openSUSE ARM
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- 2103 discussions
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apache2 (2.4.53 -> 2.4.54)
apache2-manual (2.4.53 -> 2.4.54)
apache2-mod_php7 (7.4.29 -> 7.4.30)
apache2-prefork (2.4.53 -> 2.4.54)
apache2-utils (2.4.53 -> 2.4.54)
bluedevil5 (5.24.5 -> 5.25.0)
breeze (5.24.5 -> 5.25.0)
breeze-gtk (5.24.5 -> 5.25.0)
discover (5.24.5 -> 5.25.0)
drkonqi5 (5.24.5 -> 5.25.0)
glibmm2_4 (2.66.2 -> 2.66.4)
gnome-bluetooth (42.0 -> 42.1)
inxi (3.3.16 -> 3.3.17)
kactivitymanagerd (5.24.5 -> 5.25.0)
kcm_sddm (5.24.5 -> 5.25.0)
kde-cli-tools5 (5.24.5 -> 5.25.0)
kde-gtk-config5 (5.24.5 -> 5.25.0)
kgamma5 (5.24.5 -> 5.25.0)
khotkeys5 (5.24.5 -> 5.25.0)
kinfocenter5 (5.24.5 -> 5.25.0)
kmenuedit5 (5.24.5 -> 5.25.0)
kscreen5 (5.24.5 -> 5.25.0)
kscreenlocker (5.24.5 -> 5.25.0)
ksshaskpass5 (5.24.5 -> 5.25.0)
ksystemstats5 (5.24.5 -> 5.25.0)
kwayland-integration (5.24.5 -> 5.25.0)
kwin5 (5.24.5 -> 5.25.0)
kwrited5 (5.24.5 -> 5.25.0)
layer-shell-qt (5.24.5 -> 5.25.0)
libkdecoration2 (5.24.5 -> 5.25.0)
libkscreen2 (5.24.5 -> 5.25.0)
libksysguard5 (5.24.5 -> 5.25.0)
milou5 (5.24.5 -> 5.25.0)
oxygen5-sounds (5.24.5 -> 5.25.0)
php7 (7.4.29 -> 7.4.30)
plasma-browser-integration (5.24.5 -> 5.25.0)
plasma-nm5 (5.24.5 -> 5.25.0)
plasma5-addons (5.24.5 -> 5.25.0)
plasma5-desktop (5.24.5 -> 5.25.0)
plasma5-disks (5.24.5 -> 5.25.0)
plasma5-integration (5.24.5 -> 5.25.0)
plasma5-openSUSE (84.87~git20220116T220745~fffd234 -> 84.87~git20220602T134713~22403ba)
plasma5-pa (5.24.5 -> 5.25.0)
plasma5-systemmonitor (5.24.5 -> 5.25.0)
plasma5-thunderbolt (5.24.5 -> 5.25.0)
plasma5-workspace (5.24.5 -> 5.25.0)
polkit-kde-agent-5 (5.24.5 -> 5.25.0)
powerdevil5 (5.24.5 -> 5.25.0)
python
python-MarkupSafe
python-base
systemsettings5 (5.24.5 -> 5.25.0)
xdg-desktop-portal-kde (5.24.5 -> 5.25.0)
=== Details ===
==== apache2 ====
Version update (2.4.53 -> 2.4.54)
- update httpd-framework to svn revision 1898917
- version update to 2.4.54
Changes with Apache 2.4.54
* ) SECURITY: CVE-2022-31813: mod_proxy X-Forwarded-For dropped by
hop-by-hop mechanism (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may not send the
X-Forwarded-* headers to the origin server based on client side
Connection header hop-by-hop mechanism.
This may be used to bypass IP based authentication on the origin
server/application.
Credits: The Apache HTTP Server project would like to thank
Gaetan Ferry (Synacktiv) for reporting this issue
* ) SECURITY: CVE-2022-30556: Information Disclosure in mod_lua with
websockets (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may return lengths to
applications calling r:wsread() that point past the end of the
storage allocated for the buffer.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-30522: mod_sed denial of service
(cve.mitre.org)
If Apache HTTP Server 2.4.53 is configured to do transformations
with mod_sed in contexts where the input to mod_sed may be very
large, mod_sed may make excessively large memory allocations and
trigger an abort.
Credits: This issue was found by Brian Moussalli from the JFrog
Security Research team
* ) SECURITY: CVE-2022-29404: Denial of service in mod_lua
r:parsebody (cve.mitre.org)
In Apache HTTP Server 2.4.53 and earlier, a malicious request to
a lua script that calls r:parsebody(0) may cause a denial of
service due to no default limit on possible input size.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28615: Read beyond bounds in
ap_strcmp_match() (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may crash or disclose
information due to a read beyond bounds in ap_strcmp_match()
when provided with an extremely large input buffer. While no
code distributed with the server can be coerced into such a
call, third-party modules or lua scripts that use
ap_strcmp_match() may hypothetically be affected.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28614: read beyond bounds via ap_rwrite()
(cve.mitre.org)
The ap_rwrite() function in Apache HTTP Server 2.4.53 and
earlier may read unintended memory if an attacker can cause the
server to reflect very large input using ap_rwrite() or
ap_rputs(), such as with mod_luas r:puts() function.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28330: read beyond bounds in mod_isapi
(cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond
bounds when configured to process requests with the mod_isapi
module.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-26377: mod_proxy_ajp: Possible request
smuggling (cve.mitre.org)
Inconsistent Interpretation of HTTP Requests ('HTTP Request
Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server
allows an attacker to smuggle requests to the AJP server it
forwards requests to. This issue affects Apache HTTP Server
Apache HTTP Server 2.4 version 2.4.53 and prior versions.
Credits: Ricter Z @ 360 Noah Lab
* ) mod_ssl: SSLFIPS compatible with OpenSSL 3.0. PR 66063.
[Petr Sumbera <petr.sumbera oracle.com>, Yann Ylavic]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) mod_md: a bug was fixed that caused very large MDomains
with the combined DNS names exceeding ~7k to fail, as
request bodies would contain partially wrong data from
uninitialized memory. This would have appeared as failure
in signing-up/renewing such configurations.
[Stefan Eissing, Ronald Crane (Zippenhop LLC)]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) MPM event: Restart children processes killed before idle maintenance.
PR 65769. [Yann Ylavic, Ruediger Pluem]
* ) ab: Allow for TLSv1.3 when the SSL library supports it.
[abhilash1232 gmail.com, xiaolongx.jiang intel.com, Yann Ylavic]
* ) core: Disable TCP_NOPUSH optimization on OSX since it might introduce
transmission delays. PR 66019. [Yann Ylavic]
* ) MPM event: Fix accounting of active/total processes on ungraceful restart,
PR 66004 (follow up to PR 65626 from 2.4.52). [Yann Ylavic]
* ) core: make ap_escape_quotes() work correctly on strings
with more than MAX_INT/2 characters, counting quotes double.
Credit to <generalbugs(a)zippenhop.com> for finding this.
[Stefan Eissing]
* ) mod_md: the `MDCertificateAuthority` directive can take more than one URL/name of
an ACME CA. This gives a failover for renewals when several consecutive attempts
to get a certificate failed.
A new directive was added: `MDRetryDelay` sets the delay of retries.
A new directive was added: `MDRetryFailover` sets the number of errored
attempts before an alternate CA is selected for certificate renewals.
[Stefan Eissing]
* ) mod_http2: remove unused and insecure code. Fixes PR66037.
Thanks to Ronald Crane (Zippenhop LLC) for reporting this.
[Stefan Eissing]
* ) mod_proxy: Add backend port to log messages to
ease identification of involved service. [Rainer Jung]
* ) mod_http2: removing unscheduling of ongoing tasks when
connection shows potential abuse by a client. This proved
counter-productive and the abuse detection can false flag
requests using server-side-events.
Fixes <https://github.com/icing/mod_h2/issues/231>.
[Stefan Eissing]
* ) mod_md: Implement full auto status ("key: value" type status output).
Especially not only status summary counts for certificates and
OCSP stapling but also lists. Auto status format is similar to
what was used for mod_proxy_balancer.
[Rainer Jung]
* ) mod_md: fixed a bug leading to failed transfers for OCSP
stapling information when more than 6 certificates needed
updates in the same run. [Stefan Eissing]
* ) mod_proxy: Set a status code of 502 in case the backend just closed the
connection in reply to our forwarded request. [Ruediger Pluem]
* ) mod_md: a possible NULL pointer deref was fixed in
the JSON code for persisting time periods (start+end).
Fixes #282 on mod_md's github.
Thanks to @marcstern for finding this. [Stefan Eissing]
* ) mod_heartmonitor: Set the documented default value
"10" for HeartbeatMaxServers instead of "0". With "0"
no shared memory slotmem was initialized. [Rainer Jung]
* ) mod_md: added support for managing certificates via a
local tailscale daemon for users of that secure networking.
This gives trusted certificates for tailscale assigned
domain names in the *.ts.net space.
[Stefan Eissing]
- modified patches
% apache-test-application-xml-type.patch (refreshed)
% apache-test-turn-off-variables-in-ssl-var-lookup.patch (refreshed)
% apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch (refreshed)
==== apache2-manual ====
Version update (2.4.53 -> 2.4.54)
- update httpd-framework to svn revision 1898917
- version update to 2.4.54
Changes with Apache 2.4.54
* ) SECURITY: CVE-2022-31813: mod_proxy X-Forwarded-For dropped by
hop-by-hop mechanism (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may not send the
X-Forwarded-* headers to the origin server based on client side
Connection header hop-by-hop mechanism.
This may be used to bypass IP based authentication on the origin
server/application.
Credits: The Apache HTTP Server project would like to thank
Gaetan Ferry (Synacktiv) for reporting this issue
* ) SECURITY: CVE-2022-30556: Information Disclosure in mod_lua with
websockets (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may return lengths to
applications calling r:wsread() that point past the end of the
storage allocated for the buffer.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-30522: mod_sed denial of service
(cve.mitre.org)
If Apache HTTP Server 2.4.53 is configured to do transformations
with mod_sed in contexts where the input to mod_sed may be very
large, mod_sed may make excessively large memory allocations and
trigger an abort.
Credits: This issue was found by Brian Moussalli from the JFrog
Security Research team
* ) SECURITY: CVE-2022-29404: Denial of service in mod_lua
r:parsebody (cve.mitre.org)
In Apache HTTP Server 2.4.53 and earlier, a malicious request to
a lua script that calls r:parsebody(0) may cause a denial of
service due to no default limit on possible input size.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28615: Read beyond bounds in
ap_strcmp_match() (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may crash or disclose
information due to a read beyond bounds in ap_strcmp_match()
when provided with an extremely large input buffer. While no
code distributed with the server can be coerced into such a
call, third-party modules or lua scripts that use
ap_strcmp_match() may hypothetically be affected.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28614: read beyond bounds via ap_rwrite()
(cve.mitre.org)
The ap_rwrite() function in Apache HTTP Server 2.4.53 and
earlier may read unintended memory if an attacker can cause the
server to reflect very large input using ap_rwrite() or
ap_rputs(), such as with mod_luas r:puts() function.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28330: read beyond bounds in mod_isapi
(cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond
bounds when configured to process requests with the mod_isapi
module.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-26377: mod_proxy_ajp: Possible request
smuggling (cve.mitre.org)
Inconsistent Interpretation of HTTP Requests ('HTTP Request
Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server
allows an attacker to smuggle requests to the AJP server it
forwards requests to. This issue affects Apache HTTP Server
Apache HTTP Server 2.4 version 2.4.53 and prior versions.
Credits: Ricter Z @ 360 Noah Lab
* ) mod_ssl: SSLFIPS compatible with OpenSSL 3.0. PR 66063.
[Petr Sumbera <petr.sumbera oracle.com>, Yann Ylavic]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) mod_md: a bug was fixed that caused very large MDomains
with the combined DNS names exceeding ~7k to fail, as
request bodies would contain partially wrong data from
uninitialized memory. This would have appeared as failure
in signing-up/renewing such configurations.
[Stefan Eissing, Ronald Crane (Zippenhop LLC)]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) MPM event: Restart children processes killed before idle maintenance.
PR 65769. [Yann Ylavic, Ruediger Pluem]
* ) ab: Allow for TLSv1.3 when the SSL library supports it.
[abhilash1232 gmail.com, xiaolongx.jiang intel.com, Yann Ylavic]
* ) core: Disable TCP_NOPUSH optimization on OSX since it might introduce
transmission delays. PR 66019. [Yann Ylavic]
* ) MPM event: Fix accounting of active/total processes on ungraceful restart,
PR 66004 (follow up to PR 65626 from 2.4.52). [Yann Ylavic]
* ) core: make ap_escape_quotes() work correctly on strings
with more than MAX_INT/2 characters, counting quotes double.
Credit to <generalbugs(a)zippenhop.com> for finding this.
[Stefan Eissing]
* ) mod_md: the `MDCertificateAuthority` directive can take more than one URL/name of
an ACME CA. This gives a failover for renewals when several consecutive attempts
to get a certificate failed.
A new directive was added: `MDRetryDelay` sets the delay of retries.
A new directive was added: `MDRetryFailover` sets the number of errored
attempts before an alternate CA is selected for certificate renewals.
[Stefan Eissing]
* ) mod_http2: remove unused and insecure code. Fixes PR66037.
Thanks to Ronald Crane (Zippenhop LLC) for reporting this.
[Stefan Eissing]
* ) mod_proxy: Add backend port to log messages to
ease identification of involved service. [Rainer Jung]
* ) mod_http2: removing unscheduling of ongoing tasks when
connection shows potential abuse by a client. This proved
counter-productive and the abuse detection can false flag
requests using server-side-events.
Fixes <https://github.com/icing/mod_h2/issues/231>.
[Stefan Eissing]
* ) mod_md: Implement full auto status ("key: value" type status output).
Especially not only status summary counts for certificates and
OCSP stapling but also lists. Auto status format is similar to
what was used for mod_proxy_balancer.
[Rainer Jung]
* ) mod_md: fixed a bug leading to failed transfers for OCSP
stapling information when more than 6 certificates needed
updates in the same run. [Stefan Eissing]
* ) mod_proxy: Set a status code of 502 in case the backend just closed the
connection in reply to our forwarded request. [Ruediger Pluem]
* ) mod_md: a possible NULL pointer deref was fixed in
the JSON code for persisting time periods (start+end).
Fixes #282 on mod_md's github.
Thanks to @marcstern for finding this. [Stefan Eissing]
* ) mod_heartmonitor: Set the documented default value
"10" for HeartbeatMaxServers instead of "0". With "0"
no shared memory slotmem was initialized. [Rainer Jung]
* ) mod_md: added support for managing certificates via a
local tailscale daemon for users of that secure networking.
This gives trusted certificates for tailscale assigned
domain names in the *.ts.net space.
[Stefan Eissing]
- modified patches
% apache-test-application-xml-type.patch (refreshed)
% apache-test-turn-off-variables-in-ssl-var-lookup.patch (refreshed)
% apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch (refreshed)
==== apache2-mod_php7 ====
Version update (7.4.29 -> 7.4.30)
- version update to 7.4.30
* This is a security release.
https://www.php.net/ChangeLog-7.php#7.4.30
==== apache2-prefork ====
Version update (2.4.53 -> 2.4.54)
- update httpd-framework to svn revision 1898917
- version update to 2.4.54
Changes with Apache 2.4.54
* ) SECURITY: CVE-2022-31813: mod_proxy X-Forwarded-For dropped by
hop-by-hop mechanism (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may not send the
X-Forwarded-* headers to the origin server based on client side
Connection header hop-by-hop mechanism.
This may be used to bypass IP based authentication on the origin
server/application.
Credits: The Apache HTTP Server project would like to thank
Gaetan Ferry (Synacktiv) for reporting this issue
* ) SECURITY: CVE-2022-30556: Information Disclosure in mod_lua with
websockets (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may return lengths to
applications calling r:wsread() that point past the end of the
storage allocated for the buffer.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-30522: mod_sed denial of service
(cve.mitre.org)
If Apache HTTP Server 2.4.53 is configured to do transformations
with mod_sed in contexts where the input to mod_sed may be very
large, mod_sed may make excessively large memory allocations and
trigger an abort.
Credits: This issue was found by Brian Moussalli from the JFrog
Security Research team
* ) SECURITY: CVE-2022-29404: Denial of service in mod_lua
r:parsebody (cve.mitre.org)
In Apache HTTP Server 2.4.53 and earlier, a malicious request to
a lua script that calls r:parsebody(0) may cause a denial of
service due to no default limit on possible input size.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28615: Read beyond bounds in
ap_strcmp_match() (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may crash or disclose
information due to a read beyond bounds in ap_strcmp_match()
when provided with an extremely large input buffer. While no
code distributed with the server can be coerced into such a
call, third-party modules or lua scripts that use
ap_strcmp_match() may hypothetically be affected.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28614: read beyond bounds via ap_rwrite()
(cve.mitre.org)
The ap_rwrite() function in Apache HTTP Server 2.4.53 and
earlier may read unintended memory if an attacker can cause the
server to reflect very large input using ap_rwrite() or
ap_rputs(), such as with mod_luas r:puts() function.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28330: read beyond bounds in mod_isapi
(cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond
bounds when configured to process requests with the mod_isapi
module.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-26377: mod_proxy_ajp: Possible request
smuggling (cve.mitre.org)
Inconsistent Interpretation of HTTP Requests ('HTTP Request
Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server
allows an attacker to smuggle requests to the AJP server it
forwards requests to. This issue affects Apache HTTP Server
Apache HTTP Server 2.4 version 2.4.53 and prior versions.
Credits: Ricter Z @ 360 Noah Lab
* ) mod_ssl: SSLFIPS compatible with OpenSSL 3.0. PR 66063.
[Petr Sumbera <petr.sumbera oracle.com>, Yann Ylavic]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) mod_md: a bug was fixed that caused very large MDomains
with the combined DNS names exceeding ~7k to fail, as
request bodies would contain partially wrong data from
uninitialized memory. This would have appeared as failure
in signing-up/renewing such configurations.
[Stefan Eissing, Ronald Crane (Zippenhop LLC)]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) MPM event: Restart children processes killed before idle maintenance.
PR 65769. [Yann Ylavic, Ruediger Pluem]
* ) ab: Allow for TLSv1.3 when the SSL library supports it.
[abhilash1232 gmail.com, xiaolongx.jiang intel.com, Yann Ylavic]
* ) core: Disable TCP_NOPUSH optimization on OSX since it might introduce
transmission delays. PR 66019. [Yann Ylavic]
* ) MPM event: Fix accounting of active/total processes on ungraceful restart,
PR 66004 (follow up to PR 65626 from 2.4.52). [Yann Ylavic]
* ) core: make ap_escape_quotes() work correctly on strings
with more than MAX_INT/2 characters, counting quotes double.
Credit to <generalbugs(a)zippenhop.com> for finding this.
[Stefan Eissing]
* ) mod_md: the `MDCertificateAuthority` directive can take more than one URL/name of
an ACME CA. This gives a failover for renewals when several consecutive attempts
to get a certificate failed.
A new directive was added: `MDRetryDelay` sets the delay of retries.
A new directive was added: `MDRetryFailover` sets the number of errored
attempts before an alternate CA is selected for certificate renewals.
[Stefan Eissing]
* ) mod_http2: remove unused and insecure code. Fixes PR66037.
Thanks to Ronald Crane (Zippenhop LLC) for reporting this.
[Stefan Eissing]
* ) mod_proxy: Add backend port to log messages to
ease identification of involved service. [Rainer Jung]
* ) mod_http2: removing unscheduling of ongoing tasks when
connection shows potential abuse by a client. This proved
counter-productive and the abuse detection can false flag
requests using server-side-events.
Fixes <https://github.com/icing/mod_h2/issues/231>.
[Stefan Eissing]
* ) mod_md: Implement full auto status ("key: value" type status output).
Especially not only status summary counts for certificates and
OCSP stapling but also lists. Auto status format is similar to
what was used for mod_proxy_balancer.
[Rainer Jung]
* ) mod_md: fixed a bug leading to failed transfers for OCSP
stapling information when more than 6 certificates needed
updates in the same run. [Stefan Eissing]
* ) mod_proxy: Set a status code of 502 in case the backend just closed the
connection in reply to our forwarded request. [Ruediger Pluem]
* ) mod_md: a possible NULL pointer deref was fixed in
the JSON code for persisting time periods (start+end).
Fixes #282 on mod_md's github.
Thanks to @marcstern for finding this. [Stefan Eissing]
* ) mod_heartmonitor: Set the documented default value
"10" for HeartbeatMaxServers instead of "0". With "0"
no shared memory slotmem was initialized. [Rainer Jung]
* ) mod_md: added support for managing certificates via a
local tailscale daemon for users of that secure networking.
This gives trusted certificates for tailscale assigned
domain names in the *.ts.net space.
[Stefan Eissing]
- modified patches
% apache-test-application-xml-type.patch (refreshed)
% apache-test-turn-off-variables-in-ssl-var-lookup.patch (refreshed)
% apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch (refreshed)
==== apache2-utils ====
Version update (2.4.53 -> 2.4.54)
- update httpd-framework to svn revision 1898917
- version update to 2.4.54
Changes with Apache 2.4.54
* ) SECURITY: CVE-2022-31813: mod_proxy X-Forwarded-For dropped by
hop-by-hop mechanism (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may not send the
X-Forwarded-* headers to the origin server based on client side
Connection header hop-by-hop mechanism.
This may be used to bypass IP based authentication on the origin
server/application.
Credits: The Apache HTTP Server project would like to thank
Gaetan Ferry (Synacktiv) for reporting this issue
* ) SECURITY: CVE-2022-30556: Information Disclosure in mod_lua with
websockets (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may return lengths to
applications calling r:wsread() that point past the end of the
storage allocated for the buffer.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-30522: mod_sed denial of service
(cve.mitre.org)
If Apache HTTP Server 2.4.53 is configured to do transformations
with mod_sed in contexts where the input to mod_sed may be very
large, mod_sed may make excessively large memory allocations and
trigger an abort.
Credits: This issue was found by Brian Moussalli from the JFrog
Security Research team
* ) SECURITY: CVE-2022-29404: Denial of service in mod_lua
r:parsebody (cve.mitre.org)
In Apache HTTP Server 2.4.53 and earlier, a malicious request to
a lua script that calls r:parsebody(0) may cause a denial of
service due to no default limit on possible input size.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28615: Read beyond bounds in
ap_strcmp_match() (cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier may crash or disclose
information due to a read beyond bounds in ap_strcmp_match()
when provided with an extremely large input buffer. While no
code distributed with the server can be coerced into such a
call, third-party modules or lua scripts that use
ap_strcmp_match() may hypothetically be affected.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28614: read beyond bounds via ap_rwrite()
(cve.mitre.org)
The ap_rwrite() function in Apache HTTP Server 2.4.53 and
earlier may read unintended memory if an attacker can cause the
server to reflect very large input using ap_rwrite() or
ap_rputs(), such as with mod_luas r:puts() function.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-28330: read beyond bounds in mod_isapi
(cve.mitre.org)
Apache HTTP Server 2.4.53 and earlier on Windows may read beyond
bounds when configured to process requests with the mod_isapi
module.
Credits: The Apache HTTP Server project would like to thank
Ronald Crane (Zippenhop LLC) for reporting this issue
* ) SECURITY: CVE-2022-26377: mod_proxy_ajp: Possible request
smuggling (cve.mitre.org)
Inconsistent Interpretation of HTTP Requests ('HTTP Request
Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server
allows an attacker to smuggle requests to the AJP server it
forwards requests to. This issue affects Apache HTTP Server
Apache HTTP Server 2.4 version 2.4.53 and prior versions.
Credits: Ricter Z @ 360 Noah Lab
* ) mod_ssl: SSLFIPS compatible with OpenSSL 3.0. PR 66063.
[Petr Sumbera <petr.sumbera oracle.com>, Yann Ylavic]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) mod_md: a bug was fixed that caused very large MDomains
with the combined DNS names exceeding ~7k to fail, as
request bodies would contain partially wrong data from
uninitialized memory. This would have appeared as failure
in signing-up/renewing such configurations.
[Stefan Eissing, Ronald Crane (Zippenhop LLC)]
* ) mod_proxy_http: Avoid 417 responses for non forwardable 100-continue.
PR 65666. [Yann Ylavic]
* ) MPM event: Restart children processes killed before idle maintenance.
PR 65769. [Yann Ylavic, Ruediger Pluem]
* ) ab: Allow for TLSv1.3 when the SSL library supports it.
[abhilash1232 gmail.com, xiaolongx.jiang intel.com, Yann Ylavic]
* ) core: Disable TCP_NOPUSH optimization on OSX since it might introduce
transmission delays. PR 66019. [Yann Ylavic]
* ) MPM event: Fix accounting of active/total processes on ungraceful restart,
PR 66004 (follow up to PR 65626 from 2.4.52). [Yann Ylavic]
* ) core: make ap_escape_quotes() work correctly on strings
with more than MAX_INT/2 characters, counting quotes double.
Credit to <generalbugs(a)zippenhop.com> for finding this.
[Stefan Eissing]
* ) mod_md: the `MDCertificateAuthority` directive can take more than one URL/name of
an ACME CA. This gives a failover for renewals when several consecutive attempts
to get a certificate failed.
A new directive was added: `MDRetryDelay` sets the delay of retries.
A new directive was added: `MDRetryFailover` sets the number of errored
attempts before an alternate CA is selected for certificate renewals.
[Stefan Eissing]
* ) mod_http2: remove unused and insecure code. Fixes PR66037.
Thanks to Ronald Crane (Zippenhop LLC) for reporting this.
[Stefan Eissing]
* ) mod_proxy: Add backend port to log messages to
ease identification of involved service. [Rainer Jung]
* ) mod_http2: removing unscheduling of ongoing tasks when
connection shows potential abuse by a client. This proved
counter-productive and the abuse detection can false flag
requests using server-side-events.
Fixes <https://github.com/icing/mod_h2/issues/231>.
[Stefan Eissing]
* ) mod_md: Implement full auto status ("key: value" type status output).
Especially not only status summary counts for certificates and
OCSP stapling but also lists. Auto status format is similar to
what was used for mod_proxy_balancer.
[Rainer Jung]
* ) mod_md: fixed a bug leading to failed transfers for OCSP
stapling information when more than 6 certificates needed
updates in the same run. [Stefan Eissing]
* ) mod_proxy: Set a status code of 502 in case the backend just closed the
connection in reply to our forwarded request. [Ruediger Pluem]
* ) mod_md: a possible NULL pointer deref was fixed in
the JSON code for persisting time periods (start+end).
Fixes #282 on mod_md's github.
Thanks to @marcstern for finding this. [Stefan Eissing]
* ) mod_heartmonitor: Set the documented default value
"10" for HeartbeatMaxServers instead of "0". With "0"
no shared memory slotmem was initialized. [Rainer Jung]
* ) mod_md: added support for managing certificates via a
local tailscale daemon for users of that secure networking.
This gives trusted certificates for tailscale assigned
domain names in the *.ts.net space.
[Stefan Eissing]
- modified patches
% apache-test-application-xml-type.patch (refreshed)
% apache-test-turn-off-variables-in-ssl-var-lookup.patch (refreshed)
% apache2-HttpContentLengthHeadZero-HttpExpectStrict.patch (refreshed)
==== bluedevil5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: bluedevil5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Use appropriate jobs to lauch helpers
* Fix single instance window activation on Wayland
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* DeviceItem: Port to contextualActionsModel
* applet: Make placeholder text consistent with what's in the KCM
* KCM: Add icons to PlaceholderMessage instances
* applet: put PlaceholderMessage in a Loader to save a bit of memory
* applet: give PlaceholderMessage an icon
* applet: use common property to get list emptiness status
* Add qt6 CI support
* It's enabled in qt6
* Port to PlasmaExtras version of Highlight
* [wizard] Don't set minimum size
* install plugins in kf<version>
* kded/devicemonitor: Check BlueDevilDaemon exists when calling login1PrepareForSleep (kde#450195)
* Make it compile against qt6
* Remove unused Exec entry
* applet: set contentWidth properly
* applet: remove unnecessary delegate width override
* [applet] Fix undefined property access
* [applet] Add a bit of small spacing on the left of the checkbox
* [applet] Replace == equality with strict === equality in JavaScript
* Fix "Enable bluetooth" button
* Remove redundant saveState call
* applet: Toggle Bluetooth status on middle-click (kde#427816)
==== breeze ====
Version update (5.24.5 -> 5.25.0)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang libbreezecommon5-5
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* kstyle: fix qqc2 desktop style sliders in RtL (kde#430101)
* Fix mixup of PM_ToolBarItemMargin & PM_ToolBarFrameWidth
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== breeze-gtk ====
Version update (5.24.5 -> 5.25.0)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* GTK3,4: Make checkbox colors a pixel-perfect copy of QStyle
* assets: Make checkmark a pixel-perfect copy of qstyle
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== discover ====
Version update (5.24.5 -> 5.25.0)
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* PackageKit backend: fix searching for appstream id's without .desktop suffix
* Clean up Kirigami.Heading code a bit
* ApplicationPage: standardize on whitespace between sections
* flatpak notifier: Be more precise about when notifying about updates
* flatpak notifier: Do not set up twice the system installation
* notifier: Pass a token when we are starting from a notification
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== drkonqi5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: drkonqi5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* remove wrong visibility toggle (kde#454927)
* allow navigating back to the mainpage (kde#453989)
* DeveloperPage: do not automatically hide Save and Copy actions
* DeveloperPage: Remove extra padding on the backtrace
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== glibmm2_4 ====
Version update (2.66.2 -> 2.66.4)
Subpackages: libgiomm-2_4-1 libglibmm-2_4-1
- Update to version 2.66.4:
+ Glib: ustring_Iterator: Don't declare copy constructor =default.
The fix in the 2.66.3 release broke ABI.
(Kjell Ahlstedt) Issue #98 (Scotty Trees)
==== gnome-bluetooth ====
Version update (42.0 -> 42.1)
Subpackages: libgnome-bluetooth-3_0-13 libgnome-bluetooth-ui-3_0-13 typelib-1_0-GnomeBluetooth-3_0
- Update to version 42.1:
+ Fix the display of devices with '&' in their names.
+ Updated translations.
==== inxi ====
Version update (3.3.16 -> 3.3.17)
- - Updated to version 3.3.17:
* /usr/share/doc/packages/inxi/inxi.changelog.
==== kactivitymanagerd ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kactivitymanagerd-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Remove dependency on Boost.Container
* Add unistd.h include for sleep()
* Fix XML parser porting regression
* Add Qt6 CI
* Don't advertise debug stream operator publicly if we don't export it
* Port to KApplicationTrader
* Port to QXmlStreamReader
* Fix some compile errors against qt6
* Fix DBus service name registration
==== kcm_sddm ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kcm_sddm-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Fix broken connect in NewStuff.Action QML component usage (kde#454884)
* Clear cache when syncing (kde#440957)
* Re-enable apply button on save failure (kde#429348)
* Avoid empty error box (kde#413032)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Make the Halt and Reboot Commands' text fields editable
* Add Qt6 CI support
* Add support for new kauth includes
* Allow to build against qt6
==== kde-cli-tools5 ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Disable more deprecated fallback code paths
* Wrap deprecated API usage KCMShell in deprecation wrappers
* Qt::AA_UseHighDpiPixmaps is enabled by default in qt6
* Remaining bits to build with Qt6
* Remove ktraderclient for 6
* Port from KMimeTypeTrader to KParts::PartLoader
* Start to adapt build system for building against qt6
* kioclient: improve the format of the usage/help message
* plasma-open-settings: Support passing args as the path of the URL
* Remove explicit QuickSettings init method call
* plasma-open-settings: systemsettings5 is now systemsettings
* [keditfiletype] Set proper name in desktop file
* Convert KCM desktop file to JSON
* kcmshell: List KCMs that are queried without KServiceTypeTrader (kde#448396)
==== kde-gtk-config5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kde-gtk-config5-gtk3
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Prepare build system for building against qt6
* Port deprecated method
* Use the right data type for globalAnimationEntryValue
* Use Header palette if exists
==== kgamma5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kgamma5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Add qt6 CI support
* Allow to build against qt6
==== khotkeys5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: khotkeys5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* docbook: Update settings.png
* Only show KCM when on X11
==== kinfocenter5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kinfocenter5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* redirect stderr to stdout (kde#454197)
- Fix 0002-Look-for-binaries-in-Mesa-demos-path-as-well.patch (boo#1199975)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Fix about distro KCM not being able to be pinned
* Fix: Iterate with std::as_const, to avoid copying vector
* Finishing touches for the Qt6 build
* Use non-deprecated KAuth includes
* modules/about-distro: use standard inner margins for page
* modules/about-distro: simplify spacing before "open in Info Center" button
* modules/about-distro: remove bottom padding from page (kde#452437)
* Explicitly set parent app for energyinfo KCM
* Add some DMI data to about-distro
* Hide filter bar when showing an error message
* Display more informative and actionable error messages
* Use not deprecated ECMFindQmlModule
* Fix install against qt6
* Also horizontally center the error messages in their pages
* new module firmware security
* Allow to build against qt6
* fix up help paths (kde#450918)
* about-distro: remove unnecessary spacers above sections
* Search in /usr/local/sbin:/usr/sbin:/sbin as fallback (kde#449792)
* Add plasma-systemmonitor as the dependency of kinfocenter
* Don't use deprecated variable
* Drop unnecessary KIconThemes dependency
- Refresh 0002-Look-for-binaries-in-Mesa-demos-path-as-well.patch
==== kmenuedit5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kmenuedit5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Raise window when activating instance
* Add Qt6 CI support
* Make compile against qt6
* Fix some qt6 compile error
* Adapt build system for building against qt6
* Make it appear in launchers and app stores
* Set SingleMainWindow=true
* Kdelibs4ConfigMigrator will be removed in qt6
==== kscreen5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kscreen5-lang kscreen5-plasmoid
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* kcm: Make screen area use full width
* kcm: Don't force width of screens area
* X11: fix kded xcb resource leak (kde#453280)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* plasmoid: Copy InhibitionHint from battery applet
* plasmoid: Fix leftMargin expression and delete dummy invisible CheckBox
* plasmoid: Port to PlasmaComponents3
* plasmoid: Port away from theme context property to PlasmaCore.Theme fonts
* plasmoid: Pass down screenLayouts model explicitly through a property
* plasmoid: Fix JavaScript code style
* plasmoid: Port away from plasmoid context property to attached Plasmoid
* plasmoid: Port away from unit context property to PlasmaCore.Units
* OSD: Don't wrap current index around when holding left/right key
* Add test checking when we connect an external monitor while the device is rotated
* Fix connecting external monitors when a monitor is rotated
* readability: construct qbytearray directly instead of going through qstring
* kcm: fix choosing the refresh rate
* kcm: fix refresh rate list not being updated (kde#453392)
* Prefer more common aspect ratios over correct math (kde#443764)
* KCM: Explain what overscan and rgb range do (kde#442549)
* kcm: hide the whole "Primary" RowLayout with only one screen
* kcm: fixup 1b9b190d1f00e6287e7afc3d9b493d3aa04d1f85 (bad indentation)
* KCM: Explain what being the Primary screen means
* KCM: Center Orientation label when there's no automatic options
* kcm: port checkboxes and radio buttons to use onToggled signal handlers
* kcm: use correct left spacing for intended checkbox
* kcm: Use KConfigXt to manage global scale
* kcm: Use qmlRegisterAnonymousType
* X11: align touchscreen to internal display (kde#415683)
* KCM: fix crash when editing disabled display output's refresh rate (kde#450265)
* [kcm] Only enable revert action when revert sheet is open (kde#449931)
* Ensure to emit ResolutionRole dataChanged signals (kde#448855)
* Use more generic name for panel connectors
==== kscreenlocker ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Handle fallback packages when checking for screenlocker API version
* Wait for screenlocker UI to call close
* Remove old non-compliant Ctrl+Alt+L shortcut that interferes with apps (kde#454397)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Disable logind integration for kwin's unit tests
* Add fallback to the absolute path to kscreenlocker_greet (kde#452817)
* Guard double authenticate calls
* Fix two minor Qt6 build regressions
* Cleanup kcheckpass
* Plasma 5.25 brings breaking API changes to the lockscreen
* Port screen geometry change handling away from QDesktopWidget
* Don't recommend current session
* Port away from deprecated KDeclarative API
* kcm: Fix the load of wallpaper kcms (kde#452757)
* Port away from KWayland::Server
* Remove uneeded default args for plugin constructors
* Port away from using KAboutData with KCMs
* Install KCM in new namespaces
* De-duplicate json metadata of KPackages
* Remove explicit QuickSettings init method call
* Use PACKAGE_PREFIX_DIR before any find_dependency() calls
* Make the CMake config file work in a Qt6 build as well
* Adapt build system to also support Qt6
* Port from KDeclarative::ConfigPropertyMap to KConfigPropertyMap
* Adapt to Layer Shell Qt API change
* Add form factors to embedded json metadata
* Port to KLibexec
==== ksshaskpass5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: ksshaskpass5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Don't pretend we have a parent window for opening the wallet
* Adapt build system for building against qt6 (still missing porting
* It compile file without deprecated methods
==== ksystemstats5 ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Add more network sensor
* Add a window system sensor (kde#452461)
* cmake: Make sure we also search for dbus interfaces in DESTDIR
* Remove duplicate header between header cpp file
* Add Qt6 CI
* Allow to compile against qt6
* CPU Plugin: Prevent integer overflow of total usage (kde#448626)
* Set proper initial values for many SensorProperties (kde#446414)
* disks: Properly initialize read/write counters (kde#448494)
==== kwayland-integration ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Remove KGuiAddons dependency
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Ensure that xdgActivationTokenArrived is not emitted directly from requestXdgActivationToken
* Finalize the Qt6/KF6 port and add Qt6 CI
* Remove modifierkeyinfo plugin
* Adapt build system for building against qt6
* Prevent double deletion of shmpools (kde#443706)
==== kwin5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: kwin5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Too many changes to list here
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
- Refresh 0001-Export-consistent-hostname-as-XAUTHLOCALHOSTNAME.patch
==== kwrited5 ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Install in kf<version>
* Add CI qt6 support
* Make it compile against qt6
==== layer-shell-qt ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Mark required deps as required (kde#454912)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Minor api doc improvement for api.kde.org
* Build with Qt6
* Add desiredScreen property to LayerShellQt::Window
==== libkdecoration2 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Add RtL support (kde#432390)
* Hide tooltip when pressing button
* decoration:add blurregion property
* Add KF6 build support and CI
==== libkscreen2 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: libKF5Screen7 libkscreen2-plugin
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Remove CI dependency on kwayland-server as that is no longer a thing.
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Use const'ref
* Delete proxy for PrimaryOutput wayland interface in destructor (kde#451847)
* Adapt recent DPMS changes to also build with Qt6
* [doctor] Port dpms handling to QtWaylandScanner
* Adapt build system to also support Qt6
* backends/kwayland: Use output name to guess output type
* Update required PlasmaWaylandProtocols version
==== libksysguard5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Recommend the plugins package (boo#1199851)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== milou5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: milou5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* ResultDelegate: Fix height binding loop on multiline (kde#454507)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Remove duplicate header between header cpp file
* MAke compile without deprecated method
* Show all headers in qtc6
* Make compile against qt6 on CI
* Adapt to build against qt6
* Remove douplicate timeout logic in RunnerResultsModel
* Avoid sorting old results based on new query input string
==== oxygen5-sounds ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
- New package containing the now-split oxygen-sounds
==== php7 ====
Version update (7.4.29 -> 7.4.30)
Subpackages: php7-cli php7-ctype php7-dom php7-gd php7-gettext php7-iconv php7-json php7-mbstring php7-mysql php7-openssl php7-pdo php7-sqlite php7-tokenizer php7-xmlreader php7-xmlwriter
- version update to 7.4.30
* This is a security release.
https://www.php.net/ChangeLog-7.php#7.4.30
==== plasma-browser-integration ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma-browser-integration-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* It's enabled by default in qt6
* Add Qt5 Linux CI
* Final touches to compile with Qt6
* Show headers in qtc6
* ignore build dir
* Prepare build system for building against qt6
* Use HTTPS for link to KDE homepage
* Fix typo in author's email
* Use WeakSet to avoid memory leak
* [Tabs Runner] Only list tabs from "normal" windows
==== plasma-nm5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma-nm5-lang plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* Add xdg activation support to captive portal notification
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== plasma5-addons ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma5-addons-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* [applets/konsoleprofiles] Fix invalid property error
* wallpapers/potd: update accent color on image changed
* Explicitly list relevant lunar phase events (kde#454801)
* applets/dict: focus on input field on expanded
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
- Needs newer GCC on Leap
==== plasma5-desktop ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma5-desktop-emojier
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* desktoppackage: use `dominant` color instead of `highlight` color
* containments: add an application icon to the dragged location (kde#454581)
* Drop hack after porting back to lastSpacer
* containments/panel: fix Layout binding in `appletContainerComponent` (kde#454095,kde#454517)
* Change default keyboard switching shortcut to Meta+Alt+K
* desktoppackage: don't focus on panel when pressing applet shortcuts (kde#453166)
* Fix icon applet positioning (kde#454105)
* Fix applet background becoming opaque when no window is maximized (kde#454175)
* kcms/ksplash: Fix 'None' entry not appearing last in the grid view (kde#451422)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== plasma5-disks ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Use new kauth includes
* compile fine without deprecated methods
* Use new reuse-lint ci support
* Add CI qt6 support
* Make if compile against qt6
==== plasma5-integration ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* QDbusMenuBar: properly handle app-wide menubars
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Remove duplicate header between header cpp file
* Update unit test to reflect code changes
* Fix qt6 cmake support
* Port QX11Info
* Adapt build system for building against qt6
* Initialise globals on startup (kde#452060)
* WaylandIntegration: Install event filter
* Unshadow variable
* Exclude the kwin process when checking if we are in wayland
* Use QWaylandClientExtension for wayland code
* Initial support for building against Qt6
* const'ify variables
* [KDEPlatformFileDialog] Don't do stat if baseUrl didn't change
* It compiles file without deprecated methods
* Move import QtQuickSettings into platformtheme
* Gracefully handle invalid color scheme setting (kde#449613)
* Avoid creating plasma APIs for non-toplevels
==== plasma5-openSUSE ====
Version update (84.87~git20220116T220745~fffd234 -> 84.87~git20220602T134713~22403ba)
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.25.0
- Update to version 84.87~git20220602T134713~22403ba:
* Set ColorScheme=BreezeClassic in /etc/xdg/kdeglobals as well
- Update to 5.24.90
==== plasma5-pa ====
Version update (5.24.5 -> 5.25.0)
Subpackages: plasma5-pa-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Modernize code
* applet: Add fallback icons in device view and stream view
* Initalise member variable
* Remove duplicate header between header cpp file
* SpeakerTest: Fix subwoofer test (kde#445523)
* We need kf5.90 for building against qt6
* Add Qt6 CI
* applet: Fix logic to show virtual devices
* gconf is long gone, always use gsettings
* Add unmute message in both KCM and applet tooltip
* [CI] Require passing unit tests
* Speaker Test: Show playback errors in the UI
* Applet: Hide virtual devices by default
* Make compile against qt6
* [kcm] Update device combobox when current device changes externally
* Make distinction between audio level and audio meter clear
==== plasma5-systemmonitor ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Fix activating running instance on Wayland
* Set loadType to onstart for history page
* Add a page option to allow preloading a page (kde#440402)
* REmove duplicate header between header/file
* Remove explicit QuickSettings init method call
* Add CI support
* It's enabled by default in qt6
* Fix compile against qt6
* Allow to build against qt6
* Do not use Control as container for config UI elements
* Set "noMargins" to true for Applications and Processes pages (kde#447146)
* Mark as single window app
==== plasma5-thunderbolt ====
Version update (5.24.5 -> 5.25.0)
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Add CI qt6 support
* Make it compiles against qt6
==== plasma5-workspace ====
Version update (5.24.5 -> 5.25.0)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Add patch to fix a multiscreen bug when PLASMA_USE_QT_SCALING=1
(kde#450443, https://invent.kde.org/plasma/plasma-workspace/-/merge_requests/1781)
* 0001-shell-refresh-geometries-of-all-DesktopView-and-Pane.patch
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Too many changes to list here
- Drop patches, now upstream:
* 0001-startkde-Reload-systemd-on-Plasma-start.patch
- Add patch to fix opensuse-welcome autostart disabling:
* 0001-startkde-Reload-systemd-on-Plasma-start.patch
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
- Drop patches, now upstream:
* 0001-applets-appmenu-fix-top-level-menu-text-coloration.patch
* 0001-kcms-desktoptheme-find-metadata.json-when-loading-Th.patch
==== polkit-kde-agent-5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* Add Qt6 CI support
* Make compile against qt6
==== powerdevil5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: powerdevil5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- No code changes since 5.24.90
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Changes since 5.24.5:
* daemon/actions: remove unused variable
* Remove unused KRun code
* Use non-deprecated KAuth includes
* Deduce pair types automatically
* Remove unused includes
* Adapt to QtX11Extras being gone in Qt6
* Use version-less install dir variables
* Port away from QStringRef
* Fix Commit 761fc8a4
* Add percentage display next to the brightness and keyboard backlight sliders in KCM (kde#440314)
* Adapt build system for building against qt6 (need kscreen not ported yet)
* Write brightness to all raw devices (kde#399646)
* Fix signature in qt6
* Use new kauth includes
* Improved backlight devices selection (kde#399646)
* Support hardware with only one charging threshold, not both (kde#449997)
* Use not deprecated SYSTEMD_USER_UNIT_INSTALL_DIR
==== python ====
- Add CVE-2015-20107-mailcap-unsafe-filenames.patch to avoid
CVE-2015-20107 (bsc#1198511, gh#python/cpython#68966), the
command injection in the mailcap module.
- Filter out executable-stack error that is triggered for i586
target.
- Update bundled pip wheel to the latest SLE version patched
against bsc#1186819 (CVE-2021-3572).
- Recover again proper value of %python2_package_prefix
(bsc#1175619).
- BuildRequire rpm-build-python: The provider to inject python(abi)
has been moved there. rpm-build pulls rpm-build-python
automatically in when building anything against python3-base, but
this implies that the initial build of python3-base does not
trigger the automatic installation.
- Older SLE versions should use old OpenSSL.
- Add CVE-2022-0391-urllib_parse-newline-parsing.patch
(bsc#1195396, CVE-2022-0391, bpo#43882) sanitizing URLs
containing ASCII newline and tabs in urlparse.
- Add CVE-2021-4189-ftplib-trust-PASV-resp.patch (bsc#1194146,
bpo#43285, CVE-2021-4189, gh#python/cpython#24838) make ftplib
not trust the PASV response.
- build against openssl 1.1.x (incompatible with openssl 3.0x)
for now.
- on sle12, python2 modules will still be called python-xxxx until EOL,
for newer SLE versions they will be python2-xxxx
- BuildRequire rpm-build-python: The provider to inject python(abi)
has been moved there. rpm-build pulls rpm-build-python
automatically in when building anything against python3-base, but
this implies that the initial build of python3-base does not
trigger the automatic installation.
- Add CVE-2019-20907_tarfile-inf-loop.patch fixing bsc#1174091
(CVE-2019-20907, bpo#39017) avoiding possible infinite loop
in specifically crafted tarball.
Add recursion.tar as a testing tarball for the patch.
- Provide the newest setuptools wheel (bsc#1176262,
CVE-2019-20916) in their correct form (bsc#1180686).
- Add CVE-2020-26116-httplib-header-injection.patch fixing bsc#1177211
(CVE-2020-26116, bpo#39603) no longer allowing special characters in
the method parameter of HTTPConnection.putrequest in httplib, stopping
injection of headers. Such characters now raise ValueError.
- Renamed patch for assigned CVE:
* bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch ->
CVE-2021-3737-fix-HTTP-client-infinite-line-reading-after-a-HTTP-100-Continue.patch
(boo#1189241, CVE-2021-3737)
- Renamed patch for assigned CVE:
* bpo43075-fix-ReDoS-in-request.patch -> CVE-2021-3733-fix-ReDoS-in-request.patch
(boo#1189287, CVE-2021-3733)
- Fix python-doc build (bpo#35293):
* sphinx-update-removed-function.patch
- Update documentation formatting for Sphinx 3.0 (bpo#40204).
- Add bpo43075-fix-ReDoS-in-request.patch which fixes ReDoS in
request (bpo#43075, boo#1189287).
- Add missing security announcement to
bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch.
- Add bpo44022-fix-http-client-infinite-line-reading-after-a-HTTP-100-Continue.patch
which fixes http client infinite line reading (DoS) after a http
100 (bpo#44022, boo#1189241).
- Modify Lib/ensurepip/__init__.py to contain the same version
numbers as are in reality the ones in the bundled wheels
(bsc#1187668).
- Add CVE-2021-23336-only-amp-as-query-sep.patch which forbids
use of semicolon as a query string separator (bpo#42967,
bsc#1182379, CVE-2021-23336).
- Add CVE-2021-3177-buf_ovrfl_PyCArg_repr.patch fixing
bsc#1181126 (CVE-2021-3177) buffer overflow in PyCArg_repr in
_ctypes/callproc.c, which may lead to remote code execution.
- (bsc#1180125) We really don't Require python-rpm-macros package.
Unnecessary dependency.
- Add patch configure_PYTHON_FOR_REGEN.patch which makes
configure.ac to consider the correct version of
PYTHON_FO_REGEN (bsc#1078326).
- Use python3-Sphinx on anything more recent than SLE-15 (inclusive).
- Update to 2.7.18, final release of Python 2. Ever.:
- Newline characters have been escaped when performing uu
encoding to prevent them from overflowing into to content
section of the encoded file. This prevents malicious or
accidental modification of data during the decoding process.
- Fixes a ReDoS vulnerability in `http.cookiejar`. Patch by Ben
Caller.
- Fixed line numbers and column offsets for AST nodes for calls
without arguments in decorators.
- bsc#1155094 (CVE-2019-18348) Disallow control characters in
hostnames in http.client. Such potentially malicious header
injection URLs now cause a InvalidURL to be raised.
- Fix urllib.urlretrieve failing on subsequent ftp transfers
from the same host.
- Fix problems identified by GCC's -Wstringop-truncation
warning.
- AddRefActCtx() was needlessly being checked for failure in
PC/dl_nt.c.
- Prevent failure of test_relative_path in test_py_compile on
macOS Catalina.
- Fixed possible leak in `PyArg_Parse` and similar
functions for format units "es#" and "et#" when the macro
`PY_SSIZE_T_CLEAN` is not defined.
- Remove upstreamed patches:
- CVE-2019-18348-CRLF_injection_via_host_part.patch
- python-2.7.14-CVE-2017-1000158.patch
- CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch
- CVE-2018-1061-DOS-via-regexp-difflib.patch
- CVE-2019-10160-netloc-port-regression.patch
- CVE-2019-16056-email-parse-addr.patch
- Add CVE-2019-9674-zip-bomb.patch to improve documentation
warning about dangers of zip-bombs and other security problems
with zipfile library. (bsc#1162825 CVE-2019-9674)
- Change to Requires: libpython%{so_version} == %{version}-%{release}
to python-base to keep both packages always synchronized (add
%{so_version}) (bsc#1162224).
- Add CVE-2020-8492-urllib-ReDoS.patch fixing the security bug
"Python urrlib allowed an HTTP server to conduct Regular
Expression Denial of Service (ReDoS)" (bsc#1162367)
- Provide python-testsuite from devel subkg to ease py2->py3
dependencies
- Add python-2.7.17-switch-off-failing-SSL-tests.patch to switch
off tests coliding with the combination of modern Python and
ancient OpenSSL on SLE-12.
- libnsl is required only on more recent SLEs and openSUSE, older
glibc supported NIS on its own.
- Add provides in gdbm subpackage to provide dbm symbols. This
allows us to use %%{python_module dbm} as a dependency and have
it properly resolved for both python2 and python3
- Drop appstream-glib BuildRequires and no longer call
appstream-util validate-relax: eliminate a build cycle between
as-glib and python. The only thing would would gain by calling
as-uril is catching if upstream breaks the appdata.xml file in a
future release. Considering py2 is dying, chances for a new
release, let alone one breaking the xml file, are slim.
- Unify packages among openSUSE:Factory and SLE versions.
(bsc#1159035) ; add missing records to this changelog.
- Add idle.desktop and idle.appdata.xml to provide IDLE in menus
(bsc#1153830)
- Add python2_split_startup Provide to make it possible to
conflict older packages by shared-python-startup.
- Move /etc/pythonstart script to shared-python-startup
package.
- Add bpo-36576-skip_tests_for_OpenSSL-111.patch (originally from
bpo#36576) skipping tests failing with OpenSSL 1.1.1. Fixes
bsc#1149792
- Add adapted-from-F00251-change-user-install-location.patch fixing
pip/distutils to install into /usr/local.
- Update to 2.7.17:
- a bug fix release in the Python 2.7.x series. It is expected
to be the penultimate release for Python 2.7.
- Removed patches included upstream:
- CVE-2018-20852-cookie-domain-check.patch
- CVE-2019-16935-xmlrpc-doc-server_title.patch
- CVE-2019-9636-netloc-no-decompose-characters.patch
- CVE-2019-9947-no-ctrl-char-http.patch
- CVE-2019-9948-avoid_local-file.patch
- python-2.7.14-CVE-2018-1000030-1.patch
- python-2.7.14-CVE-2018-1000030-2.patch
- Renamed remove-static-libpython.diff and python-bsddb6.diff to
remove-static-libpython.patch and python-bsddb6.patch to unify
filenames.
- Add CVE-2019-16935-xmlrpc-doc-server_title.patch fixing
bsc#1153238 (aka CVE-2019-16935) fixing a reflected XSS in
python/Lib/DocXMLRPCServer.py
- Add bpo36302-sort-module-sources.patch (boo#1041090)
- Add CVE-2019-16056-email-parse-addr.patch fixing the email
module wrongly parses email addresses [bsc#1149955,
CVE-2019-16056]
- boo#1141853 (CVE-2018-20852) add
CVE-2018-20852-cookie-domain-check.patch fixing
http.cookiejar.DefaultPolicy.domain_return_ok which did not
correctly validate the domain: it could be tricked into sending
cookies to the wrong server.
- Skip test_urllib2_localnet that randomly fails in OBS
- bsc#1138459: add CVE-2019-10160-netloc-port-regression.patch
which fixes regression introduced by the previous patch.
(CVE-2019-10160)
Upstream gh#python/cpython#13812
- Set _lto_cflags to nil as it will prevent to propage LTO
for Python modules that are built in a separate package.
- bsc#1130840 (CVE-2019-9947): add CVE-2019-9947-no-ctrl-char-http.patch
Address the issue by disallowing URL paths with embedded
whitespace or control characters through into the underlying
http client request. Such potentially malicious header
injection URLs now cause a ValueError to be raised.
- bsc#1130847 (CVE-2019-9948) add CVE-2019-9948-avoid_local-file.patch
removing unnecessary (and potentially harmful) URL scheme
local-file://.
- bsc#1129346: add CVE-2019-9636-netloc-no-decompose-characters.patch
Characters in the netloc attribute that decompose under NFKC
normalization (as used by the IDNA encoding) into any of ``/``,
``?``, ``#``, ``@``, or ``:`` will raise a ValueError. If the
URL is decomposed before parsing, or is not a Unicode string,
no error will be raised (CVE-2019-9636).
Upstream commits e37ef41 and 507bd8c.
- (bsc#1111793) Update to 2.7.16:
* bugfix-only release: complete list of changes on
https://github.com/python/cpython/blob/2.7/Misc/NEWS.d/2.7.16rc1.rst
* Removed openssl-111.patch and CVE-2018-1000802-shutil_use_subprocess_no_spawn.patch
which are fully included in the tarball.
* Updated patches to apply cleanly:
CVE-2019-5010-null-defer-x509-cert-DOS.patch
bpo36160-init-sysconfig_vars.patch
do-not-use-non-ascii-in-test_ssl.patch
openssl-111-middlebox-compat.patch
openssl-111-ssl_options.patch
python-2.5.1-sqlite.patch
python-2.6-gettext-plurals.patch
python-2.7-dirs.patch
python-2.7.2-fix_date_time_compiler.patch
python-2.7.4-canonicalize2.patch
python-2.7.5-multilib.patch
python-2.7.9-ssl_ca_path.patch
python-bsddb6.diff
remove-static-libpython.patch
* Update python-2.7.5-multilib.patch to pass with new platlib
regime.
- bsc#1109847 (CVE-2018-14647): add
CVE-2018-14647_XML_SetHashSalt-in_elementtree.patch fixing
bpo-34623.
- bsc#1073748: add bpo-29347-dereferencing-undefined-pointers.patch
PyWeakref_NewProxy(a)Objects/weakrefobject.c creates new isntance
of PyWeakReference struct and does not intialize wr_prev and
wr_next of new isntance. These pointers can have garbage and
point to random memory locations.
Python should not crash while destroying the isntance created
in the same interpreter function. As per my understanding, both
wr_prev and wr_next of PyWeakReference instance should be
initialized to NULL to avoid segfault.
- bsc#1122191: add CVE-2019-5010-null-defer-x509-cert-DOS.patch
fixing bpo-35746 (CVE-2019-5010).
An exploitable denial-of-service vulnerability exists in the
X509 certificate parser of Python.org Python 2.7.11 / 3.7.2.
A specially crafted X509 certificate can cause a NULL pointer
dereference, resulting in a denial of service. An attacker can
initiate or accept TLS connections using crafted certificates
to trigger this vulnerability.
==== python-MarkupSafe ====
- Require python 3.6. There is no need to require a newer version and
this way it builds on openSUSE Leap >= 15.3
==== python-base ====
Subpackages: libpython2_7-1_0 python-xml
- Add CVE-2015-20107-mailcap-unsafe-filenames.patch to avoid
CVE-2015-20107 (bsc#1198511, gh#python/cpython#68966), the
command injection in the mailcap module.
==== systemsettings5 ====
Version update (5.24.5 -> 5.25.0)
Subpackages: systemsettings5-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* systemsettingsrunner: Fix all matches having the same id
* IconView: Remove duplicated tooltips (kde#409327)
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
==== xdg-desktop-portal-kde ====
Version update (5.24.5 -> 5.25.0)
Subpackages: xdg-desktop-portal-kde-lang
- Update to 5.25.0
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.25.0
- Changes since 5.24.90:
* [filechooser] Make sure outgoing URIs are encoded (kde#454850)
* [screenshot] Encode result URI
* UserInfo: Fix initialization error
* screencast: Include valid windows in the list of streams to stream
* screencast: When we stop a stream, do it actively
* screencast: When closing a session, only close the streams from that session
* screencast: Do not provide every running stream
* screencast: Keep persisting if the user chose to persist (kde#454128)
* Add FreeBSD CI
* don't supply excess argument
- Update to 5.24.90
* New feature release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.24.90
- Too many changes to list here
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
akonadi-calendar (22.04.1 -> 22.04.2)
akonadi-calendar-tools (22.04.1 -> 22.04.2)
akonadi-contact (22.04.1 -> 22.04.2)
akonadi-import-wizard (22.04.1 -> 22.04.2)
akonadi-mime (22.04.1 -> 22.04.2)
akonadi-notes (22.04.1 -> 22.04.2)
akonadi-search (22.04.1 -> 22.04.2)
akonadi-server (22.04.1 -> 22.04.2)
akregator (22.04.1 -> 22.04.2)
analitza (22.04.1 -> 22.04.2)
ark (22.04.1 -> 22.04.2)
baloo5-widgets (22.04.1 -> 22.04.2)
blinken (22.04.1 -> 22.04.2)
bovo (22.04.1 -> 22.04.2)
calendarsupport (22.04.1 -> 22.04.2)
cervisia (22.04.1 -> 22.04.2)
dbus-1
dolphin (22.04.1 -> 22.04.2)
dragonplayer (22.04.1 -> 22.04.2)
eventviews (22.04.1 -> 22.04.2)
ffmpegthumbs (22.04.1 -> 22.04.2)
glibc
grantleetheme (22.04.1 -> 22.04.2)
guestfs-tools (1.48.1 -> 1.48.2)
gwenview5 (22.04.1 -> 22.04.2)
incidenceeditor (22.04.1 -> 22.04.2)
irssi (1.2.3 -> 1.4.1)
juk (22.04.1 -> 22.04.2)
k3b (22.04.1 -> 22.04.2)
kaccounts-integration (22.04.1 -> 22.04.2)
kaccounts-providers (22.04.1 -> 22.04.2)
kaddressbook (22.04.1 -> 22.04.2)
kalgebra (22.04.1 -> 22.04.2)
kamera (22.04.1 -> 22.04.2)
kanagram (22.04.1 -> 22.04.2)
kapptemplate (22.04.1 -> 22.04.2)
kate (22.04.1 -> 22.04.2)
katomic (22.04.1 -> 22.04.2)
kblackbox (22.04.1 -> 22.04.2)
kblocks (22.04.1 -> 22.04.2)
kbounce (22.04.1 -> 22.04.2)
kbreakout (22.04.1 -> 22.04.2)
kbruch (22.04.1 -> 22.04.2)
kcachegrind (22.04.1 -> 22.04.2)
kcalc (22.04.1 -> 22.04.2)
kcalutils (22.04.1 -> 22.04.2)
kcharselect (22.04.1 -> 22.04.2)
kcolorchooser (22.04.1 -> 22.04.2)
kcron (22.04.1 -> 22.04.2)
kde-print-manager (22.04.1 -> 22.04.2)
kdeconnect-kde (22.04.1 -> 22.04.2)
kdeedu-data (22.04.1 -> 22.04.2)
kdegraphics-thumbnailers (22.04.1 -> 22.04.2)
kdenetwork-filesharing (22.04.1 -> 22.04.2)
kdepim-addons (22.04.1 -> 22.04.2)
kdepim-runtime (22.04.1 -> 22.04.2)
kdevelop5 (22.04.1 -> 22.04.2)
kdf (22.04.1 -> 22.04.2)
kdialog (22.04.1 -> 22.04.2)
kdiamond (22.04.1 -> 22.04.2)
kgeography (22.04.1 -> 22.04.2)
kget (22.04.1 -> 22.04.2)
kgoldrunner (22.04.1 -> 22.04.2)
khangman (22.04.1 -> 22.04.2)
khelpcenter5 (22.04.1 -> 22.04.2)
kidentitymanagement (22.04.1 -> 22.04.2)
kig (22.04.1 -> 22.04.2)
kimap (22.04.1 -> 22.04.2)
kio-extras5 (22.04.1 -> 22.04.2)
kio_audiocd (22.04.1 -> 22.04.2)
kipi-plugins (22.04.1 -> 22.04.2)
kiriki (22.04.1 -> 22.04.2)
kiten (22.04.1 -> 22.04.2)
kitinerary (22.04.1 -> 22.04.2)
kjumpingcube (22.04.1 -> 22.04.2)
kldap (22.04.1 -> 22.04.2)
kleopatra (22.04.1 -> 22.04.2)
klines (22.04.1 -> 22.04.2)
kmag (22.04.1 -> 22.04.2)
kmahjongg (22.04.1 -> 22.04.2)
kmail (22.04.1 -> 22.04.2)
kmail-account-wizard (22.04.1 -> 22.04.2)
kmailtransport (22.04.1 -> 22.04.2)
kmbox (22.04.1 -> 22.04.2)
kmime (22.04.1 -> 22.04.2)
kmines (22.04.1 -> 22.04.2)
kmousetool (22.04.1 -> 22.04.2)
kmouth (22.04.1 -> 22.04.2)
kmplot (22.04.1 -> 22.04.2)
knavalbattle (22.04.1 -> 22.04.2)
knetwalk (22.04.1 -> 22.04.2)
knotes (22.04.1 -> 22.04.2)
kolf (22.04.1 -> 22.04.2)
kollision (22.04.1 -> 22.04.2)
kolourpaint (22.04.1 -> 22.04.2)
kompare (22.04.1 -> 22.04.2)
konquest (22.04.1 -> 22.04.2)
konsole (22.04.1 -> 22.04.2)
kontact (22.04.1 -> 22.04.2)
kontactinterface (22.04.1 -> 22.04.2)
konversation (22.04.1 -> 22.04.2)
kopete (22.04.1 -> 22.04.2)
korganizer (22.04.1 -> 22.04.2)
kpat (22.04.1 -> 22.04.2)
kpimtextedit (22.04.1 -> 22.04.2)
kpkpass (22.04.1 -> 22.04.2)
kqtquickcharts (22.04.1 -> 22.04.2)
kreversi (22.04.1 -> 22.04.2)
kruler (22.04.1 -> 22.04.2)
kshisen (22.04.1 -> 22.04.2)
ksirk (22.04.1 -> 22.04.2)
ksmtp (22.04.1 -> 22.04.2)
kspaceduel (22.04.1 -> 22.04.2)
ksquares (22.04.1 -> 22.04.2)
ksudoku (22.04.1 -> 22.04.2)
ksystemlog (22.04.1 -> 22.04.2)
kteatime (22.04.1 -> 22.04.2)
ktimer (22.04.1 -> 22.04.2)
ktnef (22.04.1 -> 22.04.2)
ktouch (22.04.1 -> 22.04.2)
kturtle (22.04.1 -> 22.04.2)
kubrick (22.04.1 -> 22.04.2)
kwalletmanager5 (22.04.1 -> 22.04.2)
kwordquiz (22.04.1 -> 22.04.2)
libgravatar (22.04.1 -> 22.04.2)
libkcddb (22.04.1 -> 22.04.2)
libkcompactdisc (22.04.1 -> 22.04.2)
libkdcraw (22.04.1 -> 22.04.2)
libkdegames (22.04.1 -> 22.04.2)
libkdepim (22.04.1 -> 22.04.2)
libkeduvocdocument (22.04.1 -> 22.04.2)
libkexiv2 (22.04.1 -> 22.04.2)
libkgapi (22.04.1 -> 22.04.2)
libkipi (22.04.1 -> 22.04.2)
libkleo (22.04.1 -> 22.04.2)
libkmahjongg (22.04.1 -> 22.04.2)
libkomparediff2 (22.04.1 -> 22.04.2)
libksane (22.04.1 -> 22.04.2)
libksieve (22.04.1 -> 22.04.2)
libktorrent (22.04.1 -> 22.04.2)
libqt5-qtwebengine (5.15.9 -> 5.15.10)
lokalize (22.04.1 -> 22.04.2)
lskat (22.04.1 -> 22.04.2)
mailcommon (22.04.1 -> 22.04.2)
mailimporter (22.04.1 -> 22.04.2)
mbox-importer (22.04.1 -> 22.04.2)
messagelib (22.04.1 -> 22.04.2)
mobipocket (22.04.1 -> 22.04.2)
nfs-utils
okteta (0.26.8 -> 0.26.9)
okular (22.04.1 -> 22.04.2)
openvpn (2.5.6 -> 2.5.7)
parley (22.04.1 -> 22.04.2)
pim-data-exporter (22.04.1 -> 22.04.2)
pim-sieve-editor (22.04.1 -> 22.04.2)
pimcommon (22.04.1 -> 22.04.2)
python-gobject
python-importlib-metadata (4.11.3 -> 4.11.4)
rsibreak (0.12.14 -> 0.12.15)
rubygem-bundler (2.3.12 -> 2.3.13)
sdl12_compat (1.2.15 -> 1.2.52)
signon-kwallet-extension (22.04.1 -> 22.04.2)
skanlite (22.04.1 -> 22.04.2)
spectacle (22.04.1 -> 22.04.2)
step (22.04.1 -> 22.04.2)
sweeper (22.04.1 -> 22.04.2)
timezone
udisks2
umbrello (22.04.1 -> 22.04.2)
yakuake (22.04.1 -> 22.04.2)
yast2-network (4.5.2 -> 4.5.3)
=== Details ===
==== akonadi-calendar ====
Version update (22.04.1 -> 22.04.2)
Subpackages: akonadi-calendar-lang akonadi-plugin-calendar kalendarac libKF5AkonadiCalendar5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-calendar-tools ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-contact ====
Version update (22.04.1 -> 22.04.2)
Subpackages: akonadi-plugin-contacts libKF5AkonadiContact5 libKF5ContactEditor5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-import-wizard ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKPimImportWizard5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-mime ====
Version update (22.04.1 -> 22.04.2)
Subpackages: akonadi-plugin-mime libKF5AkonadiMime5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-notes ====
Version update (22.04.1 -> 22.04.2)
Subpackages: akonadi-notes-lang libKF5AkonadiNotes5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-search ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5AkonadiSearch5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akonadi-server ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5AkonadiAgentBase5 libKF5AkonadiCore5 libKF5AkonadiPrivate5 libKF5AkonadiWidgets5 libKF5AkonadiXml5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== akregator ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== analitza ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libAnalitza8
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ark ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libkerfuffle22
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
- Drop patches, now upstream:
* 0001-remove-l-flag-to-7z-a.patch
* 0001-Support-7zip-as-well-as-p7zip.patch
==== baloo5-widgets ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== blinken ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== bovo ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== calendarsupport ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5CalendarSupport5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== cervisia ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== dbus-1 ====
Subpackages: libdbus-1-3
- version provides
- add split provides
- remove unused/obsolete pre_checkin.sh
- The great dbus package split of 22, in preperation for replacing
dbus-daemon with dbus-broker currently there is no functional
difference that will change later, this follows a similar setup
to RedHat and Debian.
* dbus-daemon is now in its own separate package
* Create a dbus-1-common package with all the files and config
that are shared between the dbus-daemon and dbus-broker
implementations.
* Create a dbus-1-tools package with the tools eventually we will
likely want to move to only recommending this package Redhat and
Debian have both already gone down this path.
==== dolphin ====
Version update (22.04.1 -> 22.04.2)
Subpackages: dolphin-part libdolphinvcs5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== dragonplayer ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== eventviews ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5EventViews5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ffmpegthumbs ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== glibc ====
Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd
- Set SUSE_ZNOW=0
- strncpy-power9-vsx.patch: powerpc: Fix VSX register number on
__strncpy_power9 (BZ #29197)
- nptl-cleanup-async-restore.patch: nptl: Fix __libc_cleanup_pop_restore
asynchronous restore (bsc#1200093, BZ #29214)
==== grantleetheme ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5GrantleeTheme5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== guestfs-tools ====
Version update (1.48.1 -> 1.48.2)
- Update to version 1.48.2
* This is a bug fix release
==== gwenview5 ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== incidenceeditor ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5IncidenceEditor5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== irssi ====
Version update (1.2.3 -> 1.4.1)
- drop irssi.conf, upstream does not install it anymore
- drop SOCKS support and related patch
irssi-0.8.16_missing_prototype_warnings.patch, was not working
- drop irssi-1.2.3-add-libera.patch, upstream
- drop irssi-rpmlintrc, did not match
- drop botti, not supported by upstream
- update to 1.4.1
! Note: botti no longer compiles; get in touch if you use it
* Format the output of /QUOTE HELP (#1371, an#82). By Val
Lorentz. Add /SHELP as default alias (an#83)
+ GLib log message filter: /SET glib_log_domains (an#50,
an#59). By Andrej Kacian
+ An option to clear the cutbuffer:
/SET empty_kill_clears_cutbuffer (an#58). By Mikael
Magnusson
+ Scriptable pastebin (an#60, an#88)
+ Configurable actlist separator: /SET actlist_separator
(#1364, an#61)
- Fix window left/right not skipping visible windows
(an#57). By Mikael Magnusson
- Fix wrong printf-format on OpenBSD (an#66, an#68). Reported
by Aaron Bieber
- Fix erroneous output produced by autoload_modules (an#72)
- Fix scroll_page_count setting with `.' (#1365, an#76)
- Fix memory leak in /IGNORE (#1373, an#84). Found by Jookia
- Misc fixes (an#45, an#67, an#70, #1368, an#77)
- CHANTYPES take precedence over (missing) STATUSMSG in /join
(#1358, an#54)
- Fix crash in Perl's $view->set_bookmark (freebsd#254237,
an#56)
- Minor help fixes (an#51, an#52)
- Fix regression where own channel status was forgotten after
/UPGRADE (#1357, an#53)
* /SET resolve_reverse_lookup setting was removed (#1034,
[#1135])
* Irssi will try to connect on IPv4 if IPv6 connection failed
(#1146). By Shivaram Lingamneni
* The display system now renders formats on the fly (#1079,
[#1188], #1191, #1192, #1204, #1205, #1209, #1349, #1355,
an#13, an#14, an#28, an#29, an#36, an#37, an#49)
This major change will break scripts that try to modify
printed text during "print text" signal (#1189). They need
to be ported to modify the text during "print format"
instead. It also breaks the usage of using /FORMAT to add
different colours to a line. Such usage needs to be ported
to using $expando variables instead. Affected scripts
include format_identify.pl, friends_peder.pl, nickcolor.pl,
nm.pl, people.pl
The "gui print text finished" and "gui print text after
finished" signals gained a TEXT_DEST_REC *parameter in the
process.
A new "gui render line text" signal is available to change
the rendering of a line
* made the $Z expando (time) dynamic (#1087, #1207, #1208)
This change breaks the usage of /SET timestamp_format to
supply a custom displayed time stamp. Affected scripts
include binary_time.pl
* /HILIGHT -priority now affects which hilight rule gets
applied (#1228, #1232)
* The NAMES list is now hidden by default if there are more
than 18 users on the channel (an#7)
To revert to the previous behaviour
/SET show_names_on_join_limit -1
* -tls_verify is now enabled by default (#1170, an#18, #1309,
an#23, #1343, #1351)
This may cause an ugly display of notls_verify in the output
of /SERVER LIST, even on plain-text connection, on old
configs. Kindly remove the "tls_verify = "no";" entries from
your config file manually.
* Irssi will now attempt STARTTLS if advertised (#1170, #1312,
an#19)
Use -disallow_starttls if you absolutely do not want this
In order to check for a STARTTLS advertisement, Irssi will
now wait for a response (even an error) to CAP LS 302. If
your bouncer/server does not want to communicate before
receiving USER/PASS at all, use -nocap to disable the CAP
check.
* Channel sync requests (WHO, MODE) are now sent "later" than
user commands. This should improve responsiveness to user
commands in the autojoin phase (an#26, an#32, an#33)
* Irssi is now using full paths in #include directives and
consequently does not add all directories to the include
path anymore (#1040)
* The Build System was ported to Meson (#1064, #1065, #1068,
[#1071], #1072, #1073, #1074, #1075, #1084, #1085, #1118, #1166,
[#1223], #1224, #1245, #1313, #1314, an#31)
* Scriptassist was changed to use a YAML database (#1163)
It will tell you when you need to update your setting
* /BIND shows all partial matches (#1155)
* Cleanup of unused functions (#1017, #1132, #1145, #1182,
[#1246], #1264)
Functions removed:
NET_CALLBACK
NET_HOST_CALLBACK
RESOLVED_NAME_REC
net_gethostbyaddr_nonblock
net_connect_nonblock
[ SIMPLE_THREAD_REC, simple_init, simple_readpipe ]
hash_save_key
Functions deprecated:
dec2octal
g_timeval_cmp
get_timeval_diff
Function names corrected:
g_input -> i_input
g_istr -> i_istr
g_io_channel -> i_io_channel
g_hash_free_value -> i_hash_free_value
remove g_free_true
gslist -> i_slist
glog_func -> i_log_func
glist -> i_list
If multi-version compatibility is desired, module authors
can find an example of backwards compatible code in
cdidier/irssi-xmpp#55
+ Add MSGLEVEL_HIDDEN to Perl (#1044)
+ Add $view->set_hidden_level and $view->remove_lines_by_level
to Perl (#1026)
+ Add a /SET scrollback_max_age setting (#1022). By Heikki
Orsila
+ Add /SET actlist_prefer_window_name (#1025)
+ Add -window option to /CAT (#1023, #1159)
+ Add an option to list specific sections with
/SET -section lookandfeel
(#1048)
+ Add support for IRCv3 CAP LS 302 (#1091)
+ Add a new "print noformat" signal that goes together with
"print format" (#1088, #1192)
+ Add support for IRCv3 extended-join. /SET show_extended_join
to enable (#1097, #1107, #1124)
There are two new /FORMATs, join_extended and
join_extended_account, that theme writers need to take into
account if desired.
+ Add support for IRCv3 setname (#1093, #1104, #1254, GL#33)
+ Add support for IRCv3 account-notify (#1100, #1098, GL#33,
[#1105], #1131). Credit to oss-fuzz
/SET show_account_notify to enable
+ Add support for IRCv3 invite-notify (#1094)
+ Add support for receiving IRCv3 message-tags (#576, #1090)
+ Add support for sending IRCv3 message-tags (#1092, an#34)
+ Enable the znc.in/self-message CAP by default (#1123)
+ Add support for IRCv3 away-notify. /SET away_notify_public
to enable (#1099, GL#33, #1105)
+ Add support for IRCv3 chghost (#1096, GL#33, #1105)
For servers with broken chghost implementation that fill the
status window with host changed messages, one may add "quote
cap req -chghost" to the -autosendcmd or, if the host change
messages are entirely undesired, "/format -delete
host_changed"
+ Add support for IRCv3 server-time. /SET show_server_time to
enable (#1108)
+ Add support for logging IRCv3 server-time.
/SET log_server_time to disable (#1318, an#16)
+ Add IRCv3 features to signals.txt (#1111)
In particular, "message join" now takes 2 additional
arguments, script and module authors must beware of this
change.
+ Show the unignore time in /IGNORE output (#1158, #1161)
+ Add /SET quit_on_hup to make the behaviour of SIGHUP
configurable (#828, #1169). By Pinguin1234
+ Support numeric 489 as ERR_SECUREONLYCHAN (#1193, #1196). By
Michael Hansen
+ Improve support for building Irssi in Termux-Android with
Meson (#1199)
+ Add usermode key to Irssi::Irc::Chatnet in Perl (#1288). By
Jessica Sophie Porter
+ Add format_string_expand and format_string_unexpand
functions to Perl (#1286)
+ Add ...->format_create_dest(...)->printformat("format",
args...) and ...->printformat_module("module", "format",
args...) methods to Perl (#1284)
You can avoid any CORE::GLOBAL::caller hacks using the
printformat_module method, especially sind that hack was not
safe during signal emissions
+ Add tracking of user accounts in the channel nicklist using
WHOX on join (#1250)
+ Add auto-loading of the Perl and otr module from /SET
autoload_modules (#1295)
+ Add /IGNORE ... NOHILIGHT to ignore some hilights (#1260)
+ Do not beep on hidden lines with /SET beep_msg_level
... -HIDDEN (#1259)
+ Added /CS, /MS, /NS, and /OS aliases to the default config
(#1316). By Mathis Beer
+ Allow -tls_ca{file,path} '' to unset an argument (#730,
[#1060], an#30)
+ Add a "server outgoing modify" signal to intercept outgoing
messages (#1148, #1151, an#15, an#43). Original by
JustAnotherArchivist
- remove some hard-coded 510 byte assumptions (#1086)
- Several fixes for error checks in SSL (#944, #1037, #943,
[#1036]). Reported by Chi Li
- Wrong variable tested in mask_match (#902, #1035)
- Fix bug where irssi-proxy with `?'-port would not reconnect
(#1041)
- Allow shrinking of /SET rawlog_lines (#957, #1020). By
Marcus "Teschi" Prinz
- Fix /WINDOW BALANCE warning (#1054)
- fix overflow when first command history entry expires
(#1070)
- begin modularising IRC module (#1067, #1112, #1113)
- fix some memory leaks in /DCC RESUME and settings_add
(#1077). By Zero King
- fix cut-off text with theme_indent module and /SET
indent_always OFF (#1078)
- fix the cap_queue order (#1095)
- add reference counted strings (#1089)
- Fix irc_op_public messages not triggering hilights (#354,
[#891], #1129). By Dan Collins
- Fix /IGNORE not setting the right level in irc_op_public
messages (#1280). Credit to oss-fuzz
- Fix GTimeVal deprecation (#1141, #1144, #1145, #1350, an#44)
If multi-version compatibility is desired, module authors
can find an example of backwards compatible code in
cdidier/irssi-xmpp#53
- Fix /IGNORE ... MODES NO_ACT not working (#1164)
- Deprecated -ssl* options are hidden from tab completion
(#1171)
- Make /SET actlist_sort a choice type (#1198)
- Fix crash from self-unloading script (#1206). By Thomas
Stagner
- Fix crash during Perl signal emission (#1233, #1234)
- Fix a case where empty lines or comments inside channels or
servers in the config would confuse Irssi (#1062, #1242,
[#1243])
- Fix reported freezing in DCC GET on slow disks (#159, #1271)
- Fix message-tags parsing (#1274, #1275). Credit to oss-fuzz
- Fail redirects when receiving numeric 263 (RPL_TRYAGAIN) in
response to /WHO (#1283)
- Some updates to .gitignore (#1302). By Rene Kita
- Fix build on operating systems with X/Open Curses, version 2
(#1305, #1308). By Nia Alarie (Regression introduced with
[#1290], alternative fix for Irssi 1.2.3 no-term.h.patch)
- Fix otr module not using g_strndup, e.g. on Solaris 10
(#1315). By Claes Nästén
- Fix cursor getting stuck for auto completions that changes
case (#1176, #1322, an#8). By ffrogman
- Restore operation of tag/* in /SET activity_hide_targets
(#1337, an#11) nb. the ::all syntax was working in Irssi 1.1
and 1.2 (and continues to work)
- Fix /SERVER ADD -matrix -network my_matrix_network
(an#12). By Andrej Kacian
- Fix /SERVER ADD creating duplicated entries in the config
file (#1317, an#22, an#41)
- Fix critical when SASL user is set and SASL password is
empty (#1325, an#21)
- Misc fixes (#1106, #1141, #1272, #1297, an#35)
- Fuzz fixes (#1116, #1117, #1119, #1125, #1126, an#20)
- Build system fixes (#1101, #1102, #1069, #1140, #1181, #1253)
- Sync docs and scripts (an#39)
- Text and Help updates
- add -tls_* options to manual (#1029, #1030). By Jacob
V. Rasmussen
- missing targets in /MSG (#1032)
- wrong parameter in /ECHO (#1024)
- Spelling in OTR (#1047). By David Gall
- Clarify statusbar priority (#1049). By Marius Gedminas
- Document get_irssi_dir in Perl (#1051, #1052). By Alex
Shafer
- typo in /HILIGHT help (#1081). By DFrostByte
- improved clarity of your_nick_owned (#1138). By Mike Quin
- Update some URLs to https (#1163)
- Add documentation for escaping some characters (#1329,
[#1330], an#9). By Guntbert Reiter
- Fix some typos (#1336, an#10). By Francis Mteo
- Document $abiversion and parse_special (an#38). By bw1
- Infrastructure updates:
- Support for Github Actions (#1039, #1103, #1160, #1212,
[#1231], #1252, #1261, an#40)
- Run clang-format on pull requests (#1172, #1173, #1184,
[#1230], #1247, #1287)
- Run abidiff on pull requests (#1179, #1195)
- Test CI-Fuzz (#1279, #1304, an#17)
==== juk ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== k3b ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kaccounts-integration ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libkaccounts2
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kaccounts-providers ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kaddressbook ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kaddressbook-doc libKPimAddressbookImportExport5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kalgebra ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kamera ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kamera-lang kio_kamera
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kanagram ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kapptemplate ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kate ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kate-plugins
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== katomic ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kblackbox ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kblocks ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kbounce ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kbreakout ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kbruch ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcachegrind ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcalc ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcalutils ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5CalendarUtils5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcharselect ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcolorchooser ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kcron ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kde-print-manager ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdeconnect-kde ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kdeconnect-kde-zsh-completion
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdeedu-data ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdegraphics-thumbnailers ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdenetwork-filesharing ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdepim-addons ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdepim-runtime ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdevelop5 ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kdevplatform libkdevplatform58
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdf ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kwikdisk
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdialog ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kdiamond ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kgeography ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kget ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kgoldrunner ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== khangman ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== khelpcenter5 ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kidentitymanagement ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kidentitymanagement-lang libKF5IdentityManagement5 libKF5IdentityManagementWidgets5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kig ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kimap ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kimap-lang libKF5IMAP5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kio-extras5 ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libkioarchive5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kio_audiocd ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kipi-plugins ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kiriki ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kiten ====
Version update (22.04.1 -> 22.04.2)
Subpackages: fonts-KanjiStrokeOrders
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kitinerary ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKPimItinerary5 libKPimItinerary5-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kjumpingcube ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kldap ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Ldap5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kleopatra ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== klines ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmag ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmahjongg ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmail ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kmail-application-icons ktnef
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmail-account-wizard ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmailtransport ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5MailTransport5 libKF5MailTransportAkonadi5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmbox ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmime ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kmime-lang libKF5Mime5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmines ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmousetool ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmouth ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kmplot ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== knavalbattle ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== knetwalk ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== knotes ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kolf ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kollision ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kolourpaint ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kompare ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== konquest ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== konsole ====
Version update (22.04.1 -> 22.04.2)
Subpackages: konsole-part konsole-part-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kontact ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kontactinterface ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kontactinterface-lang libKF5KontactInterface5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== konversation ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kopete ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== korganizer ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kpat ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kpimtextedit ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5PimTextEdit5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kpkpass ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kqtquickcharts ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kreversi ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kruler ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kshisen ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ksirk ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ksmtp ====
Version update (22.04.1 -> 22.04.2)
Subpackages: ksmtp-lang libKPimSMTP5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kspaceduel ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ksquares ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ksudoku ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ksystemlog ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kteatime ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ktimer ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ktnef ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== ktouch ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kturtle ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kubrick ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kwalletmanager5 ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== kwordquiz ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libgravatar ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Gravatar5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkcddb ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Cddb5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkcompactdisc ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5CompactDisc5 libkcompactdisc-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkdcraw ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkdegames ====
Version update (22.04.1 -> 22.04.2)
Subpackages: kdegames-carddecks-default libKF5KDEGames7 libkdegames-qt5-imports
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkdepim ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Libkdepim5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkeduvocdocument ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKEduVocDocument5 libkeduvocdocument-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkexiv2 ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkgapi ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKPimGAPICalendar5 libKPimGAPIContacts5 libKPimGAPICore5 libKPimGAPITasks5 libkgapi-lang sasl2-kdexoauth2
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkipi ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Kipi32_0_0 libkipi-data
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkleo ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Libkleo5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkmahjongg ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5KMahjongglib5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libkomparediff2 ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libkomparediff2-5 libkomparediff2-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libksane ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Sane5 libksane-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libksieve ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libksieve5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libktorrent ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5Torrent6 libktorrent-lang
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== libqt5-qtwebengine ====
Version update (5.15.9 -> 5.15.10)
- Update to version 5.15.10:
* Fix top level build with no widget
* Fix read-after-free on EGL extensions
* Update Chromium
* Add workaround for unstable gn on macOS in ci
* Pass archiver to gn build
* Fix navigation to non-local URLs
* Add support for universal builds for qtwebengine and qtpdf
* Enable Apple Silicon support
* Fix cross compilation x86_64->arm64 on mac
* Bump version to 5.15.10
* CustomDialogs: Make custom input fields readable in dark mode
* CookieBrowser: Make alternating rows readable in dark mode
* Update Chromium:
* Bump V8_PATCH_LEVEL
* Fix clang set-but-unused-variable warning
* Fix mac toolchain python linker script call
* Fix missing dependency for gpu sources
* Fix python calls
* Fix undefined symbol for universal link
* Quick fix for regression in service workers by reverting
backports
* [Backport] CVE-2022-0797: Out of bounds memory access
in Mojo
* [Backport] CVE-2022-1125
* [Backport] CVE-2022-1138: Inappropriate implementation
in Web Cursor.
* [Backport] CVE-2022-1305: Use after free in storage
* [Backport] CVE-2022-1310: Use after free in regular
expressions
* [Backport] CVE-2022-1314: Type Confusion in V8
* [Backport] CVE-2022-1493: Use after free in Dev Tools
* [Backport] On arm64 hosts, set host_cpu to 'arm64', not 'arm'
* [Backport] Security Bug 1296876
* [Backport] Security bug 1269999
* [Backport] Security bug 1280852
* [Backport] Security bug 1292905
* [Backport] Security bug 1304659
* [Backport] Security bug 1306507
==== lokalize ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== lskat ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== mailcommon ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5MailCommon5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== mailimporter ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5MailImporter5 libKF5MailImporterAkonadi5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== mbox-importer ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== messagelib ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== mobipocket ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client nfs-kernel-server
- 0001-systemd-Apply-all-sysctl-settings-when-NFS-related-m.patch
Ensure sysctl setting work (bsc#1199856)
- 0002-Update-autoconfig-files-to-work-with-v2.71.patch
- 0003-autoconf-change-tirpc-to-check-for-a-file-not-for-an.patch
Update for latest autoconf
==== okteta ====
Version update (0.26.8 -> 0.26.9)
Subpackages: libKasten4 libOkteta3 libkasten-lang libokteta-lang okteta-data okteta-lang
- Update to 0.26.9
* Fixed: multiple issues in Structures tool
+ wrong warnings about unknown tag name "enumDef" in <data>
+ missing cleaning of any existing string data on reading zero-bytes string
(kde#396057)
+ bad condition for string maxBytes value meaning empty string (kde#396057)
+ missing update of tree view after committing a change (kde#337653)
+ wrong offset for view markup of string characters
+ reading data from wrong offset on changes with a locked offset
+ missing combobox editor for enumerations with defined values (kde#337652)
* Improved: multiple things in Structures tool
+ new context menu to copy data & display string to the clipboard
(kde#314798)
+ additional action for before-mentioned context menu to select the bytes
* Improved: control elements in tool views all have margins to the border
and follow general QToolBar button style
* Improved: translations
==== okular ====
Version update (22.04.1 -> 22.04.2)
Subpackages: okular-spectre
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== openvpn ====
Version update (2.5.6 -> 2.5.7)
- update to 2.5.7:
* Limited OpenSSL 3.0 support
* print OpenSSL error stack if decoding PKCS12 file fails
* fix omission of cipher-negotiation.rst in tarballs
* fix errno handling on Windows (Windows has different classes of
error codes, GetLastError() and C runtime errno, these should now
be handled correctly)
* fix PATH_MAX build failure in auth-pam.c
* fix t_net.sh self-test leaving around stale "ovpn-dummy0" interface
* fix overlong path names, leading to missing pkcs11-helper patch
in tarball
==== parley ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== pim-data-exporter ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== pim-sieve-editor ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== pimcommon ====
Version update (22.04.1 -> 22.04.2)
Subpackages: libKF5PimCommon5 libKF5PimCommonAkonadi5
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== python-gobject ====
Subpackages: python38-gobject python38-gobject-Gdk python38-gobject-cairo
- Add dependency on python-cairo to python-gobject-cairo: The
introspection wrapper needs the actual pycairo underneath
(boo#1179584).
==== python-importlib-metadata ====
Version update (4.11.3 -> 4.11.4)
- update to 4.11.4:
* #379: In ``PathDistribution._name_from_stem``, avoid including
parts of the extension in the result.
* #381: In ``PathDistribution._normalized_name``, ensure names
loaded from the stem of the filename are also normalized, ensuring
duplicate entry points by packages varying only by non-normalized
name are hidden.
==== rsibreak ====
Version update (0.12.14 -> 0.12.15)
Subpackages: rsibreak-lang
- Update to 0.12.15:
* Add option to suppress breaks while fullscreen windows are
visible
* Potentially fix tooltip rendering on XFCE
* Make it possible to disable tiny breaks
* Configuration dialog: Don't reset timers when pressing "OK" if
no changes happened
* Translation improvements
* Convert license headers to SPDX
* Internal code improvements
- Add signature file and keyring
==== rubygem-bundler ====
Version update (2.3.12 -> 2.3.13)
- updated to version 2.3.13
see installed CHANGELOG.md
- Bug fixes:
- Fix missing required rubygems version when using old APIs
[#5496](https://github.com/rubygems/rubygems/pull/5496)
- Fix crash when gem used twice in Gemfile under different
platforms
[#5187](https://github.com/rubygems/rubygems/pull/5187)
- Performance:
- Speed up `bundler/setup` time
[#5503](https://github.com/rubygems/rubygems/pull/5503)
==== sdl12_compat ====
Version update (1.2.15 -> 1.2.52)
- Add baselibs.conf
- Add 0001-SDL_GetWMInfo-work-like-1.2-when-SDL_SetVideoMode-ha.patch
to unbreak use with schismtracker.
- Add 0001-Set-pixels-in-SDL_CreateYUVOverlay-Fix-164.patch
to unbreak use with MPlayer.
- Hot enable sdl12-compat to be the SDL1 replacement [boo#1198182]
- Initial package (v1.2.52) for build.opensuse.org
==== signon-kwallet-extension ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== skanlite ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== spectacle ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== step ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== sweeper ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== timezone ====
- switch to _multibuild
- refresh keyring, enable keyring validation
==== udisks2 ====
Subpackages: libudisks2-0 libudisks2-0_btrfs
- Added hardening to systemd service(s) (bsc#1181400). Added patch(es):
* harden_udisks2-zram-setup@.service.patch
* harden_udisks2.service.patch
==== umbrello ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== yakuake ====
Version update (22.04.1 -> 22.04.2)
- Update to 22.04.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.04.2/
==== yast2-network ====
Version update (4.5.2 -> 4.5.3)
- Allow more than 6 domains in resolver search list (bsc#1200155).
- 4.5.3
1
0
Hi,
Please note that today I've massively updated EspressoBin wiki:
https://en.opensuse.org/HCL:EspressoBin
Major updates are related to the boot loader reflash or recovery procedure. Feel free to add/fix/modify/remove my changes.
2
1
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager-applet (1.26.0 -> 1.28.0)
colord-gtk (0.2.0+8 -> 0.3.0)
fprintd
gnome-desktop (42.1 -> 42.2)
gnome-settings-daemon (42.1 -> 42.2)
gtk4 (4.6.5 -> 4.7.0)
kernel-firmware (20220516 -> 20220607)
libadwaita (1.1.1 -> 1.1.2)
libayatana-appindicator (0.5.90 -> 0.5.91)
libmediaart (1.9.5 -> 1.9.6)
ncurses (6.3.20220529 -> 6.3.20220604)
openssl (1.1.1n -> 1.1.1o)
openssl-1_1 (1.1.1n -> 1.1.1o)
python-lxml (4.8.0 -> 4.9.0)
tracker (3.3.0 -> 3.3.1)
tracker-miners (3.3.0 -> 3.3.1)
usbredir
yast2-add-on (4.5.0 -> 4.5.1)
yast2-online-update (4.5.0 -> 4.5.1)
=== Details ===
==== NetworkManager-applet ====
Version update (1.26.0 -> 1.28.0)
Subpackages: NetworkManager-connection-editor
- Update to version 1.28.0:
+ Use correct font size for headings in order to make lives of
HiDPI a little less miserable.
+ Updated translations.
==== colord-gtk ====
Version update (0.2.0+8 -> 0.3.0)
- Update to stable release 0.3.0
+ Stable release
+ Sync spec file with downstream
- Use source signature
==== fprintd ====
Subpackages: fprintd-pam
- Do not recommend lang package: the lang package has smarter
supplements in place.
==== gnome-desktop ====
Version update (42.1 -> 42.2)
Subpackages: gnome-version libgnome-desktop-3-19 libgnome-desktop-3_0-common libgnome-desktop-4-1 typelib-1_0-GnomeDesktop-3_0 typelib-1_0-GnomeDesktop-4_0
- Update to version 42.2:
+ Don't try to use bubblewrap inside snaps.
==== gnome-settings-daemon ====
Version update (42.1 -> 42.2)
- Update to version 42.2:
+ Drop direct uses of GSlice.
+ A11y-settings: Enable toolkit-accessibility when using the
magnifier.
+ Xsettings:
- Simplify fetching string for an enum value.
- Remove direct mapping from gtk-im-module to Gtk/IMModule.
+ Updated translations.
==== gtk4 ====
Version update (4.6.5 -> 4.7.0)
Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.7.0:
+ GtkTextView: Reduce overdraws.
+ GtkViewport: Default scroll-to-focus to TRUE.
+ GtkText: Stop blinking when we lose focus.
+ GtkSearchEntry: Make search delay configurable.
+ GtkPopoverMenu: Fix RTL positioning of buttons.
+ GtkLabel: Fix focus keynav with links
+ GtkFileChooser:
- Prevent undesirable completion popups.
- Fix a corner case in save mode.
- Keep the portal filechooser alive long enough.
+ GtkCheckButton: Allow setting a custom child.
+ GtkEditableLabel: Make the :editing property writable.
+ GtkColumnView: Various optimizations to improve scrolling
performance.
+ GtkTreeStore: Allow populating tree stores from ui files.
+ GtkBoxLayout: Avoid infinite loops.
+ CSS: Optimize reordering within the same parent.
+ Emoji:
- Update to CLDR v40 / Unicode 14.
- Add more locales.
+ Input:
- Add scroll unit handling.
- Handle display changes in GtkIMMultiContext.
- Always populate GDK_AXIS_X/Y in event history.
- Don't crash for large compose tables.
+ Accessibility: Fix a crash at start when orca is running.
+ Theme:
- Refresh icons.
- Fix selection in vertical spin buttons.
- Fix selection in editable labels.
+ gdk:
- Optimize pixel format conversions.
- Use EGL_KHR_swap_buffers_with_damage for NVidia.
+ gsk:
- Handle large viewports.
- Prepare texture libraries for glyphy rendering.
- Don't leak big glyphs in the glyph cache.
- Align offscreen rendering with th pixel grid.
- Check for half-float support before using it.
+ Updated translations.
==== kernel-firmware ====
Version update (20220516 -> 20220607)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20220607 (git commit 02c69863c885):
* rtl_bt: Update RTL8852A BT USB firmware to 0xDFB8_0634
* Makefile: replace mkdir by install
* iwlwifi: remove old unsupported 3160/7260/7265/8000/8265 firmware
* ath11k: WCN6855 hw2.0: update to WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.9
* WHENCE: ath11k: move regdb.bin before board-2.bin
* ath10k: QCA9984 hw1.0: update firmware-5.bin to 10.4-3.9.0.2-00157
* ath10k: QCA9888 hw2.0: update board-2.bin
* ath10k: QCA9888 hw2.0: update firmware-5.bin to 10.4-3.9.0.2-00157
* ath10k: QCA4019 hw1.0: update board-2.bin
* ath10k: WCN3990 hw1.0: add board-2.bin
- Update aliases from 5.19-rc1
- Minor adjustment of spec template and makespec.sh to align with
the latest TW format
==== libadwaita ====
Version update (1.1.1 -> 1.1.2)
Subpackages: libadwaita-1-0 typelib-1_0-Adw-1
- Update to version 1.1.2:
+ AdwLeaflet: Fix child sizing with
fold-threshold-policy=natural.
+ AdwStyleManager: Correctly handle removing a GdkDisplay.
+ AdwSwipeTracker:
- Fix a memory leak.
- Fix high contrast setting name when using a portal.
+ AdwTabBar: Fix middle click when inside GtkWindowHandle.
+ Stylesheet:
- Fix action row title and subtitle inside GtkHeaderBar.
- Fix progressbar.osd overriding text color.
- Ensure active states consistently work with touchscreens.
- Fix GtkDropDown visual glitch when pressed on touchscreen.
+ Updated translations.
==== libayatana-appindicator ====
Version update (0.5.90 -> 0.5.91)
Subpackages: libayatana-appindicator3-1 typelib-1_0-AyatanaAppIndicator3-0_1
- Update to version 0.5.91 (changes since 0.5.90):
* src/appindicator.c: Clean up all g_signal_emit and g_signal_new calls
so that they correspond with each other.
* src/appindicator.c: Fix path NULL check in status_icon_change().
* Clean up compilation flags.
* tests/run-xvfb.sh: Allow sourcing run-xvfb.sh with /bin/sh.
* Use /bin/sh for running tests.
* src/ayatana-appindicator-0.1.pc.in. Fix for use with CMake.
* Fix build with musl libc.
==== libmediaart ====
Version update (1.9.5 -> 1.9.6)
Subpackages: libmediaart-2_0-0 typelib-1_0-MediaArt-2_0
- Update to version 1.9.6:
+ build: Add introspection/vapi/tests options.
+ build: Use library() to optionally build a static library.
==== ncurses ====
Version update (6.3.20220529 -> 6.3.20220604)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch +20220604
+ add note on portable memory-leak checking in man/curs_memleaks.3x
+ remove u6-u9 from teken-2018 -TD
+ set "xterm-new" to "xterm-p370", add "xterm-p371" -TD
==== openssl ====
Version update (1.1.1n -> 1.1.1o)
- Update to 1.1.1o release
==== openssl-1_1 ====
Version update (1.1.1n -> 1.1.1o)
Subpackages: libopenssl1_1 libopenssl1_1-hmac
- Update to 1.1.1o: [CVE-2022-1292, bsc#1199166]
* Fixed a bug in the c_rehash script which was not properly sanitising
shell metacharacters to prevent command injection.
* Rebased openssl-s390x-assembly-pack-add-OPENSSL_s390xcap-environment.patch
* Rebased openssl-s390x-assembly-pack-add-support-for-pcc-and-kma-inst.patch
- Added openssl-update_expired_certificates.patch
* Openssl failed tests because of expired certificates.
* bsc#1185637
* Sourced from https://github.com/openssl/openssl/pull/18446/commits
==== python-lxml ====
Version update (4.8.0 -> 4.9.0)
- update to 4.9.0:
* The mixin inheritance order in ``lxml.html`` was corrected.
* Built with Cython 0.29.30 to adapt to changes in Python 3.11 and 3.12.
==== tracker ====
Version update (3.3.0 -> 3.3.1)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files typelib-1_0-Tracker-3_0
- Update to version 3.3.1:
+ Fixed blank nodes to return the correct identifier in certain
queries.
+ Fixes to FTS consistency after updates.
+ Fixes to HTTP module linking.
+ Fix handling of STRING_LITERAL_LONG1/2 terminals.
+ Fix handling of negated property paths.
+ Use .so suffix for modules on all platforms.
+ Added code examples in JS/Python.
+ Developer documentation improvements.
==== tracker-miners ====
Version update (3.3.0 -> 3.3.1)
Subpackages: tracker-miner-files
- Update to version 3.3.1:
+ Properly fallback to inotify monitors on fanotify failures.
+ Fixes to handling of files being atomically replaced.
+ Fixes to handling of IPTC data embedded in TIFFs.
+ Improvements to "tracker3 status" output and redirection
handling.
==== usbredir ====
Subpackages: libusbredirhost1 libusbredirparser1
- Add upstream backported patches:
+ 9426fdb1.patch: Check header length unserialising data.
+ dffc41c3.patch: usbredirect: fix leak on bad input.
==== yast2-add-on ====
Version update (4.5.0 -> 4.5.1)
- Support managing system in a chroot (bsc#1199840)
- 4.5.1
==== yast2-online-update ====
Version update (4.5.0 -> 4.5.1)
Subpackages: yast2-online-update-frontend
- Support managing system in a chroot (bsc#1199840)
- 4.5.1
1
0
The default access modifier in Apex is private, while in Java, it is the default. The public in Java is not the same as the public in apex.
The public in Apex means any Apex can use the method or variable in this application or namespace. If you want to make something public like it is in Java, you need to use globally.
If you want to be a freelance Apex developer, you need several years of experience with Oracle Application Express and writing code. Also, having experience with Java will help you a lot.
Many top clients are looking to hire Apex developers on emerging freelancing portals like Eiliana.com. You can work on lucrative projects that clients from over 200+ countries post on Eiliana. Sign up today!
vist- https://eiliana.com/technology/hire-apex-developers
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.35 -> 7.1.0.37)
cppcheck (2.7.5 -> 2.8)
hylafax+
iso-codes (4.9.0 -> 4.10.0)
kdump (1.0.2+git12.g1a68ca5 -> 1.0.2+git13.ge715180)
kernel-source (5.18.1 -> 5.18.2)
kexec-tools (2.0.22 -> 2.0.24)
libnftnl (1.2.1 -> 1.2.2)
makedumpfile (1.7.0 -> 1.7.1)
nftables (1.0.2 -> 1.0.4)
snapper
=== Details ===
==== ImageMagick ====
Version update (7.1.0.35 -> 7.1.0.37)
Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- update version to 7.1.0.37
* Support Unicode MP4 filenames
* set pass when webp:target-size or webp:target-psnr are set to fix #4931
* Corrected rotation angle for right-top and left-bottom in auto-orient.
see the upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
- version update to 7.1.0.36
see the upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
==== cppcheck ====
Version update (2.7.5 -> 2.8)
- update to 2.8:
* Lifetime analysis can now track lifetime across user-defined constructors
when they are inline and using member initializer list.
* SymbolDatabase can now deduce iterator types from how they are specified in
the library files.
* ValueFlow can evaluate class member functions that return known values.
* Improve duplicateValueTenary to not warn when used as an lvalue or when one
branch has side effects
* Fix variableScope to not warn when variables are used in lambda functions
* Fix unassignedVariable warnings when using structured bindings
* Fix redundantInitialization warning when variable is used in a lambda
* Fix variableScope warnings when using if/while init-statement
* Improve lifetime analysis when returning variadic template expressions
* Detect more statements with constStatement
* Detect variableScope for more types
* Improvements to unreadVariable
* Detect more instances of C style casts
* Warn if the return value of new is discarded
* The pre-ValueFlow uninitialized checker now uses a different ID as legacyUninitvar
* Extended library format to exclude specific function argument values
==== hylafax+ ====
Subpackages: hylafax+-client libfaxutil7_0_5
- Project and download links switched to https
libtiff44.diff added for tiff 4.x compatibility
==== iso-codes ====
Version update (4.9.0 -> 4.10.0)
Subpackages: iso-codes-lang
- update to 4.10.0:
* Update ISO 639-2 codes to include Montenegrin (cnr) added in 2017.
* Update ISO 4217. Fixes #24
* ISO 639-3: New translation for Friulian
* ISO 639-5: New translations for Esperanto, Hindi, Russian
* ISO 4217: New translation for Esperanto
* Translation updates for ISO 3166-1
* Translation updates for ISO 3166-2
* Translation updates for ISO 3166-3
* Translation updates for ISO 639-2
* Translation updates for ISO 639-3
* Translation updates for ISO 639-5
* Translation updates for ISO 4217
* Translation updates for ISO 15924
* ISO 3166-2: Add parent codes for GB. Fixes #36
* ISO 3166-2: Fix subdivision names for Finland. Fixes #37
==== kdump ====
Version update (1.0.2+git12.g1a68ca5 -> 1.0.2+git13.ge715180)
- kdumptool calibrate: add more margin to reservation calculations
(bsc#1196728)
==== kernel-source ====
Version update (5.18.1 -> 5.18.2)
- Update config files (only run_oldconfig.sh).
- commit 695cfee
- Linux 5.18.2 (bsc#1012628).
- netfilter: nf_tables: disallow non-stateful expression in sets
earlier (bsc#1012628).
- i2c: ismt: prevent memory corruption in ismt_access()
(bsc#1012628).
- assoc_array: Fix BUG_ON during garbage collect (bsc#1012628).
- pipe: make poll_usage boolean and annotate its access
(bsc#1012628).
- pipe: Fix missing lock in pipe_resize_ring() (bsc#1012628).
- net: ipa: compute proper aggregation limit (bsc#1012628).
- drm/i915: Fix -Wstringop-overflow warning in call to
intel_read_wm_latency() (bsc#1012628).
- exfat: check if cluster num is valid (bsc#1012628).
- netfilter: nft_limit: Clone packet limits' cost value
(bsc#1012628).
- netfilter: nf_tables: sanitize nft_set_desc_concat_parse()
(bsc#1012628).
- netfilter: nf_tables: hold mutex on netns pre_exit path
(bsc#1012628).
- netfilter: nf_tables: double hook unregistration in netns path
(bsc#1012628).
- netfilter: conntrack: re-fetch conntrack after insertion
(bsc#1012628).
- KVM: PPC: Book3S HV: fix incorrect NULL check on list iterator
(bsc#1012628).
- x86/fpu: KVM: Set the base guest FPU uABI size to sizeof(struct
kvm_xsave) (bsc#1012628).
- x86/kvm: Alloc dummy async #PF token outside of raw spinlock
(bsc#1012628).
- x86, kvm: use correct GFP flags for preemption disabled
(bsc#1012628).
- x86/uaccess: Implement macros for CMPXCHG on user addresses
(bsc#1012628).
- KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits
(bsc#1012628).
- KVM: x86: Use __try_cmpxchg_user() to emulate atomic accesses
(bsc#1012628).
- KVM: x86: fix typo in __try_cmpxchg_user causing non-atomicness
(bsc#1012628).
- KVM: x86: avoid loading a vCPU after .vm_destroy was called
(bsc#1012628).
- KVM: x86: Fix the intel_pt PMI handling wrongly considered
from guest (bsc#1012628).
- KVM: x86: Drop WARNs that assert a triple fault never "escapes"
from L2 (bsc#1012628).
- KVM: x86/mmu: Don't rebuild page when the page is synced and
no tlb flushing is required (bsc#1012628).
- KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent
kernel data leak (bsc#1012628).
- crypto: caam - fix i.MX6SX entropy delay value (bsc#1012628).
- crypto: ecrdsa - Fix incorrect use of vli_cmp (bsc#1012628).
- crypto: qat - rework the VF2PF interrupt handling logic
(bsc#1012628).
- zsmalloc: fix races between asynchronous zspage free and page
migration (bsc#1012628).
- tools/memory-model/README: Update klitmus7 compat table
(bsc#1012628).
- ALSA: usb-audio: Workaround for clock setup on TEAC devices
(bsc#1012628).
- ALSA: usb-audio: Add missing ep_idx in fixed EP quirks
(bsc#1012628).
- ALSA: usb-audio: Configure sync endpoints before data
(bsc#1012628).
- Bluetooth: hci_qca: Use del_timer_sync() before freeing
(bsc#1012628).
- ARM: dts: s5pv210: Correct interrupt name for bluetooth in Aries
(bsc#1012628).
- dm integrity: fix error code in dm_integrity_ctr()
(bsc#1012628).
- dm crypt: make printing of the key constant-time (bsc#1012628).
- dm stats: add cond_resched when looping over entries
(bsc#1012628).
- dm verity: set DM_TARGET_IMMUTABLE feature flag (bsc#1012628).
- raid5: introduce MD_BROKEN (bsc#1012628).
- fs/ntfs3: validate BOOT sectors_per_clusters (bsc#1012628).
- HID: multitouch: Add support for Google Whiskers Touchpad
(bsc#1012628).
- HID: multitouch: add quirks to enable Lenovo X12 trackpoint
(bsc#1012628).
- x86/sgx: Disconnect backing page references from dirty status
(bsc#1012628).
- x86/sgx: Mark PCMD page as dirty when modifying contents
(bsc#1012628).
- x86/sgx: Obtain backing storage page with enclave mutex held
(bsc#1012628).
- x86/sgx: Fix race between reclaimer and page fault handler
(bsc#1012628).
- x86/sgx: Ensure no data in PCMD page after truncate
(bsc#1012628).
- media: i2c: imx412: Fix reset GPIO polarity (bsc#1012628).
- media: i2c: imx412: Fix power_off ordering (bsc#1012628).
- tpm: Fix buffer access in tpm2_get_tpm_pt() (bsc#1012628).
- tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe()
(bsc#1012628).
- docs: submitting-patches: Fix crossref to 'The canonical patch
format' (bsc#1012628).
- NFS: Memory allocation failures are not server fatal errors
(bsc#1012628).
- NFSD: Fix possible sleep during nfsd4_release_lockowner()
(bsc#1012628).
- bpf: Fill new bpf_prog_pack with illegal instructions
(bsc#1012628).
- bpf: Fix potential array overflow in bpf_trampoline_get_progs()
(bsc#1012628).
- bpf: Fix combination of jit blinding and pointers to bpf
subprogs (bsc#1012628).
- bpf: Enlarge offset check value to INT_MAX in
bpf_skb_{load,store}_bytes (bsc#1012628).
- bpf: Fix usage of trace RCU in local storage (bsc#1012628).
- bpf: Fix excessive memory allocation in stack_map_alloc()
(bsc#1012628).
- bpf: Reject writes for PTR_TO_MAP_KEY in check_helper_mem_access
(bsc#1012628).
- bpf: Check PTR_TO_MEM | MEM_RDONLY in check_helper_mem_access
(bsc#1012628).
- bpf: Do write access check for kfunc and global func
(bsc#1012628).
- ALSA: usb-audio: Optimize TEAC clock quirk (bsc#1012628).
- commit b7b9d3b
- Remove mistakenly enabled CONFIG_JBD2_DEBUG.
- commit 7534680
- iommu/amd: Increase timeout waiting for GA log enablement
(bsc#1199052).
- commit dfccb72
- iommu/amd: Increase timeout waiting for GA log enablement
(bsc#1199052).
- commit 0578d76
- KVM: x86: avoid calling x86 emulator without a decoded
instruction (CVE-2022-1852 bsc#1199875).
- commit b4b07c8
- KVM: x86: avoid calling x86 emulator without a decoded
instruction (CVE-2022-1852 bsc#1199875).
- commit 01a406d
==== kexec-tools ====
Version update (2.0.22 -> 2.0.24)
- update to 2.0.24:
* arm64: fix static data relocations in machine_apply_elf_rel()
* kexec/elf: assign one to align if sh_addralign equals zero
* arm64/crashdump-arm64: explicit type conversion to suppress compiler warning
* arm64/kexec-arm64: add support for R_AARCH64_MOVW_UABS_G* rela
* arm64/kexec-arm64: use enum to organize the reloc type
* arm64/kexec-arm64: add support for R_AARCH64_LDST128_ABS_LO12_NC rela
* kexec-tools: fix leak FILE pointer.
* purgatory: do not enable vectorization automatically for purgatory compiling
* kexec-tools: Determine if the image is lzma commpressed
* util_lib/elf_info: harden parsing of printk buffer
* github: run apt-get update before installing packages
* kexec-xen: Allow xen_kexec_exec() to return in case of Live Update
* kexec-tools: print error if kexec_file_load fails
* kexec-tools: mips: Concatenate --reuse-cmdline and --append
* kexec-tools: mips: Add some debug info
* arm64: fix PAGE_OFFSET calc for flipped mm
* arm64: read VA_BITS from kcore for 52-bits VA kernel
* arm64/crashdump: unify routine to get page_offset
* arm64: make phys_offset signed
* s390: add support for --reuse-cmdline
* use slurp_proc_file() in get_command_line()
* add slurp_proc_file()
* s390: use KEXEC_ALL_OPTIONS
* s390: add variable command line size
* arm64: support more than one crash kernel regions
* s390: handle R_390_PLT32DBL reloc entries in machine_apply_elf_rel()
* arm64/crashdump: deduce paddr of _text based on kernel code size
- drop kexec-tools-print-error-if-kexec_file_load-fails.patch,
kexec-tools-remove-duplicate-ramdisk-definition.patch (upstream)
- add homepage url
- add gpg validation
==== libnftnl ====
Version update (1.2.1 -> 1.2.2)
- Update to release 1.2.2
* exthdr: tcp option reset support
==== makedumpfile ====
Version update (1.7.0 -> 1.7.1)
- Update to 1.7.1:
* support for kernel up to 5.17
* sadump: remove variable length array
* print error when reading with unsupported compression
- Drop upstreamed makedumpfile-sadump-kaslr-fix-kaslr_offset-calculation.patch
==== nftables ====
Version update (1.0.2 -> 1.0.4)
Subpackages: libnftables1 python3-nftables
- Update to release 1.0.4
* Fixed a segfault in -o/--optimize with unsupported statements.
* Bogus datatype mismatch error report in sets was fixed.
- Update to release 1.0.3
* Support for wildcard interface name matching with sets
* Support for runtime auto-merge of set elements.
* Enhancements for the ruleset optimization -o/--optimize
option which allows to coalesce several NAT rules into map.
* Support for raw expressions in concatenations.
* Support for integer type protocol header fields in concatenations.
* Allow to reset TCP options (requires Linux kernel >= 5.18)
- Drop 0001-build-add-missing-AM_CPPFLAGS-to-examples.patch
==== snapper ====
Subpackages: libsnapper6 snapper-zypp-plugin
- added generic plugin support (gh#openSUSE/snapper#727)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
389-ds (2.1.1~git13.beb382e1b -> 2.1.1~git22.faef73366)
Mesa (22.1.0 -> 22.1.1)
Mesa-demo (8.4.0 -> 8.5.0)
Mesa-drivers (22.1.0 -> 22.1.1)
MozillaFirefox (100.0.2 -> 101.0)
PackageKit
alsa (1.2.6.1 -> 1.2.7)
alsa-ucm-conf (1.2.6.3 -> 1.2.7)
alsa-utils (1.2.6 -> 1.2.7)
aws-cli (1.24.4 -> 1.25.2)
ayatana-ido (0.9.0 -> 0.9.2)
bind (9.18.2 -> 9.18.3)
cups (2.4.1 -> 2.4.2)
dmraid (1.0.0.rc16 -> 1.0.0.rc16.3)
eog (42.1 -> 42.2)
evolution (3.44.1 -> 3.44.2)
evolution-data-server (3.44.1 -> 3.44.2)
evolution-ews (3.44.1 -> 3.44.2)
facetimehd (0.5.7_k5.17.9_1 -> 0.5.18_k5.18.1_1)
gedit (42.0 -> 42.1)
geoclue2 (2.5.7 -> 2.6.0)
glib2 (2.72.1 -> 2.72.2)
gnome-calculator (42.0 -> 42.1)
gnome-control-center (42.1 -> 42.2)
gnome-maps (42.1 -> 42.2)
gnome-remote-desktop (42.1.1 -> 42.2)
gnome-shell (42.1 -> 42.2)
gnome-shell-extensions (42.1 -> 42.2)
gnome-software (42.1 -> 42.2)
gnome-terminal (3.44.0 -> 3.44.1)
gnutls (3.7.4 -> 3.7.6)
google-noto-fonts
grub2
gsl
gstreamer-plugins-bad
gtk4 (4.6.4 -> 4.6.5)
gtkmm3 (3.24.5 -> 3.24.6)
guestfs-tools (1.44.2 -> 1.48.1)
gvfs (1.50.1 -> 1.50.2)
hwdata (0.359 -> 0.360)
inxi (3.3.07 -> 3.3.16)
iproute2 (5.17 -> 5.18)
iw (5.16 -> 5.19)
jasper (3.0.3 -> 3.0.4)
javapackages-tools
kernel-source (5.17.9 -> 5.18.1)
libdrm (2.4.110 -> 2.4.111)
libdvdread (6.1.2 -> 6.1.3)
libfprint (1.94.3 -> 1.94.4)
libguestfs (1.44.2 -> 1.48.3)
libheif
liblouis
libmbim (1.26.2 -> 1.26.4)
libstorage-ng (4.5.14 -> 4.5.20)
libvirt (8.3.0 -> 8.4.0)
libwacom (1.12 -> 2.2.0)
links (2.26 -> 2.27)
lttng-modules (2.13.3_k5.17.9_1 -> 2.13.4_k5.18.1_1)
lua54
mariadb-connector-c
mdadm
mhvtl (1.64_release+835.6beb0aa01437_k5.17.9_1 -> 1.70_release+862.561d4d5b473f_k5.18.1_1)
mozilla-nspr (4.33 -> 4.34)
mozilla-nss (3.77 -> 3.78.1)
mutt (2.2.3 -> 2.2.5)
mutter (42.1 -> 42.2)
nautilus (42.1.1 -> 42.2)
ncurses (6.3.20220501 -> 6.3.20220529)
ntfs-3g_ntfsprogs (2021.8.22 -> 2022.5.17)
openjpeg2 (2.4.0 -> 2.5.0)
openldap2 (2.6.1 -> 2.6.2)
openldap2-contrib-src (2.6.1 -> 2.6.2)
opensuse-welcome (0.1.8+git.44.7923e16 -> 0.1.8+git.46.64e51ec)
parted
patterns-base
perl-Cpanel-JSON-XS (4.28 -> 4.29)
perl-JSON (4.05 -> 4.06)
perl-Mail-DKIM (1.20220408 -> 1.20220520)
perl-Mojolicious (9.25 -> 9.26)
perl-libwww-perl (6.64 -> 6.66)
poppler (22.05.0 -> 22.06.0)
poppler-qt5 (22.05.0 -> 22.06.0)
publicsuffix (20220510 -> 20220518)
pulseaudio (15.0 -> 16.0)
python-Babel (2.9.1 -> 2.10.1)
python-Pillow
python-Twisted
python-alembic (1.7.7 -> 1.8.0)
python-boto3 (1.23.4 -> 1.24.2)
python-botocore (1.26.4 -> 1.27.2)
python-click (8.0.4 -> 8.1.3)
python-fs (2.4.15 -> 2.4.16)
python-ipython (8.2.0 -> 8.4.0)
python-libvirt-python (8.3.0 -> 8.4.0)
python-prettytable (3.2.0 -> 3.3.0)
python-pyOpenSSL
python-s3transfer (0.5.0 -> 0.6.0)
python-scrypt (0.8.19 -> 0.8.20)
python-traitlets (5.1.1 -> 5.2.2)
python-zipp (3.7.0 -> 3.8.0)
qalculate (3.20.1 -> 4.2.0)
re2 (20220401 -> 20220601)
remmina
rubygem-nokogiri
rubygem-passenger (6.0.13 -> 6.0.14)
rubygem-rack (2.2.3 -> 2.2.3.1)
sg3_utils (1.47+4.82fb156 -> 1.47+5.d13bc56)
suse-module-tools (16.0.19 -> 16.0.20)
system-config-printer (1.5.15 -> 1.5.16)
systemd (250.5 -> 250.6)
tiff (4.3.0 -> 4.4.0)
virt-manager
virt-v2v (1.44.2 -> 2.0.6)
webkit2gtk3 (2.36.2 -> 2.36.3)
webkit2gtk3-soup2 (2.36.2 -> 2.36.3)
wireless-regdb (20220408 -> 20220527)
xfce4-taskmanager (1.4.2 -> 1.5.4)
xfce4-terminal (1.0.3 -> 1.0.4)
xkeyboard-config (2.34 -> 2.36)
yast2-storage-ng (4.5.6 -> 4.5.7)
yast2-trans (84.87.20220520.670357a704 -> 84.87.20220527.e399b59cf0)
=== Details ===
==== 389-ds ====
Version update (2.1.1~git13.beb382e1b -> 2.1.1~git22.faef73366)
Subpackages: lib389 libsvrcore0
- bsc#1199889 - CVE-2022-1949 - full access control bypass with simple crafted query, resolved
by Issue 5170.
- Update to version 2.1.1~git22.faef73366:
* Issue 5302 - Release tarballs don't contain cockpit webapp
* Issue 5237 - audit-ci: Cannot convert undefined or null to object
* Issue 5170 - BUG - ldapsubentries were incorrectly returned (#5285)
* Issue 4970 - Add support for recursively deleting subentries
* Issue 5284 - Replication broken after password change (#5286)
* Issue 5291 - Harden ReplicationManager.wait_for_replication (#5292)
* Issue 5170 - RFE - Filter optimiser (#5171)
* Issue 5276 - CLI - improve task handling
* Issue 5273 - CLI - add arg completer for instance name
* Issue 2893 - CLI - dscreate - add options for setting up replication
==== Mesa ====
Version update (22.1.0 -> 22.1.1)
Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- removed libkms BuildRequires, since it has been dropped from
libdrm
- Update to 22.1.1
* first bugfix release
- supersedes U_llvmpipe-flush-resources-for-kms-swrast-path.patch
- Add patch to fix glitches with KMS (boo#1199885):
* U_llvmpipe-flush-resources-for-kms-swrast-path.patch
==== Mesa-demo ====
Version update (8.4.0 -> 8.5.0)
Subpackages: Mesa-demo-egl Mesa-demo-es Mesa-demo-x
- Update to version 8.5.0
* over four years since the last release; a lot of changes
including support for Meson build
==== Mesa-drivers ====
Version update (22.1.0 -> 22.1.1)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- removed libkms BuildRequires, since it has been dropped from
libdrm
- Update to 22.1.1
* first bugfix release
- supersedes U_llvmpipe-flush-resources-for-kms-swrast-path.patch
- Add patch to fix glitches with KMS (boo#1199885):
* U_llvmpipe-flush-resources-for-kms-swrast-path.patch
==== MozillaFirefox ====
Version update (100.0.2 -> 101.0)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 101.0
* Reading is now easier with the prefers-contrast media query,
which allows sites to detect if the user has requested that web
content is presented with a higher (or lower) contrast
* All non-configured MIME types can now be assigned a custom
action upon download completion
* allows users to use as many microphones as you want, at the
same time, during video conferencing. The most exciting benefit
is that you can easily switch your microphones at any time
(if your conferencing service provider enables this flexibility)
MFSA 2022-20 (bsc#1200027)
* CVE-2022-31736 (bmo#1735923)
Cross-Origin resource's length leaked
* CVE-2022-31737 (bmo#1743767)
Heap buffer overflow in WebGL
* CVE-2022-31738 (bmo#1756388)
Browser window spoof using fullscreen mode
* CVE-2022-31739 (bmo#1765049)
Attacker-influenced path traversal when saving downloaded files
* CVE-2022-31740 (bmo#1766806)
Register allocation problem in WASM on arm64
* CVE-2022-31741 (bmo#1767590)
Uninitialized variable leads to invalid memory read
* CVE-2022-31742 (bmo#1730434)
Querying a WebAuthn token with a large number of allowCredential
entries may have leaked cross-origin information
* CVE-2022-31743 (bmo#1747388)
HTML Parsing incorrectly ended HTML comments prematurely
* CVE-2022-31744 (bmo#1757604)
CSP bypass enabling stylesheet injection
* CVE-2022-31745 (bmo#1760944)
Incorrect Assertion caused by unoptimized array shift operations
* CVE-2022-1919 (bmo#1761275)
Memory Corruption when manipulating webp images
* CVE-2022-31747 (bmo#1760765, bmo#1765610, bmo#1766283,
bmo#1767365, bmo#1768559, bmo#1768734)
Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10
* CVE-2022-31748 (bmo#1713773, bmo#1762201, bmo#1762469,
bmo#1762770, bmo#1764878, bmo#1765226, bmo#1765782, bmo#1765973,
bmo#1767177, bmo#1767181, bmo#1768232, bmo#1768251, bmo#1769869)
Memory safety bugs fixed in Firefox 101
- requires
* NSS 3.78.1
* rust-cbindgen 0.23.0
* rust 1.59
==== PackageKit ====
Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- Add PackageKit-zypp-locked-packages.patch: zypp: ignore locked
packages(gh#hughsie/PackageKit#543, boo#1199895).
==== alsa ====
Version update (1.2.6.1 -> 1.2.7)
Subpackages: libasound2 libatopology2
- Backport upstream fixes for 32bit inode and ELD parsing:
0001-conf-Use-ino64_t-to-save-and-compare-inode-numbers.patch
0002-control-eld-fix-the-decoding-for-older-hw.patch
- Update to version 1.2.7:
more extended UCM API, PCM rate,multi,direct plugin fixes and
enhancements, compilation fixes, etc. For details see:
https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-lib
==== alsa-ucm-conf ====
Version update (1.2.6.3 -> 1.2.7)
- Backport upstream fixes for Steinberg UR44:
0001-Steinberg-UR44-fix-the-Line2-channel-mapping.patch
0002-Steinberg-UR44-fix-the-Line2-channel-mapping-2nd.patch
0003-Steinberg-UR44-fix-the-direction-for-steinberg_ur44_.patch
- Update to version 1.2.7:
Various profile updates for USB-audio, HD-audio, etc.
For details, see:
https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-ucm-conf
- Drop obsoleted patches:
0001-HDA-DualCodecs-fix-typo-in-Speaker-condition.patch
0002-HDA-acp-avoid-to-create-Mic-ACP-LED-control-for-the-.patch
==== alsa-utils ====
Version update (1.2.6 -> 1.2.7)
- Update to alsa-utils 1.2.7:
Enhancement and fixes of alsactl, speaker-test cleanup,
alsatplg enhancements, arecord ghost data fix, etc.
For details see:
https://www.alsa-project.org/wiki/Changes_v1.2.6.3_v1.2.7#alsa-utils
- Drop obsoleted patches:
0001-alsamixer-Fix-regression-in-color-setup.patch
0002-alsamixer-Revert-has_mouse-check.patch
==== aws-cli ====
Version update (1.24.4 -> 1.25.2)
- Update to version 1.25.2
+ For detailed changes see
https://github.com/aws/aws-cli/blob/1.25.2/CHANGELOG.rst
- Update Requires in spec file from setup.py
==== ayatana-ido ====
Version update (0.9.0 -> 0.9.2)
- Update to version 0.9.2:
* src/CMakeLists.txt: link libm for expf, pow and sinf.
* vala: The name of the vapi should match the pkg-config name.
- Drop ayatana-ido-0.9.0-libm.patch. Applied upstream.
- Adjust to .vapi file renaming by upstream (AyatanaIdo3-0.4.vapi ->
libayatana-ido3-0.4.vapi.
==== bind ====
Version update (9.18.2 -> 9.18.3)
Subpackages: bind-doc bind-utils
- Upgrade to 9.18.3:
Bugs fixed:
* Fix a crash in DNS-over-HTTPS (DoH) code caused by premature
TLS stream socket object deletion.
* RPZ NSIP and NSDNAME rule processing didn't handle stub and
static-stub zones at or above the query name. This has now
been addressed.
* Fixed a deadlock that could occur if an rndc connection arrived
during the shutdown of network interfaces.
* Refactor the fctx_done() function to set fctx to NULL after
detaching, so that reference counting errors will be easier to
avoid.
* udp_recv() in dispatch could trigger an INSIST when the
callback's result indicated success but the response was
canceled in the meantime.
* Work around a jemalloc quirk which could trigger an
out-of-memory condition in named over time.
* If there was a pending negative cache DS entry, validations
depending upon it could fail.
* dig returned a 0 exit status on UDP connection failure.
* Fix an assertion failure when using dig with +nssearch and
+tcp options by starting the next query in the send_done()
callback (like in the UDP mode) instead of doing that
recursively in start_tcp(). Also ensure that queries
interrupted while connecting are detached properly.
* Don't remove CDS/CDNSKEY DELETE records on zone sign when
using 'auto-dnssec maintain;'.
This obsoletes the following patch:
bind-define-local-instances-of-FALLTHROUGH-and-UNREACHABLE.patch
[CVE-2022-1183, bsc#1199619]
- An assertion failure can be triggered if a TLS connection to a
configured http TLS listener with a defined endpoint is destroyed too
early.
[CVE-2022-1183, bsc#1199619, CVE-2022-1183.patch]
==== cups ====
Version update (2.4.1 -> 2.4.2)
Subpackages: cups-client cups-config libcups2 libcupsimage2
- Version upgrade to 2.4.2:
See https://github.com/openprinting/cups/releases
CUPS 2.4.2 brings the fix for CVE-2022-26691 (#bsc1199474)
together with LibreSSL/OpenSSL and minimal AIX support.
* Fixed certificate strings comparison
for Local authorization (CVE-2022-26691)
* The `cupsFileOpen` function no longer opens files
for append in read-write mode (Issue #291)
* The cupsd daemon removed processing temporary
queue (Issue #364)
* Fixed delay in IPP backend if GNUTLS is used and endpoint
doesn't confirm closing the connection (Issue #365)
* Fixed conditional jump based on uninitialized value
in cups/ppd.c (Issue #329)
* Fixed CSS related issues in CUPS Web UI (Issue #344)
* Fixed copyright in CUPS Web UI trailer template (Issue #346)
* mDNS hostname in device uri is not resolved when installaling
a permanent IPP Everywhere queue (Issues #340, #343)
* The `lpstat` command now reports when the scheduler
is not running (Issue #352)
* Updated the man pages concerning the `-h` option (Issue #357)
* Re-added LibreSSL/OpenSSL support (Issue #362)
* Updated the Solaris smf service file (Issue #368)
* Fixed a regression in lpoptions option support (Issue #370)
* The scheduler now regenerates the PPD cache information after
changing the "cupsd.conf" file (Issue #371)
* Updated the scheduler to set "auth-info-required"
to "username,password" if a backend reports it needs
authentication info but doesn't set a method
for authentication (Issue #373)
* Updated the configure script to look for the OpenSSL library
the old way if pkg-config is not available (Issue #375)
* Fixed the prototype for the `httpWriteResponse`
function (Issue #380)
* Brought back minimal AIX support (Issue #389)
* `cupsGetResponse` did not always set the last error.
* Fixed a number of old references to the Apple CUPS web page.
* Restored the default/generic printer icon file
for the web interface.
* Removed old stylesheet classes that are no longer used
by the web interface.
- Adapted downgrade-autoconf-requirement.patch for CUPS 2.4.2
==== dmraid ====
Version update (1.0.0.rc16 -> 1.0.0.rc16.3)
- Update to 1.0.0.rc16 patch level 3
- Drop upstream fixed and resolved dmraid-destdir.patch,
dmraid-1.0.0.rc16-cvs-2010-02-02.patch, lib-install.patch,
fix-return-function-type.patch and handle_spaces
- Drop remove_trylock, only required for very old glibc versions
(openSUSE 11.x)
==== eog ====
Version update (42.1 -> 42.2)
- Update to version 42.2:
+ Updated translations.
==== evolution ====
Version update (3.44.1 -> 3.44.2)
Subpackages: evolution-plugin-spamassassin
- Update to version 3.44.2:
+ Miscellaneous:
- EShell: Auto-close ESource connection alerts on idle.
- EContactEditor: Use a GWeakRef on the editor when opening
target client.
- EWebDAVConfigLookup: Set also authentication method.
- EWebKitEditor: Mode change not propagated into the Editor
widget.
- Tasks: Ensure ICalTime::zone is set for current time.
- itip-view: Ignore empty text/plain subpart in meeting
invitation mail.
+ Bug Fixes:
- WebKitEditor: Convert to plain text incorrect on
reply/forward open.
- itip-formatter: Use whole URL value as a link href.
- Fails to build with libgweather 3.36.
- Misc: Handle numpad Enter similarly as the Enter key.
- Composer: Ensure URL entry is focused in Link Properties.
- Better handle Dark Style GNOME 42 setting.
- iTIP formatter shows twice "Attendee status updated".
- Tasks: Overdue calculation sometimes incorrect.
- CompEditor: Move whole component between calendars.
- DUE-today color in Tasks window not always applied.
- Calendar: iTip message not sent to a Room address.
- EMFolderTreeModel: Prefer Inbox over other folder types.
==== evolution-data-server ====
Version update (3.44.1 -> 3.44.2)
Subpackages: libcamel-1_2-63 libebackend-1_2-10 libebook-1_2-20 libebook-contacts-1_2-3 libecal-2_0-1 libedata-book-1_2-26 libedata-cal-2_0-1 libedataserver-1_2-26 libedataserverui-1_2-3
- Update to version 3.44.2:
+ Miscellaneous:
- ERemindersWidget: Allow width shrink for small screens.
- Fix few memory leaks discovered by Coverity scan.
- GOA module: Prevent ESource removal on D-Bus reconnect or
registry reload.
+ Bug Fixes:
- CalDAV: Crash on calendar update.
- e-webdav-discover: Fails to find Radicale calendars within
collection account.
- Google OAuth out-of-band (oob) flow will be deprecated.
- IMAPx: Fails to create folder with NIL folder hierarchy
delimiter.
- WebDAVCollectionBackend: Removes sources on server error.
==== evolution-ews ====
Version update (3.44.1 -> 3.44.2)
- Update to version 3.44.2:
+ Miscellaneous:
- build: Limit which parts link to the evolution libraries.
- EWS registry backend: Handle gracefully when Host URL is not
set.
+ Updated translations.
- Drop evolution-ews-fix-gtk-linkage.patch: fixed upstream.
==== facetimehd ====
Version update (0.5.7_k5.17.9_1 -> 0.5.18_k5.18.1_1)
- Fixed autoload of module
- Fixed build issue with Linux v5.18
==== gedit ====
Version update (42.0 -> 42.1)
Subpackages: python3-gedit
- Update to version 42.1:
+ Updated translations.
==== geoclue2 ====
Version update (2.5.7 -> 2.6.0)
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0
- Update to version 2.6.0:
+ Stop the client for system applications when accuracy is set to
NONE.
+ NMEA: add a unix socket file option.
+ Client info: support cgroup v2.
+ Don't compute movements for low accuracy sources.
+ Add an option to generate vapi.
+ Send the 3G tower type as part of the Mozilla location service
requests.
+ Add phosh & lipstick as allowed agents.
+ Use GeoIP when no WiFi device is available.
+ Modem manager: add polkit rule to allow GPS access.
+ Allow disabling compass at build and at runtime.
+ Fix heading computation for identical locations.
+ Be strict with time and distance threshold.
+ Fix the XDG location portal integration.
+ Replace agent wait timeout with a queue.
+ Other bugs fixes.
- Drop geoclue2-geoip-when-wifi-unavailable.patch: fixed upstream.
- Minor tweaks to rpmlintrc file: systemd_service changed from
warnings to error (but still don't apply here, as it's a dbus
enabled service).
==== glib2 ====
Version update (2.72.1 -> 2.72.2)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0
- Update to version 2.72.2:
+ Bugs fixed: glgo#GNOME/GLib#2640, glgo#GNOME/GLib!2605,
glgo#GNOME/GLib!2616, glgo#GNOME/GLib!2629,
glgo#GNOME/GLib!2643, glgo#GNOME/GLib!2644,
glgo#GNOME/GLib!2662, glgo#GNOME/GLib!2691.
+ Updated translations.
==== gnome-calculator ====
Version update (42.0 -> 42.1)
Subpackages: gnome-shell-search-provider-gnome-calculator
- Update to version 42.1:
+ Fixed broken undo/redo.
+ Removed automatic closing brace addition.
+ Fixed incorrect percentage symbol precedence handling.
+ Updated translations.
==== gnome-control-center ====
Version update (42.1 -> 42.2)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces
- Update to version 42.2:
+ Applications:
- Fix Snap permissions support failing to compile.
- Fix CcInfoRow having the wrong parent.
- Fix crash crash when switching between two apps.
+ Background: Make sure the size of the light/dark previews are
the same.
+ Keyboard: Fix crash resetting all keyboard shortcuts.
+ Network: Stop freeze when closing wired connection properties
with Escape.
+ Sharing:
- Fix close button on Verify Encryption dialog
- Turn off RDP gsettings key when turning off RDP
+ Shell: Initialise locale early.
+ Sound: Update theme correctly so other apps respond to change.
+ Updated translations.
==== gnome-maps ====
Version update (42.1 -> 42.2)
- Update to version 42.2:
+ Fix using Ukrainian address format for addresses in Ukraine.
+ Updated translations.
==== gnome-remote-desktop ====
Version update (42.1.1 -> 42.2)
- Update to version 42.2:
+ rdp-graphics-pipeline: Measure bandwidth when sending frame
updates.
+ session-rdp: Handle queued bandwidth measure stop operations.
+ rdp/nw-auto: Add APIs for bandwidth measurement.
+ rdp/nw-auto: Also notify client about network characteristics
results.
+ rdp/nw-auto: Turn ping info condition into assertion.
+ rdp/nw-auto: Assert RTT consumer != NONE, when removing RTT
consumer.
+ rdp/nw-auto: Remove superfluous if condition.
+ rdp/nw-auto: Fix initial ping source not being created.
+ rdp/rdpgfx: Create RTT pause source while GFX mutex is locked.
+ Updated translations.
==== gnome-shell ====
Version update (42.1 -> 42.2)
Subpackages: gnome-extensions gnome-shell-calendar
- Update to version 42.2:
+ Align space-padded times in world clocks.
+ Fix top bar menus on lock screen.
+ Fix on-screen keyboard gestures.
+ Fix focus tracking in magnifier on wayland.
+ Misc. bug fixes.
==== gnome-shell-extensions ====
Version update (42.1 -> 42.2)
Subpackages: gnome-shell-classic gnome-shell-extensions-common
- Update to version 42.2:
+ native-window-placement: Adjust to gnome-shell 42 changes.
+ window-list: Fix visibility on non-primary monitors.
==== gnome-software ====
Version update (42.1 -> 42.2)
- Update to version 42.2:
+ Fix installing langpacks for certain locales.
+ Improve UI presentation of flatpak apps with complex
permissions.
+ Fix minor UI glitches on updates page.
+ Fix installation of .deb packages with PackageKit ? 1.2.5.
+ Fix the ?Remove? button for your own app reviews.
+ Minor UI fixes when using a dark theme.
+ Updated translations.
==== gnome-terminal ====
Version update (3.44.0 -> 3.44.1)
Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal
- Update to version 3.44.1:
+ util: Show timestamps in the local timezone.
+ screen: Use same match cursor as vte hyperlink cursor.
+ Updated translations.
==== gnutls ====
Version update (3.7.4 -> 3.7.6)
Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-hmac
- Update to version 3.7.6:
* libgnutls: Fixed invalid write when gnutls_realloc_zero() is
called with new_size < old_size. This bug caused heap
corruption when gnutls_realloc_zero() has been set as gmp
reallocfunc.
* Remove gnutls-3.7.5-fix-gnutls_realloc_zero.patch: Fixed
upstream.
- Add gnutls-3.7.5-fix-gnutls_realloc_zero.patch: Fix memory
corruption in gnutls_realloc_zero (gl#gnutls/gnutls#1367,
boo#1199929).
- update to 3.7.5:
* add options disable session ticket usage in TLS 1.2 because
it does not provide forward secrecy
* For TLS 1.3 where session tickets do provide forward secrecy,
the PFS priority string now only disables session tickets in
TLS 1.2.
* Future backward incompatibility: in the next major release of
GnuTLS those flag and modifier are planned to be removed
* gnutls-cli, gnutls-serv: Channel binding for printing
information has been changed from tls-unique to tls-exporter
as tls-unique is not supported in TLS 1.3.
* Certificate sanity checks has been enhanced to make gnutls
more RFC 5280 compliant:
* Removed 3DES from FIPS approved algorithms
* Optimized support for AES-SIV-CMAC algorithms
* libgnutls: HKDF and AES-GCM algorithms are now approved in
FIPS-140 mode when used in TLS
==== google-noto-fonts ====
Subpackages: google-noto-fonts-doc noto-sans-fonts
- Add obsoletes and provides for google-{arimo,cousine,tinos}-fonts
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Use boot disks in OpenFirmware, fixing regression caused by
0001-ieee1275-implement-FCP-methods-for-WWPN-and-LUNs.patch, when
the root LV is completely in the boot LUN (bsc#1197948)
* 0001-ofdisk-improve-boot-time-by-lookup-boot-disk-first.patch
- Fix error message in displaying help on bootable snapshot (bsc#1199609)
==== gsl ====
Subpackages: libgsl25 libgslcblas0
- Add gsl-rpmlintrc rule to ignore shlib name policy errors for HPC
packages (see this file for explanation) (bsc#1191757).
- Make doc package arch-independent.
==== gstreamer-plugins-bad ====
Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0
- removed libkms BuildRequires, since it has been dropped from
libdrm
==== gtk4 ====
Version update (4.6.4 -> 4.6.5)
Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.6.5:
+ GtkFileChooser: Fix pasting text into the name field.
+ GtkText: Remove an assertion that is sometimes hit.
+ Wayland: Ensure that our cursor surfaces don't violate protocol
constraints.
+ Accssibility: Fix a problem in the accessibility tree.
+ Updated translations.
==== gtkmm3 ====
Version update (3.24.5 -> 3.24.6)
- Update to version 3.24.6:
+ GTK: TreeValueProxy: Declare copy constructor = default,
avoiding warnings from the claing++ compiler.
+ Object::_release_c_instance(): Unref orphan managed widgets.
+ SizeGroup demo: Set active items in the combo boxs,
so something is shown.
+ Build with Meson: MSVC build: Support Visual Studio 2022.
+ Specify 'check' option in run_command().
+ Check if Perl is required for building documentation.
+ Don't use deprecated python3.path() and execute
(..., gui_app...).
==== guestfs-tools ====
Version update (1.44.2 -> 1.48.1)
- Update to version 1.48.1
* This is a bug fix release
- Update to version 1.48.0
* virt-builder
New templates: "alma-8.5", "centosstream-8", "debian-11",
"fedora-34", "fedora-34" (armv7l), "fedora-35" "fedora-35"
(aarch64) (Lars Kaiser, Stef Walter).
New fedora-34 (armv7l) template is built to use UEFI.
* virt-customize
The yescrypt password hashing method is now supported (Björn
Esser).
* virt-inspector
Recognise "kalilinux", "kylin" and "msdos" operating systems /
Linux distros (Laszlo Ersek).
Inspection of LUKS encrypted filesystems placed directly on
logical volumes is now supported, but you will need
libguestfs ? 1.48 (Laszlo Ersek).
* virt-sysprep
Add a new default operation called "net-nmconn" which removes
NetworkManager connection profiles (Laszlo Ersek).
* virt-win-reg
"virt-win-reg --version" now prints both the version of guestfs
tools and the libguestfs library that it is linked with.
* Various bug fixes
- Drop patches contained in new tarball
63c9cd93-m4-guestfs-ocaml.m4-Fix-deprecated-warning-format.patch
a4930f5f-customize-Suppress-OCaml-warning.patch
- Fix Requires: gnupg2 -> gpg2
- Initial creation of the guestfs-tools package split out from the
libguestfs package.
* This release moves many of the virt tools like virt-builder,
virt-cat, virt-customize, virt-df, etc. from libguestfs to the
guestfs-tools package. This makes libguestfs a bit easier to
build and manage.
- These patches fix ocaml build errors.
63c9cd93-m4-guestfs-ocaml.m4-Fix-deprecated-warning-format.patch
a4930f5f-customize-Suppress-OCaml-warning.patch
==== gvfs ====
Version update (1.50.1 -> 1.50.2)
Subpackages: gvfs-backend-afc gvfs-backend-samba gvfs-backends gvfs-fuse
- Update to version 1.50.2:
+ smb: Rework anonymous handling to avoid EINVAL.
+ http: Unescape prefix to fix handling of encoded URIs.
+ build: Fix build without Avahi support.
==== hwdata ====
Version update (0.359 -> 0.360)
- Update to version 0.360 (bsc#1200110):
+ Updated pci, usb and vendor ids.
==== inxi ====
Version update (3.3.07 -> 3.3.16)
- Updated to version 3.3.16:
* /usr/share/doc/packages/inxi/inxi.changelog.
- Spec file clean up.
==== iproute2 ====
Version update (5.17 -> 5.18)
- update to 5.18:
This is the release of iproute2 corresponding to the 5.18 kernel.
There are not many new features in this release.
* The build issues with libbpf should be fixed now.
* Building with clang is now supported.
* There are still some warnings with gcc-12 that will need to be
fixed in the upstream kernel headers.
==== iw ====
Version update (5.16 -> 5.19)
- Update to version 5.19:
* bump version to 5.19
* info: refactor extended features
* info: add missing extended features
* update nl80211.h
* iw: handle VHT extended NSS
* iw: fix 'upto' -> 'up to'
* iw: fix double tab in mesh path header
* station: print EHT rate information
* iw: Print local EHT capabilities
==== jasper ====
Version update (3.0.3 -> 3.0.4)
- Update to 3.0.4:
* Eliminate some bogus calls to abort.
* Fix a typo in jas_safeui64_div (#323).
* Add some additional logging messages.
* Fix the source of a potential compiler warning (#321).
==== javapackages-tools ====
Subpackages: javapackages-filesystem
- Fix wrong conditioning of the python-six require.
- Added patch:
* 0004-Remove-dependency-on-Six-compatibility-library.patch
+ remove dependency on python-six for newer distributions
==== kernel-source ====
Version update (5.17.9 -> 5.18.1)
- Linux 5.18.1 (bsc#1012628).
- ALSA: ctxfi: Add SB046x PCI ID (bsc#1012628).
- ACPI: sysfs: Fix BERT error region memory mapping (bsc#1012628).
- random: check for signals after page of pool writes
(bsc#1012628).
- random: wire up fops->splice_{read,write}_iter() (bsc#1012628).
- random: convert to using fops->write_iter() (bsc#1012628).
- random: convert to using fops->read_iter() (bsc#1012628).
- random: unify batched entropy implementations (bsc#1012628).
- random: move randomize_page() into mm where it belongs
(bsc#1012628).
- random: move initialization functions out of hot pages
(bsc#1012628).
- random: make consistent use of buf and len (bsc#1012628).
- random: use proper return types on get_random_{int,long}_wait()
(bsc#1012628).
- random: remove extern from functions in header (bsc#1012628).
- random: use static branch for crng_ready() (bsc#1012628).
- random: credit architectural init the exact amount
(bsc#1012628).
- random: handle latent entropy and command line from
random_init() (bsc#1012628).
- random: use proper jiffies comparison macro (bsc#1012628).
- random: remove ratelimiting for in-kernel unseeded randomness
(bsc#1012628).
- random: move initialization out of reseeding hot path
(bsc#1012628).
- random: avoid initializing twice in credit race (bsc#1012628).
- random: use symbolic constants for crng_init states
(bsc#1012628).
- siphash: use one source of truth for siphash permutations
(bsc#1012628).
- random: help compiler out with fast_mix() by using simpler
arguments (bsc#1012628).
- random: do not use input pool from hard IRQs (bsc#1012628).
- random: order timer entropy functions below interrupt functions
(bsc#1012628).
- random: do not pretend to handle premature next security model
(bsc#1012628).
- random: use first 128 bits of input as fast init (bsc#1012628).
- random: do not use batches when !crng_ready() (bsc#1012628).
- random: insist on random_get_entropy() existing in order to
simplify (bsc#1012628).
- xtensa: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- sparc: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- um: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- x86/tsc: Use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- nios2: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- arm: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- mips: use fallback for random_get_entropy() instead of just
c0 random (bsc#1012628).
- riscv: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- m68k: use fallback for random_get_entropy() instead of zero
(bsc#1012628).
- timekeeping: Add raw clock fallback for random_get_entropy()
(bsc#1012628).
- powerpc: define get_cycles macro for arch-override
(bsc#1012628).
- alpha: define get_cycles macro for arch-override (bsc#1012628).
- parisc: define get_cycles macro for arch-override (bsc#1012628).
- s390: define get_cycles macro for arch-override (bsc#1012628).
- ia64: define get_cycles macro for arch-override (bsc#1012628).
- init: call time_init() before rand_initialize() (bsc#1012628).
- random: fix sysctl documentation nits (bsc#1012628).
- HID: amd_sfh: Add support for sensor discovery (bsc#1012628).
- lockdown: also lock down previous kgdb use (bsc#1012628).
- commit df81444
- Update patches.suse/Revert-net-af_key-add-check-for-pfkey_broadcast-in-f.patch
Update to upstream version, update upstream reference and move into sorted
section.
- commit 3ae1db7
- series.conf: cleanup
- update upstream reference and move into sorted section:
- patches.suse/simplefb-Enable-boot-time-VESA-graphic-mode-selectio.patch
- commit dc762c4
- kernel-binary.spec: Support radio selection for debuginfo.
To disable debuginfo on 5.18 kernel a radio selection needs to be
switched to a different selection. This requires disabling the currently
active option and selecting NONE as debuginfo type.
- commit 43b5dd3
- Update config files -- DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT (bsc#1199932)
Set DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT which makes use of dwarf5 on
gcc-11 and newer.
- commit f439809
- random: do not use input pool from hard IRQs (bsc#1199803).
- commit 3352b92
- Add dtb-starfive
- commit 9633cc7
- Revert "net: af_key: add check for pfkey_broadcast in function
pfkey_process" (20220523022438.ofhehjievu2alj3h(a)lion.mk-sys.cz)
- commit 2023975
- Update to 5.18 final
- refresh configs (headers only)
- commit d0f5e4b
==== libdrm ====
Version update (2.4.110 -> 2.4.111)
Subpackages: libdrm-devel libdrm2 libdrm_amdgpu1 libdrm_etnaviv1 libdrm_exynos1 libdrm_freedreno1 libdrm_nouveau2 libdrm_radeon1 libdrm_tegra0
- update to 2.4.111
* bugfixes
* drops libkms
- added tegra-* tools on aarch64 to spefile
==== libdvdread ====
Version update (6.1.2 -> 6.1.3)
- update to 6.1.3:
* Improvements for OpenBSD
* Fix crashes on some DVD (0 PCGI SRP)
* Misc source fixes and cleanups, including fixes for recent toolchains
==== libfprint ====
Version update (1.94.3 -> 1.94.4)
- update to 1.94.4:
* synaptics: New PIDs 0x0168, 0x015f
* elan: New PID 0x0c4b
* elanspi: New PID 0x241f
* synaptics: Minor fix to interrupt transfer resubmission
* Avoid sysfs writes if value is already expected
* Improvements to the testing setup
* Fixes to the internal critical section API
==== libguestfs ====
Version update (1.44.2 -> 1.48.3)
- bsc#1190501 - virt-builder fails to install packages when
building an image. Add Recommends: dhcp-client for the appliance.
libguestfs.spec
- Update to version 1.48.3
* Several bugs fixed in this release since version 1.48.1
* Updated language files
- Update to version 1.48.1
* Updated language files
* A few bug fixes in this release
* Drop requirement for newer ocaml required by Bytes.get_uint8.
It is replaced with a local implementation.
- Add relevant %post{,un} sections
- Add another rpmlint filter
- Add uk man dirs
- Avoid useless builds, if ocaml version isn't up to the task
libguestfs uses get_uint8(), available since ocaml 4.13.0
- Update to version 1.48.0
* Fix allocation and deallocation of string lists in golang
bindings (Laszlo Ersek).
* Multiple fixes to the OCaml bindings:
* Add support for Kylin (Laszlo Ersek).
* Add support for Rocky Linux (Neil Hanlon).
* Inspection of guests which use LUKS encryption on top of LVM
logical volumes should now work (Laszlo Ersek).
* "guestfs_list_9p" and "guestfs_mount_9p" are deprecated and
now return errors.
* "guestfs_remove_drive" has been deprecated and now returns an
error.
* "guestfs_add_drive" no longer supports hotplugging
* In "guestfs_xfs_admin" the "lazycounter" parameter is deprecated
because it is no longer supported in recent versions of XFS.
* The User-mode Linux ("uml") backend has been removed.
* Partition APIs now cope with the broken MBR partition tables
created by dosfstools ? 4.2 (Laszlo Ersek).
* Various bug fixes
- Update to version 1.46.2
* This release has moved many virt tools like virt-builder,
virt-cat, virt-customize, virt-df, etc. to the guestfs-tools
project. This makes libguestfs a bit easier to build and manage.
* The build now uses and requires PCRE2 (instead of PCRE).
* This version requires libvirt ? 7.1.0, if libvirt is enabled.
* gnulib is no longer bundled with libguestfs, making builds from
git much simpler.
* Perl Sys::Virt (libvirt bindings for Perl) are no longer
required by libguestfs.
* The code has been compiled with both LTO and GCC -fanalyzer and
many bugs and warnings fixed.
* Various fixes for qemu 6.1.
* Update appliance packages on SUSE and several other improvements
to the init script (Olaf Hering).
* We now use the qemu / libvirt feature -cpu max to select the
best CPU to run the appliance.
* When passing the appliance filesystem UUID to supermin we now
read it directly out of the appliance instead of using the
file(1) program. This is more reliable.
* The qemu -enable-fips option is no longer used. It was not
needed and has been deprecated by qemu.
* We no longer use qemu's sga (Serial Graphics Adapter) option
ROM, instead using the equivalent seabios feature.
* Various bug fixes
- Package changes
* New libguestfs.spec file.
* Moved guestfs-tools to a new and separate project and package
* Renamed packages
guestfs-winsupport -> libguestfs-winsupport
guestfsd -> libguestfsd
* New packages
libguestfs, libguestfs-typelib-Guestfs,
libguestfs-gobject, libguestfs-gobject-devel
libguestfs-rescue, libguestfs-rsync, libguestfs-xfs
* Dropped package libguestfs-test
- Dropped scripts and patches
Pod-Simple-3.23.tar.xz
libguestfs.test.simple.create-opensuse-guest-crypt-on-lvm.sh
libguestfs.test.simple.create-opensuse-guest.sh
libguestfs.test.simple.create-sles12-guest-crypt-on-lvm.sh
libguestfs.test.simple.create-sles12-guest.sh
libguestfs.test.simple.run-libugestfs-test-tool.sh
0001-Introduce-a-wrapper-around-xmlParseURI.patch
0002-common-extract-UTF-8-conversion-function.patch
0003-inspector-rpm-summary-and-description-may-not-be-utf.patch
489b14b7-ocaml-examples-Link-examples-to-gnulib.patch
63c9cd93-m4-guestfs-ocaml.m4-Fix-deprecated-warning-format.patch
68a02c2f-customize--resize--sparsify--sysprep-Link-explicitly-with-pthread.patch
9db0c98c-appliance-enable-bashs-Process-Substitution-feature.patch
a4930f5f-customize-Suppress-OCaml-warning.patch
c0de4de9-appliance-add-reboot-and-netconfig-for-SUSE.patch
e26cfa44-daemon-Build-with--pthread.patch
f47e0bb6-appliance-reorder-mounting-of-special-filesystems-in-init.patch
appliance.patch
libguestfs.env.patch
makefile-ocaml-find-guestfs.patch
netconfig.patch
==== libheif ====
- Add missing gdk-pixbuf loader scriptlets (bsc#1199987).
- Recommend gdk-pixbuf-loader-libheif whenever both related
packages are installed.
==== liblouis ====
Subpackages: liblouis-data liblouis20 python3-louis
- Add liblouis-CVE-2022-26981.patch: fix buffer overrun in
compilePassOpcode (boo#1197085 CVE-2022-26981).
- Add liblouis-CVE-2022-31783.patch: prevent an invalid memory
write in compileRule (boo#1200120 CVE-2022-31783).
==== libmbim ====
Version update (1.26.2 -> 1.26.4)
Subpackages: libmbim-glib4 mbimcli-bash-completion
- update to 1.26.4:
* meson: force building doc on normal builds, not only during install.
* meson: fix 'export_packages' in GIR setup.
* compat: deprecate the MbimLteAttachStatus type.
* net-port-manager: use unaligned netlink attribute length.
* include MBIM proxy control service in docs.
* codegen: add section doc for each service.
* utils: add missing short description in section.
* compat: add missing MbimLteAttachStatus doc.
* device: add missing mbim_device_list_links() doc.
* device: fix MbimDevice 'device-in-session' property doc.
* version: add missing MBIM_CHECK_VERSION() documentation.
* device: fix wrong reference to QmiDevice
* Several other minor improvements and fixes.
==== libstorage-ng ====
Version update (4.5.14 -> 4.5.20)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Japanese) (bsc#1149754)
- 4.5.20
- Translated using Weblate (Slovak) (bsc#1149754)
- 4.5.19
- Translated using Weblate (Dutch) (bsc#1149754)
- Translated using Weblate (Catalan) (bsc#1149754)
- merge gh#openSUSE/libstorage-ng#882
- updated pot and po files
- 4.5.18
- Translated using Weblate (Swedish) (bsc#1149754)
- 4.5.17
- merge gh#openSUSE/libstorage-ng#881
- increase disk size requirement in obs to avoid build failures
- 4.5.16
- merge gh#openSUSE/libstorage-ng#880
- added partition id for linux-server-data
- 4.5.15
==== libvirt ====
Version update (8.3.0 -> 8.4.0)
Subpackages: libvirt-client libvirt-daemon libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-qemu libvirt-libs
- Update to libvirt 8.4.0
- Many incremental improvements and bug fixes, see
https://libvirt.org/news.html#v8-4-0-2022-06-01
==== libwacom ====
Version update (1.12 -> 2.2.0)
- Remove meson conditional - no other build system is supported.
- update to 2.2.0:
* data: Add ISDv4 5285 (Lenovo ThinkPad X13 Yoga Gen 2)
* data: Add ISDv4 16C (HP ZBook x2 G4)
* Add ISDv4 52a2 (Lenovo Yoga 6 13ALC6)
* data: Add ISDv4 5218 (Lenovo IdeaPad Flex 5 14ALC05)
* data: Add ISDv4 521c (Lenovo IdeaPad Flex 5 15ALC05)
* data: Add ISDv4 49a3 (Dell Latitude 7320 Detachable)
* Remove now-unused libwacom.pc.in
* CI: add a workflow to check for "sysinfo" in newly added data files
* doc: fix the check for integration flags in the example code
* github: bump freebsd workflow to 0.1.5
* Update data/surface-go-2.tablet
* Update huion-h610-pro.tablet
* data: Add ISDv4 4995 (HP EliteBook x360 1040 G8 Notebook PC)
* data: Add ISDv4 51EF (Lenovo Yoga C740-14IML)
* data: Add ISDv4 2d1f:0095 (PINE64 PineNote)
* data: Add ISDv4 52b0 (Lenovo Yoga 7 14ACN6)
* data: Add ISDv4 511a (Lenovo ThinkPad X1 Tablet Gen 3)
* data: Add ISDv4 484d (Dell Latitude 5290)
* Add description for elan-2a70 (#466)
* data: remove unknown BuiltIn key from the DTU1931
* data: Add ISDv4 5276 (Lenovo ThinkPad X1 Yoga Gen 6)
* data: Add ISDv4 51d0 ("Lenovo ThinkPad X1 Titanium Gen 1")
* data: Add ISDv4 5019 (Fujitsu LIFEBOOK T935)
* test: add a test for matching the button count with the evdev codes
* meson.build: use gnu_symbol_visibility argument
* meson.build: use current_source_dir() over deprecated source_root()
* Remove unused arguments from two helper functions
* github: build with ninja --verbose
* CI: don't enable -Wall -Wextra in the CI
* Make sign-compare a warning/error
* Add support for a new "Wacom One Pen Display 13"
==== links ====
Version update (2.26 -> 2.27)
- update to 2.27:
* Updated the Turkish translation
* Allow the user to specify a numeric IPv6 address in the dns-over-https
box
==== lttng-modules ====
Version update (2.13.3_k5.17.9_1 -> 2.13.4_k5.18.1_1)
- Update to version 2.13.4:
* Fix: event notifier: racy use of last subbuffer record.
* Fix: bytecode interpreter context_get_index() leaves byte
order uninitialised.
* Fix: "random" tracepoints removed in stable kernels.
* Fix: random: remove unused tracepoints (v5.10, v5.15).
* Fix: sched/tracing: Append prev_state to tp args instead
(v5.18).
* Fix: mm: compaction: cleanup the compaction trace events
(v5.18).
* Fix: scsi: core: Remove <scsi/scsi_request.h> (v5.18).
* Fix: kprobes: Use rethook for kretprobe if possible (v5.18).
* Fix: random: remove unused tracepoints (v5.18).
* Fix: scsi: block: Remove REQ_OP_WRITE_SAME support (v5.18).
* Fix: block: remove genhd.h (v5.18).
* Fix: sched/tracing: Don't re-read p->state when emitting
sched_switch event (v5.18).
* Fix: KVM: x86: Unexport kvm_x86_ops (v5.18).
* Fix: do not warn on unknown counter ioctl.
* Fix: tracepoint event: allow same provider and event name.
* Fix: compaction migratepages event name.
==== lua54 ====
- Added more numbered patches from upstream:
* luabugs3.patch
* luabugs4.patch
* luabugs5.patch
==== mariadb-connector-c ====
- Add pkgconfig compatibility symlink for mysqlclient
==== mdadm ====
- resource RAID failed during cluster patch, Mdadm gets floating point error (bsc#1197158)
1004-mdadm-super1-restore-commit-45a87c2f31335-to-fix-clu.patch
==== mhvtl ====
Version update (1.64_release+835.6beb0aa01437_k5.17.9_1 -> 1.70_release+862.561d4d5b473f_k5.18.1_1)
- Update to version 1.70_release+862.561d4d5b473f, to fix a build
issue (include of genhd.h fails, since the include file is
gone now):
* Standardise using -m <barcode>
* kernel/config.sh: use $KDIR for the kernel build directory
* Add include guard to generated config.h
* kernel: Re-work compat symbols detection
* vtlcart: Replace calls to creat() with calls to open()
* mhvtl.spec: Bump version to 1.7
* systemd device config: touch up error logging
* systemd device config: Dummy-spit if we can't find the config file
* CodeQL
* SEND_DIAGNOSTICS: Check for valid MAM structure size and CRC sanity checks
* Makefile: Fix path to mhvtl-utils.spec
* etc/Makefile: run bash scripts using bash, not sh
* device-conf-generator: Drop path qualifier from comment
* Makefile: add new file to 'tar' target missed in previous commit
* Makefile infrastructure: fix passing variables
* Makefile: Correctly pass top-level variables
* Build process was failing if not following a clean
* LTO media: Set Encryption capable bit for LTO6, 7 & 8 media
* Fix issue with too many bytes returned on short block read
* Add script to check CRC32C & RS-CRC
* Handle systemd directory paths correctly.
* Handle our queue command correctly
* Add new preload_tape to git ignore
* Remove duplicate def of systemd generator dir.
* Handle sysfs_emit correctly
* Make preload_tape a link to dump_tape
* Silence compiler complaints about string too long
This removed these patches (no longer needed):
* mhvtl-fix-systemd-generator-dir.patch
* mhvtl-handle-systemd-location-correctly-for-generator.patch
* mhvtl-kernel-module-fix-queuecommand-arg-change.patch
* mhvtl-kernel-module-fix-sysfs_emit-decl.patch
And added (not yet upstream):
* mhvtl-fix-removal-of-genhd-h.patch
==== mozilla-nspr ====
Version update (4.33 -> 4.34)
- update to version 4.34
* add an API that returns a preferred loopback IP on hosts that
have two IP stacks available.
==== mozilla-nss ====
Version update (3.77 -> 3.78.1)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs mozilla-nss-tools
- update to NSS 3.78.1
* bmo#1767590 - Initialize pointers passed to
NSS_CMSDigestContext_FinishMultiple
- update to NSS 3.78
* bmo#1755264 - Added TLS 1.3 zero-length inner plaintext checks and
tests, zero-length record/fragment handling tests.
* bmo#1294978 - Reworked overlong record size checks and added TLS1.3
specific boundaries.
* bmo#1763120 - Add ECH Grease Support to tstclnt
* bmo#1765003 - Add a strict variant of moz::pkix::CheckCertHostname.
* bmo#1166338 - Change SSL_REUSE_SERVER_ECDHE_KEY default to false.
* bmo#1760813 - Make SEC_PKCS12EnableCipher succeed
* bmo#1762489 - Update zlib in NSS to 1.2.12.
==== mutt ====
Version update (2.2.3 -> 2.2.5)
Subpackages: mutt-doc mutt-lang
- update to 2.2.5:
* fixing two issues with libgsasl authentication.
* fixing some regressions with Maildir/mh mailbox path normalization that were
added in 2.2.0. Please see the UPDATING file for more details.
==== mutter ====
Version update (42.1 -> 42.2)
- Update to version 42.2:
+ Don't use direct scanout for transparent windows.
+ Fix initialization of privacy mode in displays that support it.
+ Fix --replace again.
+ Improve picking a window for direct scanout.
+ Do not allow windows to steal focus when the shell has a grab.
+ Fix night light without GAMMA_LUT property.
+ Fixed crash.
+ Misc. bug fixes.
- Add mutter-crash-meta_context_terminate.patch: Fix SIGSEGV in
meta_context_terminate (bsc#1199382 glgo#GNOME/mutter#2267).
==== nautilus ====
Version update (42.1.1 -> 42.2)
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension1
- Update to version 42.2:
+ Close broken link message dialog on response.
+ Fix crash when opening new window from pathbar.
+ Fix remote filesystem check.
+ Updated translations.
==== ncurses ====
Version update (6.3.20220501 -> 6.3.20220529)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20220529
+ expanded notes for teken/syscons -TD
+ fix overlooked copying of extended string-heap in copy_termtype
(cf: 20220430).
+ update config.guess
- Add ncurses patch 20220521
+ improve memory-leak checking in several test-programs.
+ set trailing null on string passed from winsnstr() to wins_nwstr().
+ modify del_curterm() to fix memory-leak introduced by change to
copy_termtype().
- Update tack to 1.09-20220528
+ Autoconf fixes
- Add ncurses patch 20220514
+ further improvements to test/test_mouse.c; compare with ncurses test
program menu A/a.
- Add ncurses patch 20220507
+ add test/test_mouse.c (patch by Leonid S Usov).
+ add a few debug-traces for tic, fix a couple of memory-leaks.
==== ntfs-3g_ntfsprogs ====
Version update (2021.8.22 -> 2022.5.17)
Subpackages: libntfs-3g89 ntfs-3g ntfsprogs
- update to 2022.5.17 (bsc#1199978):
* Improved defence against maliciously tampered NTFS partitions
* Improved defence against improper use of options
* Updated the documentation
* CVE-2022-30783, CVE-2022-30785, CVE-2022-30787
* CVE-2021-46790, CVE-2022-30784, CVE-2022-30786,
* CVE-2022-30788, CVE-2022-30789
==== openjpeg2 ====
Version update (2.4.0 -> 2.5.0)
- update to 2.5.0:
* Encoder: add support for generation of TLM markers
* Decoder: add support for high throughput (HTJ2K) decoding
* Decoder: add support for partial bitstream decoding
* Bug fixes (including security fixes)
==== openldap2 ====
Version update (2.6.1 -> 2.6.2)
Subpackages: libldap-data libldap2 openldap2-client
- Update to release 2.6.2
* Added support for OpenSSL 3.0 (ITS#9436)
* Fixed ldapdelete to prune LDAP subentries (ITS#9737)
* Fixed libldap to drop connection when non-LDAP data is
received (ITS#9803)
* Fixed libldap to allow newlines at end of included file
(ITS#9811)
* Fixed slapd slaptest conversion of olcLastBind (ITS#9808)
* Fixed slapd to correctly init global_host earlier (ITS#9787)
* Fixed slapd bconfig locking for cn=config replication
(ITS#9584)
* Fixed slapd usage of thread local counters (ITS#9789)
* Fixed slapd to clear runqueue task correctly (ITS#9785)
* Fixed slapd idletimeout handling (ITS#9820)
* Fixed slapd syncrepl handling of new sessions (ITS#9584)
* Fixed slapd to clear connections on bind (ITS#9799)
* Fixed slapd to correctly advance connections index (ITS#9831)
* Fixed slapd syncrepl ODSEE replication of unknown attr
(ITS#9801)
* Fixed slapd-asyncmeta memory leak in keepalive setting,
slapd-ldap memory leak in keepalive setting, SEGV on config
rewrite, ordering on config rewrite, memory leak in keepalive
setting (ITS#9802)
* Fixed slapo-pcache SEGV & slapd-monitor SEGV on shutdown
(ITS#9809)
* Fixed slapd-monitor crash when hitting sizelimit (ITS#9832)
* Fixed slapd-sql to properly escape filter value (ITS#9815)
* Fixed slapo-dynlist dynamic group regression (ITS#9825)
* Fixed slapo-ppolicy operation handling to be consistent
(ITS#9794)
* Fixed slapo-translucent to correctly duplicate substring
filters (ITS#9818)
* Contrib:
* Update ppm module to the 2.1 release (ITS#9814)
* Documentation:
* admin26: Document new lloadd features (ITS#9780)
* Fixed slapd.conf(5)/slapd-config(5) syncrepl
sizelimit/timelimit documentation (ITS#9804)
* Fixed slapd-sock(5) to clarify "sockresps result" behavior
(ITS#8255)
==== openldap2-contrib-src ====
Version update (2.6.1 -> 2.6.2)
- Update to release 2.6.2
* Added support for OpenSSL 3.0 (ITS#9436)
* Fixed ldapdelete to prune LDAP subentries (ITS#9737)
* Fixed libldap to drop connection when non-LDAP data is
received (ITS#9803)
* Fixed libldap to allow newlines at end of included file
(ITS#9811)
* Fixed slapd slaptest conversion of olcLastBind (ITS#9808)
* Fixed slapd to correctly init global_host earlier (ITS#9787)
* Fixed slapd bconfig locking for cn=config replication
(ITS#9584)
* Fixed slapd usage of thread local counters (ITS#9789)
* Fixed slapd to clear runqueue task correctly (ITS#9785)
* Fixed slapd idletimeout handling (ITS#9820)
* Fixed slapd syncrepl handling of new sessions (ITS#9584)
* Fixed slapd to clear connections on bind (ITS#9799)
* Fixed slapd to correctly advance connections index (ITS#9831)
* Fixed slapd syncrepl ODSEE replication of unknown attr
(ITS#9801)
* Fixed slapd-asyncmeta memory leak in keepalive setting,
slapd-ldap memory leak in keepalive setting, SEGV on config
rewrite, ordering on config rewrite, memory leak in keepalive
setting (ITS#9802)
* Fixed slapo-pcache SEGV & slapd-monitor SEGV on shutdown
(ITS#9809)
* Fixed slapd-monitor crash when hitting sizelimit (ITS#9832)
* Fixed slapd-sql to properly escape filter value (ITS#9815)
* Fixed slapo-dynlist dynamic group regression (ITS#9825)
* Fixed slapo-ppolicy operation handling to be consistent
(ITS#9794)
* Fixed slapo-translucent to correctly duplicate substring
filters (ITS#9818)
* Contrib:
* Update ppm module to the 2.1 release (ITS#9814)
* Documentation:
* admin26: Document new lloadd features (ITS#9780)
* Fixed slapd.conf(5)/slapd-config(5) syncrepl
sizelimit/timelimit documentation (ITS#9804)
* Fixed slapd-sock(5) to clarify "sockresps result" behavior
(ITS#8255)
==== opensuse-welcome ====
Version update (0.1.8+git.44.7923e16 -> 0.1.8+git.46.64e51ec)
- Update to version 0.1.8+git.46.64e51ec:
+ Updated translations (Catalan, Russian, Swedish, Ukrainian).
- Add back -lang recommends to the main package: the -lang package
does not follow the standard method of installing translations to
/usr/share/locale, but installs everything to
/usr/share/opensuse-welcome. As such, the automatic supplements
do not trigger as intended. A opensuse-welcome-lang.inc is being
generated to make the recommends still smarter, based on selected
locales in zypp.
==== parted ====
Subpackages: libparted-fs-resize0 libparted2
- use static keyring file (and switch to the release team keyring)
==== patterns-base ====
Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced
- No long recommend haveged (boo#1190024): The mainline Linux
Kernel has now HAVEGED algorithm build in internally (since
version 5.6).
==== perl-Cpanel-JSON-XS ====
Version update (4.28 -> 4.29)
- updated to 4.29
see /usr/share/doc/packages/perl-Cpanel-JSON-XS/Changes
4.29 2022-05-27 (rurban)
- Hack: Revert native bool (unblessed) overloads via JSON::PP 4.08.
JSON::PP ignores unblessed bools for now. GH #194
==== perl-JSON ====
Version update (4.05 -> 4.06)
- updated to 4.06
see /usr/share/doc/packages/perl-JSON/Changes
4.06 2022-05-22
- updated backportPP with JSON::PP 4.09
==== perl-Mail-DKIM ====
Version update (1.20220408 -> 1.20220520)
- updated to 1.20220520
see /usr/share/doc/packages/perl-Mail-DKIM/Changes
1.20220520 2022-05-20 UTC
+ Change default algorithm in dkimsign.pl to sha-256
+ Use Getopt::Long::Descriptive in scripts for better command help
==== perl-Mojolicious ====
Version update (9.25 -> 9.26)
- updated to 9.26
see /usr/share/doc/packages/perl-Mojolicious/Changes
9.26 2022-05-20
- Added EXPERIMENTAL capture method to Mojo::Log.
==== perl-libwww-perl ====
Version update (6.64 -> 6.66)
- updated to 6.66
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.66 2022-05-18 16:44:44Z
- Revert automatic follow of meta refresh tags which was added in 6.63
(GH#415) (Olaf Alders)
6.65 2022-05-09 18:36:14Z
- fix NAME in Makefile.PL (GH#413) (Graham Knop)
==== poppler ====
Version update (22.05.0 -> 22.06.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools
- update to 22.06.0:
core:
* Forms: Fix crash in forms with their own DR
* Refactor CairoFontEngine caching
* CairoOutputDev: preserve text color when drawing type 3 glyphs
* Windows: font code simplification
* Minor code improvements
* pdfattach: Assume filename is utf8 encoded
* pdftohtml: Fix type 3 font size calculation
- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream)
==== poppler-qt5 ====
Version update (22.05.0 -> 22.06.0)
- update to 22.06.0:
core:
* Forms: Fix crash in forms with their own DR
* Refactor CairoFontEngine caching
* CairoOutputDev: preserve text color when drawing type 3 glyphs
* Windows: font code simplification
* Minor code improvements
* pdfattach: Assume filename is utf8 encoded
* pdftohtml: Fix type 3 font size calculation
- drop poppler-cairo_font_face_t-incorrect-cacheing.patch (upstream)
==== publicsuffix ====
Version update (20220510 -> 20220518)
- Update to version 20220518:
* util: gTLD data autopull updates for 2022-05-18T15:16:02 UTC (#1567)
* fixed wordwrap; added # of users q
* Add builder.code.com, stg-builder.code.com, and dev-builder.code.com (#1566)
* UPDATE HOSTBIP RECORDS (`name.pm` `sch.tf` `biz.wf` `sch.wf` `org.yt`) (#1473)
* Fix comments delete space and deprecation of io/ioutil (#1557)
==== pulseaudio ====
Version update (15.0 -> 16.0)
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-bash-completion pulseaudio-gdm-hooks pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-setup pulseaudio-utils pulseaudio-zsh-completion system-user-pulse
- update to 16.0:
* Notes for end users
* Opus support in RTP modules
* Improved hardware support
* EPOS/Sennheiser GSP 670 USB/wireless headset
* SteelSeries GameDAC
* Behringer UMC22 generalized to Texas Instruments PCM2902 to support more products
* NI Komplete Audio 6 MK2 profiles
* Tunnel latency is now configurable
* Bluetooth device battery level reporting added
* Tunnel and combine-sunk latency fixes
* patcl can show information in JSON format
* Channel remixing can be disabled for module-combine-sink
* A lot of fixes to ALSA, bluetooth, and other components.
* Notes for application developers
* Stream latency reports now include resampler delay
* Module installation location changed, remember to upgrade paprefs to the latest version!
* Notes for packagers
* Opus support in the RTP modules requires enabling GStreamer
* Bluetooth battery level reporting via BlueZ requires enabling experimentals features in BlueZ
* New time smoother implementation
* Change Meson option 'daemon-only' to 'client'
* glib and fftw are now common dependencies, not only for the client.
* Enable GStreamer-based RTP by default when available
==== python-Babel ====
Version update (2.9.1 -> 2.10.1)
- update to 2.10.1:
* Messages: Fix ``distutils`` import. Regressed in :gh:`843`.
* The ``get_next_timezone_transition
likely as soon as Babel 2.11.
* CLDR: Upgrade to CLDR 41.0.
* The ``c`` and ``e`` plural form operands introduced in CLDR 40 are parsed
* Non-nominative forms of units are currently ignored.
* Messages: Implement ``--init-missing`` option for ``pybabel update``
* Messages: For ``extract``, you can now replace the built-in ``.*`` / ``_*``
ignored directory patterns with ones of your own.
* Messages: Add ``--check`` to verify if catalogs are up-to-date
* Messages: Add ``--header-comment`` to override default header comment
* Dates: ``parse_time`` now supports 12-hour clock, and is better at parsing
partial times.
* Dates: ``parse_date`` and ``parse_time`` now raise ``ParseError``, a subclass
of ``ValueError``, in certain cases.
* Dates: ``parse_date`` and ``parse_time`` now accept the ``format`` parameter.
* The internal ``babel/_compat.py`` module is no more
* Python 3.10 is officially supported
* There's now a friendly GitHub issue template.
* Don't use the deprecated format_number function internally or in tests
* Add GitHub URL for PyPi
* Python 3.12 compatibility: Prefer setuptools imports to distutils imports
* Python 3.11 compatibility: Add deprecations to l*gettext variants
* CI: Babel is now tested with PyPy 3.7.
* Date formatting: Allow using ``other`` as fallback form
* Locales: ``Locale.parse
* A typo in the plural format for Maltese is fixed.
* Messages: Catalog date parsing is now timezone independent.
* Messages: Fix duplicate locations when writing without lineno
* Messages: Fix missing trailing semicolon in plural form headers
* CLI: Fix output of ``--list-locales`` to not be a bytes repr
* Documentation is now correctly built again, and up to date
==== python-Pillow ====
Subpackages: python38-Pillow python38-Pillow-tk
- Add patch tiff-readcount.patch to fix build with the new tiff
==== python-Twisted ====
- Stop removing test directories, it also removes a public module.
(bsc#1198852, bsc#1198854, bsc#1198855)
==== python-alembic ====
Version update (1.7.7 -> 1.8.0)
- update to version 1.8.0:
* changed
+ [changed] [installation] Alembic 1.8 now supports Python 3.7 and
above. References: #1025
+ [changed] [environment] The ?Pylons? environment template has
been removed as of Alembic 1.8. This template was based on the
very old pre-Pyramid Pylons web framework which has been long
superseded by Pyramid. References: #987
* feature
+ [feature] [typing] PEP 484 typing annotations have been added to
the env.py and revision template files within migration
templates. Pull request by Nikita Sobolev. References: #764
* usecase
+ [usecase] [operations] The op.drop_table() operation directive
will now trigger the before_drop() and after_drop() DDL event
hooks at the table level, which is similar to how the
before_create() and after_create() hooks are triggered by the
op.create_table() directive. Note that as op.drop_table()
accepts only a table name and optional schema name, the Table
object received by the event will not have any information
within it other than the table name and schema name.
References: #1037
+ [usecase] [commands] Added new token epoch to the file_template
option, which will populate the integer epoch as determined by
int(create_date.timestamp()). Pull request courtesy Caio
Carvalho. References: #1027
* bug
+ [bug] [revisioning] Fixed issue where a downgrade using a
relative revision would fail in case of multiple branches with a
single effectively head due to interdependencies between
revisions. References: #1026
+ [bug] [batch] Fixed issue in batch mode where CREATE INDEX would
not use a new column name in the case of a column rename.
References: #1034
==== python-boto3 ====
Version update (1.23.4 -> 1.24.2)
- Update to version 1.24.2
* api-change:``codeartifact``: [``botocore``] Documentation updates for CodeArtifact
* api-change:``voice-id``: [``botocore``] Added a new attribute ServerSideEncryptionUpdateDetails
to Domain and DomainSummary.
* api-change:``proton``: [``botocore``] Add new "Components" API to enable users to Create, Delete
and Update AWS Proton components.
* api-change:``connect``: [``botocore``] This release adds the following features: 1) New APIs to
manage (create, list, update) task template resources, 2) Updates to startTaskContact API to
support task templates, and 3) new TransferContact API to programmatically transfer in-progress
tasks via a contact flow.
* api-change:``application-insights``: [``botocore``] Provide Account Level onboarding support
through CFN/CLI
* api-change:``kendra``: [``botocore``] Amazon Kendra now provides a data source connector for
GitHub. For more information, see
https://docs.aws.amazon.com/kendra/latest/dg/data-source-github.html
- from version 1.24.1
* api-change:``backup-gateway``: [``botocore``] Adds GetGateway and UpdateGatewaySoftwareNow API
and adds hypervisor name to UpdateHypervisor API
* api-change:``forecast``: [``botocore``] Added Format field to Import and Export APIs in Amazon
Forecast. Added TimeSeriesSelector to Create Forecast API.
* api-change:``chime-sdk-meetings``: [``botocore``] Adds support for centrally controlling each
participant's ability to send and receive audio, video and screen share within a WebRTC session.
Attendee capabilities can be specified when the attendee is created and updated during the session
with the new BatchUpdateAttendeeCapabilitiesExcept API.
* api-change:``route53``: [``botocore``] Add new APIs to support Route 53 IP Based Routing
- from version 1.24.0
* api-change:``iotsitewise``: [``botocore``] This release adds the following new optional field to
the IoT SiteWise asset resource: assetDescription.
* api-change:``lookoutmetrics``: [``botocore``] Adding backtest mode to detectors using the
Cloudwatch data source.
* api-change:``transcribe``: [``botocore``] Amazon Transcribe now supports automatic language
identification for multi-lingual audio in batch mode.
* feature:Python: Dropped support for Python 3.6
* feature:Python: [``botocore``] Dropped support for Python 3.6
* api-change:``cognito-idp``: [``botocore``] Amazon Cognito now supports IP Address propagation for
all unauthenticated APIs (e.g. SignUp, ForgotPassword).
* api-change:``drs``: [``botocore``] Changed existing APIs and added new APIs to accommodate using
multiple AWS accounts with AWS Elastic Disaster Recovery.
* api-change:``sagemaker``: [``botocore``] Amazon SageMaker Notebook Instances now support Jupyter
Lab 3.
- from version 1.23.10
* api-change:``sagemaker``: [``botocore``] Amazon SageMaker Notebook Instances now allows
configuration of Instance Metadata Service version and Amazon SageMaker Studio now supports G5
instance types.
* api-change:``appflow``: [``botocore``] Adding the following features/changes: Parquet output that
preserves typing from the source connector, Failed executions threshold before deactivation for
scheduled flows, increasing max size of access and refresh token from 2048 to 4096
* api-change:``datasync``: [``botocore``] AWS DataSync now supports TLS encryption in transit, file
system policies and access points for EFS locations.
* api-change:``emr-serverless``: [``botocore``] This release adds support for Amazon EMR
Serverless, a serverless runtime environment that simplifies running analytics applications using
the latest open source frameworks such as Apache Spark and Apache Hive.
- from version 1.23.9
* api-change:``lightsail``: [``botocore``] Amazon Lightsail now supports the ability to configure a
Lightsail Container Service to pull images from Amazon ECR private repositories in your account.
* api-change:``emr-serverless``: [``botocore``] This release adds support for Amazon EMR
Serverless, a serverless runtime environment that simplifies running analytics applications using
the latest open source frameworks such as Apache Spark and Apache Hive.
* api-change:``ec2``: [``botocore``] C7g instances, powered by the latest generation AWS Graviton3
processors, provide the best price performance in Amazon EC2 for compute-intensive workloads.
* api-change:``forecast``: [``botocore``] Introduced a new field in Auto Predictor as Time
Alignment Boundary. It helps in aligning the timestamps generated during Forecast exports
- from version 1.23.8
* api-change:``secretsmanager``: [``botocore``] Documentation updates for Secrets Manager
* api-change:``fsx``: [``botocore``] This release adds root squash support to FSx for Lustre to
restrict root level access from clients by mapping root users to a less-privileged user/group with
limited permissions.
* api-change:``lookoutmetrics``: [``botocore``] Adding AthenaSourceConfig for MetricSet APIs to
support Athena as a data source.
* api-change:``voice-id``: [``botocore``] VoiceID will now automatically expire Speakers if they
haven't been accessed for Enrollment, Re-enrollment or Successful Auth for three years. The Speaker
APIs now return a "LastAccessedAt" time for Speakers, and the EvaluateSession API returns
"SPEAKER_EXPIRED" Auth Decision for EXPIRED Speakers.
* api-change:``cloudformation``: [``botocore``] Add a new parameter statusReason to
DescribeStackSetOperation output for additional details
* api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway
* api-change:``apprunner``: [``botocore``] Documentation-only update added for CodeConfiguration.
* api-change:``sagemaker``: [``botocore``] Amazon SageMaker Autopilot adds support for manually
selecting features from the input dataset using the CreateAutoMLJob API.
- from version 1.23.7
* api-change:``mediaconvert``: [``botocore``] AWS Elemental MediaConvert SDK has added support for
rules that constrain Automatic-ABR rendition selection when generating ABR package ladders.
* api-change:``cognito-idp``: [``botocore``] Amazon Cognito now supports requiring attribute
verification (ex. email and phone number) before update.
* api-change:``networkmanager``: [``botocore``] This release adds Multi Account API support for a
TGW Global Network, to enable and disable AWSServiceAccess with AwsOrganizations for Network
Manager service and dependency CloudFormation StackSets service.
* api-change:``ivschat``: [``botocore``] Doc-only update. For MessageReviewHandler structure, added
timeout period in the description of the fallbackResult field
* api-change:``ec2``: [``botocore``] Stop Protection feature enables customers to protect their
instances from accidental stop actions.
- from version 1.23.6
* api-change:``elasticache``: [``botocore``] Added support for encryption in transit for Memcached
clusters. Customers can now launch Memcached cluster with encryption in transit enabled when using
Memcached version 1.6.12 or later.
* api-change:``forecast``: [``botocore``] New APIs for Monitor that help you understand how your
predictors perform over time.
* api-change:``personalize``: [``botocore``] Adding modelMetrics as part of DescribeRecommender API
response for Personalize.
- from version 1.23.5
* api-change:``comprehend``: [``botocore``] Comprehend releases 14 new entity types for
DetectPiiEntities and ContainsPiiEntities APIs.
* api-change:``logs``: [``botocore``] Doc-only update to publish the new valid values for log
retention
- Update BuildRequires and Requires from setup.py
==== python-botocore ====
Version update (1.26.4 -> 1.27.2)
- Update to 1.27.2
* api-change:``codeartifact``: Documentation updates for CodeArtifact
* api-change:``voice-id``: Added a new attribute ServerSideEncryptionUpdateDetails to Domain and
DomainSummary.
* api-change:``proton``: Add new "Components" API to enable users to Create, Delete and Update AWS
Proton components.
* api-change:``connect``: This release adds the following features: 1) New APIs to manage (create,
list, update) task template resources, 2) Updates to startTaskContact API to support task
templates, and 3) new TransferContact API to programmatically transfer in-progress tasks via a
contact flow.
* api-change:``application-insights``: Provide Account Level onboarding support through CFN/CLI
* api-change:``kendra``: Amazon Kendra now provides a data source connector for GitHub. For more
information, see https://docs.aws.amazon.com/kendra/latest/dg/data-source-github.html
- from version 1.27.1
* api-change:``backup-gateway``: Adds GetGateway and UpdateGatewaySoftwareNow API and adds
hypervisor name to UpdateHypervisor API
* api-change:``forecast``: Added Format field to Import and Export APIs in Amazon Forecast. Added
TimeSeriesSelector to Create Forecast API.
* api-change:``chime-sdk-meetings``: Adds support for centrally controlling each participant's
ability to send and receive audio, video and screen share within a WebRTC session. Attendee
capabilities can be specified when the attendee is created and updated during the session with the
new BatchUpdateAttendeeCapabilitiesExcept API.
* api-change:``route53``: Add new APIs to support Route 53 IP Based Routing
- from version 1.27.0
* api-change:``iotsitewise``: This release adds the following new optional field to the IoT
SiteWise asset resource: assetDescription.
* api-change:``lookoutmetrics``: Adding backtest mode to detectors using the Cloudwatch data source.
* api-change:``transcribe``: Amazon Transcribe now supports automatic language identification for
multi-lingual audio in batch mode.
* feature:Python: Dropped support for Python 3.6
* api-change:``cognito-idp``: Amazon Cognito now supports IP Address propagation for all
unauthenticated APIs (e.g. SignUp, ForgotPassword).
* api-change:``drs``: Changed existing APIs and added new APIs to accommodate using multiple AWS
accounts with AWS Elastic Disaster Recovery.
* api-change:``sagemaker``: Amazon SageMaker Notebook Instances now support Jupyter Lab 3.
- from version 1.26.10
* api-change:``sagemaker``: Amazon SageMaker Notebook Instances now allows configuration of
Instance Metadata Service version and Amazon SageMaker Studio now supports G5 instance types.
* api-change:``appflow``: Adding the following features/changes: Parquet output that preserves
typing from the source connector, Failed executions threshold before deactivation for scheduled
flows, increasing max size of access and refresh token from 2048 to 4096
* api-change:``datasync``: AWS DataSync now supports TLS encryption in transit, file system
policies and access points for EFS locations.
* api-change:``emr-serverless``: This release adds support for Amazon EMR Serverless, a serverless
runtime environment that simplifies running analytics applications using the latest open source
frameworks such as Apache Spark and Apache Hive.
- from version 1.26.9
* api-change:``lightsail``: Amazon Lightsail now supports the ability to configure a Lightsail
Container Service to pull images from Amazon ECR private repositories in your account.
* api-change:``emr-serverless``: This release adds support for Amazon EMR Serverless, a serverless
runtime environment that simplifies running analytics applications using the latest open source
frameworks such as Apache Spark and Apache Hive.
* api-change:``ec2``: C7g instances, powered by the latest generation AWS Graviton3 processors,
provide the best price performance in Amazon EC2 for compute-intensive workloads.
* api-change:``forecast``: Introduced a new field in Auto Predictor as Time Alignment Boundary. It
helps in aligning the timestamps generated during Forecast exports
- from version 1.26.8
* api-change:``secretsmanager``: Documentation updates for Secrets Manager
* api-change:``fsx``: This release adds root squash support to FSx for Lustre to restrict root
level access from clients by mapping root users to a less-privileged user/group with limited
permissions.
* api-change:``lookoutmetrics``: Adding AthenaSourceConfig for MetricSet APIs to support Athena as
a data source.
* api-change:``voice-id``: VoiceID will now automatically expire Speakers if they haven't been
accessed for Enrollment, Re-enrollment or Successful Auth for three years. The Speaker APIs now
return a "LastAccessedAt" time for Speakers, and the EvaluateSession API returns "SPEAKER_EXPIRED"
Auth Decision for EXPIRED Speakers.
* api-change:``cloudformation``: Add a new parameter statusReason to DescribeStackSetOperation
output for additional details
* api-change:``apigateway``: Documentation updates for Amazon API Gateway
* api-change:``apprunner``: Documentation-only update added for CodeConfiguration.
* api-change:``sagemaker``: Amazon SageMaker Autopilot adds support for manually selecting features
from the input dataset using the CreateAutoMLJob API.
- from version 1.26.7
* api-change:``mediaconvert``: AWS Elemental MediaConvert SDK has added support for rules that
constrain Automatic-ABR rendition selection when generating ABR package ladders.
* api-change:``cognito-idp``: Amazon Cognito now supports requiring attribute verification (ex.
email and phone number) before update.
* api-change:``networkmanager``: This release adds Multi Account API support for a TGW Global
Network, to enable and disable AWSServiceAccess with AwsOrganizations for Network Manager service
and dependency CloudFormation StackSets service.
* api-change:``ivschat``: Doc-only update. For MessageReviewHandler structure, added timeout period
in the description of the fallbackResult field
* api-change:``ec2``: Stop Protection feature enables customers to protect their instances from
accidental stop actions.
- from version 1.26.6
* api-change:``elasticache``: Added support for encryption in transit for Memcached clusters.
Customers can now launch Memcached cluster with encryption in transit enabled when using Memcached
version 1.6.12 or later.
* api-change:``forecast``: New APIs for Monitor that help you understand how your predictors
perform over time.
* api-change:``personalize``: Adding modelMetrics as part of DescribeRecommender API response for
Personalize.
- from version 1.26.5
* api-change:``comprehend``: Comprehend releases 14 new entity types for DetectPiiEntities and
ContainsPiiEntities APIs.
* api-change:``logs``: Doc-only update to publish the new valid values for log retention
==== python-click ====
Version update (8.0.4 -> 8.1.3)
- specfile
* require python >= 3.7
- update to version 8.1.3:
* Use verbose form of "typing.Callable" for "@command" and
"@group". :issue:`2255`
* Show error when attempting to create an option with
"multiple=True, is_flag=True". Use "count" instead.
:issue:`2246`
- changes from version 8.1.2:
* Fix error message for readable path check that was mixed up with
the executable check. :pr:`2236`
* Restore parameter order for "Path", placing the "executable"
parameter at the end. It is recommended to use keyword arguments
instead of positional arguments. :issue:`2235`
- changes from version 8.1.1:
* Fix an issue with decorator typing that caused type checking to
report that a command was not callable. :issue:`2227`
- changes from version 8.1.0:
* Drop support for Python 3.6. :pr:`2129`
* Remove previously deprecated code. :pr:`2130`
+ "Group.resultcallback" is renamed to "result_callback".
+ "autocompletion" parameter to "Command" is renamed to
"shell_complete".
+ "get_terminal_size" is removed, use "shutil.get_terminal_size"
instead.
+ "get_os_args" is removed, use "sys.argv[1:]" instead.
* Rely on :pep:`538` and :pep:`540` to handle selecting UTF-8
encoding instead of ASCII. Click's locale encoding detection is
removed. :issue:`2198`
* Single options boolean flags with "show_default=True" only show
the default if it is "True". :issue:`1971`
* The "command" and "group" decorators can be applied with or
without parentheses. :issue:`1359`
* The "Path" type can check whether the target is executable.
:issue:`1961`
* "Command.show_default" overrides "Context.show_default", instead
of the other way around. :issue:`1963`
* Parameter decorators and "@group" handles "cls=None" the same as
not passing "cls". "@option" handles "help=None" the same as not
passing "help". :issue:`#1959`
* A flag option with "required=True" requires that the flag is
passed instead of choosing the implicit default
value. :issue:`1978`
* Indentation in help text passed to "Option" and "Command" is
cleaned the same as using the "@option" and "@command"
decorators does. A command's "epilog" and "short_help" are also
processed. :issue:`1985`
* Store unprocessed "Command.help", "epilog" and "short_help"
strings. Processing is only done when formatting help text for
output. :issue:`2149`
* Allow empty str input for "prompt()" when
"confirmation_prompt=True" and "default=""". :issue:`2157`
* Windows glob pattern expansion doesn't fail if a value is an
invalid pattern. :issue:`2195`
* It's possible to pass a list of "params" to "@command". Any params
defined with decorators are appended to the passed params.
:issue:`2131`.
* "@command" decorator is annotated as returning the correct type if
a "cls" argument is used. :issue:`2211`
* A "Group" with "invoke_without_command=True" and "chain=False"
will invoke its result callback with the group function's return
value. :issue:`2124`
* "to_info_dict" will not fail if a "ParamType" doesn't define a
"name". :issue:`2168`
* Shell completion prioritizes option values with option prefixes
over new options. :issue:`2040`
* Options that get an environment variable value using
"autoenvvar_prefix" treat an empty value as "None", consistent
with a direct "envvar". :issue:`2146`
==== python-fs ====
Version update (2.4.15 -> 2.4.16)
- update to 2.4.16:
* Make `fs.zipfs._ZipExtFile` use the seeking mechanism implemented
in the Python standard library in Python version 3.7 and later
* Mark `fs.zipfs.ReadZipFS` as a case-sensitive filesystem
* Optimized moving files between filesystems with syspaths.
* Fixed `fs.move.move_file` to clean up the copy on the destination in case of errors.
* `fs.opener.manage_fs` with `writeable=True` will now raise a `ResourceReadOnly`
exception if the managed filesystem is not writeable.
* Marked filesystems wrapped with `fs.wrap.WrapReadOnly` as read-only.
==== python-ipython ====
Version update (8.2.0 -> 8.4.0)
- update to version 8.4.0:
* fix uncaught BdbQuit exceptions on ipdb exit :ghpull:`13668`
* typo fix in documentation: :ghpull:`13682`
- changes from version 8.3.0:
* :ghpull:`13625`, using ?, ??, *? will not call set_next_input as
most frontend allow proper multiline editing and it was causing
issues for many users of multi-cell frontends. This has been
backported to 7.33
* :ghpull:`13600`, pre_run_*-hooks will now have a cell_id attribute
on the info object when frontend provide it. This has been
backported to 7.33
* :ghpull:`13624`, fixed End key being broken after accepting an
auto-suggestion.
* :ghpull:`13657` fix issue where history from different sessions
would be mixed.
==== python-libvirt-python ====
Version update (8.3.0 -> 8.4.0)
- Update to 8.4.0
- Add all new APIs and constants in libvirt 8.4.0
==== python-prettytable ====
Version update (3.2.0 -> 3.3.0)
- update to 3.3.0:
* Support Python 3.11
* Add flag to preserve internal borders when border=False
* Alignment timing fix (#179) @myheroyuki
==== python-pyOpenSSL ====
- Shift BuildRequires on openssl, it's only required for tests.
==== python-s3transfer ====
Version update (0.5.0 -> 0.6.0)
- Update to 0.6.0
* feature:Python: Dropped support for Python 3.6
- from version 0.5.2
* enhancement:``s3``: Added support for flexible checksums
when uploading or downloading objects.
- from version 0.5.1
* enhancement:Python: Officially add Python 3.10 support
- Drop unused python-mock dependency from BuildRequires
- Refresh patches for new version
+ no-bundled-packages.patch
==== python-scrypt ====
Version update (0.8.19 -> 0.8.20)
- update to 0.8.20:
* Fix #8 by adding missing gettimeofday.c to MANIFEST.in
==== python-traitlets ====
Version update (5.1.1 -> 5.2.2)
- Update to 5.2.2
* Make all explicit and validate in test by @blink1073 in #737
* Fix KeyError in Application.get_default_logging_config by
@tonyroberts in #724
- Release 5.2.1
* Switch to hatch backend by @blink1073 in #728
* logging: don't attempt to close handlers unless they have been
opened by @oliver-sanders in #727
- Release 5.2.0
* Add mypy support by @blink1073 in #705
* Disambiguate the use of the term value in the example. by
@metaperl in #694
* Correct spelling and grammar errors. by @metaperl in #695
* DOC: Add log example by @Carreau in #693
* Put description of signature_has_traits after the header for
it. by @metaperl in #711
* Application: add logging_config trait by @oliver-sanders in
[#698]
* [DOC] Give explicit list of private symbols for 5.0 by @vidartf
in #692
* Add pre-commit and run auto-formatters by @blink1073 in #699
* Fix downstream test by @blink1073 in #701
* Add docs on pre-commit and use manual hooks where appropriate
by @blink1073 in #700
* Set up flake8 by @blink1073 in #703
* Typing: tell mypy we have type, update all. by @Carreau in #713
* Improve CI by @blink1073 in #706
* Fix typing errors by @blink1073 in #718
* Use flit build backend by @blink1073 in #720
* Add Changelog Entry for 5.2.0 by @blink1073 in #717
- Add traitlets-pr739-fixversion.patch -- gh#ipython/traitlets#739
==== python-zipp ====
Version update (3.7.0 -> 3.8.0)
- update to 3.8.0:
* Removed compatibility code.
==== qalculate ====
Version update (3.20.1 -> 4.2.0)
Subpackages: libqalculate22 qalculate-data
- Update to 4.2.0:
- Option to plot real and imaginary parts separately (enabled
by default)
- Variable spacing of x values in plot (unless step size is used)
- Updated plot() function with arguments for specification of
plot options (in any order after the third argument)
- Polar plot style
- Ask the user for the desired sinc() variant (unnormalized or
normalized)
- Support for binary-coded decimals (BCD)
- Show names with underscore capitalized and with underscore
removed (with some exceptions)
- Additional information units
- Units for volumetric flow rate
- Tradtional numbers (e.g. dozen, score)
- Show warning when log() is used with a single argument, and
always show second argument of log()
- Show single digit suffixes using Unicode subscript (CLI)
- Make names with a single character followed by digits
case-sensitive with suffix by default
- Accept more than two arguments in gcd() and lcm()
- Interpret a single vector argument as a list of arguments if
function requires more than one argument
- Fix limit of floor(), ceil(), and trunc()
- Fix plotting of derivatives and integrals
- Fix randpoisson()
- Fix reactivation of object, after object that caused
deactivation is removed
- Update to 4.1.1:
- Restrict use of reciprocal in unit conversion, e.g. invert in
"5m/s to s/m" (= 0.2 s/m) but not in "500/lb to g" (= 1.1/g)
- New mHg unit (allows use with prefixes other than milli)
- Always display abbreviated unit name (symbol) with
abbreviated prefix (when unit only has short name)
- Minor improvements to automatic unit conversion
- Fix display of (1 + f(x))/n
- Save definitions on exit (only) if definitions has changed
regardless of interactive mode status (qalc)
- Update to 4.1:
- Use non-breaking narrow space as digit separator in
reasonably short numbers, and between quantity and unit
- Update value of austronomical unit
- Fix segfault (when compiled with -D_GLIBCXX_ASSERTIONS) with
local digit grouping when separator is empty (e.g. with
ignore locale)
- Fix freezes and crashes with extrememly large vectors and
matrices
- Fix segfault (when compiled with -D_GLIBCXX_ASSERTIONS) in
matrix multiplication
- Minor bug fixes and feature improvements (see the ChangeLog
for more details)
- Update to 4.0:
- New matrix syntax (column separated by space or comma, rows
separated by semicolon, as in matlab)
- Do not make any difference between a vector and a matrix with
a single row, or between a scalar and matrix with a single
element
- Support input of functions, units, and variables with
underscores omitted in names (e.g. µ0 = µ_0, FermiCoupling
= fermi_coupling), with some exceptions
- Option to disable "simplified" percentage calculations (e.g.
interpret 100 + 20% as 100 + 0.2 instead of 100 × 120%)
- Option to truncate numbers (instead of round to nearest) in
result
- Convert K, Hz, and 1/m to J (and derived units) using
conversion factor constants (e.g. 1/(550nm) to eV ? 2.25
eV)
- Allow use of M as 10^6 without unit
- New ksi unit
- New functions: divisors(), rate(), vertcat(), horzcat()
- New plastic number (?) constant, and new "hbar" name for
reduced Planck constant, and add second Unicode codepoint for
µ-sign in constants
- Allow zero (1st and/or 2nd argument) in comb() and perm(),
and return zero if second argument (k) is greater than the
first (n)
- Calculate statistical functions (e.g. mode(), min(), max(),
percentile()) separately for each column of matrix
- Return the lowest value if there are multiple values with
equal frequency in mode()
- Parse text argument as expression if concatenate function
name is found in text string, and fix concatenate returning
date
- New layout for output of result of matrices and equations
(qalc)
- Fix Unicode handling on platforms where char is not signed
- Fix bitrot()
- Fix segfault in multisolve() when initial order of equations
is not optimal
- Fix segfault with empty sqrt inside sqrt, e.g. sqrt(1+sqrt())
- Fix incompletely calculated nounit(), e.g. in unit conversion
- Update to 3.22.0:
- New functions: linearfit(), quadraticfit(), cubicfit(),
ramlatency(), parallel()
- Merged inv() and inverse() functions
- Improved and extended parallel operator (|| is interpreted as
parallel if units are used)
- Allow nested subfunctions
- Do not stop testing function argument values after first failure
- Solve x^(x^(-a))=b
- Improved simplification: Im(-x)=-Im(x), Re(-x)=-Re(x)
- Handle units in plot data (remove and set as y-axis label)
- Avoid precision loss on output of interval when saving
approximate variable
- Fix pearson() and spearman()
- Fix display of incompletely solved equation with dual
approximation in some cases
- Fix genvector() when step size requires evaluation
- Fix a%%-b (interpret %% as mod, not percent)
- Fix asin(x)+bcos(x)=c
- Minor bug fixes and feature improvements
- [qacalc] Support "--" as end of options
- [qacalc] New --defaults command line option
- [qacalc] Configurable SIGINT (Ctrl+C) action (exit orderly by
default)
- [qacalc] Vertical space option (vspace)
- [qacalc] Clear command with Ctrl+L shortcut
- [qacalc] Apply same logic with separate to command, as with "to" at
end of expression, when result contains no unit
- [qacalc] Fix "to unicode"
- Update to 3.21.0:
- Ask (once) for correct interpretation of ambiguous implicit
multiplication
- Fix crash when using the dock menu to show the RPN dock stack
for the first time
- Fix link in new version dialog
- Fix parenthesis highlighting when cursor is at end of
expression
- Fix initial value of interval display in preferences dialog
- Fix saving of approximation mode
- Improved simplification of radical expressions
- Improved Im(), Re(), and arg() functions
- Improved output of complex forms (other than the default
rectangular) in exact mode
- Function for drill bit size conversion
- Fixes for equations with complex inverse trigonometric and
hyperbolic functions with no solution
- Fixes for complex x^(ax)=b
==== re2 ====
Version update (20220401 -> 20220601)
- update to 2022-06-01:
* switch to cxx_std_11 and other developer visible fixes
==== remmina ====
Subpackages: remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc
- Added 2734-flatpak-crash.patch to fix an issue reported on upstream:
[#2580]: "Closing RDP connection quits Remmina without an error message"
==== rubygem-nokogiri ====
- Also build ruby 3.1 for 15.x
==== rubygem-passenger ====
Version update (6.0.13 -> 6.0.14)
Subpackages: ruby3.1-rubygem-passenger rubygem-passenger-apache2
- updated to version 6.0.14
see installed CHANGELOG
==== rubygem-rack ====
Version update (2.2.3 -> 2.2.3.1)
- updated to version 2.2.3.1
[CVE-2022-30123] Fix shell escaping issue in Common Logger
[CVE-2022-30122] Restrict parsing of broken MIME attachments
==== sg3_utils ====
Version update (1.47+4.82fb156 -> 1.47+5.d13bc56)
Subpackages: libsgutils2-1_47-2
- Update to version 1.47+5.d13bc56:
* rescan-scsi-bus.sh: add timeout parameter (bsc#1199248)
==== suse-module-tools ====
Version update (16.0.19 -> 16.0.20)
- Update to version 16.0.20:
* Bump version to 16.0.20
* driver-check.sh: avoid false positive error messages (boo#1200107)
* don't hardcode /boot for kernel-related files (boo#1199873)
* spec file: use "install -p" consistently
==== system-config-printer ====
Version update (1.5.15 -> 1.5.16)
Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-dbus-service udev-configure-printer
- Update to version 1.5.16:
+ fix preserve_job_files default settings.
+ add debugprint covering failed fingerprint retrieval attempts.
+ Make sure that applet.py is running one instance per user.
+ fix incorrect use of urllib.request.
+ remove python3-requests.
+ build: Migrate build system from Intltool to Gettext.
+ udev-configure-printer.c: Fix possible use after frees and
leaks.
+ scp-dbus-service.py: Fix typo in method call.
+ add option to disable xmlto manual generation.
+ allow + in device uris - gutenprint has a backend with +.
- Drop python3-requests requires: no longer needed, following
upstream changes.
- Rebase system-config-printer-no-openprinting.patch.
==== systemd ====
Version update (250.5 -> 250.6)
Subpackages: libsystemd0 libudev1 systemd-container systemd-devel udev
- Import commit 4dbc543953eabd4c578da67ce6e2970d6f96c406 (merge of v250.6)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/0d950479e58dd3af007eb3780d600a5…
- Update rpmlintrc for shlib-policy-name-error/multibuild case.
==== tiff ====
Version update (4.3.0 -> 4.4.0)
Subpackages: libtiff5
- update to 4.4.0:
* TIFFIsBigTiff() function added.
* Functions TIFFFieldSetGetSize() and TIFFieldSetGetCountSize() added.
* LZWDecode(): major speed improvements (~30% faster)
* Predictor 2 (horizontal differenciation): support 64-bit
* Support libjpeg 9d
* avoid hang in TIFFRewriteDirectory() if a classic file > 4 GB is attempted
to be created
* tif_jbig.c: fix crash when reading a file with multiple IFD in
memory-mapped mode and when bit reversal is needed
* TIFFFetchNormalTag(): avoid calling memcpy() with a null source pointer and
size of zero
* TIFFWriteDirectoryTagData(): turn assertion on data length into a runtime
check
* TIFFFetchStripThing(): avoid calling memcpy() with a null source pointer
and size of zero
* TIFFReadDirectory(): avoid calling memcpy() with a null source pointer and
size of zero
* TIFFYCbCrToRGBInit(): avoid Integer-overflow
* TIFFGetField(TIFFTAG_STRIPBYTECOUNTS/TIFFTAG_STRIPOFFSETS): return error if
returned pointer is NULL (fixes #342)
* OJPEG: avoid assertion when using TIFFReadScanline()
* TIFFReadDirectory: fix OJPEG hack
* LZW codec: fix support for strips/tiles > 2 GB on Windows
* TIFFAppendToStrip(): fix rewrite-in-place logic
* Fix TIFFRewriteDirectory discarding directories.
* TIFFReadCustomDirectory(): avoid crash when reading SubjectDistance tag on
a non EXIF directory
* Fix Segmentation fault printing GPS directory if Altitude tag is present
* tif_jpeg.c: do not emit progressive scans with mozjpeg. (#266)
* _TIFFRewriteField(): fix when writing a IFD with a single tile that is a
sparse one, on big endian hosts
* Fix all remaining uses of legacy Deflate compression id and warn on use.
- drop tiff-CVE-2022-0907.patch, tiff-CVE-2022-0561.patch, tiff-CVE-2022-0562.patch,
tiff-CVE-2022-0865.patch, tiff-CVE-2022-0909.patch, tiff-CVE-2022-0924.patch,
tiff-CVE-2022-0908.patch, tiff-CVE-2022-1056,CVE-2022-0891.patch: all upstream
- add signature validation, adds tiff.keyring
==== virt-manager ====
Subpackages: virt-install virt-manager-common
- Change dependency on package xorriso to Requires from Recommends
virt-manager.spec
==== virt-v2v ====
Version update (1.44.2 -> 2.0.6)
Subpackages: virt-v2v-bash-completion
- Update to version 2.0.6
* This is a bug fix release on top of 2.0.5
- Update to version 2.0.5
* Virt-v2v has been modularised allowing external programs to
examine the state of the conversion and inject their own
copying step. Further enhancements will be made to this new
architecture in forthcoming releases.
* The command line is almost identical apart from some debugging
features that were removed (see below). The only significant
difference is that the output format (-of) now has to be
specified if it is different from the input format, whereas
previous versions of virt-v2v would use the same output format
as input format automatically.
* A lot of time was spent improving the performance of virt-v2v
in common cases.
* Implement conversion of ALT Linux guests (Mikhail Gordeev).
* Many bug fixes and performance enhancements were made to oVirt
imageio output (Nir Soffer).
* There is a new virt-v2v-in-place(1) tool which replaces the
existing virt-v2v --in-place option.
* Virt-v2v can now convert guests which use LUKS encrypted
logical volumes (Laszlo Ersek).
* Option -oo rhv-direct has been replaced by -oo rhv-proxy, and
direct mode (which is much faster) is now the default when
writing to oVirt, with proxy mode available for restricted
network configurations (thanks: Nir Soffer).
* The following command line options were removed:
- -print-estimate, --debug-overlays, --no-copy.
* Virt-v2v no longer installs the RHEV-APT tool in Windows
guests. This tool was deprecated and then removed in oVirt 4.3.
* Deprecated tool virt-v2v-copy-to-local has been removed.
This was deprecated in November 2018.
- Drop fix-linker-error.patch
==== webkit2gtk3 ====
Version update (2.36.2 -> 2.36.3)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.36.3 (boo#1200106):
+ Support capturing already encoded video streams, which takes
advantage of encoding done in hardware by devices which support
this feature.
+ Avoid using experimental GStreamer elements for video demuxing.
+ Avoid using the legacy GStreamer VA-API decoding plug-ins,
which often cause rendering issues and are not much maintained.
Their usage can be re-enabled setting
WEBKIT_GST_ENABLE_LEGACY_VAAPI=1 in the environment.
+ Fix playback of YouTube streams which use dynamic ad insertion.
+ Fix display capture with Pipewire.
+ Fix the build without the X11 target when X11 headers are not
present.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
CVE-2022-26717, CVE-2022-26719.
==== webkit2gtk3-soup2 ====
Version update (2.36.2 -> 2.36.3)
Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Update to version 2.36.3 (boo#1200106):
+ Support capturing already encoded video streams, which takes
advantage of encoding done in hardware by devices which support
this feature.
+ Avoid using experimental GStreamer elements for video demuxing.
+ Avoid using the legacy GStreamer VA-API decoding plug-ins,
which often cause rendering issues and are not much maintained.
Their usage can be re-enabled setting
WEBKIT_GST_ENABLE_LEGACY_VAAPI=1 in the environment.
+ Fix playback of YouTube streams which use dynamic ad insertion.
+ Fix display capture with Pipewire.
+ Fix the build without the X11 target when X11 headers are not
present.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-26700, CVE-2022-26709, CVE-2022-26716,
CVE-2022-26717, CVE-2022-26719.
==== wireless-regdb ====
Version update (20220408 -> 20220527)
- Update to version 20220527:
* wireless-regdb: update regulatory rules for Bulgaria (BG) on 6GHz
* Regulatory update for 6 GHz operation in FI
* Regulatory update for 6 GHz operation in United States (US)
* Regulatory update for 6 GHz operation in Canada (CA)
==== xfce4-taskmanager ====
Version update (1.4.2 -> 1.5.4)
Subpackages: xfce4-taskmanager-lang
- Update to version 1.5.4
* Update configure.ac.in syntax
* Fix taskmanager translations (gxo#apps/xfce4-taskmanager#53)
* Translation Updates
- Updates from 1.5.3
* Fix rendering bug (gxo#apps/xfce4-taskmanager#44)
* Fix rendering bug for swap graph (gxo#apps/xfce4-taskmanager#44)
* Fix bindings related to the "show-legend" setting
* Allow to copy full process command line (gxo#apps/xfce4-taskmanager#33)
* Rename Private to Resident Bytes (gxo#apps/xfce4-taskmanager#7)
* Avoid grabbing the filter entry if it is not realized
* Fix intltool lock file problem during make distcheck
* `uid_name` has been removed from `task` struct
* Fix invalid casts for "About" and "Help" (gxo#apps/xfce4-taskmanager#43)
* Show localized website label
* Update COPYING (gxo#apps/xfce4-taskmanager#49)
* Updated copyright year, authors, and project links
- Updates from version 1.5.2
* Fix restoring the window size (gxo#apps/xfce4-taskmanager#39)
* Improve wording of systray option (gxo#apps/xfce4-taskmanager#19)
- Updates from version 1.5.1
* Fix erroneous binding of settings (gxo#apps/xfce4-taskmanager#37)
* Store column positions again
* Store sort-column-id and sort-type (gxo#apps/xfce4-taskmanager#36)
* Also include swap in the memory graph
* Reduce drawing code
* Reduce borders of graphs
* Replace GtkImageMenuItem with GtkMenuItem
- Updates from version 1.5.0
* Port to xfconf
* Move to Client-side decorations
* Migrate all settings to the settings dialog
* settings: Switch to XfceTitledDialog
* Use infobar for root warning box
* Drop exec button from toolbar
* include stdlib.h because exit() is used
* remove GLIB_CHECK_VERSION checks
* statusbar: Use better color that works well with both light and dark
themes (gxo#apps/xfce4-taskmanager!17)
* Fix handling "show-legend" setting
* Handle Esc key correctly with hidden filter
* Drop unused var and sort copyright
* Show/hide filterbar with Ctrl+f and clear with Esc
* Properly close settings dialog
* Remove GSourceFunc casts
* Fix compilation warnings
* Replace AC_PROG_LIBTOOL with IT_PROG_INTLTOOL
* Simplify "query-tooltip" signal handler
* Ellipsize memory and swap labels (gxo#apps/xfce4-taskmanager#32)
* Set window icon in glade file
* Replace filter entry with GtkSearchBar
* Fix doc links and bump dates
* Simplify settings dialog code
* Drop leftover function for toolbar style
* Move about dialog to settings
* Drop toolbar style setting
* Fix tooltip markdown issue
* Create notification area icon only if needed (gxo#apps/xfce4-taskmanager#25)
==== xfce4-terminal ====
Version update (1.0.3 -> 1.0.4)
Subpackages: xfce4-terminal-lang
- Update to version 1.0.4
* Fixes a regression: URL drag-n-drop adding rubbish characters
(gxo#apps/xfce4-terminak#196)
==== xkeyboard-config ====
Version update (2.34 -> 2.36)
- U_Fixes-regression-from-c3c5d02-were-mistakenly-replac.patch
* Regression fixed from
c3c5d02rules: sort the names of multimedia keyboards alphabetically
"\" at the end of line were mistakenly replacd by "/"
- Update to version 2.36
* bugfixes
* removed autotools support :-(
- switched to meson
==== yast2-storage-ng ====
Version update (4.5.6 -> 4.5.7)
- Partitioner: Allow min chunk size of 4 KiB (page size) for RAID0 /
RAID10 (bsc#1200018)
- 4.5.7
==== yast2-trans ====
Version update (84.87.20220520.670357a704 -> 84.87.20220527.e399b59cf0)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Update to version 84.87.20220527.e399b59cf0:
* New POT for text domain 'registration'.
* New POT for text domain 'packager'.
* New POT for text domain 'storage'.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
boost-base
boost-extra
dpdk
dpdk-thunderx
f2fs-tools (1.14.0.g67 -> 1.15.0)
google-noto-fonts (20220516 -> 20220524)
libdlm
libidn
libidn2
llvm14 (14.0.3 -> 14.0.4)
python-Pillow (9.1.0 -> 9.1.1)
python-matplotlib (3.5.1 -> 3.5.2)
python-numpy (1.21.4 -> 1.21.6)
python-packaging
rubygem-ruby-dbus (0.18.0.beta6 -> 0.18.0.beta7)
sshfs (3.7.2 -> 3.7.3)
update-alternatives (1.21.1 -> 1.21.8)
vim (8.2.4877 -> 8.2.5038)
yast2-packager (4.5.4 -> 4.5.5)
=== Details ===
==== boost-base ====
Subpackages: boost-license1_79_0 libboost_date_time1_79_0 libboost_filesystem1_79_0 libboost_iostreams1_79_0 libboost_locale1_79_0 libboost_program_options1_79_0 libboost_thread1_79_0
- Fix failing conversion of cpp_dec_float to double, depending on
locale (gh#boostorg/multiprecision#464, boo#1199968).
Add boost-mp-locale-fix.patch
==== boost-extra ====
- Fix failing conversion of cpp_dec_float to double, depending on
locale (gh#boostorg/multiprecision#464, boo#1199968).
Add boost-mp-locale-fix.patch
==== dpdk ====
- add kni-fix-build-with-Linux-5.18.patch to fix build with kernel
5.18
==== dpdk-thunderx ====
- add kni-fix-build-with-Linux-5.18.patch to fix build with kernel
5.18
==== f2fs-tools ====
Version update (1.14.0.g67 -> 1.15.0)
- update to 1.15.0:
* fsck.f2fs: fix broken file_map output
* f2fs-tools: show segment/section layout correctly
* dump.f2fs: compress: fix dstlen of LZ4_compress_fast_extState()
* big endian fixes
* cross compile fixes
* mkfs.f2fs: set required quota types only
* fsck.f2fs: Add progression feedback
* fsck.f2fs: do not assert if i_size is missing i_blocks in symlink
* f2fs-tools: separate other bugs in fsck_verify
* fsck|dump.f2fs: add -M to get file map
- drop f2fs-tools-1.4.0-bigendian.patch: obsolete
==== google-noto-fonts ====
Version update (20220516 -> 20220524)
Subpackages: google-noto-fonts-doc noto-sans-fonts
- Switch back to hinted ttf as unhinted otf causes blurring (boo#1199938)
- Add obsoletes and provides for:
- noto-mono-fonts: Got merged into noto-sans-mono-fonts
- noto-sans-syriac* variants: Got merged into noto-sans-syriac-fonts
- noto-sans-tibetan-fonts: Got renamed to noto-serif-tibetan-fonts
- Update to version 20220524
- Updated Noto Sans Myanmar and Noto Sans Tangsa Fonts
==== libdlm ====
Subpackages: libdlm3
- Adjust BuildRequires libpacemaker-devel -> pkgconfig(pacemaker)
==== libidn ====
- Update keyring from source URL
==== libidn2 ====
- Refresh libidn2.keyring
==== llvm14 ====
Version update (14.0.3 -> 14.0.4)
Subpackages: clang-tools clang14 clang14-doc libLLVM14 libc++-devel libc++1 libc++abi-devel libc++abi1 libclang-cpp14 libclang13
- Update to version 14.0.4.
* This release contains bug-fixes for the LLVM 14.0.0 release.
This release is API and ABI compatible with 14.0.0.
- Don't use gold for linking anymore: on s390x we use ld.bfd with
LLVMgold.so, on ppc64 we disable ThinLTO for now.
- Using ld.bfd on s390x exposed an issue with the existing
llvm_build_tablegen_component_as_shared_library.patch: linking
llvm-tblgen with libLLVM.so means we also have to link libraries
used for that (like LLVMTableGenGlobalISel) with libLLVM.so.
- Rewrite summary and description for llvm-gold to point out that
it can also be used with ld.bfd, recommend with binutils.
- Prefer RPM macros over shell scripting, so that we can better
inspect the build script with substitutions in place.
- More memory for stage 1 build jobs due to recent OOMs.
- Add %_libclang_sonum RPM macro to llvm-devel, since that might
now diverge from %_llvm_sonum.
- Rebase llvm-do-not-install-static-libraries.patch.
==== python-Pillow ====
Version update (9.1.0 -> 9.1.1)
Subpackages: python38-Pillow python38-Pillow-tk
- update to 9.1.1 (bsc#1199713, CVE-2022-30595):
* When reading past the end of a TGA scan line, reduce bytes left. CVE-2022-30595
* Do not open images with zero or negative height #6269
==== python-matplotlib ====
Version update (3.5.1 -> 3.5.2)
Subpackages: python38-matplotlib python38-matplotlib-tk
- Skip a flaky leak test, move sigint test skip to all archs
- Add matplotlib-pr22975-fixarray.patch,
gh#matplotlib/matplotlib#22975, required for astropy 5.1
- update to 3.5.2:
* Preliminary support for Windows on arm64 target has been added; this
requires FreeType 2.11 or above.
- drop matplotlib-pr22780-Pillow-deprecations.patch (upstream)
==== python-numpy ====
Version update (1.21.4 -> 1.21.6)
- update to 1.21.6:
* Do not forward `__(deep)copy__` calls of `_GenericAlias`...
* Fix float16 einsum fastpaths using wrong tempvar
* Print os error message when the executable not exist
* Force ``npymath` ` to respect ``npy_longdouble``
* Fix failure to create aligned, empty structured dtype
* provide a convenience function to replace npy_load_module
* update wheel to version that supports python3.10
* Clear errors correctly in F2PY conversions
* add a warningfilter to fix pytest workflow.
* Help boost::python libraries at least not crash
- drop bpo-45167-fixes.patch (upstream)
==== python-packaging ====
- Add patch to fix testsuite on big-endian targets
+ fix-big-endian-build.patch
==== rubygem-ruby-dbus ====
Version update (0.18.0.beta6 -> 0.18.0.beta7)
- 0.18.0.beta7
API:
* DBus.variant(type, value) is deprecated in favor of
Data::Variant.new(value, member_type:)
Bug fixes:
* Client-side properties: When calling Properties.Set in
ProxyObjectInterface#[]=, use the correct type (gh#mvidner/ruby-dbus#108).
==== sshfs ====
Version update (3.7.2 -> 3.7.3)
- sshfs 3.7.3:
* Minor bugfixes.
* This is the last release from the current maintainer.
SSHFS is now no longer maintained.
- removed obsolete fix-typo-in-ssh_opts.patch
==== update-alternatives ====
Version update (1.21.1 -> 1.21.8)
- version update to 1.21.8
* fix CVE-2022-1664 [bsc#1199944], dpkg -- security update
* lot of changes, see changelog
- modified patches
% update-alternatives-suse.patch (refreshed)
==== vim ====
Version update (8.2.4877 -> 8.2.5038)
Subpackages: gvim vim-data vim-data-common
- Updated to version 8.2.5038, fixes the following problems
* Valgrind warning for using uninitialized variable.
* Screendump test may fail when using valgrind.
* Vim9: misplaced elseif causes invalid memory access.
* "P" in Visual mode still changes some registers.
* Cannot make 'breakindent' use a specific column.
* String interpolation only works in heredoc.
* Test fails without the job/channel feature. (Dominique Pellé)
* Test fails with the job/channel feature.
* Vim9: redir in skipped block seen as assignment.
* Channel log does not show invoking a timer callback.
* Line number of lambda ignores line continuation.
* Inconsistent capitalization in error messages.
* Vim help presentation could be better.
* Test failures because of changed error messages.
* Distributed import files are not installed.
* Buffer overflow with invalid command with composing chars.
* Expression in command block does not look after NL when command is typed.
* Comment inside an expression in lambda ignores the rest of the expression.
* Coverity complains about pointer usage.
* With latin1 encoding CTRL-W might go before the start of the command line.
* Vim9 expression test fails without the job feature.
* NULL pointer access when using invalid pattern.
* Mouse wheel scrolling is inconsistent.
* Cannot get the current cmdline completion type and position.
* codecov includes MS-Windows install files.
* codecov includes MS-Windows install header file.
* Some users do not want a line comment always inserted.
* No text formatting for // comment after a statement.
* MODE_ enum entries names are too generic.
* Imperfect coding.
* The mode #defines are not clearly named.
* Using execute() to define a lambda doesn't work. (Ernie Rael)
* Popup_hide() does not always have effect.
* String interpolation in :def function may fail.
* Sometimes the cursor is in the wrong position.
* Mouse in Insert mode test fails.
* Fuzzy expansion of option names is not right.
* Conceal character from matchadd() displayed too many times.
* Can add invalid bytes with :spellgood.
* Spell test fails because of new illegal byte check.
* Mouse test fails on MS-Windows.
* Test checks for terminal feature unnecessarily.
* maparg() may return a string that cannot be reused.
* Trailing backslash may cause reading past end of line.
* #ifdef for crypt feature around too many lines.
* Return type of remove() incorrect when using three arguments.
* Various white space and cosmetic mistakes.
* Off-by-one error in in statusline item.
* Interpolated string expression requires escaping.
* Crash with sequence of Perl commands.
* Not easy to filter the output of maplist().
* A few more capitalization mistakes in error messages.
* String interpolation fails when not evaluating.
* With 'foldmethod' "indent" some lines are not included in the fold. (Oleg
Koshovetc)
* No test for what 8.2.4931 fixes.
* Crash when matching buffer with invalid pattern.
* matchfuzzypos() with "matchseq" does not have all positions.
* Some code is never used.
* '[ and '] marks may be wrong after undo.
* Error when setting 'filetype' in help file again.
* Changing 'switchbuf' may have no effect.
* Text properties are wrong after "cc". (Axel Forsman)
* Inconsistent use of white space.
* Vim9: some code not covered by tests.
* Text properties not adjusted when accepting spell suggestion.
* Cannot use Perl heredoc in nested :def function. (Virginia Senioria)
* Vim9: some code not covered by tests.
* Text properties position wrong after shifting text.
* Smart indenting done when not enabled.
* GUI test will fail if color scheme changes.
* With 'smartindent' inserting '}' after completion goes wrong.
* Inserting line breaks text property spanning more then one line.
* Text property in wrong position after auto-indent.
* Reading past end of line with "gf" in Visual block mode.
* Text properties in a wrong position after a block change.
* A couple conditions are always true.
* Using NULL regexp program.
* Text properties that cross line boundary are not correctly updated for
a deleted line.
* Build error with a certain combination of features.
* Files show up in git status.
* Expanding path with "/**" may overrun end of buffer.
* GUI: testing mouse move event depends on screen cell size.
* Changing text in Visual mode may cause invalid memory access.
* "eval 123" gives an error, "eval 'abc'" does not.
* Vim9: interpolated string seen as range.
* Vim9: compilation fails when using dict member when skipping.
* Vim9: type error for list unpack mentions argument.
* ":so" command may read after end of buffer.
* Recursive command line loop may cause a crash.
* Coverity complains about not restoring a saved value.
* Memory access error when substitute expression changes window.
* No error if engine selection atom is not at the start.
* Accessing freed memory when line is flushed.
* When 'shortmess' contains 'A' loading a session may still warn for an
existing swap file. (Melker Österberg)
* It is not possible to manipulate autocommands.
* Colors in terminal window are not 100% correct.
* Colors test fails in the GUI.
* Dragging statusline fails for window with winbar.
* PVS warns for possible array underrun.
* Some github actions are outdated.
* After deletion a small fold may be closable.
* Textprop in wrong position when replacing multi-byte chars.
* Cannot specify a function name for :defcompile.
* Memory leak when :defcompile fails.
* No test for hwat patch 8.1.0535 fixes.
* Compiler warning for possibly uninitialized variable. (Tony Mechelynck)
* smart/C/lisp indenting is optional, which makes the code more complex,
while it only reduces the executable size a bit.
* Tests are using legacy functions.
* Still a compiler warning for possibly uninitialized variable. (Tony
Mechelynck)
* setbufline() may change Visual selection. (Qiming Zhao)
* Python: changing hidden buffer can cause the display to be messed up.
* Vim9: crash when using multiple funcref().
* Filetype test table is not properly sorted.
* Checking translations affects the search pattern history.
* deletebufline() may change Visual selection.
* Cannot do bitwise shifts.
* Right shift on negative number does not work as documented.
* Compiler warning for uninitialized variable. (John Marriott)
* Asan warns for undefined behavior.
* Spell suggestion may use uninitialized memory. (Zdenek Dohnal)
* When 'formatoptions' contains "/" wrongly wrapping a long trailing comment.
* Fold may not be closeable after appending.
* The terminal debugger uses various global variables.
* Replacing an autocommand requires several lines.
* Cannot select one character inside ().
* After text formatting the cursor may be in an invalid position.
* Byte offsets are wrong when using text properties.
* Hoon and Moonscript files are not recognized.
* Access before start of text with a put command.
* Gcc 12.1 warns for uninitialized variable.
* Vim9: some code is not covered by tests.
* Cannot get the first screen column of a character.
* Using 'imstatusfunc' and 'imactivatefunc' breaks 'foldopen'.
* Build fails with normal features and +terminal. (Dominique Pellé)
* 'completefunc'/'omnifunc' error does not end completion.
* Substitute overwrites allocated buffer.
* Using freed memory with "]d".
* Vim9: a few lines not covered by tests.
* Error for missing :endif when an exception was thrown. (Dani Dickstein)
* Syntax regexp matching can be slow.
* "textlock" is always zero.
* autocmd_add() can only handle one event and pattern.
* Cannot easily run the benchmarks.
* Python 3 test fails without the GUI.
* Build error with +eval but without +quickfix. Warning for uninitialized
variable.
* There is no way to get the byte index from a virtual column.
* When splitting a window the changelist position moves.
* Using two counters for timeout check in NFA engine.
* Cursor position may be invalid after "0;" range.
* A finished terminal in a popup window does not show a scrollbar.
==== yast2-packager ====
Version update (4.5.4 -> 4.5.5)
- Support managing system in a chroot (bsc#1199840)
- 4.5.5
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio…
Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
NetworkManager
PackageKit (1.2.4 -> 1.2.5)
amavisd-new
augeas
autofs
automake
bash-completion
binutils
chrony
emacs-flim (1.14.9+125+g02735de -> 1.14.9+130+g289e5bbd66f6)
evince (42.2 -> 42.3)
gimp
git
gnome-keyring (40.0 -> 42.1)
gnutls (3.7.5 -> 3.7.4)
gpg2
grep
grub2
harfbuzz (4.2.1 -> 4.3.0)
icewm (2.1.1 -> 2.9.7)
kColorPicker (0.1.6 -> 0.2.0)
kImageAnnotator (0.5.3 -> 0.6.0)
kdsoap
libopenmpt (0.6.2 -> 0.6.3)
libstorage-ng (4.5.11 -> 4.5.14)
libunwind
logrotate (3.19.0 -> 3.20.1)
minicom (2.7.1 -> 2.8)
mobile-broadband-provider-info (20220315 -> 20220511)
nagios (4.4.6 -> 4.4.7)
opensuse-welcome
osinfo-db (20220214 -> 20220516)
polkit-default-privs (1550+20220404.7b4bea2 -> 1550+20220524.0345bd9)
ppp (2.4.8 -> 2.4.9)
python-base
python-cryptography (36.0.2 -> 37.0.2)
python-psutil (5.9.0 -> 5.9.1)
python-scipy (1.8.0 -> 1.8.1)
python-sympy
qemu
remmina (1.4.25 -> 1.4.26)
rubygem-ruby-dbus (0.18.0.beta5 -> 0.18.0.beta6)
seahorse (41.0 -> 42.0)
texlive
tnftp (20151004 -> 20210827)
vlc
wayland
webkit2gtk3 (2.36.1 -> 2.36.2)
webkit2gtk3-soup2 (2.36.1 -> 2.36.2)
xmlcharent
xmlsec1 (1.2.33 -> 1.2.34)
xscreensaver
xwayland (22.1.1 -> 22.1.2)
yast2 (4.5.3 -> 4.5.4)
yast2-installation (4.5.1 -> 4.5.2)
yast2-ruby-bindings (4.5.0 -> 4.5.1)
yast2-storage-ng (4.5.5 -> 4.5.6)
yast2-trans (84.87.20220513.26f6bfaa16 -> 84.87.20220520.670357a704)
zsh (5.8.1 -> 5.9)
=== Details ===
==== Mesa ====
Subpackages: Mesa-dri-devel Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- buildrequire DirectX-Headers only on %{ix86} x86_64, since it's
only relevant on these platforms
- Calling patch with '-p1' (as the others are) so 'git show'
.patch output works.
- Generating 'n_stop-iris-flicker.patch' from 'git format-patch' vs.
a standard diff.
- Fixing up 'stop-iris-flicker.patch' patch name to follow standards.
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- buildrequire DirectX-Headers only on %{ix86} x86_64, since it's
only relevant on these platforms
- Calling patch with '-p1' (as the others are) so 'git show'
.patch output works.
- Generating 'n_stop-iris-flicker.patch' from 'git format-patch' vs.
a standard diff.
- Fixing up 'stop-iris-flicker.patch' patch name to follow standards.
==== NetworkManager ====
Subpackages: NetworkManager-bluetooth NetworkManager-pppoe NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Fold NetworkManager-wifi back into the main package: The dep
chain is not really different and it causes too many problems for
users having that split. Not worth the pain (boo#1199710,
boo#1199706).
- As a consequence, also drop the recommends fro the main package
to -wifi.
==== PackageKit ====
Version update (1.2.4 -> 1.2.5)
Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0
- Update to version 1.2.5:
+ Backends:
- dnf:
. Add support for autoremove flag when removing packages.
. Searches by name and package details should be case
insensitive.
. Update appstream xml files if dnf_sack_add_repos() does
the download.
- zypp:
. Add -std=c++1z cpp flags.
. Fix crash when search string is NULL.
. Fix package installation using undefined data.
- Changes to alpm, apttcc, nix, and slack.
+ Bugfixes:
- Install offline-update enablement symlink if Meson is new
enough.
- Move Wants= line for network-online.target.
- Add flags to D-Bus offline invoking methods.
- Properly handle allow-reinstall flag for installations.
- Provide better error message if trying to install an
installed package.
- Wait until online to activate systemd service.
- Drop 505.patch, PackageKit-zypp-c++17.patch, and
PackageKit-zypp-fix-crash-with-empty-search-string.patch: fixed
upstream.
==== amavisd-new ====
Subpackages: amavisd-new-docs
- amavis fails to start (bsc#1199755)
Add missed requirement
- Remove server:mail/amavisd-new/amavis.service since it results Assignment outside of section warning
==== augeas ====
Subpackages: augeas-lenses libaugeas0
- Employ shared library packaging guideline and resolve this
rpmlint report: "libaugeas0.x86_64: E: shlib-policy-name-error
SONAME: libfa.so.1, expected package suffix: 1" [boo#1191749]
==== autofs ====
- Moved -autofs- file from user specif directory
/etc/NetworkManager/dispatcher.d to vendor specific directory
/usr/lib/NetworkManager/dispatcher.d. So, users changes can
still be done in /etc and will not be overwritten by an update.
==== automake ====
- update automake.keyring: use release-team keyring
- don't reference source URL when the linked sources change over time
==== bash-completion ====
- Add patch bsc1199724-modules.patch (bsc#1199724)
* Enable upstream commit to list ko.zst modules as well
==== binutils ====
Subpackages: libctf-nobfd0 libctf0
- Use https for variosu links.
- Update binutils-2.38-branch.diff.gz (to 93054037f1e304e)
in order to include PR29087.
- Enable multitarget build on riscv64
- On SLE15 and later, use make -Oline to synchronize configure output by
lines
==== chrony ====
Subpackages: chrony-pool-openSUSE
- Moved 20-chrony file from user specif directory
/etc/NetworkManager/dispatcher.d to vendor specific directory
/usr/lib/NetworkManager/dispatcher.d. So, users changes can
still be done in /etc and will not be overwritten by an update.
==== emacs-flim ====
Version update (1.14.9+125+g02735de -> 1.14.9+130+g289e5bbd66f6)
- Update to version 1.14.9+130+g289e5bbd66f6:
* Fold docstring within 80 characters
* Remove XEmacs related stuff.
* New installer option PACKAGE_LISPDIR
* Fix problem with new timestamp format.
* Fold docstring within 80 characters
==== evince ====
Version update (42.2 -> 42.3)
Subpackages: evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 nautilus-evince typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 42.3:
+ Shell: Disconnect signal handler to prevent invalid read.
+ Updated translations.
==== gimp ====
Subpackages: gimp-plugin-aa gimp-plugins-python libgimp-2_0-0 libgimpui-2_0-0
- Do not recommend lang package: the lang package has smarter
supplements in place.
==== git ====
Subpackages: git-core git-email git-gui git-svn git-web gitk perl-Git
- Do not recommend git-cvs and git-svn by git, but rather have
those two packages supplement the combination of git and their
respective counterparts.
==== gnome-keyring ====
Version update (40.0 -> 42.1)
Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring
- Update to version 42.1:
+ daemon: Add files to EXTRA_DIST to fix distcheck.
- Changes from version 42.0:
+ secret-portal: Properly check the default keyring.
+ Build fixes.
+ ssh-agent: Fix crash by uninitialized GMutex.
+ fix looping off the end of the operations array.
+ readme: Mention libsecret instead of deprecated
libgnome-keyring.
+ daemon: Make it systemd-activatable through the control socket.
+ Updated translations.
- Add pkgcondfig(systemd) and pkgconfig(libsystemd) BuildRequires:
new dependencies.
==== gnutls ====
Version update (3.7.5 -> 3.7.4)
Subpackages: libgnutls-dane0 libgnutls30 libgnutls30-hmac
- disable kcapi usage for now, as kernel-obs-build not adjusted
to contain the algorithms. bsc#1189283
- FIPS: Additional PBKDF2 requirements for KAT [bsc#1184669]
* The IG 10.3.A and SP800-132 require some minimum parameters for
the salt length, password length and iteration count. These
parameters should be also used in the KAT.
* Add gnutls-FIPS-PBKDF2-KAT-requirements.patch
- Enable to run the regression tests also in FIPS mode.
- Update to 3.7.4:
* libgnutls: Added support for certificate compression as defined
in RFC8879.
* certtool: Added option --compress-cert that allows user to
specify compression methods for certificate compression.
* libgnutls: GnuTLS can now be compiled with --enable-strict-x509
configure option to enforce stricter certificate sanity checks
that are compliant with RFC5280.
* libgnutls: Removed IA5String type from DirectoryString within
issuer and subject name to make DirectoryString RFC5280 compliant.
* libgnutls: Added function to retrieve the name of current
ciphersuite from session.
* Bump libgnutlsxx soname due to ABI break
* API and ABI modifications:
- GNUTLS_COMP_BROTLI: New gnutls_compression_method_t enum member
- GNUTLS_COMP_ZSTD: New gnutls_compression_method_t enum member
- gnutls_compress_certificate_get_selected_method: Added
- gnutls_compress_certificate_set_methods: Added
* Update gnutls.keyring
- build with lto
- build with -Wl,-z,now -Wl,-z,relro
- build without -fanalyzer, which cuts build time in ~ half
- Update to 3.7.3: [bsc#1190698, bsc#1190796]
* libgnutls: The allowlisting configuration mode has been added
to the system-wide settings. In this mode, all the algorithms
are initially marked as insecure or disabled, while the
applications can re-enable them either through the [overrides]
section of the configuration file or the new API (#1172).
* The build infrastructure no longer depends on GNU AutoGen for
generating command-line option handling, template file parsing
in certtool, and documentation generation (#773, #774). This
change also removes run-time or bundled dependency on the
libopts library, and requires Python 3.6 or later to regenerate
the distribution tarball. Note that this brings in known backward
incompatibility in command-line tools, such as long options are
now case sensitive, while previously they were treated in a case
insensitive manner: for example --RSA is no longer a valid option
of certtool. The existing scripts using GnuTLS tools may need
adjustment for this change.
* libgnutls: The tpm2-tss-engine compatible private blobs can be loaded
and used as a gnutls_privkey_t (#594). The code was originally written
for the OpenConnect VPN project by David Woodhouse. To generate such
blobs, use the tpm2tss-genkey tool from tpm2-tss-engine:
https://github.com/tpm2-software/tpm2-tss-engine/#rsa-operations
or the tpm2_encodeobject tool from unreleased tpm2-tools.
* libgnutls: The library now transparently enables Linux KTLS (kernel
TLS) when the feature is compiled in with --enable-ktls configuration
option (#1113). If the KTLS initialization fails it automatically falls
back to the user space implementation.
* certtool: The certtool command can now read the Certificate Transparency
(RFC 6962) SCT extension (#232). New API functions are also provided to
access and manipulate the extension values.
* certtool: The certtool command can now generate, manipulate, and evaluate
x25519 and x448 public keys, private keys, and certificates.
* libgnutls: Disabling a hashing algorithm through "insecure-hash"
configuration directive now also disables TLS ciphersuites that use it
as a PRF algorithm.
* libgnutls: PKCS#12 files are now created with modern algorithms by default
(!1499). Previously certtool used PKCS12-3DES-SHA1 for key derivation and
HMAC-SHA1 as an integity measure in PKCS#12. Now it uses AES-128-CBC with
PBKDF2 and SHA-256 for both key derivation and MAC algorithms, and the
default PBKDF2 iteration count has been increased to 600000.
* libgnutls: PKCS#12 keys derived using GOST algorithm now uses
HMAC_GOSTR3411_2012_512 instead of HMAC_GOSTR3411_2012_256 for integrity,
to conform with the latest TC-26 requirements (#1225).
* libgnutls: The library now provides a means to report the status
of approved cryptographic operations (!1465). To adhere to the
FIPS140-3 IG 2.4.C., this complements the existing mechanism to
prohibit the use of unapproved algorithms by making the library
unusable state.
* gnutls-cli: The gnutls-cli command now provides a --list-config
option to print the library configuration (!1508).
* libgnutls: Fixed possible race condition in
gnutls_x509_trust_list_verify_crt2 when a single trust list object
is shared among multiple threads (#1277). [GNUTLS-SA-2022-01-17,
CVSS: low]
* API and ABI modifications:
GNUTLS_PRIVKEY_FLAG_RSA_PSS_FIXED_SALT_LENGTH: new flag in
gnutls_privkey_flags_t
GNUTLS_VERIFY_RSA_PSS_FIXED_SALT_LENGTH: new flag in
gnutls_certificate_verify_flags
gnutls_ecc_curve_set_enabled: Added.
gnutls_sign_set_secure: Added.
gnutls_sign_set_secure_for_certs: Added.
gnutls_digest_set_secure: Added.
gnutls_protocol_set_enabled: Added.
gnutls_fips140_context_init: New function
gnutls_fips140_context_deinit: New function
gnutls_fips140_push_context: New function
gnutls_fips140_pop_context: New function
gnutls_fips140_get_operation_state: New function
gnutls_fips140_operation_state_t: New enum
gnutls_transport_is_ktls_enabled: New function
gnutls_get_library_configuration: New function
* Remove patches fixed in the update:
- gnutls-FIPS-module-version.patch
- gnutls-FIPS-service-indicator.patch
- gnutls-FIPS-service-indicator-public-key.patch
- gnutls-FIPS-service-indicator-symmetric-key.patch
- gnutls-FIPS-RSA-PSS-flags.patch
- gnutls-FIPS-RSA-mod-sizes.patch
- FIPS: Fix regression tests in fips and non-fips mode [bsc#1194468]
* Add gnutls-FIPS-disable-failing-tests.patch
* Remove patches:
- gnutls-temporarily_disable_broken_guile_reauth_test.patch
- disable-psk-file-test.patch
- FIPS: Provide module identifier and version [bsc#1190796]
* Add configurable options to output the module name/identifier
(--with-fips140-module-name) and the module version
(--with-fips140-module-version).
* Add the CLI option list-config that reports the configuration
of the library.
* Add gnutls-FIPS-module-version.patch
- FIPS: Provide a service-level indicator [bsc#1190698]
* Add support for a "service indicator" as required in
the FIPS140-3 Implementation Guidance in section 2.4.C
* Add patches:
- gnutls-FIPS-service-indicator.patch
- gnutls-FIPS-service-indicator-public-key.patch
- gnutls-FIPS-service-indicator-symmetric-key.patch
- gnutls-FIPS-RSA-PSS-flags.patch
- FIPS: RSA KeyGen/SigGen fail with 4096 bit key sizes [bsc#1192008]
* fips: allow more RSA modulus sizes
* Add gnutls-FIPS-RSA-mod-sizes.patch
* Delete gnutls-3.6.7-fips-rsa-4096.patch
- Drop bogus condition "> 1550": that would mean 'more recent than
Tumbleweed' which is technically impossible, as Tumbleweed is the
leading project (and the condition causes issues as Tumbleweed
needs to move away from 1550 due to CODE 15 SP5 plans).
- Add crypto-policies support for Leap and SLE 15.4 [jsc#SLE-20287]
- Add DANE guards
- Remove gnutls-temporarily_disable_broken_guile_reauth_test.patch
since its already working.
- Update to version 3.7.2
* Added Linux kernel AF_ALG based acceleration
* Fixed timing of early data exchange
* The priority string option DISABLE_TLS13_COMPAT_MODE was added
to disable TLS 1.3 middlebox compatibility mode
* The GNUTLS_NO_EXPLICIT_INIT envvar has been renamed to
GNUTLS_NO_IMPLICIT_INIT to reflect the purpose
* certtool:
* When signing a CSR, CRL distribution point (CDP) is no
longer copied from the signing CA by default
* When producing certificates and certificate requests, subject
DN components that are provided individually will now be
ordered by assumed scale
- Rework the crypto-policies dependencies in libraries [bsc#1186385]
- Compute the FIPS hmac file without re-defining the
__os_install_post macro, use the brp-50-generate-fips-hmac
script instead. [bsc#1184555]
- Require the main package in devel and lib packages as the default
priorities are now set via crypto-policies. [bsc#1183082]
- Update to 3.7.1:
[bsc#1183456, CVE-2021-20232] [bsc#1183457, CVE-2021-20231]
* Fixed potential use-after-free in sending "key_share" and
"pre_shared_key" extensions.
* Fixed a regression in handling duplicated certs in a chain.
* Fixed sending of session ID in TLS 1.3 middlebox compatibility
mode. In that mode the client shall always send a non-zero
session ID to make the handshake resemble the TLS 1.2
resumption; this was not true in the previous versions.
* Removed dependency on the external 'fipscheck' package,
when compiled with --enable-fips140-mode.
* Added padlock acceleration for AES-192-CBC.
- Remove patches upstream:
* gnutls-gnutls-cli-debug.patch
* gnutls-ignore-duplicate-certificates.patch
* gnutls-test-fixes.patch
- Fix the test suite for tests/gnutls-cli-debug.sh [bsc#1171565]
* Don't unset system priority settings in gnutls-cli-debug.sh
* Upstream: gitlab.com/gnutls/gnutls/merge_requests/1387
- Add gnutls-gnutls-cli-debug.patch
- Fix: Test certificates in tests/testpkcs11-certs have expired
* Upstream bug: gitlab.com/gnutls/gnutls/issues/1135
- Add gnutls-test-fixes.patch
- gnutls_x509_trust_list_verify_crt2: ignore duplicate certificates
* Upstream bug: https://gitlab.com/gnutls/gnutls/issues/1131
- Add gnutls-ignore-duplicate-certificates.patch
- Update to 3.7.0
* Depend on nettle 3.6
* Added a new API that provides a callback function to retrieve
missing certificates from incomplete certificate chains
* Added a new API that provides a callback function to output the
complete path to the trusted root during certificate chain
verification
* OIDs exposed as gnutls_datum_t no longer account for the
terminating null bytes, while the data field is null terminated.
The affected API functions are: gnutls_ocsp_req_get_extension,
gnutls_ocsp_resp_get_response, and gnutls_ocsp_resp_get_extension
* Added a new set of API to enable QUIC implementation
* The crypto implementation override APIs deprecated in 3.6.9 are
now no-op
* Added MAGMA/KUZNYECHIK CTR-ACPKM and CMAC support
* Support for padlock has been fixed to make it work with Zhaoxin CPU
* The maximum PIN length for PKCS #11 has been increased from 31
bytes to 255 bytes
- Remove patch fixed upstream:
* gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
- Add version guards for the crypto-policies package
- Fix threading bug in libgnutls [bsc#1173434]
* Upstream bug: gitlab.com/gnutls/gnutls/issues/1044
- Require the crypto-policies package [bsc#1180051]
- Use the centralized crypto policy profile (jsc#SLE-15832)
- FIPS: Use 2048 bit prime in DH selftest (bsc#1176086)
* add gnutls-FIPS-use_2048_bit_prime_in_DH_selftest.patch
- FIPS: Add TLS KDF selftest (bsc#1176671)
* add gnutls-FIPS-TLS_KDF_selftest.patch
- Escape rpm command %%expand when used in comment.
- Update to 3.6.15
* libgnutls: Fixed "no_renegotiation" alert handling at incorrect timing.
[GNUTLS-SA-2020-09-04, CVSS: medium]
* libgnutls: If FIPS self-tests are failed, gnutls_fips140_mode_enabled() now
indicates that with a false return value (!1306).
* libgnutls: Under FIPS mode, the generated ECDH/DH public keys are checked
accordingly to SP800-56A rev 3 (!1295, !1299).
* libgnutls: gnutls_x509_crt_export2() now returns 0 upon success, rather than
the size of the internal base64 blob (#1025).
* libgnutls: Certificate verification failue due to OCSP must-stapling is not
honered is now correctly marked with the GNUTLS_CERT_INVALID flag
* libgnutls: The audit log message for weak hashes is no longer printed twice
* libgnutls: Fixed version negotiation when TLS 1.3 is enabled and TLS 1.2 is
disabled in the priority string. Previously, even when TLS 1.2 is explicitly
disabled with "-VERS-TLS1.2", the server still offered TLS 1.2 if TLS 1.3 is
enabled (#1054).
- drop upstreamed patches:
* gnutls-detect_nettle_so.patch
* 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
- Correctly detect gmp, nettle, and hogweed libraries (bsc#1172666)
* add gnutls-detect_nettle_so.patch
- Fix a memory leak that could lead to a DoS attack against Samba
servers (bsc#1172663)
* add 0001-crypto-api-always-allocate-memory-when-serializing-i.patch
- Temporarily disable broken guile reauth test (bsc#1171565)
* add gnutls-temporarily_disable_broken_guile_reauth_test.patch
- Update to 3.6.14
* libgnutls: Fixed insecure session ticket key construction, since 3.6.4.
The TLS server would not bind the session ticket encryption key with a
value supplied by the application until the initial key rotation, allowing
attacker to bypass authentication in TLS 1.3 and recover previous
conversations in TLS 1.2 (#1011). (bsc#1172506, CVE-2020-13777)
[GNUTLS-SA-2020-06-03, CVSS: high]
* libgnutls: Fixed handling of certificate chain with cross-signed
intermediate CA certificates (#1008). (bsc#1172461)
* libgnutls: Fixed reception of empty session ticket under TLS 1.2 (#997).
* libgnutls: gnutls_x509_crt_print() is enhanced to recognizes commonName
(2.5.4.3), decodes certificate policy OIDs (!1245), and prints Authority
Key Identifier (AKI) properly (#989, #991).
* certtool: PKCS #7 attributes are now printed with symbolic names (!1246).
* libgnutls: Use accelerated AES-XTS implementation if possible (!1244).
Also both accelerated and non-accelerated implementations check key block
according to FIPS-140-2 IG A.9 (!1233).
* libgnutls: Added support for AES-SIV ciphers (#463).
* libgnutls: Added support for 192-bit AES-GCM cipher (!1267).
* libgnutls: No longer use internal symbols exported from Nettle (!1235)
* API and ABI modifications:
GNUTLS_CIPHER_AES_128_SIV: Added
GNUTLS_CIPHER_AES_256_SIV: Added
GNUTLS_CIPHER_AES_192_GCM: Added
gnutls_pkcs7_print_signature_info: Added
- Add key D605848ED7E69871: public key "Daiki Ueno <ueno(a)unixuser.org>" to
the keyring
- Drop gnutls-fips_correct_nettle_soversion.patch (upstream)
- Use correct nettle .so version when looking for a FIPS checksum
(bsc#1166635)
* add gnutls-fips_correct_nettle_soversion.patch
- Update to 3.6.13
* libgnutls: Fix a DTLS-protocol regression (caused by TLS1.3
support)
The DTLS client would not contribute any randomness to the DTLS negotiation,
breaking the security guarantees of the DTLS protocol (#960)
[GNUTLS-SA-2020-03-31, CVSS: high] (bsc#1168345)
* libgnutls: Added new APIs to access KDF algorithms (#813).
* libgnutls: Added new callback gnutls_keylog_func that enables a custom
logging functionality.
* libgnutls: Added support for non-null terminated usernames in PSK
negotiation (#586).
* gnutls-cli-debug: Improved support for old servers that only support
SSL 3.0.
- Split off FIPS checksums into a separate libgnutls30-hmac
subpackage (bsc#1152692)
- gnutls 3.6.12
* libgnutls: Introduced TLS session flag (gnutls_session_get_flags())
to identify sessions that client request OCSP status request (#829).
* libgnutls: Added support for X448 key exchange (RFC 7748) and Ed448
signature algorithm (RFC 8032) under TLS (#86).
* libgnutls: Added the default-priority-string option to system configuration;
it allows overriding the compiled-in default-priority-string.
* libgnutls: Added support for GOST CNT_IMIT ciphersuite (as defined by
draft-smyshlyaev-tls12-gost-suites-07).
By default this ciphersuite is disabled. It can be enabled by adding
+GOST to priority string. In the future this priority string may enable
other GOST ciphersuites as well. Note, that server will fail to negotiate
GOST ciphersuites if TLS 1.3 is enabled both on a server and a client. It
is recommended for now to disable TLS 1.3 in setups where GOST ciphersuites
are enabled on GnuTLS-based servers.
* libgnutls: added priority shortcuts for different GOST categories like
CIPHER-GOST-ALL, MAC-GOST-ALL, KX-GOST-ALL, SIGN-GOST-ALL, GROUP-GOST-ALL.
* libgnutls: Reject certificates with invalid time fields. That is we reject
certificates with invalid characters in Time fields, or invalid time formatting
To continue accepting the invalid form compile with --disable-strict-der-time
* libgnutls: Reject certificates which contain duplicate extensions. We were
previously printing warnings when printing such a certificate, but that is
not always sufficient to flag such certificates as invalid. Instead we now
refuse to import them (#887).
* libgnutls: If a CA is found in the trusted list, check in addition to
time validity, whether the algorithms comply to the expected level prior
to accepting it. This addresses the problem of accepting CAs which would
have been marked as insecure otherwise (#877).
* libgnutls: The min-verification-profile from system configuration applies
for all certificate verifications, not only under TLS. The configuration can
be overriden using the GNUTLS_SYSTEM_PRIORITY_FILE environment variable.
* libgnutls: The stapled OCSP certificate verification adheres to the convention
used throughout the library of setting the 'GNUTLS_CERT_INVALID' flag.
* libgnutls: On client side only send OCSP staples if they have been requested
by the server, and on server side always advertise that we support OCSP stapling
* libgnutls: Introduced the gnutls_ocsp_req_const_t which is compatible
with gnutls_ocsp_req_t but const.
* certtool: Added the --verify-profile option to set a certificate
verification profile. Use '--verify-profile low' for certificate verification
to apply the 'NORMAL' verification profile.
* certtool: The add_extension template option is considered even when generating
a certificate from a certificate request.
- gnutls 3.6.11.1:
* libgnutls: Corrected issue with TLS 1.2 session ticket
handling as client during resumption
* libgnutls: gnutls_base64_decode2() succeeds decoding the empty
string to the empty string. This is a behavioral change of the
API but it conforms to the RFC4648 expectations
* libgnutls: Fixed AES-CFB8 implementation, when input is shorter
than the block size. Fix backported from nettle.
* certtool: CRL distribution points will be set in CA
certificates even when non self-signed
* gnutls-cli/serv: added raw public-key handling capabilities
(RFC7250). Key material can be set via the --rawpkkeyfile and
- -rawpkfile flags.
- gnutls 3.6.10:
* Add support for deterministic ECDSA/DSA (RFC6979)
* Add functions for in-place encryption/decryption of data buffers
* server now selects the highest TLS protocol version, if TLS 1.3
is enabled and the client advertises an older protocol version
first
* Add support for GOST 28147-89 cipher in CNT (GOST counter) mode
and MAC generation based on GOST 28147-89 (IMIT)
* certtool: when outputting an encrypted private key do not
insert the textual description of it
- Install checksums for binary integrity verification which are
required when running in FIPS mode (bsc#1152692, jsc#SLE-9518)
- gnutls 3.6.9:
* add support for copying digest or MAC contexts
* Mark the crypto implementation override APIs as deprecated
* Add support for AES-GMAC, as a separate to GCM, MAC algorithm
* Add support for Generalname registeredID
* The priority configuration was enhanced to allow more elaborate
system-wide configuration of the library
- includes changes from 3.6.8:
* Add support for AES-XTS cipher
* Fix calculation of Streebog digests
* During Diffie-Hellman operations in TLS, verify that the peer's
public key is on the right subgroup (y^q=1 mod p), when q is
available (under TLS 1.3 and under earlier versions when RFC7919
parameters are used).
* Apply STD3 ASCII rules in gnutls_idna_map() to prevent
hostname/domain crafting via IDNA conversion
* certtool: allow the digital signature key usage flag in CA
certificates
* gnutls-cli/serv: add the --keymatexport and --keymatexportsize
options. These allow testing the RFC5705 using these tools
- drop patches to re-enable tests:
* disable-psk-file-test.patch
* gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
- Trim useless %if..%endif guards that do not affect the build.
- Fix language errors in description again.
- Update gnutls to 3.6.7
* * libgnutls, gnutls tools: Every gnutls_free() will automatically set
the free'd pointer to NULL. This prevents possible use-after-free and
double free issues. Use-after-free will be turned into NULL dereference.
The counter-measure does not extend to applications using gnutls_free().
* * libgnutls: Fixed a memory corruption (double free) vulnerability in the
certificate verification API. Reported by Tavis Ormandy; addressed with
the change above. [GNUTLS-SA-2019-03-27, #694] [bsc#1130681] (CVE-2019-3829)
* * libgnutls: Fixed an invalid pointer access via malformed TLS1.3 async messages;
Found using tlsfuzzer. [GNUTLS-SA-2019-03-27, #704] [bsc#1130682] (CVE-2019-3836)
* * libgnutls: enforce key usage limitations on certificates more actively.
Previously we would enforce it for TLS1.2 protocol, now we enforce it
even when TLS1.3 is negotiated, or on client certificates as well. When
an inappropriate for TLS1.3 certificate is seen on the credentials structure
GnuTLS will disable TLS1.3 support for that session (#690).
* * libgnutls: the default number of tickets sent under TLS 1.3 was increased to
two. This makes it easier for clients which perform multiple connections
to the server to use the tickets sent by a default server.
* * libgnutls: enforce the equality of the two signature parameters fields in
a certificate. We were already enforcing the signature algorithm, but there
was a bug in parameter checking code.
* * libgnutls: fixed issue preventing sending and receiving from different
threads when false start was enabled (#713).
* * libgnutls: the flag GNUTLS_PKCS11_OBJ_FLAG_LOGIN_SO now implies a writable
session, as non-writeable security officer sessions are undefined in PKCS#11
(#721).
* * libgnutls: no longer send downgrade sentinel in TLS 1.3.
Previously the sentinel value was embedded to early in version
negotiation and was sent even on TLS 1.3. It is now sent only when
TLS 1.2 or earlier is negotiated (#689).
* * gnutls-cli: Added option --logfile to redirect informational messages output.
- Disabled dane support in SLE since dane is not shipped there
- Changed configure script to hardware guile site directory since command-line
option '--with-guile-site-dir=' was removed from the configure script.
* * Added gnutls-3.6.6-set_guile_site_dir.patch
- Modified gnutls-3.6.0-disable-flaky-dtls_resume-test.patch to fix
compilation issues on PPC
- Update to 3.6.6
* * libgnutls: gnutls_pubkey_import_ecc_raw() was fixed to set the number bits
on the public key (#640).
* * libgnutls: Added support for raw public-key authentication as defined in RFC7250.
Raw public-keys can be negotiated by enabling the corresponding certificate
types via the priority strings. The raw public-key mechanism must be explicitly
enabled via the GNUTLS_ENABLE_RAWPK init flag (#26, #280).
* * libgnutls: When on server or client side we are sending no extensions we do
not set an empty extensions field but we rather remove that field competely.
This solves a regression since 3.5.x and improves compatibility of the server
side with certain clients.
* * libgnutls: We no longer mark RSA keys in PKCS#11 tokens as RSA-PSS capable if
the CKA_SIGN is not set (#667).
* * libgnutls: The priority string option %NO_EXTENSIONS was improved to completely
disable extensions at all cases, while providing a functional session. This
also implies that when specified, TLS1.3 is disabled.
* * libgnutls: GNUTLS_X509_NO_WELL_DEFINED_EXPIRATION was marked as deprecated.
The previous definition was non-functional (#609).
- drop no longer needed gnutls-enbale-guile-2.2.patch
- refresh disable-psk-file-test.patch
- Update to 3.6.5
* * libgnutls: Provide the option of transparent re-handshake/reauthentication
when the GNUTLS_AUTO_REAUTH flag is specified in gnutls_init() (#571).
* * libgnutls: Added support for TLS 1.3 zero round-trip (0-RTT) mode (#127)
* * libgnutls: The priority functions will ignore and not enable TLS1.3 if
requested with legacy TLS versions enabled but not TLS1.2. That is because
if such a priority string is used in the client side (e.g., TLS1.3+TLS1.0 enabled)
servers which do not support TLS1.3 will negotiate TLS1.2 which will be
rejected by the client as disabled (#621).
* * libgnutls: Change RSA decryption to use a new side-channel silent function.
This addresses a security issue where memory access patterns as well as timing
on the underlying Nettle rsa-decrypt function could lead to new Bleichenbacher
attacks. Side-channel resistant code is slower due to the need to mask
access and timings. When used in TLS the new functions cause RSA based
handshakes to be between 13% and 28% slower on average (Numbers are indicative,
the tests where performed on a relatively modern Intel CPU, results vary
depending on the CPU and architecture used). This change makes nettle 3.4.1
the minimum requirement of gnutls (#630). [CVSS: medium]
* * libgnutls: gnutls_priority_init() and friends, allow the CTYPE-OPENPGP keyword
in the priority string. It is only accepted as legacy option and is ignored.
* * libgnutls: Added support for EdDSA under PKCS#11 (#417)
* * libgnutls: Added support for AES-CFB8 cipher (#357)
* * libgnutls: Added support for AES-CMAC MAC (#351)
* * libgnutls: In two previous versions GNUTLS_CIPHER_GOST28147_CPB/CPC/CPD_CFB ciphers
have incorrectly used CryptoPro-A S-BOX instead of proper (CryptoPro-B/-C/-D
S-BOXes). They are fixed now.
* * libgnutls: Added support for GOST key unmasking and unwrapped GOST private
keys parsing, as specified in R 50.1.112-2016.
* * gnutls-serv: It applies the default settings when no --priority option is given,
using gnutls_set_default_priority().
* * p11tool: Fix initialization of security officer's PIN with the --initialize-so-pin
option (#561)
* * certtool: Add parameter --no-text that prevents certtool from outputting
text before PEM-encoded private key, public key, certificate, CRL or CSR.
- minimum required libnettle is now 3.4.1
- refresh
* disable-psk-file-test.patch
* gnutls-3.6.0-disable-flaky-dtls_resume-test.patch
==== gpg2 ====
Subpackages: dirmngr
- added tpm support, added a new subpackage gpg2-tpm
==== grep ====
- use release keyring rather than full one for validation
- Do not link an unversioned file by URL (and refresh keyring)
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Fix installation over serial console ends up in infinite boot loop
(bsc#1187810)
* 0001-Fix-infinite-boot-loop-on-headless-system-in-qemu.patch
- Fix ppc64le build error for new IEEE long double ABI
* 0001-libc-config-merge-from-glibc.patch
==== harfbuzz ====
Version update (4.2.1 -> 4.3.0)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0
- Update to version 4.3.0:
+ Major speed up in loading and subsetting fonts, especially in
handling CFF table. Subsetting some fonts is now 3 times faster
+ Speed up blending CFF2 table
+ Speed up hb_ot_tags_from_language()
+ Fix USE classification of U+10A38 to fix multiple marks on
single Kharoshthi base
+ Fix parsing of empty CFF Index
+ Fix subsetting CPAL table with partial palette overlaps
==== icewm ====
Version update (2.1.1 -> 2.9.7)
Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite
- Rebase patches for version 2.9.7:
* icewm-susemenu.patch
* icewm-desktop-nodisplay.patch
* icewm-preferences.patch
- Update to 2.9.7:
* Fix for saving keyboard layouts in --rewrite-preferences.
* Faster and more reliable restart of icewmbg.
* Add themable preference ColorKeyboardLayoutText.
* Add KeySysKeyboardNext to switch to next keyboard layout.
* Document alternative keypad handling in icewm-keys(1).
* Handle right-to-left languages in icewm-menu-fdo.
* Add -g,--generic option to icewm-menu-fdo for GenericName in menus.
* Updated translations: Czech, Danish, Finnish, Turkish, German, French.
- from version 2.9.6:
* Lower a fullscreen window below the window which is to be activated.
* Start a new fullscreen client in the fullscreen layer for issue #85.
* Prioritize the thermal zones when showing CPU temperature.
* Let CPU graphs share a single timer and adjust to changes to TaskBarCPUSamples.
* Support workspace names "next" and "prev" in icesh for issue bbidulock/icewm#640.
* Updated translations: Spanish, German, Italian, Chinese, Portuguese (Brazil).
- from version 2.9.5:
* Set the window type of desktop icons and of the dockapps container.
* Make taskbar unhide more reliable.
* Fix OSS / APM confusion in some translations.
* Fix for taskbar on icewm restart when there is a fullscreen window.
* Fix for TaskBarAutoHide and for focusing address bar.
* Make TaskBarFullscreenAutoShow option more reliable.
* Remove all of the inefficient management of the fullscreen layer.
* Fixes to prevent a lockup where no keybinding works,
when activating a do-not-focus output-only window
on a workspace where no focusable window exists.
* When a fullscreen disappears, update the taskbar layer.
* On startup don't switch workspace to activate a fullscreen window.
* Updated translations: it, id, pt, pt_BR, de, ar, lt.
- from version 2.9.4:
* Always keep desktop icons below application windows.
* Set an icewmbg background color as a pixmap to overcome
limitations in picom and compton for issue bbidulock/icewm#632.
* When icewmbg is configured with just a single background image
or color, then always create a single pixmap in the X11 server as
a temporary resource and have icewmbg exit to free its memory.
* Add icesh options +class and +Pid to extend the window selection.
* Improved workaround for 'feh' desktop backgrounds, where its
pixmap has been marked persistent, for issue bbidulock/icewm#627.
* Eliminate flicker when resizing frames which have a shape masked
border, like CoolSteel and Illuminate-ice by enabling bit gravity.
* Minimized windows which have both winoptions startMinimized and
ignoreActivationMessages, require a mouse click to become active.
* Support focus in subwindows of Globally Active Input applications,
like games in a Wine virtual desktop for issue #73.
* Eliminate all flicker when switching between different
fullscreen windows for issue bbidulock/icewm#630.
* Always put the active window first in the list of switchable
windows for issue bbidulock/icewm#631.
* Updated translation: Portuguese.
- from version 2.9.3:
* Support Unicode and non-Latin text in input fields and the address bar.
* Add a Tile submenu to the window menu for issue #74.
* When icewm starts, force the desktop background to be refreshed,
for 'feh' background pixmaps in issue bbidulock/icewm#627.
* Initialize locale specific modifiers with XSetLocaleModifiers.
* Refresh the task pane background on expose events.
* Fix for icesh maximize.
* Fix to eliminate toggling the input focus.
* Fix for the system tray background for issue bbidulock/icewm#626.
* Updated translations: Ukrainian, Slovak, Japanese, Catalan, Portuguese.
- from version 2.9.2:
* Fix for fullscreen wine programs for issue #73.
* Fix the drawing of LED-clock for themes like "unusualscars".
* Fix a memory access after free after loading a core font failed.
* Fix a missing include sys/wait.h for the FreeBSD build.
* Add support for multiple clocks in different time zones.
* Internationalize the error messages for the dynamic menu.
* Internationalize the keyboard tooltip.
- from version 2.9.1:
* Fix for focusing wine and winecfg for issue bbidulock/icewm#625.
* Fix the taskbar background for double height taskbar.
* Swap the columns in the about dialog for right-to-left locales.
* Replace "sans-serif" with "DejaVu Sans" for Xft fonts,
because these support a wider range of characters, which
improves support for languages with non-Latin scripts.
* Add tabs to CPU multiline status tooltip for two-column display.
* Fix multiline tooltips for right-to-left locales.
* Ensure the multiline tab spacing is two character positions.
* Fix taskbar collapse button for right-to-left locales.
* Fix workspace pane sizing for right-to-left locales.
* When the keyboard layout changes due to external reasons
and the taskbar has the keyboard applet, then reflect
the new layout in the taskbar applet for issue bbidulock/icewm#622.
* Make the keyboard applet display all of the output
of setxkbmap -query in the tooltip for the applet.
* With the mouse in the keyboard applet, always post the tooltip.
* Compress a series of XMappingEvents to one keyboard update.
- from version 2.9.0:
* Improvements to drawing right-to-left text within left-to-right locales.
* Improvements for right-to-left locales like Arabic and Hebrew.
* Give icewmbg an error handler to protect against destroyed windows.
* Updated translations, most notably Ukrainian.
* Only free cursor attributes when they were allocated.
* Fix column alignment in menu's for right-to-left languages.
* Prefer to keep the system menu within the frame when
opening it from the menu button in the titlebar.
* Don't repaint the taskbar when it is collapsed.
* Refresh the taskbar to prevent background artefacts in CoolSteel.
* Fix the last entry in the themes menu for the default theme.
* Ignore empty resize events to reduce flickering when resizing in CoolSteel.
* Only redraw frame borders on the last expose event.
* Fix the the bottom right hole of a scrolled window list for bbidulock/icewm#620.
* Add logout icons to Logout submenu for issue #69.
* Update minimum required cmake version to 3.2.
* Support right-to-left languages for corefonts when i18n is enabled.
* When codesets are missing in a fontset, then only search for
extra fonts in the same font family, and only when i18n is enabled.
* Detect UTF-8 locale and support multibyte to wide character conversions.
* Make DejaVu the default backup font family for corefonts.
* Fix the horizontal scrollbar for the window list window.
* Improve the ascent/descent detection for font sets.
* Optimize text length detection for width-limited text fields.
* Improve the Xft last resort backup font.
* Improve vertical font positioning for the address bar.
* Reuse discarded miniicon positions when minimizing to desktop.
* Flush stdout after printing preferences.
* Detect Right-To-Left locales Arabic, Hebrew, Farsi, Pashto, Sindhi, Urdu.
* Improve the handling of font loading failures.
* Improve the handling of setting "PreferFreetypeFonts" to false.
* Use the font "10x20" as the last resort font instead of "fixed".
* Be resilient to font preferences being set to the empty string.
* Document drag and drop.
* Add support for edge switching during drag and drop operations.
* Update icewm.desktop for issue bbidulock/icewm#617.
* Add a font cache to prevent repeatedly loading the same fonts,
which also makes icewm a little faster on startup.
* Don't kill internal windows.
* Only let a frame retake focus on an ungrab event when the manager still
believes that frame should have focus. This fixes the flashing of title
bar buttons when the window list window is popped up.
* Fix for FreeBSD build.
* Document the -T switch for taskbar in icesh for issue #18.
- from version 2.8.0
* Improve the explanation on how to spy on client messages with icesh.
* When rearranging windows with tile placement or cascade placement, correct for
the top side vertical offset, in those themes which have a masked top border.
* Improve the explanation for some of the preferences.
* Update the winoptions example on DockApps.
* Guard against a color name being set to the empty string (bbidulock/icewm#614).
* Improve the performance and scalability of the window list menu.
* In the window list window group similar application windows together.
* Add +group and +Class select options to icesh.
* Improve the filtering on the WM_CLASS property in icesh.
* Fix the OSS/ALSA defaults in icesound help message (bbidulock/icewm#609).
* Fix the OSS/ALSA defaults in icesound man page (bbidulock/icewm#608)
* Only support SVG for icons, not for icewmbg backgrounds.
* Let icewmbg pixmaps free its associated Image to reduce memory usage.
* Prevent a potential trailing -I flag in CMake for issue #57.
* Fix the description for sizeby in the icesh manpage.
* Fix overflows in battery calculations for issue bbidulock/icewm#607.
* Update the translations, most notably Brazilian Portuguese.
- from version 2.7.0
* Increase the maximum value for TaskbarButtonWidthDivisor from 25 to 50.
* Add a --with-background= build option to set a default background path.
* Improve the responsiveness of icewmbg when a new image must be scaled.
* Reduce the memory usage by icewmbg by removing the image cache.
* Make icewmbg much faster when scanning directories for image files.
* Improve the reliability of icewm motion compression by also testing
for subwindow equality.
* Decrease the number of system calls for path lookups.
* Guard against array indexing with negative indices.
* Double the timeout for the dynamic menu generator to 1.4 seconds.
* Eliminate most of the inefficiences when looking for icon directories.
* Postpone the loading of cursors, because some cursors are seldomly used.
* Rewrite the task successor and task predecessor actions to properly
take into account the separation of TaskBarApp and TaskButton,
as well as task grouping. This resolves issues #602 and #604.
* Allow to build icewm using cmake -GNinja (issue #603).
* Fix building on a case-insensitive file system (issue #601).
- from version 2.6.0:
* Keep track of changes to modal flag.
* Optimize raising of modal windows.
* Fix a memory leak for dynamic menu's.
* Free start menu and windowlist menu on exit.
* Fix for browse menu's for root and home in start menu.
* Eliminate several memory leaks in icon handling.
* Use absolute paths for the Exec definition in desktop files.
* Only do a passive grab on buttons which are defined by the ButtonRaiseMask.
* Guard against buffer overflow when copying the degrees centigrade symbol.
* When a focused window can't raise, or there is no overlapping window,
then there shouldn't be a passive button grab by icewm, in order to
improve menu handling in applications which don't use windows for menu's.
* Release the passive button grab from a focused window,
when a button click wouldn't raise it, for improved menu
handling for applications with internal menu's (CSS drawing).
* These fix the Debian Bug report with number #989764:
"icewm: Intermittently unable to select menu items in drop-down menus.",
which was reported versus IceWM version 2.1.2 on June 12 on:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989764.
- from version 2.5.0:
* Fix for a crash when destructing frames with kill message boxes.
* Clear the UrgencyHint in the WM_HINTS structure to stop the flashing.
* Collect windows to arrange from layers OnTop, Normal and Below.
* Add new -unmapped and -viewable filters to icesh.
* Restore the window selection after an "end" clause in icesh.
* Add example for constructing dropdown terminals with icesh.
* Updated 8 translations.
* Add full support for application modal dialogs.
* Support WM_TRANSIENT_FOR being equal to the root window, per
the EWMH standard in section: "Implementing enhanced support
for application transient windows".
* Revert "Enforce that focus remains with IceTopWin for issue #593."
* Support paths with spaces in the rebuild.sh build script.
* Replace paths with configured directories in generated manpages
for CMake builds and also fix spaces and double quotes.
* CMake builds html pages for #50.
- from version 2.4.0:
* Fix icehelp to ignore a missing file icon.
* Add support for WindowMaker DockApps to icewm and icesh.
* Support Ctrl+Mouse buttons to control dockapps.
* Make icewm resilient against a newly managed client exiting immediately.
* Ensure that focus remains with IceTopWin when showing desktop for issue #593.
* Consider AllWorkspaces to be equal to the active workspace in Alt+Tab,
when QuickSwitchGroupWorkspaces is enabled, for issue #589.
* Improve recovery from restart failures.
* Improve icehelp colors.
* Support searching for keywords in icehelp document with Ctrl+F and F3.
* Improve centrally placing transient windows over their
leader window when CenterTransientsOnOwner is enabled.
* Fix for when CenterLarge is true.
* Prevent compiler warnings.
* A dozen translations were updated.
- from version 2.3.4:
* Add a button for a menu in icehelp.
* Support anti-aliased fonts in icehelp.
* Improve accuracy of clicking on links in icehelp.
* Support reverse video in icehelp.
* Add more keyboard shortcuts to icehelp.
* Let icehelp handle scrollbar keys when mouse pointer is inside a scrollbar.
* Improve vertical alignment of text with different font faces in icehelp.
* Add a --disable-rsvg option to configure for issue #587.
* Always rebuild manpages when Makefile changes.
* Fix for positioning new frames for themes with mask shaped top sides.
* Fix for snapping frame borders for themes with mask shaped top sides.
* Generate preferences in sorted order.
* Better handling of preferences which have null strings by default.
* Cleaner rewriting of preferences with --rewrite-preferences option.
* Add a PingTimeout preference for issue #47.
* When _NET_WM_PING timeouts then request user permission to send
a terminate signal to the application for issue #47.
* Fix the exit code of icesh for issue #585.
* Only use RTTI when debugging for issue #48.
* Updated translations.
- from version 2.3.3:
* Document default winoption format .OPTION.
* Permit scroll wheel to control rolling up or down for issue #584.
* Add new icewm option --rewrite-preferences to update preferences.
* Improve documentation for options for Super/Windows key modifiers.
* Make the QuickSwitch modifiers dependent on the type of QuickSwitch:
either from the Alt+Tab or from the "switchkey" keyword for issue #583.
* Don't reorder focus when Alt+Tabbing for issue #579.
* Defer loading internationalized help text until required.
* Add support for conditional expressions to icesh.
* Add a toggle option "^" to the "netState" command for issue #580.
- from version 2.3.2:
* Document more workspace button features.
* Improve drawing rectangles with rounded corners.
* Use reversed active text colors for drawing grouping number.
* Dissolve the disparity between dragged and non-dragged task buttons.
* Allow button clicks with some mouse motion between button press and release.
* Fix for editing workspace name in the workspace button.
* Repaint workspace button after editing the workspace name.
* Change the default value for ModSuperIsCtrlAlt from true to false.
* Support ModSuperIsCtrlAlt in the quick switch for issue #574.
* Reduce the number of frame updates when changing workspace.
* Free the memory for the About dialog after it is closed.
* Prevent a compiler warning.
* Update Finnish translation.
- from version 2.3.1:
* Let icewmbg refresh the root background on icewm restart
to evade a bug in the X server.
* Prevent compiler warnings about missing overrides.
* Improve drawing for TaskBarTaskGrouping with preferences.
* Fix for drawing missing icon in message box.
* Fix for changing theme via theme menus.
* Fix for drawing icons in menus.
* Fix for switchkey.
- from version 2.3.0:
* Add new preference NetStatusShowOnlyRunning to only
show running network interfaces by alspitz.
* Reduce systemcalls as much as possible when updating network status.
* Only update tooltips when a tooltip window is visible.
* Postpone creating tooltips.
* If without system tray, enforce taskbar updateLocation for issue #559.
* Redraw task button when name changes.
* Print more details for "all" in "icesh motif".
* When client loses its X shape then update frame functions, which
fixes toggling "Use system title bar and borders" in Chrome.
* Optimize filereader to reduce the number of read system calls.
* Add new preference TaskBarTaskGrouping to group similar
applications under a single task button for issue #198.
* Support immediate toggling of TaskBarTaskGrouping without a restart.
* Add menu option to icehelp to open current document in a browser.
* Support switching workspaces via window menu list.
* Add command "denormal" to icesh for issue #561.
* Support mouse buttons up to button number 9 for issue #333.
* Allow to switch workspaces by key in the Alt+Tab QuickSwitch for #563.
* Improve handling of modifier keys in QuickSwitch.
* Support arrow keys, Home, End, Delete and Return keys in QuickSwitch.
* Support keys '1' to '9' to index the QuickSwitch.
* Prevent closing QuickSwitch window when a button release event occurs.
* Fixes for QuickSwitch when there is a fullscreen window for issue #558.
* Add QuickSwitchRaiseCandidate to raise a selected window for issue #564.
* Don't reorder focus in QuickSwitch when changing workspaces for issue #564.
* Support rotating mouse wheel buttons in QuickSwitch to scroll over windows.
* Efficiency improvements to QuickSwitch.
* When QuickSwitch is up and a new window is created, then add it to the list.
* Support colored cursors when using libXpm for issue #45.
* When activating a frame on another workspace, ignore any focus events
on the root window, for more reliable QuickSwitching to intended window.
* Updated documentation.
* Updated translations.
- from version 2.2.1:
* Fix the CMake build.
* Draw an icon in each message box popup.
* Make input field focus tab-traversable when editing preferences.
* When modifying preferences, only trim input for scalar options.
* Simplify the icewm manpage.
* Taskbar may have a non-zero screen due to XineramaPrimaryScreen
in getNewPos. Only consider workarea when using same screen as
taskbar, otherwise allow entire desktop for issue bbidulock/icewm#557.
* Position the move/size-status on the screen of the window.
- from version 2.2.0:
* Support modifying all icewm preferences directly via a popup.
* Allow to reset a key or string option in the preferences menu.
* Show the preference description when modifying a preference.
* Give each preference option a meaningful description.
* Drop support for nonICCCMconfigureRequest winoption.
* Immediately redraw clock after setting default clock format.
* Add new clock format %H:%M to clock menu.
* Fix cmake test target for issue #41.
* Improve CMake build speed by building libraries.
* If an application resizes itself partially outside the work area, then
move it back inside the work area, if possible, for issue #550.
* Fix ignoreQuickSwitch winoption for focused windows for issue #552.
* Support locales in icehelp and icewmhint.
- from version 2.1.2:
* In icewm-menu-fdo don't abort directory scanning on bad menu items to fix issue #546.
* Relayout task buttons whenever a task button is removed for issue #548.
* Add test for XShm extension+pixmaps.
* Remove the urgent state flag from frame when gaining or losing focus.
* Add 'urgent' action to icesh to set the urgent flag on a window.
* Create a Settings submenu to reduce Start menu items for issue #543.
--- ----------------------------------------------------------------
==== kColorPicker ====
Version update (0.1.6 -> 0.2.0)
- Update to 0.2.0
* Add option to show alpha channel and reset color selection
==== kImageAnnotator ====
Version update (0.5.3 -> 0.6.0)
- Update to version 0.6.0
New
* Add optional undo, redo, crop, scale and modify canvas buttons
to dock widgets.
* Cut out vertical or horizontal slice of an image.
* Middle-click on tab header closes tab.
* Add button to fit image into current view.
* Allow changing item opacity.
* Add support for RGBA colors with transparency.
* Add mouse cursor sticker.
* Allow scaling stickers per setting.
* Respect original aspect ratio of stickers.
* Respect original size of stickers.
Fixed
* Adding image effect does not send image change notification.
* Blur / Pixelate break when going past image edge once.
* Item opacity not applied when item shadow disabled.
Changed
* Changed kImageAnnotator: Max font size changed to 100pt.
==== kdsoap ====
- Add a Qt6 flavor for kdsoap.
==== libopenmpt ====
Version update (0.6.2 -> 0.6.3)
- Update to 0.6.3:
* Pitch / Pan Separation and Random Variation instrument properties
were not resetting properly when seeking, potentially causing
instruments to be played e.g. at a vastly different pan position
compared to playing the module continuously.
* MED: Stereo samples were not imported correctly.
==== libstorage-ng ====
Version update (4.5.11 -> 4.5.14)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#879
- added include for gcc13 (gh#openSUSE/libstorage-ng#878)
- 4.5.14
- merge gh#openSUSE/libstorage-ng#877
- use new parted type command instead of SUSE-specific type-id
- extended documentation
- 4.5.13
- merge gh#openSUSE/libstorage-ng#876
- added support for BitLocker using cryptsetup
- extended LuksInfo class
- fixed probing partition name
- added testcase
- updated integration tests
- coding style
- updated parser for 'cryptsetup status'
- 4.5.12
==== libunwind ====
- Fix dependencies
- Fix file list
==== logrotate ====
Version update (3.19.0 -> 3.20.1)
- update to 3.20.1:
* drop world-readable permission on state file even when ACLs are enabled (#446)
- removed obsolete logrotate-CVE-2022-1348-follow-up.patch
- Security fix: (bsc#1199652, CVE-2022-1348)
* Add follow-up upstream patch for the introduced fix.
* Added patch logrotate-CVE-2022-1348-follow-up.patch
- Update patch:
* logrotate-3.19.0-man_logrotate.patch -> logrotate-3.20.0-man_logrotate.patch
- update to 3.20.0:
* fix potential DoS from unprivileged users via the state file (CVE-2022-1348)
* fix a misleading debug message with copytruncate and rotate 0 (#443)
* add support for unsigned time_t (#438)
* do not lock state file /dev/null (#433)
==== minicom ====
Version update (2.7.1 -> 2.8)
- Do not recommend lang package: the lang package has smarter
supplements in place (working with zypper locales).
- Replace dead URL with current upstream
- Update to version 2.8
* New timestamp mode: Delta to previous line.
* Add HPA ESC sequence
* Add alternative window support (ti/te)
* Fix file name of non-global configuration settings.
* Update translations: Indonesian, French, Swedish, Spanish,
German, Brazilian Portuguese, Vietnamese, Polish, Danish,
Norwegian, and Serbian
* New translation: Serbian, Simplified chinese
* Fix F10 macro key used in current setups
* Add F11 and F12 for macro use
* Fixed DTR for recent systems
* Add support for RS485.
* Add --capturefile-buffer-mode option
* Bug fixes
- Drop upstream resolved patches
* fix-upstream-gcc10-build2.patch
* fix-upstream-gcc10-build3.patch
* fix-upstream-gcc10-build1.patch
- Drop minicom-2.3-no-build-date.patch, GCC now uses SOURCE_DATE_EPOCH
- Rebased minicom-2.2-defaults.diff as openSUSE-defaults.patch
- Rebased minicom-2.4-norootsetup.diff as openSUSE-no-root-setup.patch
- Add patch from upstream minicom-2.8-replace-sigrelse.patch,
replace deprecated sigrelse
- Add patch to fix undefined reference to external symbols
minicom-2.8-fix-undefined-reference.patch
==== mobile-broadband-provider-info ====
Version update (20220315 -> 20220511)
- Update to version 20220511:
* us: update verizon MCCMNC
* us: Verizon Wirleess had been awarded 301 012
* us: Verizon Wireless MMS settings
* us: declare AT&T MCC MNC
* at: declare lyca mobile MMS config
* al: add AMC internet APN config
* af: add MMS settings for AWCC
* ad: add andorra telecom MMS settings
* za: mtn mms
* za: cell-c MMS setting
* es: Add Euskaltel MMS settings
* il: youphone mms (same APN for data and mms)
* il: cellcom balance test
* il: Rami Levi MMS settings
* serviceproviders: fix indentation
* il: Partner (previously known as Orange) MMS config
==== nagios ====
Version update (4.4.6 -> 4.4.7)
Subpackages: nagios-www
- 4.4.7 - 2022-04-14
FIXES
* Fixed checkboxes in jsonquery.html (#778) (Rfferrao87)
* Added SSL support for version update check (Sebastian Wolf)
* Note: NEB modules using the priority/scheduling queues in libnagios may need to update headers due to symbol conflicts with OpenSSL.
* Fixed XSS in homepage when displaying update check results (Sebastian Wolf)
* Fixed allocation error in getcgi.c (#820) (Ariadne Conill)
* Fixed Error: NULL variable for lines of spaces in resource.cfg (#814) (Ralf Herrmann)
* Fixed crash when handling large check output (#825, #828) (Kilvador)
* Update packaging instructions for RPM/EPEL (#850) (T.J. Yang)
* Include packaging instructions for DEB (#842) (Catfriend1)
* Fixed CGI object processing when names end in \ (#819) (Sebastian Wolf)
* $SERVICEPROBLEMID$ now accessible when notifications are sent (#688) (Sebastian Wolf)
==== opensuse-welcome ====
- Do not recommend lang package: the lang package has smarter
supplements in place.
==== osinfo-db ====
Version update (20220214 -> 20220516)
- Update to database version 20220516
osinfo-db-20220516.tar.xz
==== polkit-default-privs ====
Version update (1550+20220404.7b4bea2 -> 1550+20220524.0345bd9)
- Update to version 1550+20220524.0345bd9:
* Add kinfocenter5 whitelisting (bsc#1199735).
* gconf: cleanup rules used by dropped gconf2 package
==== ppp ====
Version update (2.4.8 -> 2.4.9)
- Add ppp-compiling-with-clang-encounters-an-error-in-eap-tls..patch
that fixed the following rpmlint error:
executable-stack (Badness: 10000) /usr/sbin/pppd
- Update to version 2.4.9
* Support for new EAP (Extensible Authentication Protocol) methods
* Support for EAP-TLS
* Support for EAP-MSCHAPv2
* New pppd options:
* chap-timeout
* chapms-strip-domain
* replacedefaultroute
* noreplacedefaultroute
* ipv6cp-accept-remote
* lcp-echo-adaptive
* ip-up-script
* ip-down-script
* ca
* capath
* cert
* key
* crl-dir
* crl
* max-tls-version
* need-peer-eap
* Fixes for CVE-2020-8597 and CVE-2015-3310.
* The rp-pppoe plugin has been renamed to pppoe, to distinguish it
from the upstream rp-pppoe code. Its options have changed names,
but the old names are kept as aliases.
* Many bug fixes and cleanups.
- Drop upstream fixed patches
* ppp-2.4.3-winbind-setuidfix.patch
* fix-header-conflict.patch
* ppp-CVE-2015-3310.patch
* ppp-CVE-2020-8597.patch
* ppp-cifdefroute.patch
* ppp-higher-speeds.patch
* ppp-2.4.3-strip.diff
* ppp-filter.patch
* ppp-__P.patch
- Drop upstream resolved ppp-make.patch use `--cflags` configure
switch instead
==== python-base ====
Subpackages: libpython2_7-1_0 python-xml
- Filter out executable-stack error that is triggered for i586
target.
==== python-cryptography ====
Version update (36.0.2 -> 37.0.2)
- update to 37.0.2:
* Fixed an issue where parsing an encrypted private key with the public
loader functions would hang waiting for console input on OpenSSL 3.0.x rather
than raising an error.
* Restored some legacy symbols for older ``pyOpenSSL`` users. These will be
removed again in the future, so ``pyOpenSSL`` users should still upgrade
to the latest version of that package when they upgrade ``cryptography``.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.2.
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL 2.9.x and 3.0.x.
The new minimum LibreSSL version is 3.1+.
* **BACKWARDS INCOMPATIBLE:** Removed ``signer`` and ``verifier`` methods
from the public key and private key classes. These methods were originally
deprecated in version 2.0, but had an extended deprecation timeline due
to usage. Any remaining users should transition to ``sign`` and ``verify``.
* Deprecated OpenSSL 1.1.0 support. OpenSSL 1.1.0 is no longer supported by
the OpenSSL project. The next release of ``cryptography`` will be the last
to support compiling with OpenSSL 1.1.0.
* Deprecated Python 3.6 support. Python 3.6 is no longer supported by the
Python core team. Support for Python 3.6 will be removed in a future
``cryptography`` release.
* Deprecated the current minimum supported Rust version (MSRV) of 1.41.0.
In the next release we will raise MSRV to 1.48.0. Users with the latest
``pip`` will typically get a wheel and not need Rust installed, but check
:doc:`/installation` for documentation on installing a newer ``rustc`` if
required.
* Deprecated
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.CAST5`,
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.SEED`,
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA`, and
:class:`~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish` because
they are legacy algorithms with extremely low usage. These will be removed
in a future version of ``cryptography``.
* Added limited support for distinguished names containing a bit string.
* We now ship ``universal2`` wheels on macOS, which contain both ``arm64``
and ``x86_64`` architectures. Users on macOS should upgrade to the latest
``pip`` to ensure they can use this wheel, although we will continue to
ship ``x86_64`` specific wheels for now to ease the transition.
* This will be the final release for which we ship ``manylinux2010`` wheels.
Going forward the minimum supported ``manylinux`` ABI for our wheels will
be ``manylinux2014``. The vast majority of users will continue to receive
``manylinux`` wheels provided they have an up to date ``pip``. For PyPy
wheels this release already requires ``manylinux2014`` for compatibility
with binaries distributed by upstream.
* Added support for multiple
:class:`~cryptography.x509.ocsp.OCSPSingleResponse` in a
:class:`~cryptography.x509.ocsp.OCSPResponse`.
* Restored support for signing certificates and other structures in
:doc:`/x509/index` with SHA3 hash algorithms.
* :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES` is
disabled in FIPS mode.
* Added support for serialization of PKCS#12 CA friendly names/aliases in
:func:`~cryptography.hazmat.primitives.serialization.pkcs12.serialize_key_and_certificates`
* Added support for 12-15 byte (96 to 120 bit) nonces to
:class:`~cryptography.hazmat.primitives.ciphers.aead.AESOCB3`. This class
previously supported only 12 byte (96 bit).
* Added support for
:class:`~cryptography.hazmat.primitives.ciphers.aead.AESSIV` when using
OpenSSL 3.0.0+.
* Added support for serializing PKCS7 structures from a list of
certificates with
:class:`~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificates`.
* Added support for parsing :rfc:`4514` strings with
:meth:`~cryptography.x509.Name.from_rfc4514_string`.
* Added :attr:`~cryptography.hazmat.primitives.asymmetric.padding.PSS.AUTO` to
:class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS`. This can
be used to verify a signature where the salt length is not already known.
* Added :attr:`~cryptography.hazmat.primitives.asymmetric.padding.PSS.DIGEST_LENGTH`
to :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS`. This
constant will set the salt length to the same length as the ``PSS`` hash
algorithm.
* Added support for loading RSA-PSS key types with
:func:`~cryptography.hazmat.primitives.serialization.load_pem_private_key`
and
:func:`~cryptography.hazmat.primitives.serialization.load_der_private_key`.
This functionality is limited to OpenSSL 1.1.1e+ and loads the key as a
normal RSA private key, discarding the PSS constraint information.
==== python-psutil ====
Version update (5.9.0 -> 5.9.1)
- removed obsolete skip-partitions-erros.patch
- update to 5.9.1
* Enhancements
- 1053: drop Python 2.6 support. (patches by Matthieu Darbois and Hugo van Kemenade)
- 2050, [Linux]: increase read(2) buffer size from 1k to 32k when reading /proc
pseudo files line by line. This should help having more consistent results.
- 2057, [OpenBSD]: add support for cpu_freq().
- 2107, [Linux]: Process.memory_full_info() (reporting process USS/PSS/Swap memory)
now reads /proc/pid/smaps_rollup instead of /proc/pids/smaps, which makes it 5 times faster.
* Bug fixes
- 2048: AttributeError is raised if psutil.Error class is raised manually and passed through str.
- 2049, [Linux]: cpu_freq() erroneously returns curr value in GHz while min and max are in MHz.
- 2050, [Linux]: virtual_memory() may raise ValueError if running in a LCX container.
==== python-scipy ====
Version update (1.8.0 -> 1.8.1)
- Update to version 1.8.1.
* Bug-fix release with no new features.
==== python-sympy ====
- Add sympy_printing_ccode.patch eliminating sympy.printing.ccode
deprecated module, because it just stands in the way
(gh#sympy/sympy#23533)
==== qemu ====
Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios
- It has been observed that building QEMU with _FORTIFY_SOURCE=3
causes problem (see bsc#1199924). Force it to =2 for now, while
we investigate the issue.
- Backport a GCC 12 aarch64 build fix (bsc#1199625)
* Patches added:
block-qdict-Fix-Werror-maybe-uninitializ.patch
- Filter out rpmlint error that is valid for qemu, but will
have its badness increased in the future.
==== remmina ====
Version update (1.4.25 -> 1.4.26)
Subpackages: remmina-plugin-rdp remmina-plugin-secret remmina-plugin-vnc
- Do not recommend lang package: the lang package has smarter
supplements in place.
- Updated to remmina version 1.4.26
- Major improvements:
* A Python plugin/API (you can write Remmina plugins in Python now!!!)
* X11 Forward for the SSH plugin @marco.fortina
* Kiosk improvements and new command lines options
- Other changes:
* Fix trial for 2577: Closing a VNC connection makes Remmina close all other...
* Handle after-auth connection errors in VNC properly
* Using Remmina from command-line for kiosked servers
* Manual page refactoring fixes #2056 (closed)
* Add mutex to protect RDP clipboard->srv_data. Fixes #2666 (closed)
* Add '--no-tray-icon' command-line option
* Make FreeRDPs TLS Security Level setting accessible in the advanced settings view
* Disable grabs for SSH and SFTP, #closes #2728 (closed)
* Cannot disable shared folder
* Use PyInitializeEx in order to skip signal handler registration
* Ignore add new connection button in kiosk mode
* WWW plugin refactoring
==== rubygem-ruby-dbus ====
Version update (0.18.0.beta5 -> 0.18.0.beta6)
- 0.18.0.beta6
API:
* Data::Base#value returns plain Ruby types;
Data::Container#exact_value contains Data::Base (gh#mvidner/ruby-dbus#114).
* Data::Base#initialize and .from_typed allow plain or exact values, validate
argument types.
* Implement #== (converting) and #eql? (strict) for Data::Base and DBus::Type.
==== seahorse ====
Version update (41.0 -> 42.0)
Subpackages: gnome-shell-search-provider-seahorse
- Update to version 42.0:
+ pgp: Fix GPG version check.
+ desktop: Add pgp,gpg to the description.
+ search-provider: Don't escape result description as markup.
+ gkr: Network label fixes.
+ ssh: Fix CPU Usage Spike When Calling ssh-keygen.
+ desktop: Add supported mime types to .desktop file>
+ desktop: Mark application as adaptive.
+ metainfo: Align app name with .desktop name.
+ ui: Opt-in to color scheme user preference>
+ Updated translations.
==== texlive ====
Subpackages: libkpathsea6 libsynctex2
- Use the found perl version for requiring perl-base in perl-biber (boo#1199795)
==== tnftp ====
Version update (20151004 -> 20210827)
- Update to version 20210827
* Validate address in server's PASV and LPSV responses. Previously
a hostile server could cause ftp to open a data connection elsewhere.
* Avoid intermittent crashes by fixing signal handler restoration.
* Fix intermittent failures in -q QUITTIME by not using restartable
signals.
* Set SO_KEEPALIVE on control connection to attempt to avoid timeouts.
* Display usage to stdout with -?.
- Update to version 20200705:
* Avoid crashes by exiting if lostpeer due to a signal
* Issue PWD commands to the server only when we actually need the
results, not speculatively, just in case we might.
* Use "anonymous" instead of the local username for anonymous
ftp. Avoids unnecesary information leak.
* Use the first name we requested the http/https URL for, not any
name we ended up with after random redirects.
* Support using CONNECT for https:// via proxy.
* Improve SSL error reporting, and IPv6 endpoint reporting.
* Use the system glob() if required extensions are supported.
- Drop upstream fixed tnftp-20100108-am_and_libedit.patch
- Drop upstream fixed tnftp-verify_hostname.patch
==== vlc ====
Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau
- Add vlc-dav1d-1.0.patch: Fix build with dav1d 1.0. Upstream
commits 2202c892 and d38ddd727.
==== wayland ====
Subpackages: libwayland-client0 libwayland-cursor0 libwayland-egl1 libwayland-server0
- modernize spec file
* use licensedir
* use bcond
* use https:// urls
* spec-cleaner
==== webkit2gtk3 ====
Version update (2.36.1 -> 2.36.2)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.36.2:
+ Fix some pages showing empty content boxes when using GTK4.
+ Fix the build with accessibility disabled.
+ Fix the build with newer Ruby versions.
+ Fix several crashes and rendering issues.
==== webkit2gtk3-soup2 ====
Version update (2.36.1 -> 2.36.2)
Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles
- Update to version 2.36.2:
+ Fix some pages showing empty content boxes when using GTK4.
+ Fix the build with accessibility disabled.
+ Fix the build with newer Ruby versions.
+ Fix several crashes and rendering issues.
==== xmlcharent ====
- Handle update case as well (boo#1199754)
==== xmlsec1 ====
Version update (1.2.33 -> 1.2.34)
Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1
- update to 1.2.34:
* Support for OpenSSL compiled with OPENSSL_NO_ERR.
* Full support for LibreSSL 3.5.0 and above
* Several other small fixes
==== xscreensaver ====
Subpackages: xscreensaver-data xscreensaver-data-extra xscreensaver-lang
- Add option --with-app-defaults to configure
* fix boo#1199742
==== xwayland ====
Version update (22.1.1 -> 22.1.2)
- Update to version 22.1.2
* randr: Add "RANDR Emulation" property
* xwayland/output: Set the "RANDR Emulation" property
* xwayland: Fix invalid pointer access in drm_lease_device_handle_released.
==== yast2 ====
Version update (4.5.3 -> 4.5.4)
Subpackages: yast2-logs
- Added experimental infrastructure for managing system in
a chroot (bsc#1199840)
- 4.5.4
==== yast2-installation ====
Version update (4.5.1 -> 4.5.2)
- AutoYaST Second Stage: Added a missing dependency to the service
to prevent getty-autogeneration listen on 5901 port (bsc#1199746)
- 4.5.2
==== yast2-ruby-bindings ====
Version update (4.5.0 -> 4.5.1)
- Added experimental infrastructure for managing system in
a chroot (bsc#1199840)
- 4.5.1
==== yast2-storage-ng ====
Version update (4.5.5 -> 4.5.6)
- Fixed failing unit test: Added translatable message for new
libstorage enum type for bitlocker (bsc#1199832)
- 4.5.6
==== yast2-trans ====
Version update (84.87.20220513.26f6bfaa16 -> 84.87.20220520.670357a704)
Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu
- Update to version 84.87.20220520.670357a704:
* New POT for text domain 'packager'.
- Update to version 84.87.20220517.14c54455f9:
* New POT for text domain 'qt'.
* Translated using Weblate (Catalan)
* Translated using Weblate (Catalan)
* Translated using Weblate (Catalan)
* Translated using Weblate (Catalan)
* New POT for text domain 'qt'.
* New POT for text domain 'iscsi-client'.
==== zsh ====
Version update (5.8.1 -> 5.9)
- update to 5.9:
zsh 5.9 is dedicated to the memory of Sven Guckes, who was, amongst other
things, a long-time zsh advocate. For more information, see:
https://linuxnews.de/2022/02/sven-guckes-verstorben/
https://groups.google.com/g/vim_announce/c/MJBKVd-xrEE/m/joVNaDgAAgAJ
When unsetting a hash element, the string enclosed in square brackets is
interpreted literally after any normal command-line-argument expansions.
Thus
unset "hash[$key]"
first expands $key as usual for a double-quoted string, and then interprets
that result as the exact hash element to unset. This differs from previous
versions of the shell, which would also remove a leading backslash for an
unusual subset of characters in the expansion of $key. Note this also
means, for example, that now
unset 'hash[ab]cd]'
unsets the element with key "ab]cd" rather than silently doing nothing.
The function command learnt a -T option to declare a function and enable
tracing for it simultaneously.
The option SHORT_REPEAT was added to enable the short syntax of
SHORT_LOOPS for the repeat command only. It is disabled by default.
The _arguments function now supports NUL-delimiting optargs in the
opt_args array via the -0 option. Developers of completion functions
should find this easier to handle reliably than the default
colon-delimiting behaviour.
The zsh/system module's `zsystem flock` command learnt an -i option to
set the wait interval used with -t. Additionally, -t now supports
fractional seconds.
The option CLOBBER_EMPTY was added to enable the overwrite behaviour
of CLOBBER for empty files only. It is disabled by default.
A (-) expansion flag was added. It works like (n) but correctly sorts
negative numbers.
The (*) expansion flag enables EXTENDED_GLOB for pattern matching.
For example, ${(*)sample/(#b)*(pat)*/${match[1]}} uses backreferences
even if EXTENDED_GLOB is not otherwise set. However, this does not
descend into nested exapansions, and doubling as (**) does not disable
EXTENDED_GLOB.
The compinit function learnt a -w option to explain why compdump runs.
When run without the -i or -u options and compaudit discovers security
issues, answering "y" to the "Ignore insecure ..." prompt removes the
insecure elements (like the -i option) where previously it ignored the
result (thus formerly like the -u option). Further, removing those
elements includes dropping directories from the $fpath array.
The zsh/datetime module's strftime builtin learnt an -n option to omit
the trailing newline when printing a formatted time.
The XTRACE option is now disabled while running user-defined completion
widgets. This corresponds to long-standing behavior of other user ZLE
widgets. Use the _complete_debug widget to capture XTRACE output, or
use "functions -T" to enable tracing of specific completion functions.
The fc builtin learnt an -s option which is a POSIX equivalent to the
`fc -e-` method of re-executing a command without invoking an editor.
The option CASE_PATHS was added to control how NO_CASE_GLOB behaves.
NO_CASE_GLOB + NO_CASE_PATHS is equivalent to the current NO_CASE_GLOB
behaviour. NO_CASE_GLOB + CASE_PATHS treats only path components that
contain globbing characters as case-insensitive; this behaviour may
yield more predictable results on case-sensitive file systems.
NO_CASE_PATHS is the default.
With the new TYPESET_TO_UNSET option set, "typeset foo" leaves foo unset,
in contrast to the default behavior which assigns foo="". Any parameter
attributes such as numeric type, sorting, and padding are retained until
the parameter is explicitly unset or a conflicting value is assigned.
This is similar to default behavior of bash and ksh. This option is
disabled by default.
The compadd builtin's -D option can now be specified more than once.
The zsh/zutil module's zformat builtin learnt an -F option which behaves
like -f except that ternary expressions check for existence instead of
doing math evaluation.
The conventional syntax used to indicate units, ranges, and default values
in completion descriptions (e.g. `timeout (seconds) (0-60) [20]`) is now
recognised by the completion system itself. These components are parsed
out of the description and can be individually styled. A _numbers helper
function has been added to help function authors offer rich completion
for these values.
The log builtin, WATCH parameter, et al., have been broken out into a
separate module, zsh/watch. The module is enabled by default.
The zsh/watch module's WATCHFMT parameter now supports colours via the
%F and %K escapes.
The STTY parameter can now be set to an empty string before running a
command to automatically restore terminal settings after the command
finishes.
The "jobs" command and "$jobstates" and related parameters can report on
parent shell jobs even in subshells. This is a snapshot of the parent
state, frozen at the point the subshell started. However, if a subshell
starts its own background jobs, the parent state is discarded in order
to report on those new jobs.
- drop ncurses-fix.patch: upstream
1
0
Freelance Prolog developers are experts in writing and developing software using the Prolog programming language. Companies hire prolog developers because of their extensive knowledge of writing algorithms, data structures and design patterns to solve complex problems in a variety of domains.
Financial companies use it to evaluate risk management strategies based on large numbers of factors; insurance companies use it to determine premiums based on age, gender.
The demand is rich for freelance prolog developers as AI is ruling the industry, and companies hire Prolog Developers who can use their skills with this programming language to create many different types of programs, including those used in artificial intelligence (AI).
Know more: https://eiliana.com/technology/hire-prolog-developers
1
0