * RangeSlider: Don't update position only if mouse/touch is grabbed ==== libqt5-qtspeech ==== Version update (5.15.14+kde1 -> 5.15.15+kde1) Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd - Update to version 5.15.15+kde1, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qtsvg ==== Version update (5.15.14+kde5 -> 5.15.15+kde5) - Update to version 5.15.15+kde5, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qttranslations ==== Version update (5.15.14+kde0 -> 5.15.15+kde0) - Update to version 5.15.15+kde0, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qtwayland ==== Version update (5.15.14+kde57 -> 5.15.15+kde59) Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Update to version 5.15.15+kde59, rebased upstream: * Revert "Client: Send release button event on pointer leave" * Fix race condition in drag and drop * client: don't cache one type in QWaylandMimeData * DefaultCompositor: use explcit lambda captures * Fix C++20 deprecated capture of *this in [=] * compositor: Unbind display on close in linux-dmabuf and eglstream * Client: Send release button event on pointer leave * Bump version to 5.15.15 ==== libqt5-qtwebchannel ==== Version update (5.15.14+kde3 -> 5.15.15+kde3) Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports - Update to version 5.15.15+kde3, rebased upstream: * Fix overly generic header include guard name * Bump version to 5.15.15 ==== libqt5-qtwebengine ==== - Disable LTO on %{arm} to fix build ==== libqt5-qtx11extras ==== Version update (5.15.14+kde0 -> 5.15.15+kde0) - Update to version 5.15.15+kde0, rebased upstream: * Bump version to 5.15.15 ==== libqt5-qtxmlpatterns ==== Version update (5.15.14+kde0 -> 5.15.15+kde0) Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports - Update to version 5.15.15+kde0, rebased upstream: * Bump version to 5.15.15 ==== libvirt ==== Version update (10.6.0 -> 10.7.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Update to libvirt 10.7.0 - CVE-2024-8235, bsc#1230024 - Unconditionally disable building the interface driver - Remove SysV rc* compatibility symlinks - jsc#PED-8909 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v10-7-0-2024-09-02 ==== libwebp ==== Version update (1.3.2 -> 1.4.0) Subpackages: libsharpyuv0 libwebp7 libwebpdemux2 libwebpmux3 - Update to 1.4.0 & fix libwebp.changes header from previous commit: * further security related hardening in libwebp & examples * some minor optimizations in the lossless encoder * added WEBP_NODISCARD to report unused result warnings; enable with - DWEBP_ENABLE_NODISCARD=1 * improvements and corrections in webp-container-spec.txt and webp-lossless-bitstream-spec.txt (#611) * miscellaneous warning, bug & build fixes - Remove 0001-Fix-invalid-incremental-decoding-check.patch ==== libzypp ==== Version update (17.35.9 -> 17.35.10) - API refactoring. Prevent zypper from using now private libzypp symbols (bsc#1230267) - Conflicts: zypper <= 1.14.76 - version 17.35.10 (35) ==== llvm18 ==== Subpackages: clang-tools clang18 libLLVM18 libclang-cpp18 libclang13 libclang_rt18 llvm18-gold - Enable zstd compression support again. ==== mariadb ==== Version update (11.4.2 -> 11.5.2) Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Update to 11.5.2: https://mariadb.com/kb/en/mariadb-11-5-2-release-notes/ https://mariadb.com/kb/en/mariadb-11-5-2-changelog/ - Update list of skipped tests ==== mozilla-nss ==== Version update (3.102.1 -> 3.103) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-sysinit mozilla-nss-tools - update to NSS 3.103 * bmo#1908623 - move list size check after lock acquisition in sftk_PutObjectToList. * bmo#1899542: Add fuzzing support for SSL_ENABLE_POST_HANDSHAKE_AUTH, * bmo#1909638 - Follow-up to fix test for presence of file nspr.patch. * bmo#1903783: Adjust libFuzzer size limits * bmo#1899542: Add fuzzing support for SSL_SetCertificateCompressionAlgorithm, SSL_SetClientEchConfigs, SSL_VersionRangeSet and SSL_AddExternalPsk * bmo#1899542: Add fuzzing support for SSL_ENABLE_GREASE and SSL_ENABLE_CH_EXTENSION_PERMUTATION - Add nss-reproducible-builds.patch to make the rpms reproducible, by using a hardcoded, static key to generate the checksums (*.chk-files) - Updated nss-fips-approved-crypto-non-ec.patch to enforce approved curves with the CKK_EC_MONTGOMERY key type (bsc#1224113). ==== openSUSE-release ==== Version update (20240904 -> 20240908) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openssl-3 ==== Subpackages: libopenssl3 - Security fix: [bsc#1229465, CVE-2024-6119] * possible denial of service in X.509 name checks * openssl-CVE-2024-6119.patch ==== osinfo-db ==== - Add support for openSUSE Leap 15.7 (jsc#PED-8910) add-opensuse-leap-15.7-support.patch - Add support for SLE-15-SP7 (jsc#PED-8910) (bsc#1230160) add-sle15sp7-support.patch ==== pam-config ==== Version update (2.11+git.20240620 -> 2.11+git.20240906) - Update to version 2.11+git.20240906: * Move pam_limits before pam_systemd ==== power-profiles-daemon ==== Version update (0.21 -> 0.22) Subpackages: powerprofilesctl-bash-completion powerprofilesctl-zsh-completion - Update to version 0.22: * power-profiles-daemon is now battery-level aware: some drivers use this value for better optimizations * AMD p-state improvements: + supports core performance boost when not in power-saver mode + uses minimum frequency to lowest non-linear frequency + more impervious to faulty firmware and kernel bugs * support for changing DPM clocks on amdgpu: explicitly set the DPM clocks down to "low" when in power-saver mode * powerprofilesctl can disable logind and upower integration * fix handling of turbo_pct, now assumed as not present by default * power-profiles-daemon.service further lockdown restrictions * start power-profiles-daemon.service after multi-user.target AND display-manager.target to avoid conflicts with module loading ==== procps ==== Subpackages: libproc2-0 - procps-ng-4.0.4-idletime-no-tty.patch: don't print idle time without tty - procps-ng-4.0.4-w-array-bounds.patch: fix array bounds violation ==== python-libvirt-python ==== Version update (10.6.0 -> 10.7.0) - Update to 10.7.0 - Add all new APIs and constants in libvirt 10.7.0 - jsc#PED-8909 ==== python-looseversion ==== - Add %{?sle15_python_module_pythons} ==== python-olefile ==== Version update (0.46 -> 0.47) - Update to 0.47 * Now distributed as wheel package * Added VT_VECTOR support for properties * Added get_userdefined_properties * Fixed bugs in isOleFile and write_sect * Improved file closure - Drop README.html from %doc section - Drop README.rst from %doc section - Drop support for older Python versions - Limit Python files matched in %files section - Remove obsolete sed invocation to fix line endings - Switch build system from setuptools to pyproject.toml * Add python-pip and python-wheel to BuildRequires * Replace %python_build with %pyproject_wheel * Replace %python_install with %pyproject_install ==== python-zope.event ==== - Add patch intersphinx.patch for compatibility with recent version of Sphinx ==== rsync ==== - rsync-gcc14.patch: fixed the ipv6 configure check (bsc#1230156) ==== ruby3.3 ==== Version update (3.3.4 -> 3.3.5) Subpackages: libruby3_3-3_3 - Added 7939.diff Cleanup binstub lock files https://github.com/rubygems/rubygems/issues/7997 https://github.com/rubygems/rubygems/pull/7939 - Update to 3.3.5 This is a routine update that includes minor bug fixes. We recommend upgrading your Ruby version at your earliest convenience. https://github.com/ruby/ruby/releases/tag/v3_3_5 ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Set contextvars as a build requirement for package - Increase warn_until_date date for code we still support - The test_debian test now uses port 80 for ubuntu keyserver - Fix too frequent systemd service restart in test_system test - Added: * fix-test_debian-to-work-in-our-infrastructure-676.patch * fix-test_system-flaky-setup_teardown-fn.patch * fix-deprecated-code-677.patch ==== selinux-policy ==== Subpackages: selinux-policy-targeted - Fix macros.selinux-policy (bsc#1229132) - %selinux_modules_install and %selinux_modules_uninstall will now only execute load_policy if $TRANSACTIONAL_UPDATE is not set (aka only if they are not in a transactional system) - $TRANSACTIONAL_UPDATE is set here: https://github.com/openSUSE/transactional-update/blob/bd524d3ddfcd9aeebb7b9… ==== supermin ==== Version update (5.3.4 -> 5.3.5) - Update to version 5.3.5 (jsc#PED-8910) * Fix qemu-kvm example command ==== timezone ==== - Split tzselect script into a subpackage to prevent awk getting into minimal containers and recommend tzselect by the main package Fixes bsc#1230054 ==== u-boot-rpiarm64 ==== Subpackages: u-boot-rpiarm64-doc - Install u-boot-dtb.bin for milkvduo flavor ==== vim ==== Version update (9.1.0636 -> 9.1.0718) Subpackages: vim-data vim-data-common xxd - Update to 9.1.0718: * v9.1.0718: hard to know the users personal Vim Runtime Directory * v9.1.0717: Unnecessary nextcmd NULL checks in parse_command_modifiers() Maintainers: fix typo in author name * v9.1.0716: resetting setcellwidth( doesn't update the screen runtime(hcl,terraform): Add runtime files for HCL and Terraform runtime(tmux): Update syntax script * v9.1.0715: Not correctly parsing color names (after v9.1.0709) * v9.1.0714: GuiEnter_Turkish test may fail * v9.1.0713: Newline causes E749 in Ex mode * v9.1.0712: missing dependency of Test_gettext_makefile * v9.1.0711: test_xxd may file when using different xxd * v9.1.0710: popup window may hide part of Command line runtime(vim): Update syntax, improve user-command matching * v9.1.0709: GUIEnter event not found in Turkish locale runtime(sudoers): improve recognized Runas_Spec and Tag_Spec items * v9.1.0708: Recursive window update does not account for reset skipcol runtime(nu): include filetype plugin * v9.1.0707: invalid cursor position may cause a crash * v9.1.0706: test_gettext fails when using shadow dir CI: Install locales-all package * v9.1.0705: Sorting of fuzzy filename completion is not stable translation(pt): update Portuguese/Brazilian menu translation runtime(vim): Update base-syntax, match bracket mark ranges runtime(doc): Update :help :command-complete list * v9.1.0704: inserting with a count is inefficient runtime(doc): use mkdir -p to save a command * v9.1.0703: crash with 2byte encoding and glob2regpat() runtime(hollywood): update syn highlight for If-Then statements and For-In-Loops * v9.1.0702: Patch 9.1.0700 broke CI * v9.1.0701: crash with NFA regex engine when searching for composing chars * v9.1.0700: crash with 2byte encoding and glob2regpat() * v9.1.0699: "dvgo" is not always an inclusive motion runtime(java): Provide support for syntax preview features * v9.1.0698: "Untitled" file not removed when running Test_crash1_3 alone * v9.1.0697: heap-buffer-overflow in ins_typebuf * v9.1.0696: installing runtime files fails when using SHADOWDIR runtime(doc): fix typo * v9.1.0695: test_crash leaves Untitled file around translation(br): Update Brazilian translation translation(pt): Update menu_pt_br * v9.1.0694: matchparen is slow on a long line * v9.1.0693: Configure doesn't show result when not using python3 stable abi * v9.1.0692: Wrong patlen value in ex_substitute() * v9.1.0691: stable-abi may cause segfault on Python 3.11 runtime(vim): Update base-syntax, match :loadkeymap after colon and bar runtime(mane): Improve <Plug>ManBS mapping * v9.1.0690: cannot set special highlight kind in popupmenu translation(pt): Revert and fix wrong Portuguese menu translation files translation(pt): revert Portuguese menu translation translation(br): Update Brazilian translations runtime(vim): Update base-syntax, improve :let-heredoc highlighting * v9.1.0689: buffer-overflow in do_search( with 'rightleft' runtime(vim): Improve heredoc handling for all embedded scripts * v9.1.0688: dereferences NULL pointer in check_type_is_value() * v9.1.0687: Makefile may not install desktop files runtime(man): Fix <Plug>ManBS runtime(java): Make the bundled &foldtext function optional runtime(netrw): Change line on `mx` if command output exists runtime(netrw): Fix `mf`-selected entry highlighting runtime(htmlangular): add html syntax highlighting translation(it): Fix filemode of Italian manpages runtime(doc): Update outdated man.vim plugin information runtime(zip): simplify condition to detect MS-Windows * v9.1.0686: zip-plugin has problems with special characters runtime(pandoc): escape quotes in &errorformat for pandoc translation(it): updated Italian manpage * v9.1.0685: too many strlen( calls in usercmd.c runtime(doc): fix grammar in :h :keeppatterns runtime(pandoc): refine pandoc compiler settings * v9.1.0684: completion is inserted on Enter with "noselect" translation(ru): update man pages * v9.1.0683: mode( returns wrong value with <Cmd> mapping runtime(doc): remove trailing whitespace in cmdline.txt * v9.1.0682: Segfault with uninitialized funcref * v9.1.0681: Analyzing failed screendumps is hard runtime(doc): more clarification for the :keeppatterns needed * v9.1.0680: VMS does not have defined uintptr_t runtime(doc): improve typedchar documentation for KeyInputPre autocmd runtime(dist): verify that executable is in $PATH translation(it): update Italian manpages runtime(doc): clarify the effect of :keeppatterns after * v9.1.0677 runtime(doc): update Makefile and make it portable between GNU and BSD * v9.1.0679: Rename from w_closing to w_locked is incomplete runtime(colors): update colorschemes runtime(vim): Update base-syntax, improve :let-heredoc highlighting runtime(doc): Updating the examples in the xxd manpage translation(ru): Updated uganda.rux runtime(yaml): do not re-indent when commenting out lines * v9.1.0678: use-after-free in alist_add() * v9.1.0677 :keepp does not retain the substitute pattern translation(ja): Update Japanese translations to latest release runtime(netrw): Drop committed trace lines runtime(netrw): Error popup not always used ... changelog too long, skipping 97 lines ... - add support for "all" and "userns" rules, and new profile flags ==== xen ==== Subpackages: xen-libs xen-tools-domU - Fix build on aarch64 with gcc14 (bsc#1225953) 66d02b69-Arm64-adjust-irq_to_desc-to-fix-build-with-gcc14.patch ==== xfsprogs ==== Version update (6.9.0 -> 6.10.1) Subpackages: libhandle1 - update to 6.10.1 - fix C++ compilation errors in xfs_fs.h - ------------------------------------------------------------------ - update to 6.10.0 - debian: enable xfs_scrub_all systemd timer services by default - mkfs: set autofsck filesystem property - xfs_scrub: use the autofsck fsproperty to select mode - xfs_scrub: allow sysadmin to control background scrubs - xfs_property: add a new tool to administer fs properties - xfs_db: add a command to list xattrs - xfs_db: improve getting and setting extended attributes - xfs_io: edit filesystem properties - xfs_scrub: defer phase5 file scans if dirloop fails - xfs_repair: wipe ondisk parent pointers when there are none - xfs_scrub: detect and repair directory tree corruptions - xfs_repair: update ondisk parent pointer records - xfs_spaceman: report directory tree corruption in the health information - xfsprogs: support vectored scrub - man: document vectored scrub mode - man2: update ioctl_xfs_scrub_metadata.2 for parent pointers - mkfs: enable formatting with parent pointers - mkfs: Add parent pointers during protofile creation - xfs_repair: check parent pointers - xfs_db: compute hashes of parent pointers - xfs_db: add link and unlink expert commands - xfs_repair: build a parent pointer index - xfs_db: add a parents command to list the parents of a file - xfs_db: obfuscate dirent and parent pointer names consistently - xfs_db: report parent pointers embedded in xattrs - xfs_db: report parent bit on xattrs - xfs_db: report parent pointers in version command - xfs_scrub: use parent pointers to report lost file data - xfs_scrub: use parent pointers when possible to report file operations - xfs_logprint: decode parent pointers in ATTRI items fully - xfs_io: Add i, n and f flags to parent command - xfs_io: adapt parent command to new parent pointer ioctls - libfrog: report parent pointers to userspace - libfrog: add parent pointer support code - man: document the XFS_IOC_GETPARENTS ioctl - xfs_logprint: dump new attr log item fields - xfs_scrub_all: failure reporting for the xfs_scrub_all job - xfs_repair: check free space requirements before allowing upgrades - xfs_scrub_all: convert systemctl calls to dbus - xfs_scrub_all: trigger automatic media scans once per month - xfs_scrub: add an optimization-only mode - xfs_scrub_all: add CLI option for easier debugging - xfs_scrub_all: enable periodic file data scrubs automatically - xfs_scrub: automatic downgrades to dry-run mode in service mode - xfs_scrub_all: support metadata+media scans of all filesystems - xfs_scrub_all: fail fast on masked units - xfs_scrub_all: remove journalctl background process - xfs_scrub_all: only use the xfs_scrub@ systemd services in service mode - xfs_scrub: tune fstrim minlen parameter based on free space histograms - xfs_scrub: improve responsiveness while trimming the filesystem - xfs_scrub: tighten up the security on the background systemd service - xfs_scrub: don't call FITRIM after runtime errors - xfs_scrub: use dynamic users when running as a systemd service - xfs_scrub: report FITRIM errors properly - xfs_scrub.service: reduce background CPU usage to less than one core if possible - xfs_scrub: don't close stdout when closing the progress bar - xfs_scrub: fix the work estimation for phase 8 - libfrog: print cdf of free space buckets - libfrog: print wider columns for free space histogram - xfs_scrub: ignore phase 8 if the user disabled fstrim - xfs_scrub: move FITRIM to phase 8 - xfs_scrub: improve thread scheduling repair items during phase 4 - xfs_scrub: avoid potential UAF after freeing a duplicate name entry - xfs_scrub: enable users to bump information messages to warnings - xfs_scrub: retry incomplete repairs - xfs_scrub: warn about difficult repairs to rt and quota metadata - xfs_scrub: any inconsistency in metadata should trigger difficulty warnings - mkfs: add a formatting option for exchange-range - xfs_repair: add exchange-range to file systems - xfs_scrub: fix missing scrub coverage for broken inodes - xfs_scrub: log when a repair was unnecessary - libfrog: advertise exchange-range support - xfs_io: create exchangerange command to test file range exchange ioctl - xfs_fsr: skip the xattr/forkoff levering with the newer swapext implementations - xfs_fsr: convert to bulkstat v5 ioctls - xfs_logprint: support dumping exchmaps log items - xfs_db: advertise exchange-range in the version command - libfrog: add support for exchange range ioctl family - libhandle: add support for bulkstat v5 - man: document XFS_FSOP_GEOM_FLAGS_EXCHRANGE - man: document the exchange-range ioctl - xfs_repair: don't crash on -vv - xfsprogs: Remove support for split-/usr installs - libxfs: kernel sync - ------------------------------------------------------------------ ==== xxhash ==== - Add inline.patch to resolve FTBFS on gcc-14 + -Og. ==== zxing-cpp ==== Version update (2.1.0 -> 2.2.1) - Update to 2.2.1. Changes: * Fix ABI breakage from 2.2.0. - Changes from 2.2.0: * Rename DecodeHints to ReaderOptions. The old name is still available for backward API compatibility but deprecated. Since the C-API and the Qt wrapper code are not officially part of the library, they changed without backward compatibility. * WASM: bytes in ReadResult. * DataMatrix: use charset for encoding. * QRCode: Support QR Code Model1. * rMQR Code: Support Rectangular Micro QR Code. - Refresh patch: * cmake.patch ==== zypper ==== Version update (1.14.76 -> 1.14.77) Subpackages: zypper-log zypper-needs-restarting - API refactoring. Prevent zypper from using now private libzypp symbols (bsc#1230267) - BuildRequires: libzypp-devel >= 17.35.10. - Fix wrong numbers used in CommitSummary skipped/failed messages. - version 1.14.77

1 0

New Arm Tumbleweed snapshot 20240904 released!
by Guillaume Gardet 06 Sep '24

06 Sep '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 389-ds (3.1.1~git0.aef1668 -> 3.1.1~git13.a9c7ff9) erofs-utils libavif (1.0.4 -> 1.1.1) libfido2 (1.14.0 -> 1.15.0) libpcap (1.10.4 -> 1.10.5) live555 (2024.06.26 -> 2024.08.01) nbdkit (1.40.1 -> 1.40.2) openSUSE-release (20240903 -> 20240904) raspberrypi-firmware (2024.03.27 -> 2024.08.30) raspberrypi-firmware-config (2024.03.27 -> 2024.08.30) zlib-ng-compat (2.1.6 -> 2.2.1) === Details === ==== 389-ds ==== Version update (3.1.1~git0.aef1668 -> 3.1.1~git13.a9c7ff9) Subpackages: lib389 libsvrcore0 - bsc#1229948 - CVE-2024-43806 - rustix::fs::Dir iterator with the linux_raw backend can cause memory explosion - Update to version 3.1.1~git13.a9c7ff9: * Issue 2472 - Add a CI test (#6314) * Issue 6276 - Schema lib389 object is not keeping custom schema data upon editing (#6279) * Issue 3555 - UI - Fix audit issue with npm - micromatch (#6310) * Issue 5843 - Fix size formatting in dscreate output and enhance tests (#6309) * Issue 6301 - Fix long delay when setting replication agreement with dsconf (#6303) * Issue 6280 - Changelog trims updates from a given RID even if a consumer has not received any of them (#6281) * Issue 6296 - basic_test.py::test_conn_limits fails in main branch (#6300) * Issue 6295 - test_password_modify_non_utf8 should set default password storage scheme * Issue 6294 - Nightly copr builds are failing * Issue 6288 - dsidm crash with account policy when alt-state-attr is disabled (#6292) * Issue 2324 - Add a CI test (#6289) * Issue 6284 - BUG - freelist ordering causes high wtime (#6285) * Issue 6282 - BUG - out of tree build fails (#6283) ==== erofs-utils ==== - Enable zstd [boo#1229961] ==== libavif ==== Version update (1.0.4 -> 1.1.1) - update to 1.1.1: * In avif.h, change "AVIF_API AVIF_NODISCARD" back to "AVIF_NODISCARD AVIF_API" to fix clang-cl and MSVC compilation errors in the shared library build on Windows. * Fix -DAVIF_GTEST=SYSTEM * Fix infe_type and codec_config_type wrongly read as byte- aligned fields in the * experimental feature AVIF_ENABLE_EXPERIMENTAL_METAV1. * When building aom as a local dependency, runtime CPU detection (`CONFIG_RUNTIME_CPU_DETECT`) is now always `ON`; * Fix CMake config shared library leaks * Update gain map metadata to current ISO 21496-1 draft. * cmake: Only search for ASM_NASM language on x86_64 platforms. * Fix "No known features for CXX compiler" CMake error. * Fix aom link flags so that transitive library link flags are included when aom is a static library * Fix out-of-order 'dimg' grid associations * Report files with an item used in multiple 'dimg' boxes with * AVIF_RESULT_NOT_IMPLEMENTED instead of AVIF_RESULT_INVALID_IMAGE_GRID. * Add experimental API for reading and writing gain maps in AVIF files. * If enabled at compile time, add `gainMap` field to `avifImage`, * add `qualityGainMap` field to `avifEncoder`, add `gainMapPresent`, `enableDecodingGainMap`, `enableParsingGainMapMetadata` and `ignoreColorAndAlpha` to `avifDecoder`. * Utility functions for working with gain maps are also added. * Gain maps allow readers that support them to display HDR images that look good on both HDR and SDR displays. * Add experimental support for converting jpeg files with gain maps to AVIF files with gain maps. Requires libxml2, and the AVIF_ENABLE_EXPERIMENTAL_GAIN_MAP compilation flag. * Add a --qgain-map flag to control the gain map quality in avifenc. * Add the headerFormat member of new type avifHeaderFormat to avifEncoder. * Add experimental API for reading and writing "mif3"-branded AVIF files behind the compilation flag AVIF_ENABLE_EXPERIMENTAL_METAV1. * Implement avifImageScale() fallback when libyuv is not available. * Partial import of libyuv to third_party/libyuv (new LICENSE). * Add avifenc flag suffixes ":update" and ":u". Quality- relative, tiling-relative and codec-specific flags can now be positional, relative to input files. * Add experimental support for layered AVIF encoding in avifenc. * Use the --layered flag to enable layered AVIF encoding. * Layered AVIF has multiple layers, which works like frame of animated AVIF, and layers can be rendered in progressive manner on supported viewers * Only aom supports layered AVIF encoding at the time of writing. * Add --scaling-mode flag to set scaling mode of each layer. * This part of AV1 encoder is not as thoroughly tested, so there are higher possibility encoder may crash when given certain configuration or input. * Add imageSequenceTrackPresent flag to the avifDecoder struct. * avifImageScale() function was made part of the public ABI. * Add avif_cxx.h as a C++ header with basic functionality. * Add enum aliases AVIF_COLOR_PRIMARIES_SRGB, AVIF_COLOR_PRIMARIES_BT2100, * AVIF_COLOR_PRIMARIES_DCI_P3, AVIF_TRANSFER_CHARACTERISTICS_PQ. * Add avifResult enum entry AVIF_RESULT_INTERNAL_ERROR. * Require libyuv by default (but it can still be disabled with * -DAVIF_LIBYUV=OFF). * Add avifdec --icc flag to override the output color profile. * Add experimental API for reading and writing 16-bit AVIF files behind the * compilation flag AVIF_ENABLE_EXPERIMENTAL_SAMPLE_TRANSFORM. * Add AVIF_CHROMA_SAMPLE_POSITION_RESERVED to avifChromaSamplePosition enum. ==== libfido2 ==== Version update (1.14.0 -> 1.15.0) Subpackages: libfido2-1 libfido2-udev - update to 1.15.0: * bio, credman: improved CTAP 2.1 support. * hid_osx: fix issue where fido_hid_read() may block unnecessarily; gh#757. * fido2-token -I: print maxcredbloblen. * hid_linux: improved support for uhid devices. * New API calls: - fido_cred_set_attobj; - fido_cred_x5c_list_count; - fido_cred_x5c_list_len; - fido_cred_x5c_list_ptr. ==== libpcap ==== Version update (1.10.4 -> 1.10.5) - Update to 1.10.5: * Security fixes: - [bsc#1230020, CVE-2023-7256] double free via addrinfo in sock_initaddress() - [bsc#1230034, CVE-2024-8006] null pointer derefence in pcap_findalldevs_ex() * Thread safety: Make some static variables thread-local * Packet filtering: - Return an error from pcap_compile() if the scanner fails to initialize. - Optimizer fix from Archit Shah to recompute dominators after moving code; (although the resulting filter isn't empty). - Optimizer fix from Archit Shah to mark value as unknown when store of that value is deleted. * Linux: - Don't use DLT_LINUX_SLL2 for anything other than the "any" device. - Avoid 32-bit unsigned integer overflow in USB captures. - Fix a file descriptor leak. - Fix DLT_CAN_SOCKETCAN handling of CAN FD. - Add CAN XL support to DLT_CAN_SOCKETCAN. - Clean up the code that sets the "real" ("original") length for isochronous USB transfers. - Avoid unnecessary blocking on recvmsg() in the Bluetooth monitor and Bluetoth modules. * Haiku: - Report non-existent devices correctly. - Fix handling of packet statistics. - Fix packet timestamping. - Fix packet filtering with low snaplen. - Improve connection status reporting. - Add support for promiscuous mode. - Detect DLTs and loopback capture support at run time. - Report IEEE 802.11 as PCAP_IF_WIRELESS. * BSD, macOS, AIX, Solaris 11, Linux: - Add a new error PCAP_ERROR_CAPTURE_NOTSUP, for use if a capture mechanism is not present, in the hopes that, for example, attempts to capture on Windows Services for Linux 1, in which the NT kernel attempts to simulate Linux system calls but does not support packet sockets, can get an error that better indicates the underlying problem. * AirPcap: Format an error message if we run out of memory. * nflog: Make sure we don't overflow when rounding up the TLV length. * rpcap: - Handle routines removed in at least some OpenSSL libraries. - CVE-2023-7256: Clean up sock_initaddress() and its callers to avoid double frees in some cases. - Don't define SOCKET ourselves; instead, define PCAP_SOCKET as int on UN*Xes and as SOCKET on Windows. - CVE-2024-8006: Fix pcap_findalldevs_ex() not to crash if passed a file:// URL with a path to a directory that cannot be opened. * Savefiles: - Handle DLT_/LINKTYPE_ mapping better, to handle some OpenBSD-specific link types better. - Treat if_tsoffset as signed in pcapng files, as the spec says. - Don't try to fix the "real" length for isochronous USB transfers if the number of USB descriptors is too large. - Reject pcap files where one of the reserved fields in the "link-layer type plus other stuff" is non-zero. * Rebase libpcap-1.0.0-s390.patch ==== live555 ==== Version update (2024.06.26 -> 2024.08.01) Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 libliveMedia112 - update to 2024-08-01: * Updated "ServerMediaSession::generateSDPDescription()" to treat "time_t" as (long long). ==== nbdkit ==== Version update (1.40.1 -> 1.40.2) Subpackages: nbdkit-basic-filters nbdkit-basic-plugins nbdkit-curl-plugin nbdkit-nbd-plugin nbdkit-python-plugin nbdkit-server nbdkit-ssh-plugin - Update to version 1.40.2: * Version 1.40.2. * tests/dummy-vddk.c: Stop the background thread in dummy _Exit function * vddk: Check create-size is aligned to VIXDISKLIB_SECTOR_SIZE * vddk: Detect possible VDDK crash and warn * docs: Refresh nbdkit-service(1) page - Enable bzip2 filter ==== openSUSE-release ==== Version update (20240903 -> 20240904) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== raspberrypi-firmware ==== Version update (2024.03.27 -> 2024.08.30) - Update to bf12222 (2024-08-30): * firmware: arm_dt: Delay power property handling * firmware: AI Camera Support * firmware: video_encode: Add colourspace support See: #1885 * firmware: arm_loader: SET_POWER_STATE should only consider bit 0 See: #1905 * firmware: filesystem: Prevent any sdcard modifications See: #1893 * firmware: filesystem: Accept 0xf (W95 Ext) as an extended partition type * firmware: arm_dt: Support HAT EEPROM dtparams * firmware: arm_display: Add support for changing the pixel order via the mailbox See: #1320 * firmware: di_fast: Avoid green line at bottom of image See: https://forum.libreelec.tv/thread/28367-green-pulsing-line-rpi4 * firmware: arm_dt: On 2711, force otg_mode=1 if xhci is enabled See: raspberrypi/linux#6062 * firmware: arm_dt: Improve power HAT+ support * firmware: arm_loader: Add user otp read and write functions See: raspberrypi/linux#6014 * firmware: dtoverlay: Use %u when converting u32s to strings See: raspberrypi/linux#6039 * firmware: video_decode: CONFIGCHANGED not wanted with lack of aspect ratio in new frame See: https://forum.libreelec.tv/thread/28391-cvideoplayeraudio-process-stream-st… ==== raspberrypi-firmware-config ==== Version update (2024.03.27 -> 2024.08.30) - Update to bf12222 (2024-08-30): * firmware: arm_dt: Delay power property handling * firmware: AI Camera Support * firmware: video_encode: Add colourspace support See: #1885 * firmware: arm_loader: SET_POWER_STATE should only consider bit 0 See: #1905 * firmware: filesystem: Prevent any sdcard modifications See: #1893 * firmware: filesystem: Accept 0xf (W95 Ext) as an extended partition type * firmware: arm_dt: Support HAT EEPROM dtparams * firmware: arm_display: Add support for changing the pixel order via the mailbox See: #1320 * firmware: di_fast: Avoid green line at bottom of image See: https://forum.libreelec.tv/thread/28367-green-pulsing-line-rpi4 * firmware: arm_dt: On 2711, force otg_mode=1 if xhci is enabled See: raspberrypi/linux#6062 * firmware: arm_dt: Improve power HAT+ support * firmware: arm_loader: Add user otp read and write functions See: raspberrypi/linux#6014 * firmware: dtoverlay: Use %u when converting u32s to strings See: raspberrypi/linux#6039 * firmware: video_decode: CONFIGCHANGED not wanted with lack of aspect ratio in new frame See: https://forum.libreelec.tv/thread/28391-cvideoplayeraudio-process-stream-st… ==== zlib-ng-compat ==== Version update (2.1.6 -> 2.2.1) - Update to 2.2.1: * Changelog at https://github.com/zlib-ng/zlib-ng/releases/tag/2.2.1

1 0

New Arm Tumbleweed snapshot 20240903 released!
by Guillaume Gardet 04 Sep '24

04 Sep '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ffmpeg-6 google-noto-fonts (20240801 -> 20240901) libjpeg-turbo openSUSE-release (20240902 -> 20240903) python-cffi (1.16.0 -> 1.17.0) selinux-policy (20240830 -> 20240903) u-boot-rpiarm64 (2024.04 -> 2024.07) xmlsec1 (1.2.40 -> 1.2.41) === Details === ==== ffmpeg-6 ==== Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Add 0001-libavcodec-arm-mlpdsp_armv5te-fix-label-format-to-wo.patch [boo#1229338] ==== google-noto-fonts ==== Version update (20240801 -> 20240901) Subpackages: google-noto-sans-fonts google-noto-sans-symbols-fonts google-noto-sans-symbols2-fonts - Update to 20240901 * Various updates to fonts ==== libjpeg-turbo ==== - update to 3.0.3: * The x86-64 SIMD extensions now include support for Intel Control-flow Enforcement Technology (CET), which is enabled automatically if CET is enabled in the C compiler. * Fixed a regression introduced by 3.0 beta2[6] that made it impossible for calling applications to supply custom Huffman tables when generating 12-bit-per-component lossy JPEG images using the libjpeg API. * Fixed a segfault that occurred when attempting to use the jpegtran `-drop` option with a specially-crafted malformed input image or drop image (specifically an image in which all of the scans contain fewer components than the number of components specified in the Start Of Frame segment.) ==== openSUSE-release ==== Version update (20240902 -> 20240903) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== python-cffi ==== Version update (1.16.0 -> 1.17.0) - update to 1.17.0: * Add support for Python 3.13. * In API mode, when you get a function from a C library by writing `fn = lib.myfunc`, you get an object of a special type for performance reasons, instead of a `<cdata 'C-function-type'>`. Before version 1.17 you could only call such objects. You could write `ffi.addressof(lib, "myfunc")` in order to get a real `<cdata>` object, based on the idea that in these cases in C you'd usually write `&myfunc` instead of `myfunc`. In version 1.17, the special object `lib.myfunc` can now be passed in many places where CFFI expects a regular `<cdata>` object. For example, you can now pass it as a callback to a C function call, or write it inside a C structure field of the correct pointer-to-function type, or use `ffi.cast()` or `ffi.typeof()` on it. - drop py313-compat.patch, py313-use-format-unraisable.patch, py313-use-hashpointer.patch (upstream) ==== selinux-policy ==== Version update (20240830 -> 20240903) Subpackages: selinux-policy-targeted - Update to version 20240903: * allow sshd_t and sshd_net_t access to ssh vsockets (bsc#1228831) - Update to version 20240902: * Allow xen to use qemu as dom0 disk backend (bsc#1228540) * Label /var/lib/xen/xenstore as xenstored_var_lib_t (bsc#1228540) * Allow xl to access hypercall interfaces to xen hypervisor (bsc#1228540) ==== u-boot-rpiarm64 ==== Version update (2024.04 -> 2024.07) Subpackages: u-boot-rpiarm64-doc - Update to 2024.07: * Full changelog available at: https://source.denx.de/u-boot/u-boot/-/compare/v2024.04...v2024.07 ==== xmlsec1 ==== Version update (1.2.40 -> 1.2.41) Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Update to 1.2.41: * (xmlsec-mscng,xmlsec-mscrypto) Improved certificates verification. * (xmlsec-gnutls) Added support for self-signed certificates. * (xmlsec-core) Fix deprecated functions in LibXML2 2.13.1 including disabling HTTP support by default (use '--enable-http' option to re-enable it).

1 0

New Arm Tumbleweed snapshot 20240902 released!
by Guillaume Gardet 03 Sep '24

03 Sep '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: SDL2 apache2-mod_php8 (8.3.10 -> 8.3.11) appstream-glib (0.8.2 -> 0.8.3) binutils ca-certificates (2+git20240415.3fe9324 -> 2+git20240805.fd24d50) cppcheck (2.14.2 -> 2.15.0) freerdp (3.7.0 -> 3.8.0) gdb git glib2 glibmm2 (2.80.0 -> 2.80.1) guestfs-tools (1.53.2 -> 1.53.3) kernel-firmware (20240809 -> 20240826) kernel-source (6.10.5 -> 6.10.7) libguestfs (1.53.5 -> 1.53.6) libqt5-qtwebengine multipath-tools (0.9.9+161+suse.0c835ef -> 0.10.0+103+suse.0fc97cd) openSUSE-release (20240829 -> 20240902) perl-Clone (0.46 -> 0.470.0) perl-Try-Tiny (0.31 -> 0.320.0) php8 (8.3.10 -> 8.3.11) python-numpy (1.26.4 -> 2.0.0) python-requests python311 python311-core qemu qt6-wayland rsync salt selinux-policy (20240828 -> 20240830) snapper (0.11.1 -> 0.11.2) suse-module-tools (16.0.49 -> 16.0.50) taglib (2.0.1 -> 2.0.2) transactional-update (4.8.0 -> 4.8.1) virt-v2v (2.5.6 -> 2.5.9) xfce4-notes-plugin === Details === ==== SDL2 ==== - Don't build with fcitx support. fcitx support was just added because of a bug (boo#1025413) that could be fixed by building with fcitx support but upstream SDL2 developers fixed it in 2.0.5 when building without fcitx support too. Also fcitx support has always been disabled in SLE/Leap and in Factory it's built against fcitx 4.2.9.9, not the newer fcitx5 so let's disable it in order to reduce dependencies. ==== apache2-mod_php8 ==== Version update (8.3.10 -> 8.3.11) - version update to 8.3.11 Core: Fixed bug GH-15020 (Memory leak in Zend/Optimizer/escape_analysis.c). Fixed bug GH-15023 (Memory leak in Zend/zend_ini.c). Fixed bug GH-13330 (Append -Wno-implicit-fallthrough flag conditionally). Fix uninitialized memory in network.c. Fixed bug GH-15108 (Segfault when destroying generator during shutdown). Fixed bug GH-15275 (Crash during GC of suspended generator delegate). Curl: Fixed case when curl_error returns an empty string. DOM: Fix UAF when removing doctype and using foreach iteration. FFI: Fixed bug GH-14286 (ffi enum type (when enum has no name) make memory leak). Hash: Fix crash when converting array data for array in shm in xxh3. Intl: Fixed bug GH-15087 (IntlChar::foldCase()'s $option is not optional). Opcache: Fixed bug GH-13817 (Segmentation fault for enabled observers after pass 4). Fixed bug GH-13775 (Memory leak possibly related to opcache SHM placement). Output: Fixed bug GH-15179 (Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re). PDO_Firebird: Fix bogus fallthrough path in firebird_handle_get_attribute(). PHPDBG: Fixed bug GH-13199 (EOF emits redundant prompt in phpdbg local console mode with libedit/readline). Fixed bug GH-15268 (heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h)). Fixed bug GH-15210 use-after-free on watchpoint allocations. Soap: Fixed bug #55639 (Digest autentication dont work). Fix SoapFault property destruction. Fixed bug GH-15252 (SOAP XML broken since PHP 8.3.9 when using classmap constructor option). Standard: Fix passing non-finite timeout values in stream functions. Fixed GH-14780 p(f)sockopen timeout overflow. Streams: Fixed bug GH-15028 (Memory leak in ext/phar/stream.c). Fixed bug GH-15034 (Integer overflow on stream_notification_callback byte_max parameter with files bigger than 2GB). Reverted fix for GH-14930 (Custom stream wrapper dir_readdir output truncated to 255 characters). Tidy: Fix memory leaks in ext/tidy basedir restriction code. ==== appstream-glib ==== Version update (0.8.2 -> 0.8.3) Subpackages: libappstream-glib8 - Update to version 0.8.3: * Drop support for libstemmer * Do not veto the extension if the parent cannot be found * Support RFC9512 registration for application/yaml * Stop trying to convert Fedora licenses into SPDX * asb-plugin-font: Add glob match for .ttc files * Update gl.po * Update Simplified Chinese translation * Make the appdata filename check match the plugin globs * Remove Check for X-KDE-StartupNotify * Update Russian translation * Include screenshot size in "too large" errors * Include screenshot height in "too small" error ==== binutils ==== Subpackages: libctf-nobfd0 libctf0 - Update to current 2.43.1 branch [PED-10474]: * PR32109 - fuzzing problem * PR32083 - LTO vs overridden common symbols * PR32067 - crash with LTO-plugin and --oformat=binary * PR31956 - LTO vs wrapper symbols * riscv - add Zimop and Zcmop extensions - Adjusted binutils-2.43-branch.diff.gz. ==== ca-certificates ==== Version update (2+git20240415.3fe9324 -> 2+git20240805.fd24d50) - Fix source archive - Update to version 2+git20240805.fd24d50: * Remove rc symlink [jsc#PED-266] ==== cppcheck ==== Version update (2.14.2 -> 2.15.0) - update to 2.15.0 * New check suspiciousFloatingPointCast flags unnecessary floating point casts that cause loss of precision * Added command-line option --cpp-header-probe (and - -no-cpp-header-probe) to probe headers and extension-less files for Emacs marker * Add support for 'CLICOLOR_FORCE'/'NO_COLOR' environment variables to force/disable ANSI color output for diagnostics. * Add "remark comments" that can be used to generate reports with justifications for warnings * The whole program analysis is now being executed when "--project" is being used. ==== freerdp ==== Version update (3.7.0 -> 3.8.0) Subpackages: libfreerdp3-3 librdtk0-0 libwinpr3-3 - Update to 3.8.0 Noteworthy changes: * Reduce number of warnings on CI build (make dependency includes SYSTEM) (#10509) * Fix possible crashes with P11 certificate parsing (#10462, #10463) * Various clipboard related fixes (#10472, #10476, #10477, #10480, #10484) * Fix a race condition on DesktopResize (xfreerdp) (#10488) * Improve certificate warnings (#10489) * Try all possible resolved IP addresses for a DNS name on connect (#10491) * Fix an issue with GFX SolidFill alpha data (#10498) * Various fixes for SDL clients (#10504, #10492, #10471) * Fix serial and parallel redirection crashes (#10510) * Fix android build issues with NDK 27 (#10529) * Improve performance of some WinPR primitives (#10528) * Fix an issue with autoreconnect (#10523) * Support ssh-askpass like password reading (#10516) * Lots of code cleanups to reduce clang-tidy warnings (#10531, #10525, #10521, #10520, #10519, #10518) ==== gdb ==== - Maintenance script qa.sh: * Move PR26867 kfail from kfail_factory to kfail. * Merge PR28468 kfail with PR26867 kfail. - Maintenance script qa.sh: * Restore yama ptrace_scope == 1 kfails, aaa_base-yama-enable-ptrace doesn't work. * Enable yama ptrace_scope == 1 kfails for SLFO. * Add PR32121 kfail. * Drop Leap 15.3 and 15.4, add Leap 15.6. * Replace ALP with SLFO. * Move PR28468 kfail from kfail_factory to kfail. ==== git ==== Subpackages: git-core git-email git-svn git-web perl-Git - Change less requirement to path to allow for use with BusyBox ==== glib2 ==== Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - remove dependency on /usr/bin/python3 using %python3_fix_shebang{,_path} macros, [bsc#1212476] ==== glibmm2 ==== Version update (2.80.0 -> 2.80.1) Subpackages: libgiomm-2_68-1 libglibmm-2_68-1 - Update to version 2.80.1: + Gio: Fix memory leak in DBus::generate_guid() + gmmproc: - generate_wrap_in.pl.in: Ignore -Winconsistent-dllimport from clang - Convert [enum(a)Module.Type.ENUMERATOR] in documentation - h2def.py: Avoid syntax warnings from Python 3.12 - DocsParser.pm: Don't link to developer-old.gnome.org - Improve documentation of enum and enum class + Build: Some fixes to avoid warnings from the clang compiler ==== guestfs-tools ==== Version update (1.53.2 -> 1.53.3) - Update to version 1.53.3 (jsc#PED-8910) * Update common submodule Further refinements to Windows firstboot code. mlcustomize: Add some comments to firstboot batch file mlcustomize: Reboot Windows between each firstboot script mlcustomize: Move virt-customize modules to mlcustomize/ ==== kernel-firmware ==== Version update (20240809 -> 20240826) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240826 (git commit bec4fd18cc57): * amdgpu: DMCUB updates forvarious AMDGPU ASICs * rtw89: 8922a: add fw format-1 v0.35.41.0 * linux-firmware: update firmware for MT7925 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7925) * rtl_bt: Add firmware and config files for RTL8922A * rtl_bt: Add firmware file for the the RTL8723CS Bluetooth part * rtl_bt: de-dupe identical config.bin files * rename rtl8723bs_config-OBDA8723.bin -> rtl_bt/rtl8723bs_config.bin * linux-firmware: Update AMD SEV firmware * linux-firmware: update firmware for MT7996 * Revert "i915: Update MTL DMC v2.22" * ath12k: WCN7850 hw2.0: update board-2.bin * ath11k: WCN6855 hw2.0: update to WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41 * ath11k: WCN6855 hw2.0: update board-2.bin * ath11k: QCA2066 hw2.1: add to WLAN.HSP.1.1-03926.13-QCAHSPSWPL_V2_SILICONZ_CE-2.52297.3 * ath11k: QCA2066 hw2.1: add board-2.bin * ath11k: IPQ5018 hw1.0: update to WLAN.HK.2.6.0.1-01291-QCAHKSWPL_SILICONZ-1 * qcom: vpu: add video firmware for sa8775p * amdgpu: DMCUB updates for various AMDGPU ASICs ==== kernel-source ==== Version update (6.10.5 -> 6.10.7) - Linux 6.10.7 (bsc#1012628). - tty: vt: conmakehash: remove non-portable code printing comment header (bsc#1012628). - tty: serial: fsl_lpuart: mark last busy before uart_add_one_port (bsc#1012628). - tty: atmel_serial: use the correct RTS flag (bsc#1012628). - Revert "ACPI: EC: Evaluate orphan _REG under EC device" (bsc#1012628). - Revert "misc: fastrpc: Restrict untrusted app to attach to privileged PD" (bsc#1012628). - Revert "serial: 8250_omap: Set the console genpd always on if no console suspend" (bsc#1012628). - Revert "usb: typec: tcpm: clear pd_event queue in PORT_RESET" (bsc#1012628). - selinux: revert our use of vma_is_initial_heap() (bsc#1012628). - netfs, ceph: Revert "netfs: Remove deprecated use of PG_private_2 as a second writeback flag" (bsc#1012628). - fuse: Initialize beyond-EOF page contents before setting uptodate (bsc#1012628). - char: xillybus: Don't destroy workqueue from work item running on it (bsc#1012628). - char: xillybus: Refine workqueue handling (bsc#1012628). - char: xillybus: Check USB endpoints when probing device (bsc#1012628). - ALSA: usb-audio: Add delay quirk for VIVO USB-C-XE710 HEADSET (bsc#1012628). - ALSA: usb-audio: Support Yamaha P-125 quirk entry (bsc#1012628). - usb: misc: ljca: Add Lunar Lake ljca GPIO HID to ljca_gpio_hids[] (bsc#1012628). - usb: xhci: Check for xhci->interrupters being allocated in xhci_mem_clearup() (bsc#1012628). - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration (bsc#1012628). - thunderbolt: Mark XDomain as unplugged when router is removed (bsc#1012628). - ALSA: hda/tas2781: fix wrong calibrated data order (bsc#1012628). - ALSA: timer: Relax start tick time check for slave timer elements (bsc#1012628). - s390/dasd: fix error recovery leading to data corruption on ESE devices (bsc#1012628). - KVM: s390: fix validity interception issue when gisa is switched off (bsc#1012628). - thermal: gov_bang_bang: Call __thermal_cdev_update() directly (bsc#1012628). - KEYS: trusted: fix DCP blob payload length assignment (bsc#1012628). - KEYS: trusted: dcp: fix leak of blob encryption key (bsc#1012628). - riscv: change XIP's kernel_map.size to be size of the entire kernel (bsc#1012628). - riscv: entry: always initialize regs->a0 to -ENOSYS (bsc#1012628). - smb3: fix lock breakage for cached writes (bsc#1012628). - i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1012628). - ACPICA: Add a depth argument to acpi_execute_reg_methods() (bsc#1012628). - ACPI: EC: Evaluate _REG outside the EC scope more carefully (bsc#1012628). - arm64: ACPI: NUMA: initialize all values of acpi_early_node_map to NUMA_NO_NODE (bsc#1012628). - dm resume: don't return EINVAL when signalled (bsc#1012628). - dm persistent data: fix memory allocation failure (bsc#1012628). - vfs: Don't evict inode under the inode lru traversing context (bsc#1012628). - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE (bsc#1012628). - i2c: qcom-geni: Add missing geni_icc_disable in geni_i2c_runtime_resume (bsc#1012628). - tracing: Return from tracing_buffers_read() if the file has been closed (bsc#1012628). - perf/bpf: Don't call bpf_overflow_handler() for tracing events (bsc#1012628). - mseal: fix is_madv_discard() (bsc#1012628). - rtla/osnoise: Prevent NULL dereference in error handling (bsc#1012628). - mm: fix endless reclaim on machines with unaccepted memory (bsc#1012628). - mm/hugetlb: fix hugetlb vs. core-mm PT locking (bsc#1012628). - md/raid1: Fix data corruption for degraded array with slow disk (bsc#1012628). - net: mana: Fix RX buf alloc_size alignment and atomic op panic (bsc#1012628). - media: atomisp: Fix streaming no longer working on BYT / ISP2400 devices (bsc#1012628). - net: mana: Fix doorbell out of order violation and avoid unnecessary doorbell rings (bsc#1012628). - wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion (bsc#1012628). - fs/netfs/fscache_cookie: add missing "n_accesses" check (bsc#1012628). - selinux: fix potential counting error in avc_add_xperms_decision() (bsc#1012628). - selinux: add the processing of the failure of avc_add_xperms_decision() (bsc#1012628). - alloc_tag: mark pages reserved during CMA activation as not tagged (bsc#1012628). - mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu (bsc#1012628). ... changelog too long, skipping 422 lines ... - commit d546de5 ==== libguestfs ==== Version update (1.53.5 -> 1.53.6) Subpackages: libguestfs-appliance libguestfs-winsupport libguestfs-xfs libguestfs0 - Update to version 1.53.6 (jsc#PED-8910) * Various MacOS fixes and enhancements * ocaml: INSTALL_OCAMLLIB Makefile parameter * appliance/init: Don't set impossible "noop" disk scheduler * Pull in some fixes from the common submodule. mlcustomize: Add Inject_virtio_win.inject_blnsvr implementation mlcustomize: firstboot: Use Linux path for Powershell script path mlcustomize: firstboot: Use powershell.exe instead of path mlcustomize: firstboot: Use Powershell -NoProfile flag mlcustomize: Revert delay installation of qemu-ga MSI mldrivers/linux_kernels.ml: Prefix general information with ^info: mlcustomize: Use Start-Process -Wait to run qemu-ga installer mlcustomize: Add Firstboot.firstboot_dir function mlcustomize: Place powershell scripts into <firstboot_dir>\Temp mlcustomize: Inject qemu-ga & blnsvr into <firstboot_dir>/Temp mlcustomize: Write qemu-ga log file name to log.txt mlcustomize: Add some comments to firstboot batch file mlcustomize: Reboot Windows between each firstboot script ==== libqt5-qtwebengine ==== - Remove the unrar sources from the third_party directory in %prep so we're sure not to use any code with a non-free license. ==== multipath-tools ==== Version update (0.9.9+161+suse.0c835ef -> 0.10.0+103+suse.0fc97cd) Subpackages: kpartx libmpath0 - Update to 0.10.0+103+suse.0fc97cd - Update to upstream 0.10.0 (see also NEWS.md) * The `multipathd show daemon` command now shows `(reconfigure pending)` if a reconfiguration has been triggered but not finished yet. * Refactored the path checker loop. Paths are now checked for each multipath map in turn * Renamed public functions, variables, and macros to comply with the glibc policy for reserved names (gh#opensvc/multipath-tools#91) * Fixed bug that caused queueing to be always disabled if flushing a map failed (bug introduced in 0.9.8). (bsc#1229898) * Fixed failure to remove maps even with `deferred_remove` (bug introduced in 0.9.9). (bsc#1229898) * Fixed old mpathpersist bug leading to the error message "configured reservation key doesn't match: 0x0" when `reservation_key` was configured in the multipaths section of `multipath.conf`. (bsc#1228926, gh#opensvc/multipath-tools#92) * Fixed output of `multipath -t` and `multipath -T` for the options `force_sync` and `retrigger_tries`. (bsc#1229898, gh#opensvc/multipath-tools#88) * Fixed adding maps by WWID in CLI (command `add map $WWID`). (bsc#1229898) ==== openSUSE-release ==== Version update (20240829 -> 20240902) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== perl-Clone ==== Version update (0.46 -> 0.470.0) - updated to 0.470.0 (0.47) see /usr/share/doc/packages/perl-Clone/Changes 0.47 2024-08-17 12:30:00 atoomic - Stop using quote as package separator ==== perl-Try-Tiny ==== Version update (0.31 -> 0.320.0) - updated to 0.320.0 (0.32) see /usr/share/doc/packages/perl-Try-Tiny/Changes 0.32 2024-08-16 22:23:44Z - skip given, when tests on perls >= 5.41.3 which removed these constructs ==== php8 ==== Version update (8.3.10 -> 8.3.11) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.3.11 Core: Fixed bug GH-15020 (Memory leak in Zend/Optimizer/escape_analysis.c). Fixed bug GH-15023 (Memory leak in Zend/zend_ini.c). Fixed bug GH-13330 (Append -Wno-implicit-fallthrough flag conditionally). Fix uninitialized memory in network.c. Fixed bug GH-15108 (Segfault when destroying generator during shutdown). Fixed bug GH-15275 (Crash during GC of suspended generator delegate). Curl: Fixed case when curl_error returns an empty string. DOM: Fix UAF when removing doctype and using foreach iteration. FFI: Fixed bug GH-14286 (ffi enum type (when enum has no name) make memory leak). Hash: Fix crash when converting array data for array in shm in xxh3. Intl: Fixed bug GH-15087 (IntlChar::foldCase()'s $option is not optional). Opcache: Fixed bug GH-13817 (Segmentation fault for enabled observers after pass 4). Fixed bug GH-13775 (Memory leak possibly related to opcache SHM placement). Output: Fixed bug GH-15179 (Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re). PDO_Firebird: Fix bogus fallthrough path in firebird_handle_get_attribute(). PHPDBG: Fixed bug GH-13199 (EOF emits redundant prompt in phpdbg local console mode with libedit/readline). Fixed bug GH-15268 (heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h)). Fixed bug GH-15210 use-after-free on watchpoint allocations. Soap: Fixed bug #55639 (Digest autentication dont work). Fix SoapFault property destruction. Fixed bug GH-15252 (SOAP XML broken since PHP 8.3.9 when using classmap constructor option). Standard: Fix passing non-finite timeout values in stream functions. Fixed GH-14780 p(f)sockopen timeout overflow. Streams: Fixed bug GH-15028 (Memory leak in ext/phar/stream.c). Fixed bug GH-15034 (Integer overflow on stream_notification_callback byte_max parameter with files bigger than 2GB). Reverted fix for GH-14930 (Custom stream wrapper dir_readdir output truncated to 255 characters). Tidy: Fix memory leaks in ext/tidy basedir restriction code. ==== python-numpy ==== Version update (1.26.4 -> 2.0.0) - remove meson-python upper limit (per upstream) - Fix numpy-config path tests, provide reason for failing meson test - Remove mistaken pycache rpmlint filter - Update to 2.0.0, changes include: * Adds support for array parameter declaration in fortran... * Added ``bitwise_count`` UFuncs * Add binding for random pyx files * Use AVX512-FP16 SVML content for float16 umath functions * allow int sequences as shape arguments in numpy.memmap * Add .mT attribute for arrays * Create complex scalars from real and imaginary parts * add copy parameter for api.reshape function * make use of locals() in a comprehension fully compatible... * Add array API standard v2022.12 support to numpy.array_api * Change string to bool conversions to be consistent with... * Allow np.info on non-hashable objects with a dtype * let zeros, empty, and empty_like accept dtype classes * Bump C-ABI to 2 but accept older NumPy if compiled against... * Use high accuracy SVML for double precision umath functions * expose PyUFunc_GiveFloatingpointErrors in the dtype API * PyObject_IsTrue and PyObject_Not error handling in setflags * array2string does not add signs for positive integers. * Vectorize np.partition and np.argpartition using AVX-512 * Create helper for conversion to arrays * Add size check for threaded array assignment * Finalize ``fastCopyAndTranpose`` and other old C-funcs/members... * assert_array_less should report max violations instead of... * Introduce tracer for enabled CPU targets on each optimized... * Extend np.add ufunc to work with unicode and byte dtypes * Add find/rfind ufuncs for unicode and byte dtypes * Make ``intp`` ``ssize_t`` and introduce characters nN * Add isdigit/isspace/isdecimal/isnumeric ufuncs for string... * DType API slot for descriptor finalization before array... * ensure passing ``np.dtype`` to itself doesn't crash * Vectorize np.sort and np.partition with AVX2 * Change add/isalpha ufuncs to use buffer class & general... * Add strip/lstrip/rstrip ufuncs for unicode and bytes * Add ``matrix_norm``, ``vector_norm``, ``vecdot`` and ``matrix_transpose`` * Make ``encoding=None`` the default in loadtxt * Introduce ``copy`` argument for ``np.asarray`` * Introduce ``correction`` argument for ``np.var`` and ``np.std``... * Handle ``common`` blocks with ``kind`` specifications from modules * Handle ``iso_c_type`` mappings more consistently * Add ``device`` and ``to_device`` to ``numpy.ndarray`` * Shrink MultiIterObject and make ``NPY_MAXARGS`` a runtime... * enable linking of external libraries in the f2py Meson backend * Don't use the _Complex extension in C++ mode * Add fft optional extension submodule to numpy.array_api * make arange ``start`` argument positional-only * Make numpy.array_api more portable * Adjust ``linalg.pinv`` and ``linalg.cholesky`` to Array... * define a gufunc for vecdot (with BLAS support) * Add ``rtol`` to ``matrix_rank`` and ``stable`` * adjust nD fft ``s`` param to array API * three string ufunc bugs, one leading to segfault * allow building in cython with Py_LIMITED_API * support axes argument in np.linalg.tensordot * Add replace ufunc to np.strings * change list-of-array to tuple-of-array returns (Numba compat) * Wrap string ufuncs in np.strings to allow default arguments * Allow ``None`` as ``api_version`` in ``__array_namespace__``... * Vectorize argsort and argselect with AVX2 * Use large file fallocate on 32 bit linux platforms * Allow strings in logical ufuncs * Allow NumPy int scalars to be divided by out-of-bound Python... * correct irfft with n=1 on larger input * check for overflow when converting a string to an int scalar * Ensure meson updates generated umath doc correctly. * support float and longdouble in FFT using C++ pocketfft... * Make any and all return booleans by default * Finalize future warning move in lstsq default * add a pkg-config file and a ``numpy-config`` script * Finalize future warning for shape=1 descriptor dropping... * Add index/rindex ufuncs for unicode and bytes dtypes * Add rest of unary ufuncs for unicode/bytes dtypes * Create ``PyArray_DescrProto`` for legacy descriptor registration * Make ``descr->f`` only accessible through ``PyDataType_GetArrFuncs`` * ensure that FFT routines can deal with integer and bool... * ensure static_string.buf is never NULL for a non-null string * Include broadcasting for ``rtol`` argument in ``matrix_rank`` * Add expandtabs ufunc for string & unicode dtypes * implement stringdtype <-> timedelta roundtrip casts * Make descr->f only accessible through ``PyDataType_GetArrFuncs`` * Ensure non-array logspace base does not influence dtype... * Require reduce promoters to start with None to match * inherit numerical dtypes from abstract ones. * Infinite Loop in numpy.base_repr * Ensure seed sequences are restored through pickling * use PyArray_SafeCast in array_astype * introduce a notion of "compatible" stringdtype instances... * add support for nan-like null strings in string replace * Make sure that NumPy scalars are supported by can_cast * Disallow string inputs for copy keyword in np.array and... * Adds asanyarray to start of linalg.cross * weighted nanpercentile, nanquantile and multi-dim q - Remove patches, no longer required: * 0001-BUG-Fix-test_impossible_feature_enable-failing-witho.patch * 0001-feature-module-Fix-handling-of-multiple-conflicts-pe.patch * fix-meson-multiple-python-versions.patch * numpy-1.9.0-remove-__declspec.patch ==== python-requests ==== - Remove Requires on python-py, it should have been removed earlier. ==== python311 ==== Subpackages: python311-curses python311-dbm - Add CVE-2024-8088-inf-loop-zipfile_Path.patch to prevent malformed payload to cause infinite loops in zipfile.Path (bsc#1229704, CVE-2024-8088). ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Add CVE-2024-8088-inf-loop-zipfile_Path.patch to prevent malformed payload to cause infinite loops in zipfile.Path (bsc#1229704, CVE-2024-8088). ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Fix bsc#1221812: * [openSUSE] block: Reschedule query-block during qcow2 invalidation (bsc#1221812) - Fixup a previous patch (cure a build warning): * [openSUSE] fixup patch "pc: q35: Allow 1024 cpus for old machine types" - Infra improvement: * [openSUSE] Workflows for Virtualization:Staging:TDX ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patch to fix 'wl_shm' higher than interface version (2 > 1) (boo#1229893, QTBUG-126379): * 0001-update-wayland_xml-to-version-1_23_0.patch ==== rsync ==== - add patch rsync-run-dir.patch: * Drop dependency on /var/run compat symlink, this causes problems on image based systems ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Avoid crash on wrong output of systemctl version (bsc#1229539) - Improve error handling with different OpenSSL versions - Remove redundant run_func from salt.master.MWorker._handle_aes - Added: * avoid-crash-on-wrong-output-of-systemctl-version-bsc.patch * improve-error-handling-with-different-openssl-versio.patch * remove-redundant-run_func-from-salt.master.mworker._.patch - Fix cloud minion configuration for multiple masters (bsc#1229109) - Added: * join-masters-if-it-is-a-list-671.patch - Use Pygit2 id instead of deprecated oid in gitfs - Added: * replace-use-of-pygit2-deprecated-and-removed-1.15.0-.patch ==== selinux-policy ==== Version update (20240828 -> 20240830) Subpackages: selinux-policy-targeted - Update to version 20240830: * Allow virtstoraged to manage images (bsc#1228742) * Allow virtstoraged_t domtrans to udev (bsc#1228742) ==== snapper ==== Version update (0.11.1 -> 0.11.2) Subpackages: libsnapper7 snapper-zypp-plugin - use .snapshots dir for 'btrfs qgroup clear-stale' (bsc#1229904) - version 0.11.2 ==== suse-module-tools ==== Version update (16.0.49 -> 16.0.50) Subpackages: suse-module-tools-scriptlets * Generate initrd for the default snapshot (boo#1224773) ==== taglib ==== Version update (2.0.1 -> 2.0.2) Subpackages: libtag2 libtag_c2 - Update to 2.0.2: * Fix parsing of ID3v2.2 frames. * Tolerate MP4 files with unknown atom types as generated by Android tools. * Support setting properties with arbitrary names in MP4 tags. * Windows: Fix "-p" option in tagwriter example. * Support building with older utfcpp versions. ==== transactional-update ==== Version update (4.8.0 -> 4.8.1) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - Version 4.8.1 - tukit: fix --drop-if-no-change after apply [bsc#1229900] ==== virt-v2v ==== Version update (2.5.6 -> 2.5.9) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.5.9 (jsc#PED-8910) * convert: More robust qemu-ga installation, change paths mlcustomize: Use Start-Process -Wait to run qemu-ga installer mlcustomize: Add Firstboot.firstboot_dir function mlcustomize: Place powershell scripts into <firstboot_dir>\Temp * common: mlcustomize: Inject qemu-ga & blnsvr into <firstboot_dir>/Temp * Pull in a fix to make Windows firstboot more reliable. mlcustomize: Add some comments to firstboot batch file mlcustomize: Reboot Windows between each firstboot script * convert: windows: Don't wait indefinitely for netkvm.sys * convert: windows: Allow increasing verboseness of driver installation * convert: windows: Online all virtio disks at first boot * convert: windows: Ignore sriov drivers on virtio-win disk ==== xfce4-notes-plugin ==== Subpackages: xfce4-notes-plugin-lang - Vala does not properly work with gcc-14; lets stick with gcc-13 for now on Tumbleweed/Slowroll.

1 0