- openSUSE ARM

New Arm Tumbleweed snapshot 20240318 released!
by Guillaume Gardet 19 Mar '24

19 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 7zip AppStream ImageMagick Mesa Mesa-drivers MozillaFirefox (123.0 -> 123.0.1) NetworkManager-branding-openSUSE akonadi-calendar (23.08.4 -> 24.02.0) akonadi-calendar-tools (23.08.4 -> 24.02.0) akonadi-contacts (23.08.4 -> 24.02.0) akonadi-import-wizard (23.08.4 -> 24.02.0) akonadi-mime (23.08.4 -> 24.02.0) akonadi-search (23.08.4 -> 24.02.0) akregator (23.08.4 -> 24.02.0) amarok analitza (23.08.4 -> 24.02.0) argyllcms ark (23.08.4 -> 24.02.0) avahi avahi-glib2 blinken (23.08.4 -> 24.02.0) busybox calendarsupport (23.08.4 -> 24.02.0) cryptsetup (2.7.0 -> 2.7.1) curl dav1d (1.4.0 -> 1.4.1) dolphin (23.08.4 -> 24.02.0) eventviews (23.08.4 -> 24.02.0) exempi (2.6.3 -> 2.6.5) expat (2.6.1 -> 2.6.2) ffmpegthumbs (23.08.4 -> 24.02.0) fwupd (1.9.14 -> 1.9.15) gcc13 gcc14 (14.0.1+git8957 -> 14.0.1+git9355) glib2-branding-openSUSE glibc glslang (14.0.0 -> 14.1.0) gnome-disk-utility gpsd grantleetheme (23.08.4 -> 24.02.0) gsettings-desktop-schemas gstreamer gstreamer-plugins-bad gtk2-branding-openSUSE gtk3-branding-openSUSE gtk4-branding-openSUSE iceauth (1.0.9 -> 1.0.10) icewm-theme-branding incidenceeditor (23.08.4 -> 24.02.0) iproute2 (6.7 -> 6.8) kaccounts-integration (23.08.4 -> 24.02.0) kaccounts-integration-kf5 (23.08.4 -> 24.02.0) kaccounts-providers (23.08.4 -> 24.02.0) kaddressbook (23.08.4 -> 24.02.0) kalgebra (23.08.4 -> 24.02.0) kamera (23.08.4 -> 24.02.0) kanagram (23.08.4 -> 24.02.0) kapptemplate (23.08.4 -> 24.02.0) kate (23.08.4 -> 24.02.0) kbruch (23.08.4 -> 24.02.0) kcachegrind (23.08.4 -> 24.02.0) kcalc (23.08.4 -> 24.02.0) kcalutils (23.08.4 -> 24.02.0) kcharselect (23.08.4 -> 24.02.0) kcolorchooser (23.08.4 -> 24.02.0) kdeedu-data (23.08.4 -> 24.02.0) kdegraphics-thumbnailers (23.08.4 -> 24.02.0) kdenetwork-filesharing (23.08.4 -> 24.02.0) kdepim-addons (23.08.4 -> 24.02.0) kdepim-runtime (23.08.4 -> 24.02.0) kdialog (23.08.4 -> 24.02.0) kernel-firmware (20240229 -> 20240312) kernel-source (6.7.7 -> 6.7.9) kgeography (23.08.4 -> 24.02.0) khangman (23.08.4 -> 24.02.0) kidentitymanagement (23.08.4 -> 24.02.0) kig (23.08.4 -> 24.02.0) kio_audiocd (23.08.4 -> 24.02.0) kipi-plugins (23.08.4 -> 24.02.0) kiten (23.08.4 -> 24.02.0) kldap (23.08.4 -> 24.02.0) kleopatra (23.08.4 -> 24.02.0) kmag (23.08.4 -> 24.02.0) kmahjongg (23.08.4 -> 24.02.0) kmail (23.08.4 -> 24.02.0) kmail-account-wizard (23.08.4 -> 24.02.0) kmailtransport (23.08.4 -> 24.02.0) kmines (23.08.4 -> 24.02.0) kmousetool (23.08.4 -> 24.02.0) kmplot (23.08.4 -> 24.02.0) knotes (23.08.4 -> 24.02.0) kompare (23.08.4 -> 24.02.0) konsole (23.08.4 -> 24.02.0) kontact (23.08.4 -> 24.02.0) konversation (23.08.4 -> 24.02.0) korganizer (23.08.4 -> 24.02.0) kpat (23.08.4 -> 24.02.0) kpimtextedit (23.08.4 -> 24.02.0) kqtquickcharts (23.08.4 -> 24.02.0) kreversi (23.08.4 -> 24.02.0) ksudoku (23.08.4 -> 24.02.0) ktextaddons (1.4.1 -> 1.5.3) ktouch (23.08.4 -> 24.02.0) kwordquiz (23.08.4 -> 24.02.0) lapack libXaw (1.0.15 -> 1.0.16) libaccounts-qt5 (1.16 -> 1.16git.20231124T162152~18557f7) libavif (1.0.3 -> 1.0.4) libgravatar (23.08.4 -> 24.02.0) libjxl (0.10.1 -> 0.10.2) libjxl-gtk (0.10.1 -> 0.10.2) libkcompactdisc-qt6 (23.08.4 -> 24.02.0) libkdegames (23.08.4 -> 24.02.0) libkdepim (23.08.4 -> 24.02.0) libkeduvocdocument (23.08.4 -> 24.02.0) libkipi (23.08.4 -> 24.02.0) libkleo (23.08.4 -> 24.02.0) libkmahjongg (23.08.4 -> 24.02.0) libkomparediff2-kf5 (23.08.4 -> 24.02.0) libksane (23.08.4 -> 24.02.0) libksieve (23.08.4 -> 24.02.0) libopenmpt (0.7.3 -> 0.7.5) libpsl libressl (3.7.0 -> 3.8.3) libstorage-ng (4.5.201 -> 4.5.202) libxfce4ui (4.18.5 -> 4.18.6) lilv lokalize (23.08.4 -> 24.02.0) mailcommon (23.08.4 -> 24.02.0) mailimporter (23.08.4 -> 24.02.0) mbox-importer (23.08.4 -> 24.02.0) messagelib (23.08.4 -> 24.02.0) musepack mutter okular (23.08.4 -> 24.02.0) openSUSE-build-key openSUSE-release (20240310 -> 20240318) opensc (0.24.0 -> 0.25.0) parley (23.08.4 -> 24.02.0) patterns-kde (20231206 -> 20240311) pcr-oracle pcsc-lite (2.0.1 -> 2.0.3) permissions (1699_20240305 -> 1699_20240307) phonon-qt5 (4.11.1 -> 4.12.0) pim-data-exporter (23.08.4 -> 24.02.0) pim-sieve-editor (23.08.4 -> 24.02.0) pipewire (1.0.3 -> 1.0.4) polkit-default-privs (1550+20240307.987ebab -> 1550+20240311.559e6ac) polkit-qt5-1 (0.114.0 -> 0.200.0) postgresql16 publicsuffix (20240303 -> 20240306) pulseaudio purpose python-anyio (4.2.0 -> 4.3.0) python-importlib-metadata (7.0.1 -> 7.0.2) python-importlib-resources python-pyOpenSSL (24.0.0 -> 24.1.0) python-python-dateutil (2.8.2 -> 2.9.0.post0) python-rich (13.7.0 -> 13.7.1) python-sniffio (1.3.0 -> 1.3.1) python311 python311-core qemu (8.2.1 -> 8.2.2) rebootmgr (2.3 -> 2.4) rsync rsyslog salt sddm (0.20.0 -> 0.21.0) selinux-policy (20240205 -> 20240313) signon signon-kwallet-extension (23.08.4 -> 24.02.0) signon-plugin-oauth2 (0.25 -> 0.25git.20231124T142245~fab6988) signon-qt6 signon-ui (0.17+20171022 -> 0.17.20231016T221200~eef943f) skanlite (23.08.4 -> 24.02.0) spectacle (23.08.4 -> 24.02.0) spice sqlite3 (3.44.2 -> 3.45.2) step (23.08.4 -> 24.02.0) system-config-printer systemd (254.9 -> 255.3) timezone transactional-update umbrello (23.08.4 -> 24.02.0) update-alternatives (1.22.2 -> 1.22.5) virglrenderer (1.0.0 -> 1.0.1) wavpack (5.6.0 -> 5.7.0) wget (1.21.4 -> 1.24.5) wicked wireplumber (0.4.90 -> 0.4.90+git25.95cfa9e) xfce4-weather-plugin (0.11.1 -> 0.11.2) yast2-bootloader (5.0.6 -> 5.0.7) yast2-installation (5.0.6 -> 5.0.7) yast2-network (5.0.2 -> 5.0.3) yast2-packager (5.0.4 -> 5.0.5) yast2-storage-ng (5.0.8 -> 5.0.9) yast2-trans (84.87.20240304.419739cb87 -> 84.87.20240317.9b1b5b2b95) === Details === ==== 7zip ==== - Use autosetup -c instead of manually extracting the tarball and applying patches: allows us to eliminate the usage of deprecated %patchN. ==== AppStream ==== - Add conflict in appstream-qt6-devel with libAppStreamQt-devel < 1.0. This is required to fix a file conflict in SLE with the old libAppStreamQt-devel package. ==== ImageMagick ==== Subpackages: libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - enable SVG again - modified patches % ImageMagick-configuration-SUSE.patch (refreshed) ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - buildrequires llvm18-devel/clang18-devel on Leap 15.5/15.6 - disabled u_zink-dont-print-error-messages-when-failing-an-implicit.patch for now, since it breaks driver build; this patch needs other patches below to build ... - u_zink-dont-print-error-messages-when-failing-an-implicit.patch * zink: don't print error messages when failing an implicit driver load (Mesa gitlab issue #10802) - Add U_fix-ac-llvm-LLVM-18-remove-useless-passes.patch to fix build with LLVM 18. ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva - buildrequires llvm18-devel/clang18-devel on Leap 15.5/15.6 - disabled u_zink-dont-print-error-messages-when-failing-an-implicit.patch for now, since it breaks driver build; this patch needs other patches below to build ... - u_zink-dont-print-error-messages-when-failing-an-implicit.patch * zink: don't print error messages when failing an implicit driver load (Mesa gitlab issue #10802) - Add U_fix-ac-llvm-LLVM-18-remove-useless-passes.patch to fix build with LLVM 18. ==== MozillaFirefox ==== Version update (123.0 -> 123.0.1) - Mozilla Firefox 123.0.1 * Fixed the *Firefox Translation* language indicator in the address bar displaying a colored square icon instead of the language code icon. (bmo#1879415) * Fixed a regression with the `onChange` event not firing when clearing the value of a `textarea` HTML field. (bmo#1881457) * Fixed a regression in the JavaScript JIT engine incorrectly inlining strings in some cases. (bmo#1882386) * Fixed: Fixed low contrast of text when selecting rows in the Developer tools' Storage panel. (bmo#1877090) ==== NetworkManager-branding-openSUSE ==== - Ensure flavor has a value, at least %nil. - ExclusiveArch: %nil is invalid: give it a value (do-not-build). ==== akonadi-calendar ==== Version update (23.08.4 -> 24.02.0) Subpackages: akonadi-plugin-calendar kalendarac - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Make the SearchCollectionHelper inactive by default * Implement a dialog for the user to choose the suspend duration (kde#481024) - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== akonadi-calendar-tools ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== akonadi-contacts ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/fr/announcements/megarelease/6/rc2/ ==== akonadi-import-wizard ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== akonadi-mime ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== akonadi-search ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== akregator ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix bug 481593: New Feed and Add Feed Buttons Do the Same Thing (kde#481593) * Fix mem leak - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== amarok ==== - Require a phonon-vlc backend that was built with Qt5 ==== analitza ==== Version update (23.08.4 -> 24.02.0) Subpackages: libAnalitza8 - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== argyllcms ==== - Fix build with gcc14 (bsc#1221304) * Add ajam-gcc14.patch - Reformat ajam-include.patch with a/b prefixes - Use %autosetup ==== ark ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Specify umask for permission tests * cli7zplugin: improve compatibility with original 7-Zip - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== avahi-glib2 ==== Subpackages: libavahi-glib1 libavahi-gobject0 libavahi-ui-gtk3-0 - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== blinken ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== busybox ==== Subpackages: busybox-static - tc-no-TCA_CBQ.patch: Disable TCA_CBQ code if kernel headers don't support them. ==== calendarsupport ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== cryptsetup ==== Version update (2.7.0 -> 2.7.1) Subpackages: cryptsetup-doc libcryptsetup12 - Update to 2.7.1: * Fix interrupted LUKS1 decryption resume. With the replacement of the cryptsetup-reencrypt tool by the cryptsetup reencrypt command, resuming the interrupted LUKS1 decryption operation could fail. LUKS2 was not affected. * Allow --link-vk-to-keyring with --test-passphrase option. This option allows uploading the volume key in a user-specified kernel keyring without activating the device. * Fix crash when --active-name was used in decryption initialization. * Updates and changes to man pages, including indentation, sorting options alphabetically, fixing mistakes in crypt_set_keyring_to_link, and fixing some typos. * Fix compilation with libargon2 when --disable-internal-argon2 was used. * Do not require installed argon2.h header and never compile internal libargon2 code if the crypto library directly supports Argon2. * Fixes to regression tests to support older Linux distributions. ==== curl ==== Subpackages: libcurl4 - Remove the nghttp2 version requirement as a version guard around the nghttp2_option_set_no_rfc9113_leading_and_trailing_ws_validation function was added in curl 8.0.1. * Upstream commit: https://github.com/curl/curl/commit/744dcf22 ==== dav1d ==== Version update (1.4.0 -> 1.4.1) - Update to version 1.4.1 * Optimizations for 6tap filters for NEON (ARM) * More RISC-V optimizations for itx (4x8, 8x4, 4x16, 16x4, 8x16, 16x8) * Reduction of binary size on ARM64, ARM32 and RISC-V * Fix out-of-bounds read in 8bpc SSE2/SSSE3 wiener_filter * Msac optimizations ==== dolphin ==== Version update (23.08.4 -> 24.02.0) Subpackages: dolphin-part - Add upstream fix for disappearing panels (boo#1221513): * 0001-Remove-unneeded-code-for-toggeling-dockwidget-visibi.patch - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix a crash in DolphinSearchBox::hideEvent() (kde#481553) * Fix flatpak * Never emit the fileMiddleClickActivated signal if isTabsForFilesEnabled is true * Revert "DolphinView: merge update functions into set functions" - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== eventviews ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix 'Create sub-todo' action being always disabled (kde#479351) - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== exempi ==== Version update (2.6.3 -> 2.6.5) - update to 2.6.5: * Update XMPCore to Adobe XMP SDK v2023.12 - Bug fixes - C++17 compliance changes - Changes to remove deprecated APIs - Removing unimplemented APIs in XMPUtils header * Fix a potential nullptr dereference. * Update XMPCore to Adobe XMP SDK v2023.07 - Security Fixes. - Fix Exif Date missing seconds values. https://github.com/adobe/XMP-Toolkit-SDK/issues/50 * Fix some portability build issues with dlopen on BSD: * Added missing file type constants from the XMP_SDK. ==== expat ==== Version update (2.6.1 -> 2.6.2) Subpackages: libexpat1 - update to 2.6.2: * CVE-2024-28757 -- Prevent billion laughs attacks with isolated use of external parsers (boo#1221289) * Reject direct parameter entity recursion and avoid the related undefined behavior ==== ffmpegthumbs ==== Version update (23.08.4 -> 24.02.0) - Add a kf5 flavor for applications not ported yet to Qt6 (boo#1221502, kde#483741) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== fwupd ==== Version update (1.9.14 -> 1.9.15) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.15: + This release adds the following features: - Allow loading in parameters for the test device from fwupd.conf. - Ensure LVFS remotes are changed from .gz to .xz. - Store the install duration in the history database. + This release fixes the following bugs: - Drop OverrideESPMountPoint references in uefi-capsule. - Fix a potential double-free when writing AVer firmware. - Only request the BOS descriptor when bcdUSB > 0x0200. - Use the root device order when sorting device children. ==== gcc13 ==== Subpackages: cpp13 libgccjit0-gcc13 - Revert libgccjit dependency change. [boo#1220724] ==== gcc14 ==== Version update (14.0.1+git8957 -> 14.0.1+git9355) Subpackages: libgcc_s1 libgfortran5 libgomp1 libobjc4 libstdc++6 libstdc++6-pp libubsan1 - Revert libgccjit dependency change. [boo#1220724] - Update to trunk head, b209d905f5ce1fa9d76ce634fd54245ff3, git9355 - Fix libgccjit-devel dependency, a newer shared library is OK. - Fix libgccjit dependency, the corresponding compiler isn't required. ==== glib2-branding-openSUSE ==== - Ensure flavor has a value, at least %nil. - ExclusiveArch: %nil is invalid: give it a value (do-not-build). ==== glibc ==== Subpackages: glibc-extra glibc-locale glibc-locale-base nscd - stdbit-builtins.patch: Use gcc __builtin_stdc_* builtins in stdbit.h if possible - sigisemptyset.patch: linux/sigsetops: fix type confusion (BZ #31468) - duplocale-global-locale.patch: duplocale: protect use of global locale (bsc#1220441, BZ #23970) ==== glslang ==== Version update (14.0.0 -> 14.1.0) - Update to release 14.1 * Add a new ``--absolute-path`` command-line option to output absolute paths in error messages * Support GL_EXT_control_flow_attributes2, GL_ARB_shading_language_include, NV_shader_atomic_fp16_vector, GL_EXT_expect_assume_support, GL_KHR_shader_subgroup_rotate, EXT_shader_quad_control, GL_EXT_maximal_reconvergence, GL_ARB_texture_multisample_extension * Emit debug info for accelerationStructure and rayQuery variables * Improve debug source and line info * Add OpAssumeTrueKHR and OpExpectKHR * Remove generation of deprecated Target.cmake files ==== gnome-disk-utility ==== - Move install commands into %install section ==== gpsd ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang_path macro, [bsc#1212476] ==== grantleetheme ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== gsettings-desktop-schemas ==== - Update gsettings-desktop-schemas-fate324570-Add-key-for-GDM-background-configuration.patch: Add key picture-uri-dark (bsc#1221205). ==== gstreamer ==== Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Replace the quick fix for boo#1221150 with the version submitted to upstream at https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/6322: * 0001-Canonicalize-the-library-path-returned-by-dladdr.patch - Remove previous version of the fix for boo#1221150: * force-find-gst-plugin-scanner.patch - Fix sed command to set the gst-plugin-scanner suffix correctly - Add preventive checks for the sed commands that set the binary suffix so that they don't silently fail anymore. - Add patch from upstream to not install ptp-helper test executable * 0001-ptp-Dont-install-test-executable.patch - Add patch to remove the (wrong) check for relocated library which is making gstreamer fail to find the gst-plugin-scanner helper binary, thus using the installation path set at build time (boo#1221150): * force-find-gst-plugin-scanner.patch ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstanalytics-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstinsertbin-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstmse-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Add patch that fixes a crash when initializing gstva, submitted to upstream at https://gitlab.freedesktop.org/gstreamer/gstreamer/-/merge_requests/6319 (boo#1221150): * 0001-Move-PROP_RATE_CONTROL-to-the-end-of-the-array.patch ==== gtk2-branding-openSUSE ==== - Ensure flavor has a value, at least %nil. - ExclusiveArch: %nil is invalid: give it a value (do-not-build). ==== gtk3-branding-openSUSE ==== - Ensure flavor has a value, at least %nil. - ExclusiveArch: %nil is invalid: give it a value (do-not-build). ==== gtk4-branding-openSUSE ==== - Ensure flavor has a value, at least %nil. - ExclusiveArch: %nil is invalid: give it a value (do-not-build). ==== iceauth ==== Version update (1.0.9 -> 1.0.10) - Update to version 1.0.10 * minor bugfix release, including fixes for compiler warnings ==== icewm-theme-branding ==== - Make sure flavor is never defined without content, but at least has %nil. - Use an invalid arch for "" flavor (do-not-build): %nil is not actually supported and worked by accident. ==== incidenceeditor ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== iproute2 ==== Version update (6.7 -> 6.8) Subpackages: iproute2-bash-completion - Update to release 6.8 * ip, link: Add support for netkit (a veth-like netdev with BPF-programmable transmit queue) * ip route: add support for TCP microsecond timestamp * bridge: mdb: add flush support ==== kaccounts-integration ==== Version update (23.08.4 -> 24.02.0) - Require signon-kwallet-extension - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add a kaccount-integration-kf5 flavor for applications still using KF5/Qt5 ==== kaccounts-integration-kf5 ==== Version update (23.08.4 -> 24.02.0) - Require signon-kwallet-extension - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add a kaccount-integration-kf5 flavor for applications still using KF5/Qt5 ==== kaccounts-providers ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix link target - Drop patch, merged upstream: * 0001-Fix-link-target.patch - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add patch: * 0001-Fix-link-target.patch ==== kaddressbook ==== Version update (23.08.4 -> 24.02.0) Subpackages: kaddressbook-doc - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix mem leak - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kalgebra ==== Version update (23.08.4 -> 24.02.0) - Don't build the Plasmoid until kde#482464 is fixed - Fix kalgebra-mobile-lang - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kamera ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kanagram ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Add developer_name tag to the appdata file. * Remove Qt5 parts * Fix porting regression * Fix sounds not playing - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kapptemplate ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * KF app templates: use non-development min dependency KF 6.0 * Non-simple KF app template: deploy ui.rc file as Qt resource - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kate ==== Version update (23.08.4 -> 24.02.0) Subpackages: kate-plugins - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix tabswitcher performance when large of docs are opened * Avoid many proxy invalidations on close * fix crash on close other with active widget (kde#481625) * Fix crash * Documents: Fix row numbers not updated after dnd * Fix diagnostic count when removing diagnostics from a doc with multiple providers * diag: Always allow diagnostics for active document - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kbruch ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kcachegrind ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kcalc ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kcalutils ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kcharselect ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * flapak: Installl the breeze icon - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kcolorchooser ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kdeedu-data ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kdegraphics-thumbnailers ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kdenetwork-filesharing ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Drop patch, merged upstream: * 0001-Remove-wrong-group-check-from-group-manager.patch ==== kdepim-addons ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix compile warnings * Add missing [[nodiscard]] * Use [[nodiscard]] * Use unique instance * Create manager first - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kdepim-runtime ==== Version update (23.08.4 -> 24.02.0) - Add upstream change to fix the etesync resource build (kde#482600): * 0001-Bring-back-etesync-support.patch - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix EWS config dialog * ews: Handle KIO::ERR_ACCESS_DENIED error * ews: Use http1 for ews requests * Move checkbox on top * Fix start service * Comment this assert. we need to investigate more. - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kdialog ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * flatpak: Install the breeze icon - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kernel-firmware ==== Version update (20240229 -> 20240312) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240312 (git commit 4a404b5bfdb9): * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * iwlwifi: update 9000-family firmwares to core85-89 * rtl_bt: Update RTL8852A BT USB firmware to 0xD9D6_17DA * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7922) * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: Add CS35L41 HDA Firmware for Lenovo Thinkbook 16P Laptops ==== kernel-source ==== Version update (6.7.7 -> 6.7.9) - Linux 6.7.9 (bsc#1012628). - mtd: spinand: gigadevice: Fix the get ecc status issue (bsc#1012628). - ice: fix connection state of DPLL and out pin (bsc#1012628). - ice: fix dpll input pin phase_adjust value updates (bsc#1012628). - ice: fix dpll and dpll_pin data access on PF reset (bsc#1012628). - ice: fix dpll periodic work data updates on PF reset (bsc#1012628). - ice: fix pin phase adjust updates on PF reset (bsc#1012628). - spi: cadence-qspi: fix pointer reference in runtime PM hooks (bsc#1012628). - spi: cadence-qspi: remove system-wide suspend helper calls from runtime PM hooks (bsc#1012628). - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter (bsc#1012628). - netlink: add nla be16/32 types to minlen array (bsc#1012628). - net: ip_tunnel: prevent perpetual headroom growth (bsc#1012628). - net: mctp: take ownership of skb in mctp_local_output (bsc#1012628). - net: dpaa: fman_memac: accept phy-interface-type = "10gbase-r" in the device tree (bsc#1012628). - tun: Fix xdp_rxq_info's queue_index when detaching (bsc#1012628). - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call back (bsc#1012628). - net: veth: clear GRO when clearing XDP even when down (bsc#1012628). - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr() (bsc#1012628). - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected (bsc#1012628). - veth: try harder when allocating queue memory (bsc#1012628). - net: usb: dm9601: fix wrong return value in dm9601_mdio_read (bsc#1012628). - net: lan78xx: fix "softirq work is pending" error (bsc#1012628). - uapi: in6: replace temporary label with rfc9486 (bsc#1012628). - stmmac: Clear variable when destroying workqueue (bsc#1012628). - Bluetooth: hci_sync: Check the correct flag before starting a scan (bsc#1012628). - Bluetooth: Avoid potential use-after-free in hci_error_reset (bsc#1012628). - Bluetooth: hci_sync: Fix accept_list when attempting to suspend (bsc#1012628). - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR (bsc#1012628). - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST (bsc#1012628). - Bluetooth: Enforce validation on max value of connection interval (bsc#1012628). - Bluetooth: qca: Fix wrong event type for patch config command (bsc#1012628). - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT (bsc#1012628). - Bluetooth: qca: Fix triggering coredump implementation (bsc#1012628). - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate() (bsc#1012628). - netfilter: bridge: confirm multicast packets before passing them up the stack (bsc#1012628). - tools: ynl: fix handling of multiple mcast groups (bsc#1012628). - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back (bsc#1012628). - igb: extend PTP timestamp adjustments to i211 (bsc#1012628). - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames (bsc#1012628). - tls: decrement decrypt_pending if no async completion will be called (bsc#1012628). - tls: fix peeking with sync+async decryption (bsc#1012628). - tls: separate no-async decryption request handling from async (bsc#1012628). - tls: fix use-after-free on failed backlog decryption (bsc#1012628). - riscv: tlb: fix __p*d_free_tlb() (bsc#1012628). - efi/capsule-loader: fix incorrect allocation size (bsc#1012628). - power: supply: bq27xxx-i2c: Do not free non existing IRQ (bsc#1012628). - ASoC: cs35l56: Must clear HALO_STATE before issuing SYSTEM_RESET (bsc#1012628). - ALSA: Drop leftover snd-rtctimer stuff from Makefile (bsc#1012628). - ASoC: qcom: Fix uninitialized pointer dmactl (bsc#1012628). - gpu: host1x: Skip reset assert on Tegra186 (bsc#1012628). - riscv: mm: fix NOCACHE_THEAD does not set bit[61] correctly (bsc#1012628). - riscv: Fix build error if !CONFIG_ARCH_ENABLE_HUGEPAGE_MIGRATION (bsc#1012628). - ASoC: cs35l56: cs35l56_component_remove() must clear cs35l56->component (bsc#1012628). - ASoC: cs35l56: cs35l56_component_remove() must clean up wm_adsp (bsc#1012628). - ASoC: cs35l56: Don't add the same register patch multiple times (bsc#1012628). - ASoC: cs35l56: Fix for initializing ASP1 mixer registers (bsc#1012628). - ASoC: cs35l56: Fix misuse of wm_adsp 'part' string for silicon revision (bsc#1012628). - ASoC: cs35l56: Fix deadlock in ASP1 mixer register ... changelog too long, skipping 220 lines ... - commit 81068ab ==== kgeography ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== khangman ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kidentitymanagement ==== Version update (23.08.4 -> 24.02.0) Subpackages: kidentitymanagement-lang - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Missing -o => we didn't extract string from qml - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kig ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kio_audiocd ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Only mark KCM as changed when text was actually edited (kde#476669) - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kipi-plugins ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kiten ==== Version update (23.08.4 -> 24.02.0) Subpackages: fonts-KanjiStrokeOrders - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kldap ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kleopatra ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Use new folder-edit-sign-encrypt icon - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmag ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * flatpak: Install a scaleable icon - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmahjongg ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmail ==== Version update (23.08.4 -> 24.02.0) Subpackages: kmail-application-icons ktnef - Add fix for a potential kontact crash (kde#483844): * 0001-Fix-483844-kontact-segfaults-on-startup.patch - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix mem leak * Fix crash on close * Fix showMail when kmail is not started - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmail-account-wizard ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix separator being displayed while below element is not * Fix disconnect mode not visible * We really need to have kolab support * Fix qCWarning * This check is not necessary now * Debug-- * Fix QML name * Fix triggered nextAction * i18n: Add more context to password string * Backport change from master * mAccountConfigurationImpl will allow to create account. => rename method * Rename variable * Rename files * Rename this class to accountconfigurationbase * Add UseTLS * Add more autotest * Use QStandardPath * Remove not necessary this-> * continue to implement autotest * Prepare to autotest it * Export symbol * Move to target_sources * Prepare to test create resource * Remove TODO * Store as info * Test signal * We need QString info for testing it * Improve supprot * Improve autotests * Improve debug - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmailtransport ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Save after adding a new mail transport * Don't use alias in meta object definition - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmines ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmousetool ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kmplot ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== knotes ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix theme path - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kompare ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add patch to allow coinstallation of two libkomparediff libraries * 0001-Adapt-to-Lib-prefix-removed-from-KompareDiff2-CMake-.patch ==== konsole ==== Version update (23.08.4 -> 24.02.0) Subpackages: konsole-part konsole-part-lang - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kontact ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== konversation ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Provide scripts with an env var to find qdbus (kde#349675) * Update NEWS * Update changelog * scripts/sysinfo: Add support for Plasma 6 * Add error handling and modernize kpart loading * Fix the embedded Konsole (kde#480452) - Drop patch, no longer needed: * 0001-Use-qdbus6-on-openSUSE.patch - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Replace 0001-Use-qdbus-qt5-on-openSUSE.patch with 0001-Use-qdbus6-on-openSUSE.patch ==== korganizer ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * set correct link for custompages handbook * Use correct timezone when creating recurrence exception (kde#481305) * formats/translations kcm modules were merged in kcm_regionandlang * Fix mem leak * In opensuse designer apps was renamed to designer6. => fix search designer - Drop patch, no longer needed: * 0001-Look-for-designer6-on-openSUSE.patch - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Replace 0001-Look-for-designer-qt5-on-openSUSE.patch with 0001-Look-for-designer6-on-openSUSE.patch ==== kpat ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kpimtextedit ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kqtquickcharts ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kreversi ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== ksudoku ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Correct icon and text positions in game chooser for HiDPI mode * Fix 25x25 letter markers not showing up for ksudoku_scrible.svg - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== ktextaddons ==== Version update (1.4.1 -> 1.5.3) - Update to 1.5.3. No changelog. - Build ktextaddons using KF6/Qt6 ==== ktouch ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== kwordquiz ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== lapack ==== Subpackages: libblas3 libcblas3 liblapack3 - Add Fix-testing-input.patch to remove stray ';' in the input data for TESTING/dgebal.in now rejected with the GFortran 14 runtime. ==== libXaw ==== Version update (1.0.15 -> 1.0.16) - Update to version 1.0.16 * Code-cleanup and build-fixes ... ==== libaccounts-qt5 ==== Version update (1.16 -> 1.16git.20231124T162152~18557f7) - Init libaccounts-qt. Replaces libaccounts-qt5 and uses flavors to build with both Qt 5 and 6 ==== libavif ==== Version update (1.0.3 -> 1.0.4) - update to 1.0.4: * AVIF_ENABLE_WERROR is set to OFF by default. * Fix wrong alpha plane deallocation when decoded tile pixel format does not match reconstructed output image pixel format * Fix identical chunk skipping optimization when writing animation data * Fix ID selection for artificial grid alpha item when decoding a grid of tiles which each have an associated auxiliary alpha image item (https://crbug.com/oss-fuzz/65657) ==== libgravatar ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libjxl ==== Version update (0.10.1 -> 0.10.2) - Update to release 0.10.2 * Fix unspecified bugs in (lossless) encoding and streaming mode ==== libjxl-gtk ==== Version update (0.10.1 -> 0.10.2) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update to release 0.10.2 * Fix unspecified bugs in (lossless) encoding and streaming mode ==== libkcompactdisc-qt6 ==== Version update (23.08.4 -> 24.02.0) - Use a single translation package for libKF5CompactDisc5 and libKCompactDisc6-5 - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Qt6 build flavor added to libkcompactdisc ==== libkdegames ==== Version update (23.08.4 -> 24.02.0) Subpackages: kdegames-carddecks-default - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkdepim ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix destroying down ProgressDialog - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkeduvocdocument ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkipi ==== Version update (23.08.4 -> 24.02.0) Subpackages: libKF5Kipi32_0_0 libkipi-data - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkleo ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkmahjongg ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libkomparediff2-kf5 ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add patch to allow coinstallation of libkomparediff * 0001-Add-changes-to-allow-coinstallation.patch - Add a multibuild flavor to keep building a komparediff library using KDE Frameworks 5 and Qt 5 ==== libksane ==== Version update (23.08.4 -> 24.02.0) - Use a single translation package for libKF5Sane6 and libKSaneWidgets6 - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ - Add a libksane-kf5 flavor for applications still using KF5/Qt5 ==== libksieve ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== libopenmpt ==== Version update (0.7.3 -> 0.7.5) - Update to 0.7.5: * [Sec] Null-pointer write (32bit platforms) or excessive memory allocation (64bit platforms) when reading close to 4GiB of data from unseekable files.. * [Sec] Write buffer overflow when reading unseekable files close to 4GiB in size. * [Sec] Possible out-of-memory (32bit platforms) or excessive memory allocation (64bit platforms) when reading malformed data from unseekable files. * [Sec] DMF: Possible null-pointer write or excessive memory allocation when reading DMF files. * IT: In the previous version, Zxx macros in IT files made with older MPT versions were no longer working. * There was a periodic click when playing a module using the Chorus or Flanger DMO plugin at a mix rate exceeding ~136.5 kHz. * An older bugfix for undefined behaviour in the Distortion DMO plugin was incorrect, causing the distorted sound to be different in some situations. * xmp-openmpt: Metadata retrievel for playlist items was broken. - Changes in 0.7.4: * [Bug] Makefile: libopenmpt 0.7.3 broke running the test suite for Emscripten builds. * openmpt123: openmpt123 now uses a narrower layout on terminal windows with a width of less than 72 characters. * Setting all possible load_skip flags resulted in nothing being loaded at all, instead of just not loading the selected module parts. * When playing all subsongs, set_position_seconds didnât always calculate the correct subsong to jump to. * IT: A few more compatibility flags are now disabled for modules saved with earlier Schism Tracker versions. * IT: MIDI macros were reset in IT 2.14 / 2.15 files that declared to be compatible with older IT versions (fixes spx-visionsofthepast.it). * OKT: Work around missing negative arpeggio implementation by transposing the notes up an octave. * OKT: Channel volume commands were sometimes lost over less important effects. * IMF: Ignore magic bytes in sample header. âLeaving All Behindâ by Karsten Koch uses unexpected magic bytes, Orpheus ignores them just like the instrument header magic bytes. ==== libpsl ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== libressl ==== Version update (3.7.0 -> 3.8.3) - Update to 3.8.3: * Improved control-flow enforcement (CET) support. - Rework conflicts again - Update to release 3.8.2 * Added support for truncated SHA-2 and for SHA-3. * The BPSW primality test performs additional Miller-Rabin rounds with random bases to reduce the likelihood of composites passing. * Allow testing of ciphers and digests using badly aligned buffers in openssl speed. * Added a workaround for a poorly thought-out change in OpenSSL 3 that broke privilege separation support in libtls. * Compatibility changes: * Removed most public symbols that were deprecated in OpenSSL 0.9.8. * Security fixes: * Disabled TLSv1.0 and TLSv1.1 in libssl so that they may no longer be selected for use. - Improve cross-package provides/conflicts [boo#1210313] * Remove explicit conflicts with other devel-libraries * Remove Obsoletes: ssl - Update to 3.7.3: * Bug fix: Hostflags in the verify parameters would not propagate from an SSL_CTX to newly created SSL. * Reliability fix: A double free or use after free could occur after SSL_clear(3). - Update to release 3.7.2 * Updates to the build system - Add more conflicts between openssl<>libressl - Update to release 3.7.1 * Added UI_null() * Added X509_STORE_*check_issued() * Added X509_CRL_get0_sigalg() and X509_get0_uids() accessors * Added EVP_CIPHER_meth_*() setter API ==== libstorage-ng ==== Version update (4.5.201 -> 4.5.202) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#991 - added ruby example - 4.5.202 ==== libxfce4ui ==== Version update (4.18.5 -> 4.18.6) Subpackages: libxfce4kbd-private-3-0 libxfce4ui-2-0 libxfce4ui-lang libxfce4ui-tools typelib-1_0-Libxfce4ui-2_0 ==== lilv ==== - Add %pycache_only macro for the __pycache__ file to fix build in 15.6 ==== lokalize ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Add developer name in Appstream to fix Flathub builds * Add possibility to format for KDE PO summit - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== mailcommon ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== mailimporter ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== mbox-importer ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== messagelib ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Convert datetime to locale * Fix bug 479932: Mail display eat spaces after quote characters (kde#479932) - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== musepack ==== - Rework libmpcdec.patch and libmpcdec-extern.patch so that they apply with -p1, and use autosetup. - Add libmpcdec-gcc14.patch: fix the build with gcc 14 (boo#1221008). ==== mutter ==== - Add 0001-Revert-clutter-actor-Cache-stage-relative-instead-of.patch: This leads into partial update while switching VT (from TTY to GNOME) on X11 session with fbdev driver used ( glgo#GNOME/mutter#3302, bsc#1219546). ==== okular ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * presentationwidget: Invalidate pixmaps on dpr change (kde#479141) * CI test runners are slower * Better user strings for signature settings * org.kde.okular.appdata: Add developer_name - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== openSUSE-build-key ==== - Install import-openSUSE-build-key to %{_sbindir}: align to where the .service file is launching the script from (boo#1221427). - add unexpired openSUSE zSystems key (bsc#1220993) - replace gpg-pubkey-f6ab3975-5edd7d4f.asc - by gpg-pubkey-f6ab3975-62e9e6fb.asc - added new suse container key, moved the old one to -old - openSUSE-build-key-import.service,openSUSE-build-key-import.service.timer, import-openSUSE-build-key: Add systemd timer and service framework that imports new keys. ==== openSUSE-release ==== Version update (20240310 -> 20240318) Subpackages: openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== opensc ==== Version update (0.24.0 -> 0.25.0) - Build with support for libeac (OpenPACE) - Update to version 0.25.0 Security * CVE-2023-5992: Fix Side-channel leaks while stripping encryption PKCS#1.5 padding in OpenSC. * CVE-2024-1454: Fix Potential use-after-free in AuthentIC driver during card enrollment in pkcs15init. General improvements * Remove support for old card drivers Akis, GPK, Incrypto34 and Westcos, disable Cyberflex driver. * Fix 64b to 32b conversions. * Improvements for the p11test. * Fix reader initialization without SCardControl. * Make RSA PKCS#1 v1.5 depadding constant-time. * Add option for disabling PKCS#1 v1.5 depadding (type 01 and 02) on the card. * Fixed various issues reported by OSS-Fuzz and Coverity in drivers, PKCS#11 and PKCS#15 layer. - Add patch: * opensc-docbook-xsl-fix.patch - Drop not longer needed patches: * CVE-2024-1454.patch - Introduce subpackage for bash-completion ==== parley ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix window updates on wayland (kde#468591) * Port PracticeSummaryComponent to be a QWidget * Port PracticeMainWindow to be a QWidget * Port Editor to be a QWidget * Port StatisticsMainWindow to be a QWidget * Port Dashboard to be a QWidget - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== patterns-kde ==== Version update (20231206 -> 20240311) Subpackages: patterns-kde-kde patterns-kde-kde_edutainment patterns-kde-kde_games patterns-kde-kde_ide patterns-kde-kde_imaging patterns-kde-kde_internet patterns-kde-kde_multimedia patterns-kde-kde_office patterns-kde-kde_pim patterns-kde-kde_plasma patterns-kde-kde_utilities patterns-kde-kde_utilities_opt patterns-kde-kde_yast - Add a pattern for KDE Frameworks and Plasma 6 development packages - Update recommended applications - Replace the plasma5 pattern with the plasma6 one - Recommend xwaylandvideobridge in the Plasma patterns ==== pcr-oracle ==== - Add fix_grub_bls_entry.patch to measure boot entries in GRUB BLS ==== pcsc-lite ==== Version update (2.0.1 -> 2.0.3) Subpackages: libpcsclite1 - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] - version 2.0.3 * add SCARD_E_UNKNOWN_RES_MNG back * SCardConnect() & SCardReconnect(): restrict the protocol used * negotiate PTS also for the backup protocol * pcscd.8: . document --disable-polkit . add "CONFIGURATION FILE" section * Some other minor improvements ==== permissions ==== Version update (1699_20240305 -> 1699_20240307) Subpackages: chkstat permissions-config - Update to version 1699_20240307: * build system: migrate from Makefile to Meson - adjust spec file to meson build ==== phonon-qt5 ==== Version update (4.11.1 -> 4.12.0) Subpackages: libphonon4qt5 phonon4qt5-lang - Update the recommended backend package name (boo#1221459) - Add obsoletes for phononsettings-lang - Add jriddell's key to phonon.keyring - Update to 4.12.0: * Support Qt 6 - Only package the Qt 5 translations for the lib for now. To be discussed with upstream. - Merge phononsettings-lang into the phononsettings package to avoid conflicts and upgrade issues. - Run %fdupes on everything - Require the vlc backend. The gstreamer one is deprecated. - Add the signature file to the sources. ==== pim-data-exporter ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Add missing new setting: Override Encryption Defaults=true - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== pim-sieve-editor ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Use release/24.02 branch - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== pipewire ==== Version update (1.0.3 -> 1.0.4) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.4: * Highlights - Track memfd better to avoid inconsistent memory. Also make sure the mixer info is removed correctly in all cases on destroyed ports. - Correctly handle removed objects in the metadata. - Add an option to set the server and client priorities instead of using a hardcoded value of 88. - The FFADO module has been fixed. Audio and MIDI now works with the same latency as the JACK driver. This has now also been tested with a Focusrite Saffire Pro 14. - The JACK library has seen some important fixes. Some ardour crackling has been fixed when looping and multiple MIDI ports on a client should now work. - Small bugfixes and improvements. * PipeWire - Track memfd better to avoid inconsistent memory. Also make sure the mixer info is removed correctly in all cases on destroyed ports. - Fix Props param emission again in pw_stream. (#3833) - Add MAPPABLE flag to buffer data to indicate that the fd can be mmapped directly. Use this on DMABUF from v4l2. (#3840) - Correctly handle removed object in the metadata. - FreeBSD build and compatibility fixes. - Add an option to set the server and client priorities instead of using a hardcoded value of 88. - Read config overrides in the right order. - Fix PIPEWIRE_QUANTUM rate handling in pw_stream and pw_filter. - Fix pw_context_parse_conf_section(), actually use the conf argument. - A new pw_stream_get_nsec() and pw_filter_get_nsec() function was added to get the current time of the stream/filter without having to assume a particular clock. - A new default.clock.quantum-floor property was added to configure the absolute lowest buffer-size. (#3908) * docs - Many doc updates. * tools - Make sure we always quit pw-cli when the server stops.(#3837) - pw-top now prints all drivers in batch mode. (#3899) * modules - Don't destroy the client in protocol-simple on EAGAIN. - Handle IPv6 better in the RTP modules. Fix IPv6 SAP header parsing. (#3851) - The FFADO module has been fixed. Audio and MIDI now works with the same latency as the JACK driver. This has now also been tested with a Focusrite Saffire Pro 14. (#3558) * pulse-server - Make sure the peer_name is filled to avoid protocol errors. * SPA - Small resampler tweaks to improve stability of adaptive resampler. - Add ALSA option to control htimestamp autodisable. - Avoid some potential crashes in audioconvert when ports are removed. - Improve HDMI jack detection on some SOCs. - The audioconvert now has a monitor.passthrough option to pass the latency information on the monitor ports. (#3888) * GStreamer - Don't use timeouts when autoconnect=false in pipewiresrc. (#3884) - pipewiresrc and pipewiresink can now be automatically selected as audio source and sink. - An invalid memory access was fixed when destroying the device provider. * JACK - Remove properties correctly with the object id, not serial. - Improve sync with the data thread by pausing the core. Also improve handling of port io to avoid invalid buffer access. - Fix PIPEWIRE_QUANTUM rate handling. - Support multiple MIDI input ports per client. (#3901) - The output buffer size is now always correctly set. (#3892) * ALSA - Handle errors from eventfd_create correctly. - Update to version 1.0.3+git51.89d8e8b: * module-ffado: make the event buffer per port * module-ffado: handle MIDI correctly * module-ffado: implement MIDI send and receive * module-ffado: various fixes to make things work * stream: add pw_stream_get_nsec() to get current time * jack: fix multiple midi input ports * pw-top: only check terminal size in non-batch mode * Specify "Audio" in gstreamer sink/src metadata to fix autodetect * Add SOC-style jack names to HDMI audio paths * gst: remove timeouts when autoconnect=false * audioconvert: handle invalid ports better * audioconvert: handle port remove * pw_context_parse_conf_section: use the conf argument instead of the context's conf * stream: FORCE_RATE should just contain the rate * jack: FORCE_RATE should just contain the rate * jack: set global_mix safely * jack: sync threads by pausing the core * alsa: Added handle for controlling htimestamp autodisable * And more - Remove patch already merged upstream: * fix-gst-sink.patch - Require pipewire-pulseaudio from pipewire-alsa so when pipewire-alsa is installed, pipewire has audio support (or put ... changelog too long, skipping 5 lines ... * fix-gst-sink.patch ==== polkit-default-privs ==== Version update (1550+20240307.987ebab -> 1550+20240311.559e6ac) - Update to version 1550+20240311.559e6ac: * whitelist gnome-control-center remote-session-helper (bsc#1220862) ==== polkit-qt5-1 ==== Version update (0.114.0 -> 0.200.0) - Update to 0.200.0: * New bugfix release - Changes since 0.175.0: * Increase version to 0.200.0 - Update to 0.175.0 (0.200.0-alpha): * Increase version to 0.175.0 * Remove unused CPack parts * Remove unused variable * fix: memory leak * Change CMake code to enable building against Qt 5 or 6 * Unexport nested private classes * Require glib 2.36 and remove "do nothing" g_type_init * Change installed .cmake and .pc files to contain realtive paths * Add polkit error ==== postgresql16 ==== Subpackages: libpq5 postgresql16-contrib postgresql16-server - Require LLVM <= 17 for now, because LLVM 18 doesn't seem to work. - Remove constraints file because improved memory usage for s390x ==== publicsuffix ==== Version update (20240303 -> 20240306) - Update to version 20240306: * util: gTLD data autopull updates for 2024-03-06T15:14:58 UTC (#1943) ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== purpose ==== Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Move the purpose service files to a subpackage ==== python-anyio ==== Version update (4.2.0 -> 4.3.0) - Update to 4.3.0: * Added support for the Python 3.12 ``walk_up`` keyword argument in ``anyio.Path.relative_to()`` * Fixed passing ``total_tokens`` to ``anyio.CapacityLimiter()`` as a keyword argument not working on the ``trio`` backend * Fixed ``Process.aclose()`` not performing the minimum level of necessary cleanup when cancelled * Fixed ``Process.stdin.aclose()``, ``Process.stdout.aclose()``, and ``Process.stderr.aclose()`` - Add exceptiongroup to {Build,}Requires. ==== python-importlib-metadata ==== Version update (7.0.1 -> 7.0.2) - update to 7.0.2: * No significant changes. ==== python-importlib-resources ==== - Explicitly BuildRequires zipp, it is now used by the testsuite, and was pulled in anyway. ==== python-pyOpenSSL ==== Version update (24.0.0 -> 24.1.0) - update to 24.1.0: * Removed the deprecated OpenSSL.crypto.PKCS12 and OpenSSL.crypto.NetscapeSPKI. OpenSSL.crypto.PKCS12 may be replaced by the PKCS#12 APIs in the cryptography package. ==== python-python-dateutil ==== Version update (2.8.2 -> 2.9.0.post0) - Update to 2.9.0.post0 * Pinned setuptools_scm to <8, which should make the generated _version.py file compatible with all supported versions of Python. (We don't do this at openSUSE, we don't need Python 2 installs from a setuptools_scm v8 build) - Version 2.9.0 * Updated tzdata version to 2024a. (gh pr #1342) * Made all dateutil submodules lazily imported using PEP 562. On Python 3.7+, things like import dateutil; dateutil.tz.gettz("America/New_York") will now work without explicitly importing dateutil.tz, with the import occurring behind the scenes on first use. The old behavior remains on Python 3.6 and earlier. Fixed by Orson Adams. (gh issue #771, gh pr #1007) * Removed a call to datetime.utcfromtimestamp, which is deprecated as of Python 3.12. Reported by Hugo van Kemenade (gh pr #1284), fixed by Thomas Grainger (gh pr #1285). - Provide underscore name: some consuming packages go with that, don't fail unnecessarily - Drop no-utcfromtimestamp.patch ==== python-rich ==== Version update (13.7.0 -> 13.7.1) - update to 13.7.1: * Fixes some character widths ==== python-sniffio ==== Version update (1.3.0 -> 1.3.1) - update to 1.3.1: * Added missing thread_local to sniffio.__all__ * Add support for Python 3.9 and 3.10. * Provide sniffio.thread_local.name for coroutine libraries to set * Drop support for Python 3.5 and 3.6. * Include type hints ==== python311 ==== Subpackages: python311-curses python311-dbm - Rewrite %prep to use %autosetup et al. for compatibility with rpm 4.20. - bsc#1221260 add bsc1221260-test_asyncio-ResourceWarning.patch to eliminate ResourceWarning which broke the test suite in test_asyncio. - Use the system-wide crypto-policies [bsc#1211301] * Use the system default cipher list instead of hardcoded values * Add the --with-ssl-default-suites=openssl configure option ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Rewrite %prep to use %autosetup et al. for compatibility with rpm 4.20. - bsc#1221260 add bsc1221260-test_asyncio-ResourceWarning.patch to eliminate ResourceWarning which broke the test suite in test_asyncio. - Use the system-wide crypto-policies [bsc#1211301] * Use the system default cipher list instead of hardcoded values * Add the --with-ssl-default-suites=openssl configure option ==== qemu ==== Version update (8.2.1 -> 8.2.2) Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Update to version 8.2.2. Full changelog here: https://lore.kernel.org/qemu-devel/1709577077.783602.1474596.nullmailer@tls… Some upstream backports: * chardev/char-socket: Fix TLS io channels sending too much data to the backend * tests/unit/test-util-sockets: Remove temporary file after test * hw/usb/bus.c: PCAP adding 0xA in Windows version * hw/intc/Kconfig: Fix GIC settings when using "--without-default-devices" * gitlab: force allow use of pip in Cirrus jobs * tests/vm: avoid re-building the VM images all the time * tests/vm: update openbsd image to 7.4 * target/i386: leave the A20 bit set in the final NPT walk * target/i386: remove unnecessary/wrong application of the A20 mask * target/i386: Fix physical address truncation * target/i386: check validity of VMCB addresses * target/i386: mask high bits of CR3 in 32-bit mode * pl031: Update last RTCLR value on write in case it's read back * hw/nvme: fix invalid endian conversion * update edk2 binaries to edk2-stable202402 * update edk2 submodule to edk2-stable202402 * target/ppc: Fix crash on machine check caused by ifetch * target/ppc: Fix lxv/stxv MSR facility check * .gitlab-ci.d/windows.yml: Drop msys2-32bit job * system/vl: Update description for input grab key * docs/system: Update description for input grab key * hw/hppa/Kconfig: Fix building with "configure --without-default-devices" * tests/qtest: Depend on dbus_display1_dep * meson: Explicitly specify dbus-display1.h dependency * audio: Depend on dbus_display1_dep * ui/console: Fix console resize with placeholder surface * ui/clipboard: add asserts for update and request * ui/clipboard: mark type as not available when there is no data * ui: reject extended clipboard message if not activated * target/i386: Generate an illegal opcode exception on cmp instructions with lock prefix * i386/cpuid: Move leaf 7 to correct group * i386/cpuid: Decrease cpuid_i when skipping CPUID leaf 1F * i386/cpu: Mask with XCR0/XSS mask for FEAT_XSAVE_XCR0_HI and FEAT_XSAVE_XSS_HI leafs * i386/cpu: Clear FEAT_XSAVE_XSS_LO/HI leafs when CPUID_EXT_XSAVE is not available * .gitlab-ci/windows.yml: Don't install libusb or spice packages on 32-bit * iotests: Make 144 deterministic again * target/arm: Don't get MDCR_EL2 in pmu_counter_enabled() before checking ARM_FEATURE_PMU * target/arm: Fix SVE/SME gross MTE suppression checks * target/arm: Handle mte in do_ldrq, do_ldro - Address bsc#1220310. Backported upstream commits: * ppc/spapr: Initialize max_cpus limit to SPAPR_IRQ_NR_IPIS * ppc/spapr: Introduce SPAPR_IRQ_NR_IPIS to refer IRQ range for CPU IPIs. ==== rebootmgr ==== Version update (2.3 -> 2.4) - Update to version 2.4 - Make sure systemctl reboot will not switch to soft-reboot automatically ==== rsync ==== - Avoid package changes in %check ==== rsyslog ==== - Fix rpmlint warnings and errors: + rsyslog.spec:590: W: %autopatch-not-in-prep: - applying patches should be done in prep section and in this case, there is no reason not to do it. Use the opportunity to switch to %autosetup. - Do not BuildRequire libtool, autoconf, automake and don't run autoreconf: the comment indicates this would be needed for patch1, but likely for an 'older patch1': what we have now does not touch the build system. + E: superfluous-%clean-section: Drop long deprecated %clean section. + E: suse-zypp-otherproviders otherproviders(syslog): simply provide syslog. + W: non-etc-or-var-file-marked-as-conffile: do not mark files in /usr/share as config; admins are not supposed to change them. + rsyslog-doc.x86_64: E: no-binary: build rsyslog-doc as noarch. + E: explicit-lib-dependency librdkafka1: the dependency for one should be in module-kafka, but then is also auto-detected by RPM. ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Fix detected issues in Salt tests when running on VMs - Added: * fix-tests-failures-and-errors-when-detected-on-vm-ex.patch ==== sddm ==== Version update (0.20.0 -> 0.21.0) Subpackages: sddm-branding-openSUSE sddm-greeter-qt5 - Update to 0.21.0: + sddm-greeter can now be built for both Qt5 and Qt6 + Themes can now declare their Qt version compatibility to control which greeter gets used + New CMake option INSTALL_PAM_CONFIGURATION (defaults to ON) + Bulgarian translation added * DBus policy files are now installed in /usr rather than /etc * Do not show keyboard layouts on wayland as switching is not implemented * Switch the default commandline for Weston to use the kiosk shell (available in 9.0+) - Fix building with Qt 6.7 - Handle autologin failure by falling back to the greeter (#1775) - Fix session names containing ',' (#1745) - Don't let tmpfiles delete x11 auth files for very long running sessions - Many improvements for the **experimental** wayland support - Drop patches, now upstream: * 0001-Session-Parse-.desktop-files-manually-again.patch * 0001-greeter-Look-at-WAYLAND_DISPLAY-for-platform-detecti.patch * 0002-Ignore-InputMethod-qtvirtualkeyboard-on-wayland.patch * 0001-Drop-unnecessary-ECM-dependency-and-dead-uninstall-t.patch * 0002-Make-sddm-greeter-for-Qt-5-and-Qt-6-coinstallable.patch * 0003-Let-themes-specify-the-used-version-of-Qt.patch - Remove leftover sddm.obsinfo file ==== selinux-policy ==== Version update (20240205 -> 20240313) Subpackages: selinux-policy-targeted - Update to version 20240313: * Assign alts_exec_t to files_type - Update to version 20240308: * Support /bin/alts in the policy (bsc#1217530) * Revert "Allow virtnetworkd_t to execute bin_t (bsc#1216903)" - Update to version 20240306: * Replace init domtrans rule for confined users to allow exec init * Update dbus_role_template() to allow user service status * Allow polkit status all systemd services * Allow setroubleshootd create and use inherited io_uring * Allow load_policy read and write generic ptys - Update to version 20240304: * Allow ssh-keygen to use the libica crypto module (bsc#1220373) ==== signon ==== - Add patch for Qt6 support: * 0001-Add-Qt6-support.patch - Drop 0001_Multilib.patch. This is now handled in the %prep section - Add flavors ==== signon-kwallet-extension ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== signon-plugin-oauth2 ==== Version update (0.25 -> 0.25git.20231124T142245~fab6988) - Switch to a git snapshot to support building with Qt6 - Update to 0.25git.20231124T142245~fab6988 - Drop patch, change is now handled in the %prep section * 0001_Multilib.patch ==== signon-qt6 ==== Subpackages: signon-plugins signond signond-libs - Add patch for Qt6 support: * 0001-Add-Qt6-support.patch - Drop 0001_Multilib.patch. This is now handled in the %prep section - Add flavors ==== signon-ui ==== Version update (0.17+20171022 -> 0.17.20231016T221200~eef943f) - Drop 0001-Reintroduce-the-username-field-reading-with-webkit-o.patch it's not needed anymore with the current snapshot - Use a git snapshot to build signon-ui with Qt6 - Update to signon-ui-0.17.20231016T221200~eef943f ==== skanlite ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== spectacle ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * Fix filename template label buddies * Fix drawing with touchscreen * ViewerWindow: Check if s_viewerWindowInstance points to this when destroying (kde#469502) * Fix always recording the screen at (0,0) with screen recording (kde#480599) * Do not loop video player and pause on playback stopped * recording: Play the video after it has recorded * Fix invalid timestamp when opening config dialog before screen capture * recording: Do not leak node ids * Fix unclickable buttons on dialog window after startSystemMove() is called - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== spice ==== - Add patch to fix build with gstreamer 1.24: * fix-build-with-gstreamer-1.24.patch ==== sqlite3 ==== Version update (3.44.2 -> 3.45.2) Subpackages: libsqlite3-0 sqlite3-tcl - Update to release 3.45.2: * Added the SQLITE_RESULT_SUBTYPE property for application- defined SQL functions. * Enhancements to the JSON SQL functions * Add the FTS5 tokendata option to the FTS5 virtual table. * The SQLITE_DIRECT_OVERFLOW_READ optimization is now enabled by default. * Query planner improvements * Increase the default value for SQLITE_MAX_PAGE_COUNT from 1073741824 to 4294967294. * Enhancements to the CLI * Restore the JSON BLOB input bug, and promise to support the anomaly in subsequent releases, for backward compatibility. * Fix the PRAGMA integrity_check command so that it works on read-only databases that contain FTS3 and FTS5 tables. * Fix issues associated with processing corrupt JSONB inputs. * Fix a long-standing bug in which a read of a few bytes past the end of a memory-mapped segment might occur when accessing a craftily corrupted database using memory-mapped database. * Fix a long-standing bug in which a NULL pointer dereference might occur in the bytecode engine due to incorrect bytecode being generated for a class of SQL statements that are deliberately designed to stress the query planner but which are otherwise pointless. * Fix an error in UPSERT, introduced in version 3.35.0. * Reduce the scope of the NOT NULL strength reduction optimization that was added in version 3.35.0. - Add sqlite3-float-i586.patch to fix build on i586. - sqlite3-rtree-i686.patch is not needed anymore. - Abort build when %version and %tarversion don't match. ==== step ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - No code change since 24.01.95 - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-dbus-service udev-configure-printer - another %python3_fix_shebang_path usage [bsc#1212476] ==== systemd ==== Version update (254.9 -> 255.3) Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - Fix syntax required for OBS source validator - Upgrade to v255.3 (commit 96edf7ad1866172b994cafb4df49e27d68ce8e87) See https://github.com/openSUSE/systemd/blob/SUSE/v255/NEWS for details. - This includes the following bug fixes: - commit 6e10405aa25fe5e76b740d9ec59730e3f4470c7a (bsc#1219766) - The following patches have been rebased: - 0002-rc-local-fix-ordering-startup-for-etc-init.d-boot.lo.patch - 0008-sysv-generator-translate-Required-Start-into-a-Wants.patch - 0009-pid1-handle-console-specificities-weirdness-for-s390.patch - 5001-Revert-udev-update-devlink-with-the-newer-device-nod.patch - 5002-Revert-udev-revert-workarounds-for-issues-caused-by-.patch - The following patches have been removed since they're part of v255: - 5003-cgroup-rename-TasksMax-structure-to-CGroupTasksMax.patch - 5004-bus-print-properties-ignore-CGROUP_LIMIT_MAX-for-Mem.patch - 5005-bus-print-properties-prettify-more-unset-properties.patch - systemd-boot has been added to the list of the dependencies of the systemd-testsuite package as the installation of the bootloader is now tested. - the following patches have been backported on top of v255.3: 96edf7ad18 service: Demote log level of NotifyAccess= messages to debug (bsc#1210113 jsc#PED-6214) fdde7f26d6 vconsole-setup: don't fail if the only found vc is already used by plymouth (bsc#1218618) f96c587d41 rules: set up tty permissions and group for /dev/hvc* nodes (bsc#1218137) 63a41b8899 vconsole-setup: remember the correct error value when open_terminal() fails f51a2e038c vconsole-setup: handle the case where the vc is in KD_GRAPHICS mode more gracefully (bsc#1215282) 15025a04c4 test: make sure to install the filesystem package in the test image on SUSE 06fecfb635 test: make sure that sd-boot is installed before testing bootctl 1e8788ea68 test: install systemd-boot in openSUSE test images 6e2875ad43 test/test-shutdown.py: optionally display the test I/Os in a dedicated log file 4be1a801b4 test-69: send SIGTERM to ask systemd-nspawn to properly stop the container 7bdab7b7c7 man: Document ranges for distributions config files and local config files 3f12a6c22f test: systemd-update-utmp is optional 1911c7fd95 man: conditionalize sd-pcrlock and sd-measure on the same variable as their binaries 352f76f734 man: always install bootctl b48a18c464 meson: fix installation of html doc aliases - bootctl has been moved to the udev package since some of its commands work on non UEFI systems too. - When building systemd rpms in place (i.e. rpmbuild --build-in-place), the version of systemd is now retrieved from the file "meson.version" by default. This file is supposed to contain a string that described the full version of the systemd project. - Overriding of %systemd_version/%systemd_release is now limited to builds of rpms in place cases. ==== timezone ==== - Drop the timezone-java (bsc#1213470). After thorough consideration of possible problems that arise from having a timezone package specifically for the Java ecosystem, Fridrich Strba and I have decided to drop the package altogether. Doing so means the JDK will use its built-in timezone data that is updated quarterly, when refreshed JDK versions are released. While this does mean there could be situations where there is a bit of a mismatch between the 'timezone' package's data, and the data that is used by JDK, in practice the difference will be minimal and short-lived. So we've established this to be the best course of action. - Remove _multibuild, not longer required. ==== transactional-update ==== Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - Disable soft-reboot support for now as long as it isn't working reliably - Move tukit.conf to correct package ==== umbrello ==== Version update (23.08.4 -> 24.02.0) - Update to 24.02.0 * New feature release - Changes since 24.01.95: * [CI] Fix after recent upstream change - Update to 24.01.95 * https://kde.org/announcements/megarelease/6/rc2/ ==== update-alternatives ==== Version update (1.22.2 -> 1.22.5) - Update to version 1.22.5. The full changelog is very large. Please check it here: https://git.dpkg.org/cgit/dpkg/dpkg.git/tree/debian/changelog?h=1.22.5 Version 1.22.5 includes all the changes from 1.22.4 and 1.22.3. These may be found here: https://git.dpkg.org/cgit/dpkg/dpkg.git/tree/debian/changelog?h=1.22.4 https://git.dpkg.org/cgit/dpkg/dpkg.git/tree/debian/changelog?h=1.22.3 - Refresh openssl.patch so it would apply cleanly. ==== virglrenderer ==== Version update (1.0.0 -> 1.0.1) - update to 1.0.1: * Fix 17 bugs, most of them securety related * Fix a number of issues uncovered by Coverity * Add meson option to enable unstable APIs and add the info to pkg-config * vtest: Stabilize protocol version 3 ==== wavpack ==== Version update (5.6.0 -> 5.7.0) - update to 5.7.0: * added: multithreaded encoding and decoding to libwavpack (optional) * added: option to specify multithreading in CLI programs (--threads) * added: multithreading support to Cool Edit filter (always enabled) * added: support for ID3v2.4 when importing tags (--import-id3) * added: optional bitrate specification to wavpack -c option * added: recognize WAV files with new fourcc of 'BW64' * fixed: decode non-compliant FFmpeg files over 8 channels * fixed: accept some common but non-compliant AIFF files * fixed: automatically delete newly obsolete correction files * fixed: don't delete source files if data loss warnings occur * improved: ID3v2 tag support (more items, multiple values, pics, etc) * improved: compression of 32-bit integer files (--optimize-int32) * improved: convert the man pages to mdoc(7) * improved: cmake & autoconf support - Build AVX2 enabled hwcaps library for x86_64-v3 ==== wget ==== Version update (1.21.4 -> 1.24.5) - GNU wget 1.24.5: * Fix how subdomain matches are checked for HSTS. * Wget will now also parse the srcset attribute in <source> HTML tags * Support reading fetchmail style "user" and "passwd" fields from netrc * In some cases, prevent the confusing "Cannot write to... (success)" error messages * Support extremely fast download speeds (TB/s) * Ensure that CSS URLs are corectly quoted * libproxy support is now upstream- drop wget-libproxy.patch ==== wicked ==== Subpackages: wicked-service - addrconf: fix fallback-lease drop (bsc#1220996) [+ 0001-addrconf-fix-fallback-lease-drop-bsc-1220996.patch] - extensions/nbft: use upstream `nvme nbft show` (bsc#1221358) [+ 0002-extensions-nbft-replace-nvme-show-nbft-with-nvme-nbf.patch] ==== wireplumber ==== Version update (0.4.90 -> 0.4.90+git25.95cfa9e) Subpackages: libwireplumber-0_5-0 wireplumber-audio - Update to version 0.4.90+git25.95cfa9e: * wpctl: fix settings --help listing * docs: conf_file: small updates * docs: installing: update dependency versions * si-linkables: do not fully reset when the underlying proxy is destroyed * registry: move to a separate file and decouple it from the object manager * log: docs: document the log topic definition macros * monitors/bluez: add 'internal' prefix to internal bluez node names. * monitor/bluez: set node.name property when creating combine stream * meson: bump min pipewire version to 1.0.2 * scripts: fix regression in state-routes.lua when marking routes as 'active' * scripts: improve linking logs * monitors: use parseBool for boolean properties in rules * config: add {device|node}.disable * object-interest: make WP_INTEREST_MATCH_ALL part of the enum * proxy: make the FEATURES_MINIMAL and FEATURES_ALL constants part of the enum * log: fix WP_LOG_LEVEL_TRACE value in the g-i bindings * base-dirs: wrap flag groups in parenthesis * log.h: define G_LOG_DOMAIN only if WP_USE_LOCAL_LOG_TOPIC_IN_G_LOG is defined * meson: make sure the boolean options have boolean values * meson: move the common CFLAGS to project-wide scope * scripts: make sure target is not nil when iterating filters with matching targets * docs: update the documentation around file search locations * scripts: rescan linkables when device EnumRoute param changes * scripts: fix available routes check when selecting the default node * scripts: fix typo in rescan-virtual-links.lua - Remove patch already included in the upstream version * 0001-scripts-fix-typo-in-rescan-virtual-links.lua.patch - Set minimum pipewire version to 1.0.2 ==== xfce4-weather-plugin ==== Version update (0.11.1 -> 0.11.2) Subpackages: xfce4-weather-plugin-lang - Update to 0.11.2 * Update copyright year * Astro data downloads adapted * Do not translate warning messages * Fix leaks around remove_timezone_offset() * build: Bump glib version * Migration to Sunrise API 3.0 * Silence one more warning * Be less verbose about network requests * Do not warn about missing -night icon variants (Fixes #60) * Use link color with better constrat for dark themes * Remove dead code * Fix remove_timezone_offset() * Add some const qualifiers * Fix moon_phases array * Do not translate warning messages * Fix a typo, everytime â every time. * Translation Updates - Add 0001-relax-json-c-version.patch to meet what Leap 15.5 provides. ==== yast2-bootloader ==== Version update (5.0.6 -> 5.0.7) - Improve warnings and help text for secure boot on s390 to reflect state with new hardware. (bsc#1219989) - 5.0.7 ==== yast2-installation ==== Version update (5.0.6 -> 5.0.7) - Updated self-update URL in the documentation (jsc#PED-4839) - 5.0.7 ==== yast2-network ==== Version update (5.0.2 -> 5.0.3) - Guard secret attributes against leaking to the log (bsc#1221194) - 5.0.3 ==== yast2-packager ==== Version update (5.0.4 -> 5.0.5) - Change the product mapping API to be the same as in SP5 and older (related to bsc#1220567) - 5.0.5 - Display a better product summary for the SLE_HPC => SLES upgrade (jsc#PED-7841) ==== yast2-storage-ng ==== Version update (5.0.8 -> 5.0.9) - Fix unlimited-sized fake device graphs (bsc#1221222) - 5.0.9 ==== yast2-trans ==== Version update (84.87.20240304.419739cb87 -> 84.87.20240317.9b1b5b2b95) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240317.9b1b5b2b95: * Translated using Weblate (Catalan) * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Indonesian) * Translated using Weblate (Japanese) * New POT for text domain 'bootloader'. * New POT for text domain 'registration'. * New POT for text domain 'packager'. * Translated using Weblate (French) * Added translation using Weblate (French) * Translated using Weblate (Catalan) - Update to version 84.87.20240309.6826dab25a: * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * Translated using Weblate (Lithuanian) * New POT for text domain 'storage'. * Translated using Weblate (Czech) * Translated using Weblate (Czech) * Translated using Weblate (Japanese) * New POT for text domain 'xpram'. * New POT for text domain 's390'. * New POT for text domain 'sap-installation-wizard'. * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (French) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Italian) * Translated using Weblate (Italian) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Italian) * Translated using Weblate (German)

1 0

RPI5 and kernel 6.8
by Bill Merriam 17 Mar '24

17 Mar '24

Does the release of the 6.8 kernel get us working on the RPI5? Bill

2 1

New Arm Tumbleweed snapshot 20240310 released!
by Guillaume Gardet 12 Mar '24

12 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: SDL2 (2.30.0 -> 2.30.1) SVT-AV1 (1.7.0 -> 1.8.0) apache2-mod_php8 exiv2 flatpak fontconfig (2.14.2 -> 2.15.0) gcc13 gnome-shell gpg2 (2.4.4 -> 2.4.5) graphviz inkscape java-21-openjdk kbd kexec-tools (2.0.27 -> 2.0.28) libXaw3d (1.6.5 -> 1.6.6) libaccounts-glib libassuan (2.5.6 -> 2.5.7) libdbusmenu-gtk2 libdbusmenu-gtk3 libeconf (0.6.1 -> 0.6.2) libexttextcat libosinfo libpng16 (1.6.42 -> 1.6.43) libqt5-qtwebengine libreoffice (7.6.4.1 -> 24.2.1.2) libstorage-ng (4.5.200 -> 4.5.201) libvirt (10.0.0 -> 10.1.0) libwacom (2.8.0 -> 2.10.0) libxcb llvm17 mariadb-connector-c multipath-tools (0.9.8+83+suse.bcae610 -> 0.9.8+87+suse.f72b9f3) ovmf perl perl-Authen-SASL perl-Convert-ASN1 perl-CryptX perl-File-Listing perl-HTTP-Cookies perl-HTTP-Message perl-IO-Tty perl-IPC-Run3 perl-LWP-Protocol-https perl-Mail-DKIM (1.20230911 -> 1.20240124) perl-Mail-SPF perl-Net-Patricia perl-URI perl-X11-Protocol perl-X500-DN perl-XML-LibXML (2.0209 -> 2.0210) perl-XML-Parser perl-XML-SAX perl-XML-Twig perl-libwww-perl permissions (1699_20240206 -> 1699_20240305) php8 polkit-default-privs (1550+20240223.b0857d7 -> 1550+20240307.987ebab) poppler (24.02.0 -> 24.03.0) poppler-qt5 (24.02.0 -> 24.03.0) python-jmespath python-libvirt-python (10.0.0 -> 10.1.0) python-qt5-sip rebootmgr (2.2 -> 2.3) salt sssd tcpd tracker tracker-miners unbound (1.19.1 -> 1.19.2) vim (9.1.0111 -> 9.1.0151) virt-manager virtiofsd xdm xfce4-clipman-plugin (1.6.5 -> 1.6.6) xfce4-panel (4.18.5 -> 4.18.6) xfce4-screensaver (4.18.2 -> 4.18.3) xfce4-taskmanager (1.5.6 -> 1.5.7) xfce4-terminal (1.1.2 -> 1.1.3) xz (5.4.6 -> 5.6.0) yast2-perl-bindings (5.0.1 -> 5.0.2) yast2-storage-ng (5.0.7 -> 5.0.8) === Details === ==== SDL2 ==== Version update (2.30.0 -> 2.30.1) - Update to release 2.30.1 * Fixed a regression causing SDL_WaitEvent() to return spurious failures * Wayland windows automatically have OpenGL enabled again * Fixed memory corruption when converting signed 16-bit audio to float * Fixed audio artifacts when converting signed 8-bit audio to float * Fixed the clip rectangle not being updated when the viewport changes in the SDL renderer ==== SVT-AV1 ==== Version update (1.7.0 -> 1.8.0) - Update to release 1.8.0 * Improve the tradeoffs for the random access mode across presets: * Speedup CRF presets M6 to M0 by 17-53% while maintaining similar quality levels * Re-adjust CRF presets M7 to M13 for better quality with BD-rate gains ranging from 1-4% * Improve the quality and speed of the 1-pass VBR mode * Add API allowing to update bitrate / CRF and Key_frame placement during the encoding session for CBR lowdelay mode and CRF Random Access mode * ARM Neon SIMD optimizations for most critical kernels allowing for a 4.5-8x fps speedup vs the c implementation ==== apache2-mod_php8 ==== - Use the system default cipher list instead of hardcoded values by using crypto-policies. [bsc#1211301] * Use the --with-system-ciphers configure option. ==== exiv2 ==== - Fix build with --nochecks ==== flatpak ==== Subpackages: flatpak-remote-flathub libflatpak0 system-user-flatpak - Add a flatpak-selinux subpackage that provides a SELinux policy module (boo#1220591). ==== fontconfig ==== Version update (2.14.2 -> 2.15.0) Subpackages: libfontconfig1 - update to 2.15.0: * Do not change the order of orth files * Convert tabs to spaces * Convert more tabs to spaces in docs * Report more detailed logs instead of assertion. * Add some missing constant names for weight. * Adujst indentation between programlisting in fontconfig-user.sgml * Add another test case for flatpak * Update 65-nonlatin.conf for macOS * Change the order of the properties to the order of fontconfig cache format * Add missing property descriptions * Add namedinstance property * Remove the problematic language from code and doc * Use 'outline' instead of 'scalable' for bitmaps * Add more docs about selectfont * Rework CI implementation * Fix uninitialized memory access when failing memory allocation. * Create a symlink with relative path * Fix an error of "initializer element is not constant" * Update CaseFolding.txt to Unicode 15.1 * Update the encoding table for Simplified Chinese * Retry to decode strings in the name table as UTF-16BE in some cases. * Work around decoding strings in Macintosh encoding for the name table. * Use memmove instead of memcpy * Rename README to NEWS and add README.md * Update so version * Fix leak of `reason` in _FcConfigParse when not complaining ==== gcc13 ==== Subpackages: cpp13 libgccjit0-gcc13 libstdc++6-gcc13-locale - Fix libgccjit-devel dependency, a newer shared library is OK. - Fix libgccjit dependency, the corresponding compiler isn't required. - Use %patch -P N instead of %patchN. ==== gnome-shell ==== Subpackages: gnome-extensions gnome-shell-calendar - Update gnome-shell-gdm-login-applet.patch: Clean up JS errors (bsc#1221100). ==== gpg2 ==== Version update (2.4.4 -> 2.4.5) Subpackages: dirmngr - Update to 2.4.5: * gpg,gpgv: New option --assert-pubkey-algo. [T6946] * gpg: Emit status lines for errors in the compression layer. [T6977] * gpg: Fix invocation with --trusted-keys and --no-options. [T7025] * gpgsm: Allow for a longer salt in PKCS#12 files. [T6757] * gpgtar: Make --status-fd=2 work on Windows. [T6961] * scd: Support for the ACR-122U NFC reader. [rG1682ca9f01] * scd: Suport D-TRUST ECC cards. [T7000,T7001] * scd: Allow auto detaching of kernel drivers; can be disabled with the new compatibility-flag ccid-no-auto-detach. [rGa1ea3b13e0] * scd: Allow setting a PIN length of 6 also with a reset code for openpgp cards. [T6843] * agent: Allow GET_PASSPHRASE in restricted mode. [rGadf4db6e20] * dirmngr: Trust system's root CAs for checking CRL issuers. [T6963] * dirmngr: Fix regression in 2.4.4 in fetching keys via hkps. [T6997] * gpg-wks-client: Make option --mirror work properly w/o specifying domains. [rG37cc255e49] * g13,gpg-wks-client: Allow command style options as in "g13 mount foo". [rGa09157ccb2] * Allow tilde expansion for the foo-program options. [T7017] * Make the getswdb.sh tool usable outside the GnuPG tree. * Release-info: https://dev.gnupg.org/T6960 * Update the required versions for the dependencies. ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - VUL-0: CVE-2023-46045: graphviz: out-of-bounds read via a crafted config6a file bsc#1219491 A gvc-detect-plugin-installation-failure-and-display-an-error.patch - Some alphabetical re-ordering and other spec file changes which should not have any functional change which came from some kind of auto-spec cleaner ==== inkscape ==== Subpackages: inkscape-extensions-extra inkscape-extensions-fig inkscape-extensions-gimp - Add inkscape-poppler-24.03.0.patch: Fix build with poppler >= 24.03.0. ==== java-21-openjdk ==== Subpackages: java-21-openjdk-devel java-21-openjdk-headless - Removed patch: * alternative-tzdb_dat.patch + Remove the possibility to use the system timezone-java. It creates more problems then it solves (bsc#1213470) ==== kbd ==== Subpackages: kbd-legacy - fix conversion of lowercase f in de-e1 keymap (boo#1207841) ==== kexec-tools ==== Version update (2.0.27 -> 2.0.28) - update to 2.0.28: * LoongArch: Load vmlinux.efi to the link address * LoongArch: Fix an issue with relocatable vmlinux * m68k: fix getrandom() use with uclibc * lzma: Relax memory limit for lzma decompressor * kexec: ppc64: print help to stdout instead of stderr * kexec/loongarch64: fix 'make dist' file loss issue * crashdump/x86: set the elfcorehdr segment size for hotplug * crashdump/x86: identify elfcorehdr segment for hotplug * crashdump: exclude elfcorehdr segment from digest for hotplug * crashdump: setup general hotplug support * crashdump: introduce the hotplug command line options * kexec: define KEXEC_UPDATE_ELFCOREHDR * kexec: update manpage with explicit mention of clean kexec * zboot: add loongarch kexec_load support * zboot: enable arm64 kexec_load for zboot image - drop 6419b008fde783fd0cc2cc266bd1c9cf35e99a0e.patch, upstream - add fix-building-on-x86_64-with-binutils-2.41.patch: * fix assembling on binutils >= 2.42 - refresh kexec-tools-disable-test.patch ==== libXaw3d ==== Version update (1.6.5 -> 1.6.6) - Update to libXaw3d 1.6.6: * unifdef ISC * unifdef macII * Stop working around a bug in the macII A/UX 1.0 cc * Remove unused sharedlib.c * It was only built by Imake if SUNSHLIB was defined. * SUNSHLIB was only set in the Imake configs for SunOS versions < 5 * unifdef __UNIXOS2__ * unifdef __osf__ * gitlab CI: add xz-utils to container for "make distcheck" * Also update to latest ci-templates * unifdef AIXV3 * unifdef sony * unifdef NCR * Multisink.c: Clear -Werror=incompatible-pointer-types error this fixes boo#1220977 ==== libaccounts-glib ==== - Add upstream changes: * 0001-ag-account-fix-incorrect-cleanup-in-ag_account_final.patch * 0002-Build-Don-t-install-Python-overrides-by-default.patch * 0003-Lib-do-not-attempt-to-terminate-the-GTask-twice.patch * 0004-ag-provider-fix-memory-leak-on-provider-tags.patch * 0006-ag-account-do-not-emit-misleading-enabled-signals-on.patch - Spec cleanup ==== libassuan ==== Version update (2.5.6 -> 2.5.7) - Update to 2.5.7: * New configure option --with-libtool-modification. [T6619] * Change the naming of the 64 bit Windows DLL from libassuan6-0.dll to libassuan-0.dll to sync this with what we did for libgpg-error. * Release-info: https://dev.gnupg.org/T7028 - Update upstream libassuan.keyring ==== libdbusmenu-gtk2 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libdbusmenu-gtk3 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libeconf ==== Version update (0.6.1 -> 0.6.2) - Update to version 0.6.2: * version 0.6.2 * Fix static analyzer detected issues (#196) ==== libexttextcat ==== Subpackages: libexttextcat-2_0-0 - Don't use ldconfig_scriptlets macro missing on sle12 ==== libosinfo ==== Subpackages: libosinfo-1_0-0 typelib-1_0-Libosinfo-1_0 - bsc#1220228 - virt-manager crashes when its viewer is opened on a running guest that uses spice graphics virt-manager uses both libosinfo and spice-gtk. spice-gtk is now built to use libsoup 3.0 but libosinfo was still using libsoup 2.4. Prefer libsoup 3.0 over libsoup 2.4 for Tumbleweed and newer SLE versions. ==== libpng16 ==== Version update (1.6.42 -> 1.6.43) - version update to 1.6.43 * Fixed the row width check in png_check_IHDR(). This corrected a bug that was specific to the 16-bit platforms, and removed a spurious compiler warning from the 64-bit builds. (Reported by Jacek Caban; fixed by John Bowler) * Added eXIf chunk support to the push-mode reader in pngpread.c. (Contributed by Chris Blume) * Added contrib/pngexif for the benefit of the users who would like to inspect the content of eXIf chunks. * Added contrib/conftest/basic.dfa, a basic build-time configuration. (Contributed by John Bowler) * Fixed a preprocessor condition in pngread.c that broke build-time configurations like contrib/conftest/pngcp.dfa. (Contributed by John Bowler) * Added CMake build support for LoongArch LSX. (Contributed by GuXiWei) * Fixed a CMake build error that occurred under a peculiar state of the dependency tree. This was a regression introduced in libpng-1.6.41. (Contributed by Dan Rosser) * Marked the installed libpng headers as system headers in CMake. (Contributed by Benjamin Buch) * Updated the build support for RISCOS. (Contributed by Cameron Cawley) * Updated the makefiles to allow cross-platform builds to initialize conventional make variables like AR and ARFLAGS. * Added various improvements to the CI scripts in areas like version consistency verification and text linting. * Added version consistency verification to pngtest.c also. ==== libqt5-qtwebengine ==== - Drop BuildRequire on libsrtp, qt builds a bundled copy. ==== libreoffice ==== Version update (7.6.4.1 -> 24.2.1.2) Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-en libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Update to 24.2.1.2 (24.2.1 final): https://wiki.documentfoundation.org/Releases/24.2.1/RC1 and https://wiki.documentfoundation.org/Releases/24.2.1/RC2 - Allow building with gcc >= 12 on system where it is the default - Fix build on SLE12 and SLE15 - Added patch: * 0001-Allow-building-with-Java-8.patch + patch submitted upstream restoring the possibility to build with JDK >= 8 - Removed patch: * 0001-Revert-java-9-changes.patch + not needed with the new patch above - Update to 24.2.0.3 (24.2.0 final): https://wiki.documentfoundation.org/ReleaseNotes/24.2 - Armenian translation added - Update patch handling to be compatible with rpm 4.20 - Removed 0002-Revert-Require-HarfBuzz-5.1.0.patch ==== libstorage-ng ==== Version update (4.5.200 -> 4.5.201) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#990 - set minimal size for XFS to 300 MiB (bsc#1220728) - 4.5.201 ==== libvirt ==== Version update (10.0.0 -> 10.1.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Update to libvirt 10.1.0 - CVE-2024-1441 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v10-1-0-2024-03-01 ==== libwacom ==== Version update (2.8.0 -> 2.10.0) Subpackages: libwacom-data libwacom9 - update to 2.10.0: * Append to DeviceMatch for X1 Yoga Gen 5 (#632) * Add .tablet file for Ingenic touch and pen display (#621) * Update the name for the Dell Active Pen (#628) * Add support for xp-pen artist 10s table (#625) * github: Minimize permissions granted to automated workflows / jobs * data: Update ModelName for DTH134 and DTC121 * data: Add Wacom HID-5362 * github: update the issue templates * github: add a label commenter bot * Add an editorconfig file * github: fix the sysinfo check workflow * tools: fix a memleak in list-local-devices * Fix an indentation issue * data: Intuos Pro 2 is compatible with Intuos 4 styli * libwacom 2.10.0 * data: add isdv4-50a0 (#630) * build(deps): bump tj-actions/changed-files in /.github/workflows * Add support for Lenovo ThinkPad X1 Yoga Gen 7 (#626) - update to 2.9.0: * data: add Wacom Cintiq Pro 22 & 17 * data: remove erroneous dash from latest Cintiq Pro model names * data: add dtc121 * data: add dth134 * meson.build: correct license to HPND * Switch strcmp to g_str_equal() * meson.build: remove duplicate pytest run * Add support for evdev code parsing * Drop the separate Button= assignment * database: move parsing the features into a helper * data: add a new Keys/KeyCodes entry to the tablet files * CI: fix the pages job for the new libevdev dependency * libwacom: only memcmp the led data if we have leds * libwacom 2.9.0 * data: Add isdv-48b7 (#604) * Add data for XP-Pen G430s (#603) * data: Add XP-Pen Artist 13.3 Pro (#601) - requires libevdev >= 1.7.0 ==== libxcb ==== Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1 - Fix n_If-auth-with-credentials-for-hostname-fails-retry-with-XAUTHLOCALHOSTNAME.patch, the rebase in 1.16 caused an regression: It loops indefinitely if XAUTHLOCALHOSTNAME is unset (boo#1221078) ==== llvm17 ==== - Explicitly define PYTHON3_EXECUTABLE, since python 3.11 is being pulled in by cmake in SLE-15-SP6. - Fix PowerPC triples: use powerpc[64[le]] instead of ppc[64[le]]. - Require 8 GB memory for 64-bit architectures to prevent OOM. - Use %patch -P N instead of deprecated %patchN. ==== mariadb-connector-c ==== - Fix build with gcc14, bsc#1221007 * fix-build-gcc14.patch ==== multipath-tools ==== Version update (0.9.8+83+suse.bcae610 -> 0.9.8+87+suse.f72b9f3) Subpackages: kpartx libmpath0 - Update to version 0.9.8+87+suse.f72b9f3: * fix misspelled DM_UDEV_DISABLE_OTHER_RULES_FLAG in udev rules (bsc#1220810) ==== ovmf ==== Subpackages: qemu-uefi-aarch64 - Updated descriptors.tar.xz tarball, adding secure-boot feature tag to the following firmware descriptor of qemu. For libvirt, the enrolled-keys feature relies on secure-boot (bsc#1217422): /usr/share/qemu/firmware/60-ovmf-x86_64-2m-ms.json /usr/share/qemu/firmware/60-ovmf-x86_64-2m-opensuse.json /usr/share/qemu/firmware/60-ovmf-x86_64-2m-suse.json /usr/share/qemu/firmware/60-ovmf-x86_64-ms.json /usr/share/qemu/firmware/60-ovmf-x86_64-opensuse.json /usr/share/qemu/firmware/60-ovmf-x86_64-suse.json User should awares that the secure-boot feature of ovmf is NOT real secure without SMM. Adding secure-boot is just for enabling enrolled-keys. Otherwise preloaded keys ovmf can not be auto-selected by libvirt. ==== perl ==== Subpackages: perl-base perl-doc - Use %patch -P N instead of deprecated %patchN. ==== perl-Authen-SASL ==== - Fix disabling of __perllib_provides ==== perl-Convert-ASN1 ==== - Fix disabling of __perllib_provides ==== perl-CryptX ==== - Fix disabling of __perllib_provides ==== perl-File-Listing ==== - Fix disabling of __perllib_provides ==== perl-HTTP-Cookies ==== - Fix disabling of __perllib_provides ==== perl-HTTP-Message ==== - Fix disabling of __perllib_provides ==== perl-IO-Tty ==== - Fix disabling of __perllib_provides ==== perl-IPC-Run3 ==== - Fix disabling of __perllib_provides ==== perl-LWP-Protocol-https ==== - Fix disabling of __perllib_provides ==== perl-Mail-DKIM ==== Version update (1.20230911 -> 1.20240124) - updated to 1.20240124 see /usr/share/doc/packages/perl-Mail-DKIM/Changes 1.20240124 2024-01-24 UTC * ARC: Return fail for any ARC set with an instance number greater than 50. This brings ARC verification in line with DKIM verification limits. ==== perl-Mail-SPF ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== perl-Net-Patricia ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== perl-URI ==== - Fix disabling of __perllib_provides ==== perl-X11-Protocol ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== perl-X500-DN ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN - modified patches % version-string-fix.diff (refreshed) % version-string-fix2.diff (refreshed) ==== perl-XML-LibXML ==== Version update (2.0209 -> 2.0210) - updated to 2.0210 [bsc#1221013] see /usr/share/doc/packages/perl-XML-LibXML/Changes 2.0210 2024-01-24 - Fix copying external entity from an ext_ent_handler handler - https://github.com/shlomif/perl-XML-LibXML/issues/81 - thanks to Petr - libxml-mm: Fix function prototypes in function pointers - thanks to Khem Raj ==== perl-XML-Parser ==== - Fix disabling of __perllib_provides ==== perl-XML-SAX ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== perl-XML-Twig ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== perl-libwww-perl ==== - Fix disabling of __perllib_provides ==== permissions ==== Version update (1699_20240206 -> 1699_20240305) Subpackages: chkstat permissions-config - Update to version 1699_20240305: * chkstat: EntryProcessor: make error handling in safeOpen() clearer * chkstat regtests: catch bad error reporting for non-existent files * chkstat: EntryProcessor: don't report errors for non-existent files - Update to version 1699_20240223: * chkstat: replace ProcMountState enum by simple bool member * chkstat: minor style, spelling and documentation fixes * chkstat: drop types.h header * chkstat: make ProcMountState a private type of ChkStat * chkstat: EntryProcessor: rename some member variables for improved readability * chkstat: get rid of EntryContext and incorporate it into EntryProcessor * chkstat: split-off EntryProcessor from Chkstat main class * chkstat: define _GNU_SOURCE via Makefile * chkstat: processEntries(): make loop variables const * chkstat: split up checkHaveProc() * chkstat: ProfileParser: fix a bug when applying capabilities in custom root * chkstat: ProfileParser: make adding the root to paths transparent * chkstat: ProfileParser: refactor the now reduced codebase * chkstat: split off separate ProfileParser * chkstat: ProfileEntry: mark dropXID() const to support const ProfileEntry use * chkstat: parseProfile(): improve badProfileLine() calls * chkstat: drop deprecated capability check * chkstat: also move expandProfilePaths() into new VariableExpansions class * chkstat: split off variable expansion logic into separate class * chkstat: loadVariableExpansions(): a bit of refactoring * chkstat: parseSysconfig(): bit of refactoring * chkstat: remove deprecated CHECK_PERMISSIONS logic * chkstat: move assorted types into dedicated header * chkstat: replace #include guards by #pragma once * chkstat: split off command line arguments from Chkstat main class * chkstat: drop SaneValueArg wrapper * chkstat: document new packages.d directory * chkstat: drop TODO regarding ProfileEntry being changed on-the-fly * chkstat: harmonize FileCapabilities API * chkstat: support /usr/share/permissions/package.d for per-package drop-ins * chkstat: minor coding style fixes * chkstat: improve readability for rstrip() to strip trailing slashes * chkstat: remove trailing slashes from paths found on the command line * chkstat: add warning messages for rare error situations * chkstat: open profiles right away without racy `access()` check. - Remove fix_version.sh, handle version with services ==== php8 ==== Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - Use the system default cipher list instead of hardcoded values by using crypto-policies. [bsc#1211301] * Use the --with-system-ciphers configure option. ==== polkit-default-privs ==== Version update (1550+20240223.b0857d7 -> 1550+20240307.987ebab) - Update to version 1550+20240307.987ebab: * add incremental libvirt addition org.libvirt.api.node-device.save (bsc#1221094) ==== poppler ==== Version update (24.02.0 -> 24.03.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools - version update to 24.03.0 Release 24.03.0: core: * Fix opening some malformed files. Issue #1447 * Skip drawing image when it has singular matrix. Issue #1114 * Fix crash on malformed files * Small internal code cleanup utils: * pdfdetach: Fix potential directory traversal * pdfimages: Enable to print filenames to stdout. * pdfsig: Add visible name/date when signing an existing form signature field - Bump poppler_sover to 135 following upstream changes. - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== poppler-qt5 ==== Version update (24.02.0 -> 24.03.0) - version update to 24.03.0 Release 24.03.0: core: * Fix opening some malformed files. Issue #1447 * Skip drawing image when it has singular matrix. Issue #1114 * Fix crash on malformed files * Small internal code cleanup utils: * pdfdetach: Fix potential directory traversal * pdfimages: Enable to print filenames to stdout. * pdfsig: Add visible name/date when signing an existing form signature field - Bump poppler_sover to 135 following upstream changes. - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== python-jmespath ==== - Remove the forced switch to Python 3.11 in SLE 15 SP4 and openSUSE Leap 15.4 and later. However the updated version will only be available as a Python 3.11 build. (jsc#PED-4514) ==== python-libvirt-python ==== Version update (10.0.0 -> 10.1.0) - Update to 10.1.0 - Add all new APIs and constants in libvirt 10.1.0 ==== python-qt5-sip ==== - Add fix-build-gcc14.patch to fix build with GCC14 (boo#1221016) - Switch to %autosetup ==== rebootmgr ==== Version update (2.2 -> 2.3) - Update to version 2.3 - rebootmgrd: add verbose mode - Enable verbose mode in rebootmgr.service by default ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Make importing seco.range thread safe (bsc#1211649) - Added: * make-importing-seco.range-thread-safe-bsc-1211649.patch ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - remove dependency on /usr/bin/python3 using %python3_fix_shebang_path macro, [bsc#1212476] ==== tcpd ==== - Use %patch -P N instead of deprecated %patchN. ==== tracker ==== Subpackages: libtracker-sparql-3_0-0 tracker-data-files typelib-1_0-Tracker-3_0 - Add patches to adapt SQLite 3.44 (glgo#GNOME/tracker#418): + 0001-decouple-fts-initialization-from-ontologies.patch + 0002-early-fts-initialization.patch ==== tracker-miners ==== Subpackages: tracker-miner-files - Drop tracker-miners-drop-syscalls-in-seccomp.patch (bsc#1220608, bsc#1220519): With update of glibc in SLE-15-SP6, this patch is not needed. ==== unbound ==== Version update (1.19.1 -> 1.19.2) Subpackages: libunbound8 unbound-anchor - Update to 1.19.2: * Bug Fixes: - Fix CVE-2024-1931, Denial of service when trimming EDE text on positive replies. [bsc#1221164] ==== vim ==== Version update (9.1.0111 -> 9.1.0151) Subpackages: vim-data vim-data-common xxd - update to 9.1.0151 - refreshed vim-7.3-filetype_spec.patch * ml_get_buf_len() does not consider text properties * Several minor 'winfixbuf' issues * Update Serbian messages * Recognize "__inline" * Update base-syntax, fix escaping :syn and :hi sub-groups * Update syntax file, fix issue #962 * null pointer member access when accessing 'winfixbuf' property * update syntax script * Update base-syntax, fix issue #14135 * Highlight the error message at *E1513* * Update base-syntax, improve :augroup highlighting * Use unnamed register when clipboard not working * Vim9: can't call internal methods with objects * Cannot keep a buffer focused in a window * Updated Russian installer translation * Recognise text blocks * Update ftplugin, browsefilter labels * Improve the recognition of literals * v:echospace wrong with invalid value of 'showcmdloc' * some improvements to getregion() docs * update "Last Change header", remove trailing whitespace * handle file/dir symlinks specifically in tree mode * v:echospace not correct when 'showcmdloc' != last * getregion() needs more tests * disable multiline_scalar detection by default * [security]: autocmd causes use-after-free in set_curbuf() * getregion() can be improved * include runtime/syntax/testdir/ftplugin * Put in Visual mode wrong if it replaces fold marker * Fix typo under *kitty-terminal* in term.txt * Update Serbian translation * Recognise _when_ clauses in _switch_ blocks * simplify code and allow filetype options * Update Italian translation * cursor on wrong row after 1 char 'below' virtual text when EOL is shown * Update ftplugin, fix #14101 * Update base-syntax, improve :echo highlighting * update Debian syntax files * too many STRLEN calls when getting a memline * Update syntax file, improve :substitute matching * <Del> in cmdline mode doesn't delete composing chars * Fix typo in usr_41.txt * fix inconsistent indent * Vim9: need more test for exists() methods * clarify ':set[l] {option}<' behaviour * Insufficient testing for 'delcombine' * "C" doesn't include composing chars with 'virtualedit' * buffer-completion may not always find all matches * [security]: UAF if win_split_ins autocommands delete "wp" * Fix truncation of text_wrap 'wrap' virt text after EOL list char * runtime(doc) Update help text for matchbufline() and matchstrlist() * small fixes to the zh tutor * Recognize SourceLicense tag name in RPM spec syntax * win_gotoid() may abort even when not switching a window * Naming a non-pointer variable "oap" is strange * Internal error when using upper-case mark in getregion() * Update base-syntax, fix :unabbrev highlighting * add syntax support for Java switch expressions * unused init of text_prop_idxs in win_line() * display of below/right virtual text with non-virtual text overlap * clarify expand() for :terminal windows * Some minor issues with the getregion() function * Update tmux syntax * Infinite loop or signed overflow with 'smoothscroll' * hard to get visual region using Vim script * can move away from cmdwin using win_splitmove() * Use different restoration strategy in win_splitmove * Stop split-moving from firing WinNew and WinNewPre autocommands * win_split_ins may not check available room * Add a place holder section for version 9.2 * Modula-2 files with priority not detected * announce adoption of various runtime files * Distinguish Vim9 constructor definitions from the :new ex command * Using freed memory with full tag stack and user data * Fix typo in testing.txt * Setting some options may change curswant * update "Last Change:" header * reset readonly setting when disabling less mode * duplicate code when cleaning undo stack * Remove undo information, when cleaning quickfix buffer ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Disable mdev tests with introduction of libvirt 10.1.0 virt-manager.spec ==== virtiofsd ==== - Fix libexecdir move: rpm cannot replace a directory with a single file on upgrades -- boo#1220592 * Add pre scriptlet removing the directory on Tumbleweed during upgrades * Don't own plain %_libexecdir on Tumbleweed - Spec: More tweaks to libexecdir path issues on SLE and Tumbleweed ==== xdm ==== Subpackages: xdm-xsession - u_gcc14-fix.patch * fix build against gcc14 (boo#1221028) ==== xfce4-clipman-plugin ==== Version update (1.6.5 -> 1.6.6) Subpackages: xfce4-clipman-plugin-lang - Update to version 1.6.6 * Update copyright year * Use X11 clipboard manager from libxfce4ui if available * collector: Fix sanity check * history: Make search case-sensitive * actions: Update gimp command (Fixes #96) * build: Use system wlr-protocols if avail or fall back to submodule * clipboard-manager: Add missing static qualifier * build: Lower xfce4-dev-tools requirements to stable version * Fix xfce_titled_dialog_create_action_area() deprecation * build: Simplify and clarify X11/Wayland distinction * build: Define our own windowing macro instead of extending GDK's * build: Add check for gdk-wayland * Translation Updates - Re-generate xfce4-clipman-plugin-relax-x11-version.patch ==== xfce4-panel ==== Version update (4.18.5 -> 4.18.6) Subpackages: libxfce4panel-2_0-4 xfce4-panel-lang xfce4-panel-restore-defaults - Update to version 4.18.6 * Update copyright year * Do not use g_log_set_always_fatal() * launcher: Ensure default icon in empty launchers * build: Search for bind_textdomain_codeset in libintl too * Fix memory management of GTypeModules * pager: Avoid recursion in WnckScren signal handler * pager: Do not query workspace count if screen is not initialized * libxfce4panel: Fix custom menu items management * clock: Create monitor proxy asynchronously * Add missing G_BEGIN_DECLS * Translation Updates ==== xfce4-screensaver ==== Version update (4.18.2 -> 4.18.3) - Update to version 4.18.3 * Update copyright year * build: Use XDT_VERSION_INIT for proper version scheme * Fix memory management of GSPrefs * lock-dialog: Do not use gtk_widget_grab_default() * i18n: Use xfce_textdomain() * prefs-dialog: Fix spin button signal of cycle-delay * prefs-dialog: Add missing sanity check * manager: Fix cycling jobs * manager: Fix desktop leak when reconfiguring monitors * Revert "Add overlays to initial activation" * manager: Align job table management with window table management * manager: Use a hash table instead of a list for windows * manager: Fix leak on prefs * window: Reset monitor pointer when disposed * window: Add source id management when deactivated * Add hint for users how to make Blank Screen DPMS work * Do not activate screensaver if disabled * Translation Updates ==== xfce4-taskmanager ==== Version update (1.5.6 -> 1.5.7) Subpackages: xfce4-taskmanager-lang - Update to version 1.5.7 * Update copyright year * build: Fix -Wcast-align warning from clang * Fix UBSan errors * settings-dialog: Fix XtmRefreshRate memory leak * Dark mode for process-statusbar * Dark mode for process-monitor * Allow multiple instances via command line option. * Fix blurry app icons when UI scale > 1 * Use symbolic window picker icon in toolbar * Fix broken "show-legend" setting sync * Translation Updates - Add xfce4-taskmanager-relax-x11-version.patch ==== xfce4-terminal ==== Version update (1.1.2 -> 1.1.3) Subpackages: xfce4-terminal-lang - Update to version 1.1.3 * prefs-dialog: Fix wrong assert * screen: Fix wrong assert * Translation Updates - Remove gxo-299.patch - Add xfce4-terminal-relax-x11-version.patch ==== xz ==== Version update (5.4.6 -> 5.6.0) Subpackages: liblzma5 - update to 5.6.0: * This bumps the minor version of liblzma because new features were added. The API and ABI are still backward compatible with liblzma 5.4.x and 5.2.x and 5.0.x. * liblzma: - Disabled the branchless C variant in the LZMA decoder based on the benchmark results from the community. - Disabled x86-64 inline assembly on x32 to fix the build. * Sandboxing support in xz: - Landlock is now used even when xz needs to create files. - Landlock and pledge(2) are now stricter when reading from more than one input file and only writing to standard output. - Added support for Landlock ABI version 4. - Now builds lzmainfo and lzmadec. - xzdiff, xzgrep, xzless, xzmore, and their symlinks are now installed. The scripts are also tested during "make test". - Added translation support for xz, lzmainfo, and the man pages. - Minimum required CMake version is now 3.14. * liblzma: - LZMA decoder: Speed optimizations to the C code and added GCC & Clang compatible inline assembly for x86-64. - Added lzma_mt_block_size() to recommend a Block size for multithreaded encoding. - Added CLMUL-based CRC32 on x86-64 and E2K with runtime processor detection. Similar to CRC64, on 32-bit x86 it isn't available unless --disable-assembler is used. - Optimized the CRC32 calculation on ARM64 platforms using the CRC32 instructions. Runtime detection for the instruction is used on GNU/Linux, FreeBSD, Windows, and macOS. - Added definitions of mask values like LZMA_INDEX_CHECK_MASK_CRC32 to <lzma/index.h>. * Licensing change: The core components are now under the * BSD Zero Clause License (0BSD). In XZ Utils 5.4.6 and older and 5.5.1alpha these components are in the public domain and obviously remain so; the change affects the new releases only. * 0BSD is an extremely permissive license which doesn't require retaining or reproducing copyright or license notices when distributing the code, thus in practice there is extremely little difference to public domain. * liblzma - Significant speed optimizations to the LZMA decoder were made. There are now three variants that can be chosen at build time: * Basic C version: This is a few percent faster than 5.4.x due to some new optimizations. * Branchless C: This is currently the default on platforms for which there is no assembly code. This should be a few percent faster than the basic C version. * x86-64 inline assembly. This works with GCC and Clang. The default choice can currently be overridden by setting LZMA_RANGE_DECODER_CONFIG in CPPFLAGS: 0 means the basic version and 3 means that branchless C version. * Added a new filter for RISC-V binaries. The filter can be used for 32-bit and 64-bit binaries with either little or big endianness. In liblzma, the Filter ID is LZMA_FILTER_RISCV (0x0B) - Implemented GNU indirect function (IFUNC) as a runtime function dispatching method for CRC32 and CRC64 fast implementations on x86. Only GNU/Linux (glibc) and * xz: - Multithreaded mode is now the default. This improves compression speed and creates .xz files that can be decompressed multithreaded at the cost of increased memory usage and slightly worse compression ratio. - Added new command line option --filters to set the filter chain using liblzma filter string syntax. - Added new command line options --filters1 ... - -filters9 to set additional filter chains using liblzma filter string syntax. The --block-list option now allows specifying filter chains that were set using these new options. - Added support for Linux Landlock as a sandboxing method. - xzdec now supports pledge(2), Capsicum, and Linux Landlock as sandboxing methods. - enable y2038 mode - enable zstd compression, we no longer have bootstrap issues as xz is no longer used ==== yast2-perl-bindings ==== Version update (5.0.1 -> 5.0.2) - Revert the last locale fix to avoid Perl crashing (bsc#1220375) - 5.0.2 ==== yast2-storage-ng ==== Version update (5.0.7 -> 5.0.8) - Share the logic for generating the description of a device and the label of a file system. - Needed for (gh#openSUSE/agama#1079). - 5.0.8

1 0

New Arm Tumbleweed snapshot 20240306 released!
by Guillaume Gardet 07 Mar '24

07 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick Mesa Mesa-drivers PackageKit atkmm1_6 checkmedia (6.2 -> 6.3) cifs-utils emacs-compat expat (2.6.0 -> 2.6.1) gdm gettext-runtime (0.21.1 -> 0.22.5) ghostscript glibmm2 (2.78.0 -> 2.78.1) gnome-themes-extra grub2 gstreamer (1.22.9 -> 1.24.0) gstreamer-plugins-bad (1.22.9 -> 1.24.0) gstreamer-plugins-base (1.22.9 -> 1.24.0) gstreamer-plugins-good (1.22.9 -> 1.24.0) gstreamer-plugins-libav (1.22.9 -> 1.24.0) gstreamer-plugins-ugly (1.22.9 -> 1.24.0) gtk2-engine-murrine gtk2-engines hwdata (0.379 -> 0.380) inn libcdio libfakekey libgdata libgee libostree (2023.7 -> 2024.4) libshout libsigc++3 libstorage-ng (4.5.197 -> 4.5.200) libxklavier mc mkfontscale (1.2.2 -> 1.2.3) mokutil (0.6.0 -> 0.7.0) openjpeg2 (2.5.0 -> 2.5.2) opus (1.4 -> 1.5.1) orc (0.4.37 -> 0.4.38) ovmf pcsc-acr38 postfix (3.8.5 -> 3.8.6) postgresql16 publicsuffix (20240212 -> 20240303) qemu raptor redland shim startup-notification telepathy-glib texlive transactional-update (4.5.0 -> 4.6.0) vlc wireplumber (0.4.17 -> 0.4.90) xauth (1.1.2 -> 1.1.3) xmessage (1.0.6 -> 1.0.7) yast2-storage-ng (5.0.6 -> 5.0.7) yast2-trans (84.87.20240224.f7ab2886c1 -> 84.87.20240304.419739cb87) === Details === ==== ImageMagick ==== Subpackages: ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - We can not replace a symlink with a directory on the directly Unregister the whole group manually in %pre with update-alternatives. (boo#1220818) Restore Requires(pre) on update-alternatives for the mean time. ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - Enable zink driver build on aarch64, this is needed for Qualcomm Adreno a7xx to use hw accelerated GL. - buildrequire llvm17 also on sle15-sp5/Leap15.5 ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Enable zink driver build on aarch64, this is needed for Qualcomm Adreno a7xx to use hw accelerated GL. - buildrequire llvm17 also on sle15-sp5/Leap15.5 ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== atkmm1_6 ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== checkmedia ==== Version update (6.2 -> 6.3) Subpackages: libmediacheck6 - merge gh#openSUSE/checkmedia#18 - tagmedia: fix size detection for block devices (bsc#1220972) - 6.3 ==== cifs-utils ==== - Use %patch -P N instead of deprecated %patchN. ==== emacs-compat ==== - Depend on emacs-devel to make sure Emacs packaging macros are installed when not building with emacs-eln ==== expat ==== Version update (2.6.0 -> 2.6.1) Subpackages: libexpat1 - update to 2.6.1: * Expose billion laughs API with XML_DTD defined and XML_GE undefined, regression from 2.6.0 * Make tests independent of CPU speed, and thus more robust - drop libxml2-fix-xmlwf.1-handling.patch, upstream ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Update gdm-xvnc-start-session-failed.patch: Following the upstream final solution(bsc#1219205 glgo#GNOME/gdm#909). ==== gettext-runtime ==== Version update (0.21.1 -> 0.22.5) Subpackages: libtextstyle0 - Use %patch -P N instead of deprecated %patchN. - update to 0.22.5: * xgettext's processing of Vala files with printf method invocations has been corrected (regression in 0.22) - Update to version 0.22.4 * Bug fixes: - AM_GNU_GETTEXT now recognizes a statically built libintl on macOS and AIX. - Build fixes on AIX - Update to version 0.22.3 * Portability: - The libintl library now works on macOS 14. (Older versions of libintl crash on macOS 14, due to an incompatible change in macOS.) - Update to version 0.22.2 * No information available upstream - Update to version 0.22.1 * Bug fixes: - The libintl shared library now exports again some symbols that were accidentally missing. - xgettext's processing of large Perl files may have led to errors. - "xgettext --join-existing" could encounter errors. * Portability: - Building on Android is now supported. - Update to version 0.22.0 * PO file format: - When a #: line contains references to file names that contain spaces, these file names are surrounded by Unicode characters U+2068 and U+2069. This makes it possible to parse such references correctly. * Improvements for maintainers: - The AM_GNU_GETTEXT macro now defines two variables localedir_c and localedir_c_make, that can be used in C code or in Makefiles, respectively, for representing the value of the --localedir configure option. * Programming languages support: - C, C++: + xgettext now supports gettext-like functions that take wide strings (of type 'const wchar_t *', 'const char16_t *', or 'const char32_t *') as arguments. + xgettext now recognizes numbers with digit separators, as defined by ISO C 23, as tokens. + xgettext and msgfmt now recognize the format string directive %b (for binary integer output, as defined by ISO C 23) in format strings. + xgettext and msgfmt now recognize the argument size specifiers w8, w16, w32, w64, wf8, wf16, wf32, wf64 (as defined by ISO C 23) in format strings. + xgettext and msgfmt now recognize C++ format strings, as defined by ISO C++ 20. They are marked as 'c++-format' in POT and PO files. A new example has been added, 'hello-c++20', that illustrates how to use these format strings with gettext. - Java: + The build system and tools now also support Java versions newer than Java 11. This is known to work up to Java 20, at least. On the other hand, support for old versions of Java (Java 1.5 and GCJ) has been dropped. + Tcl: xgettext now supports the \x, \u, and \U escapes as defined in Tcl 8.6. * Portability: - On systems with musl libc, the *gettext() functions in libc now work with MO files generated from PO files with an encoding other than UTF-8. To this effect, the msgfmt program now converts the messages to UTF-8 encoding before storing them in a MO file. You can prevent this byusing the msgfmt - -no-convert option. - On systems with musl libc, the *gettext() functions in libc now work with MO files generated from PO files with ISO C 99 <inttypes.h> format string directive macros. To this effect, the msgfmt program pre-expands strings with such macros. You can prevent this by using the msgfmt --no-redundancy option. * xgettext: - The xgettext option '--sorted-output' is now deprecated. - xgettext input files of type PO that are not all ASCII and not UTF-8 encoded are now handled correctly. * The base Unicode standard is now updated to 15.0.0. * Emacs PO mode: - Fix an incompatibility with Emacs version 29 or newer. - Rebase patches: * gettext-dont-test-gnulib.patch * 0001-msgcat-Add-feature-to-use-the-newest-po-file.patch * 0002-msgcat-Merge-headers-when-use-first.patch - Drop patch which isn't required anymore since newer java versions are already supported by upstream: * gettext-0.21-jdk17.patch ==== ghostscript ==== Subpackages: ghostscript-x11 - Use %patch -P N instead of deprecated %patchN. - Allow to disable apparmor support (ALP supports only SELinux) ==== glibmm2 ==== Version update (2.78.0 -> 2.78.1) Subpackages: libgiomm-2_68-1 libglibmm-2_68-1 - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). - Update to version 2.78.1: + Glib: Dispatcher: Allow destroy during emit. + gmmproc: h2def.py: Make return types that are unsigned work. + Build: - Meson build: Don't fail if warning_level=everything - MSVC, NMake: Make dep paths configurable. ==== gnome-themes-extra ==== Subpackages: gnome-themes-accessibility gnome-themes-accessibility-gtk2 gtk2-metatheme-adwaita gtk2-theming-engine-adwaita gtk3-metatheme-adwaita metatheme-adwaita-common - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Update grub2-change-bash-completion-dir.patch to support bash completion correctly (bsc#1218875) - Drop grub2-bash-completion-2.12.patch since the have() function is not used in those scripts anymore - disable the file 20_memtest86+ * added a deprecation note in the header - Add patch grub2-bash-completion-2.12.patch The shell function have() had become deprecated with 2.11 and had been removed from 2.12 which is now providing the shell function _comp_have_command() (boo#1220626) ==== gstreamer ==== Version update (1.22.9 -> 1.24.0) Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Rebase patches: * gstreamer-pie.patch * gstreamer-rpm-prov.patch - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. ==== gstreamer-plugins-bad ==== Version update (1.22.9 -> 1.24.0) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - baselibs.conf: Produce -32bit biarch packages of libgstanalytics-1_0-0 and libgstmse-1_0-0: dependencies of gstreamer-plugins-bad-32bit. - Add new gstreamer plugins to baselibs.conf - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. - Remove patch which is already included in this version: * 0001-Update-code-for-webrtc-audio-processing-1.patch - Disable webrtc audio processing dependency on s390 s390x ppc64: webrtc-autio-processing is excluded on these architectures. ==== gstreamer-plugins-base ==== Version update (1.22.9 -> 1.24.0) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. - Add gst-plugins-base-audiobasesink-gap.patch: Revert a gap change causing EOS, affecting strawberry playback causing playback to stop when using mute or fading features. Upstream issue: https://gitlab.freedesktop.org/gstreamer/gstreamer/-/issues/3303 ==== gstreamer-plugins-good ==== Version update (1.22.9 -> 1.24.0) Subpackages: gstreamer-plugins-good-extra gstreamer-plugins-good-gtk gstreamer-plugins-good-jack gstreamer-plugins-good-qtqml - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. ==== gstreamer-plugins-libav ==== Version update (1.22.9 -> 1.24.0) - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. ==== gstreamer-plugins-ugly ==== Version update (1.22.9 -> 1.24.0) - Update to version 1.24.0: * Highlights - New Discourse forum and Matrix chat space - New Analytics and Machine Learning abstractions and elements - Playbin3 and decodebin3 are now stable and the default in gst-play-1.0, GstPlay/GstPlayer - The va plugin is now preferred over gst-vaapi and has higher ranks - GstMeta serialization/deserialization and other GstMeta improvements - New GstMeta for SMPTE ST-291M HANC/VANC Ancillary Data - New unixfd plugin for efficient 1:N inter-process communication on Linux - cudaipc source and sink for zero-copy CUDA memory sharing between processes - New intersink and intersrc elements for 1:N pipeline decoupling within the same process - Qt5 + Qt6 QML integration improvements including qml6glsrc, qml6glmixer, qml6gloverlay, and qml6d3d11sink elements - DRM Modifier Support for dmabufs on Linux - OpenGL, Vulkan and CUDA integration enhancements - Vulkan H.264 and H.265 video decoders - RTP stack improvements including new RFC7273 modes and more correct header extension handling in depayloaders - WebRTC improvements such as support for ICE consent freshness, and a new webrtcsrc element to complement webrtcsink - WebRTC signallers and webrtcsink implementations for LiveKit and AWS Kinesis Video Streams - WHIP server source and client sink, and a WHEP source - Precision Time Protocol (PTP) clock support for Windows and other additions - Low-Latency HLS (LL-HLS) support and many other HLS and DASH enhancements - New W3C Media Source Extensions library - Countless closed caption handling improvements including new cea608mux and cea608tocea708 elements - Translation support for awstranscriber - Bayer 10/12/14/16-bit depth support - MPEG-TS support for asynchronous KLV demuxing and segment seeking, plus various new muxer features - Capture source and sink for AJA capture and playout cards - SVT-AV1 and VA-API AV1 encoders, stateless AV1 video decoder - New uvcsink element for exporting streams as UVC camera - DirectWrite text rendering plugin for windows - Direct3D12-based video decoding, conversion, composition, and rendering - AMD Advanced Media Framework AV1 + H.265 video encoders with 10-bit and HDR support - AVX/AVX2 support and NEON support on macOS on Apple ARM64 CPUs via new liborc - GStreamer C# bindings have been updated - Rust bindings improvements and many new and improved Rust plugins - Rust plugins now shipped in packages for all major platforms including Android and iOS - Lots of new plugins, features, performance improvements and bug fixes * For more detailed information on this update, please see https://gstreamer.freedesktop.org/releases/1.24/ - Remove patch reduce-required-meson.patch since meson 1.1 is really required now. ==== gtk2-engine-murrine ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== gtk2-engines ==== Subpackages: gtk2-engine-clearlooks gtk2-engine-crux gtk2-engine-glide gtk2-engine-hcengine gtk2-engine-industrial gtk2-engine-mist gtk2-engine-redmond95 gtk2-engine-thinice gtk2-theme-clearlooks gtk2-theme-crux gtk2-theme-industrial gtk2-theme-mist gtk2-theme-redmond95 gtk2-theme-thinice - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== hwdata ==== Version update (0.379 -> 0.380) - update to 0.380: * Update pci, usb and vendor ids ==== inn ==== - Use %patch -P N instead of deprecated %patchN. ==== libcdio ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libfakekey ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libgdata ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). - Add explicit pkgconfig(gtk+-3.0) BuildRequires: meson checks for it and we just relied on it being brought in indirectly. ==== libgee ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== libostree ==== Version update (2023.7 -> 2024.4) Subpackages: libostree-1-1 - Update to version 2024.4: + Support for a new root.transient flag that makes / an overlayfs that is persistent across reboots but not across upgrades + Expand ostree admin pin command + root.transient switches to tmpfs + Composefs recommended to be enabled via ostree-prepare-root.conf and not the ex-integrity.composefs + Finalize "deployment finalization locking" feature + Add ostree admin post-copy + Speed-up through reflinks + improvements to system root and bootloader + Bug fixes, documentation updates, and developer visible fixes ==== libshout ==== - Fix build errors with gcc14 (bsc#1220975): 0001-icy-include-stdlib-h-and-stdio-h.patch 0002-legacy-include-stdlib-h.patch ==== libsigc++3 ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== libstorage-ng ==== Version update (4.5.197 -> 4.5.200) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (French) (bsc#1149754) - 4.5.200 - Translated using Weblate (Chinese (Taiwan) (zh_TW)) (bsc#1149754) - 4.5.199 - Translated using Weblate (Italian) (bsc#1149754) - Translated using Weblate (Chinese (China) (zh_CN)) (bsc#1149754) - 4.5.198 ==== libxklavier ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== mc ==== Subpackages: mc-lang - fix python3 dependency (boo#1220900) ==== mkfontscale ==== Version update (1.2.2 -> 1.2.3) - Update to version 1.2.3 * configure: Use pkg-config to find zlib * configure: Use AC_SYS_LARGEFILE to enable large file support * gitlab CI: stop requiring Signed-off-by in commits * Remove "All rights reserved" from Oracle copyright notices * Convert to X.Org standard code style * doDirectory: add missing check for malloc() returning NULL * mkfontscale.c: handle -Wshadow warnings from gcc * ident.c: clear -Wdeclaration-after-statement warning * Variable scope reductions as recommended by cppcheck * Resolve some -Wsign-conversion warnings from clang * Fix -Wimplicit-float-conversion warnings from clang * configure: Move check for zlib into its own section * Address a UBSan warning about int left shift overflow ==== mokutil ==== Version update (0.6.0 -> 0.7.0) - Update to 0.7.0 + 82694cb Show usage instead of aborting on bad flags + 04791c2 mokutil bugfix: del unused opt "-s" + d978c18 Fix leak of list in delete_data_from_req_var() + e498f64 Fix leak of fd in mok_get_variable() + 7b6258a Show the key owner GUID + 51b5e55 Use PKG_PROG_PKG_CONFIG macro from pkg.m4 to detect pkg-config + 1aefcdb mokutil: handle the parsing error from "mok-variables" + 71140ef mokutil: Fix memory leak in export_db_keys + 0011d52 mokutil:check the result of malloc() is necessary + a0d8702 Fix inconsistency in skip messages + ae59d89 man: add "--trust-mok" and "--untrust-mok" + dd55c28 Avoid conflicting efi_char16_t type definitions + 8b6d116 fix: typo "accesss" -> "access" + f68a4f4 Do not exit with non zero status for version query + 5f49730 Check for efi variabales support after processing commands + 2d6c409 Return 0 after printing help messages + c64741d Add support for SSPPolicy, depricate --set-sbat-policy delete + 48e3d2a Fix tab alignment for help (set-fallback-verbosity/set-fallback-noreboot) + c361087 (HEAD -> master, tag: 0.7.0, origin/ssppolicy-v2-fix, origin/master, origin/HEAD) Rename "previous" revocations to "automatic" ==== openjpeg2 ==== Version update (2.5.0 -> 2.5.2) - Update to 2.5.2: * Make sure openjpeg.h includes opj_config.h #1514 - Update to 2.5.1: * CMake: drop support for cmake < 3.5 * Several bugfixes, including #1509 for CVE-2021-3575 (bsc#1187048) * Significant speed-up rate allocation by rate/distoratio ratio #1440 - Set devel-doc subpackage to noarch - Change cmake parameters (see c7bccf) ==== opus ==== Version update (1.4 -> 1.5.1) - Update to 1.5.1: * Significant improvement to packet loss robustness using Deep Redundancy (DRED) * Improved packet loss concealment through Deep PLC * Low-bitrate speech quality enhancement down to 6 kb/s wideband * Improved x86 (AVX2) and Arm (Neon) optimizations * Support for 4th and 5th order ambisonics ==== orc ==== Version update (0.4.37 -> 0.4.38) - Backport patch from SLE - Add relax-tests.patch to increase test timeouts to 2 minutes, also limit the max value for memcpy_speed.c test bsc#1130085 - Enable tests - version update to 0.4.38 0.4.38 ====== - x86: account for XSAVE when checking for AVX support, fixing usage on hardened linux kernels where AVX support has been disabled (L. E. Segovia) - neon: Use the real intrinsics for divf and sqrtf (L. E. Segovia) - orc.m4 for autotools is no longer shipped. If anyone still uses it they can copy it into their source tree (Tim-Philipp MÃ¼ller) ==== ovmf ==== Subpackages: qemu-uefi-aarch64 - Add ovmf-OvmfPkg-SmbiosPlatformDxe-tweak-fallback-release-dat.patch tweak fallback release date again (bsc#1219024) - Use %autopatch macro. Allows to eliminate the usage of deprecated PatchN. ==== pcsc-acr38 ==== - Fix previous change: should be %autopatch -p0. - Use %autopatch macro. Allows to eliminate the usage of deprecated %patchN. ==== postfix ==== Version update (3.8.5 -> 3.8.6) - update to 3.8.6 * Bugfix (defect introduced: Postfix 2.3, date 20051222): the Dovecot auth client did not reset the 'reason' from a previous Dovecot auth service response, before parsing the next Dovecot auth server response in the same SMTP session, resulting in a nonsensical "authentication failed" warning message. Reported by Stephan Bosch. * Bugfix (defect introduced: Postfix 3.1, date: 20151128): "postqueue -j" produced broken JSON when escaping a control character as \uXXXX. Found during code maintenance. * Cleanup: this fixes posttls-finger certificate match expectations for all TLS security levels, including warnings for levels that don't implement certificate matching. By Viktor Dukhovni. * Bugfix (defect introduced: Postfix 2.3): after prepending a header at the top of a message (with an access(5), header_checks(5) or Milter action), the Postfix Milter "delete header" or "update header" action was skipping the prepended header, instead of skipping the Postfix-generated Received: header. Problem report by Carlos Velasco. * Workaround: tlsmgr logfile spam. Reportedly, some OS lies under load: it says that a socket is readable, then it says that the socket has unread data, and then it says that read returns EOF, causing Postfix to spam the log with a warning message. * Bugfix (defect introduced: Postfix 3.4): the SMTP server's BDAT command handler could be tricked to read $message_size_limit bytes into memory. Found during code maintenance. * Safety: limit the total size of DNS lookup results to 100 records; drop the excess records, and log a warning. This limit is 20x larger than the number of server addresses that the Postfix SMTP client is willing to consider when delivering mail, and is far below the number of records that could cause a tail recursion crash in dns_rr_append() as reported by Toshifumi Sakaguchi. This fix also limits the number of DNS requests that a check_*_*_access restriction can make. * Performance, related to the previous problem: eliminate worst-case behavior where the queue manager could defer delivery to all destinations over a specific delivery transport, after only a single delivery agent crash. The scheduler now throttles deliveries to one destination, and allows other deliveries to keep making progress. - change to functioning mirror (http://cdn.postfix.johnriley.me/ has been dead for a while although it is still listed upstream) - make output of %setup less verbose by restoring -q option - %autosetup does not works with multiple -a. https://github.com/rpm-software-management/rpm/issues/1204 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== postgresql16 ==== Subpackages: libpq5 postgresql16-contrib postgresql16-server - Use %patch -P N instead of deprecated %patchN. ==== publicsuffix ==== Version update (20240212 -> 20240303) - Update to version 20240303: * add `*.my.canvasite.cn` and `*.my.canva.site` (#1739) * Add on.crisp.email (Crisp IM SAS) (#1904) * add `ngrok.pro` (#1895) * Add adaptable.app domain (#1824) * Add STACKIT free customer subdomains (#1785) * Add `modx.dev` (#1804) * Add `ewp.live` (EasyWP) (#1773) * Add convex.site (#1767) * Add `involve.me` user domains (#1731) * Add `replit.app` and `replit.dev` (#1679) * Add f5.si (#1664) * Add *.c.ts.net. (#1618) * Add `webflow.io` and `webflowtest.io` (#1722) * Add 3 Streak domains (#1720) * add myradweb.net and servername.us to Rad Web Hosting (#1760) ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Fix bsc#1220799. Amended commit: * [openSUSE]: Increase default phys bits to 42, if host supports that (bsc#1205978, bsc#1219977, bsc#1220799) ==== raptor ==== - Use %patch -P N instead of deprecated %patchN. ==== redland ==== - Use %patch -P N instead of deprecated %patchN. ==== shim ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== startup-notification ==== - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== telepathy-glib ==== Subpackages: libtelepathy-glib0 typelib-1_0-TelepathyGlib-0_12 - Drop baselibs.conf: the -32bit packages are no longer needed and have not been part of Tumbleweed for a while already (build for i586 only enabled in LegacyX86). ==== texlive ==== Subpackages: libkpathsea6 libsynctex2 - Use %patch -P N instead of deprecated %patchN. ==== transactional-update ==== Version update (4.5.0 -> 4.6.0) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - Version 4.6.0 - tukit / t-u: Implement support for systemd soft-reboot, but needs package manager support (provided by zypp-boot-plugin on openSUSE) to determine which kind of reboot is required; the minimally required reboot method (soft-reboot, kexec, full reboot) will be used automatically if enabled (see tukit.conf). This deprecates the "kexec" reboot method in favor of automatic selection. - tukit: Determine D-Bus availability via system socket instead of brute force - tukit: Don't ignore return status of snapper - plugins can return an error code now where tukit has to fail [gh##118] / [poo#127169] - tukit: Remove BTRFS dependencies in snapper backend, user snapper for for everything directly. In theory this should support further file systems such as bcachefs if they follow the same layout (untested). - t-u: Add safety net before deleting overlays [boo#1217416] - t-u: Remove telemetry support, the required packages haven't been in the repository for quite some time as they were abandoned upstream. - doc: Document option to use names in BINDDIRS array - doc: Mention tukit.conf in t-u man page - doc: Link Reboot.hpp as an officially supported API on the main page - Code cleanup ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau - Whitelist executable-stack for armv7 ==== wireplumber ==== Version update (0.4.17 -> 0.4.90) Subpackages: wireplumber-audio - Revert that last change. Obsoletes shouldn't be used for that. - Obsolete libwireplumber-0_4-0 from libwireplumber-0_5-0 - Add patch from upstream to fix a typo a lua script: * 0001-scripts-fix-typo-in-rescan-virtual-links.lua.patch - Update to version 0.4.90 (0.5.0 RC1) * Highlights: - The configuration system has been changed back to load files from the WirePlumber configuration directories, such as /etc/wireplumber and $XDG_CONFIG_HOME/wireplumber, unlike in the pre-releases. This was done because issues were observed with installations that use a different prefix for pipewire and wireplumber. If you had a wireplumber.conf file in /etc/pipewire or $XDG_CONFIG_HOME/pipewire, you should move it to /etc/wireplumber or $XDG_CONFIG_HOME/wireplumber respectively (!601) - The internal base directories lookup system now also respects the XDG_CONFIG_DIRS and XDG_DATA_DIRS environment variables, and their default values as per the XDG spec, so it is possible to install configuration files also in places like /etc/xdg/wireplumber and override system-wide data paths (!601) - wpctl now has a settings subcommand to show, change and delete settings at runtime. This comes with changes in the WpSettings system to validate settings using a schema that is defined in the configuration file. The schema is also exported on a metadata object, so it is available to any client that wants to expose WirePlumber settings (!599, !600) - The WpConf API has changed to not be a singleton and support opening arbitrary config files. The main config file now needs to be opened prior to creating a WpCore and passed to the core using a property. The core uses that without letting the underlying pw_context open and read the default client.conf. The core also closes the WpConf after all components are loaded, which means all the config loading is done early at startup. Finally, WpConf loads all sections lazily, keeping the underlying files memory mapped until it is closed and merging them on demand (!601, !606) - Remove patch that's already included: * 0001-wpctl-add-settings-subcomand-to-show_-delete-or-change.patch - Add patch from upstream to remove the "clear-persistent" sub-command and add a "settings" sub-command: * 0001-wpctl-add-settings-subcomand-to-show_-delete-or-change.patch - Update to version 0.4.82 (0.5.0 pre-release 2) * Highlights: - Bluetooth auto-switching is now implemented with a virtual source node. When an application links to it, the actual device switches to the HSP/HFP profile to provide the real audio stream. This is a more robust solution that works with more applications and is more user-friendly than the previous application whitelist approach - Added support for dynamic log level changes via the PipeWire settings metadata. Also added support for log level patterns in the configuration file - The "persistent" (i.e. stored) settings approach has changed to use two different metadata objects: sm-settings and persistent-sm-settings. Changes in the former are applied in the current session but not stored, while changes in the latter are stored and restored at startup. Some work was also done to expose a wpctl interface to read and change these settings, but more is underway - Several WirePlumber-specific node properties that used to be called target.* have been renamed to node.* to match the PipeWire convention of node.dont-reconnect. These are also now fully documented * Other changes: - Many documentation updates - Added support for SNAP container permissions - Fixed multiple issues related to restoring the Route parameter of devices, which includes volume state - Smart filters can now be targetted by specific streams directly when the filter.smart.targetable property is set - Ported the mechanism to override device profile priorities in the configuration, which is used to re-prioritize Bluetooth codecs - WpSettings is no longer a singleton class and there is a built-in component to preload an instance of it ==== xauth ==== Version update (1.1.2 -> 1.1.3) - Update to version 1.1.3 * config: Add missing AC_CONFIG_SRCDIR * Variable scope reductions, as suggested by cppcheck * Remove unnecessary casts from malloc() calls * Handle -Wempty-body warning for WRITES() macro * configure: Use AC_SYS_LARGEFILE to enable large file support * configure: raise minimum autoconf requirement to 2.70 * unifdef hpux * unifdef Lynx - adjusted xauth-tolerant-hostname-changes.diff ==== xmessage ==== Version update (1.0.6 -> 1.0.7) - Update to version 1.0.7 * Print which arguments were unknown before giving usage message * Add -version option * configure: Use AC_SYS_LARGEFILE to enable large file support ==== yast2-storage-ng ==== Version update (5.0.6 -> 5.0.7) - [Proposal] Apply mandatory SpaceMaker actions in all the affected disks (gh#yast/yast-storage-ng#1372). - [Proposal] Make it possible to specify that certain volumes should reuse given existing block devices. - 5.0.7 ==== yast2-trans ==== Version update (84.87.20240224.f7ab2886c1 -> 84.87.20240304.419739cb87) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240304.419739cb87: * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Chinese (Taiwan) (zh_TW)) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Slovak) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Japanese) * Translated using Weblate (Spanish) * Translated using Weblate (Catalan) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Italian) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Dutch) * Translated using Weblate (German) * New POT for text domain 'bootloader'. * Translated using Weblate (Russian) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Spanish) * Translated using Weblate (Russian) * Translated using Weblate (Russian) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish)

1 0

New Arm Tumbleweed snapshot 20240304 released!
by Guillaume Gardet 06 Mar '24

06 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: shadow (4.14.5 -> 4.14.6) === Details === ==== shadow ==== Version update (4.14.5 -> 4.14.6) Subpackages: libsubid4 login_defs - Update to 4.14.6: * login(1): + Fix off-by-one bugs. * passwd(1): + Don't silently truncate passwords of length >= 200 characters. Instead, accept a length of PASS_MAX, and reject longer ones. * libshadow: + Fix calculation in strtoday(), which caused a wrong half-day offset in some cases (bsc#1176006) + Fix parsing of dates in get_date() (bsc#1176006) + Use utmpx instead of utmp. This fixes a regression introduced in 4.14.0.

1 0

New Arm Tumbleweed snapshot 20240303 released!
by Guillaume Gardet 04 Mar '24

04 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream (1.0.1 -> 1.0.2) ImageMagick (7.1.1.26 -> 7.1.1.29) apparmor bash bluez coreutils coreutils-systemd cyrus-sasl dcraw dmraid fillup findutils gdm glibc gmp gnu-unifont-fonts (15.1.04 -> 15.1.05) google-noto-fonts (20240101 -> 20240301) gpm gzip irda kbd kernel-firmware (20240220 -> 20240229) kernel-source (6.7.6 -> 6.7.7) libX11 libXcursor (1.2.1 -> 1.2.2) libXdmcp (1.1.4 -> 1.1.5) libaio libao libapparmor libatasmart libavc1394 libbase libcddb libdb-4_8 libe-book libev libevent libfontenc (1.1.7 -> 1.1.8) libfonts libformula libgpod libgsm libixion libkate libloader libmad libmetalink libmpd libmspub libmwaw libnscd liboauth libofa libogg liborcus libotf libpcap libpciaccess libraw1394 librepository libsamplerate libserializer libspectre libstorage-ng (4.5.193 -> 4.5.197) libunwind (1.8.0 -> 1.8.1) libvdpau libvisual libvorbis libxcb (1.16 -> 1.16.1) live555 lmdb lomoco luajit (5.1.2.1.0+git.1693350652.41fb94d -> 5.1.2.1.0+git.1707061634.0d313b2) m4 mc (4.8.30 -> 4.8.31) netcontrol openblas_openmp (0.3.25 -> 0.3.26) openblas_pthreads (0.3.25 -> 0.3.26) openslp openssl-3 openssl pcmciautils pcr-oracle pcre pcsc-lite pentaho-libxml perl-IPC-Run3 (0.048 -> 0.49.0) perl-LWP-Protocol-https (6.110.0 -> 6.130.0) perl-URI (5.210.0 -> 5.270.0) perl-libwww-perl (6.720.0 -> 6.760.0) phalanx pipewire ppp pptp procinfo procmail procps psmisc ptools pwgen python-cffi python-pygit2 (1.14.0 -> 1.14.1) python311 python311-core qemu qpdf (11.8.0 -> 11.9.0) rpm screen sharutils slang susefirewall2-to-firewalld tcl (8.6.13 -> 8.6.14) tgt time unbound (1.19.0 -> 1.19.1) update-alternatives xen xorg-x11-fonts xorg-x11-fonts-converted yast2-bootloader (5.0.5 -> 5.0.6) === Details === ==== AppStream ==== Version update (1.0.1 -> 1.0.2) Subpackages: libAppStreamQt5-3 libappstream5 - Update to 1.0.2 Features: * qt: Allow building for multiple Qt major versions at once * Improve low-quality category check and extend its blacklist * validator: Add some limited developer-ID validation * validator: Emit an overridable warning if homepage URL was omitted * compose: Allow rendering vector graphics to HiDPI bitmaps unconditionally * compose: Allow setting a custom icon-policy on the command-line Specification: * docs: Mention that <summary/> tag can be translated * docs: Generate validation issue tag documentation from code * docs: Add information on how to exclude elements from translation * spec: Recommend using rDNS strings or Fediverse handles as developer-ID * spec: Make launchable requirement for desktop-apps more strict Bugfixes: * qt: Component::customValue should be const * validator: Remove mention of shorthands from relation-display-length-value-invalid * sysinfo: Swap arguments of g_pattern_match_simple * qt: Add missing screenshot sorting function * qt: pool: Add missing Q_EMIT keyword * validator: Improve error message if no valid categories were found * validator: Make some length limitations more strict * validator: Only emit developer-name-tag-deprecated once * validator: Ensure filename is properly included in location info again * validator: Improve error reporting on images with missing/bad locales * compose: Don't accidentally set icon scale to 0 in some cases * compose: Add heuristics to show out-of-scope errors if filters were set * Don't prematurely abort URL validity check during semi-large redirects * docs: Update supported hashsums to reflect reality * docs: Describe version comparison letters special case * docs: Clarify release descriptions *must not* contain embedded URL * docs: Explicitly mention /var/cache/swcatalog is a valid catalog data location * tests: Fix tests with old & new FontConfig * its: Allow untranslatable developer/name and agreement sections Miscellaneous: * compose: Clarify that "no valid category" can mean bad ones were ignored * news-convert: Don't strip out the last text in brackets - Drop patch, merged upstream: * # 0001-Don-t-prematurely-abort-URL-validity-check-during-se.patch - Add upstream change to fix potential URL validity check errors: * 0001-Don-t-prematurely-abort-URL-validity-check-during-se.patch ==== ImageMagick ==== Version update (7.1.1.26 -> 7.1.1.29) Subpackages: ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.29 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - Use %patch -P N instead of deprecated %patchN. - version update to 7.1.1.28 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - version update to 7.1.1.27 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - only one configuration again, based on upstream 'secure' policy - other upstream policies packaged in documentation - use correct policy.xml - Fix incomplete removal of update-alternatives for config - Replace obsolete 'otherproviders(imagick-%{config_spec})' with 'Conflicts: imagick-%{config_spec}' ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - Remove workaround for boo#853019 in %postun parser - apparmor.service contains a more safe workaround. This also fixes boo#1220708 (missing daemon-reload). - Add smbd-unix_chkpwd.diff to allow smbd to execute unix_chkpwd and fix other pam related denies; (boo#1220032). ==== bash ==== Subpackages: bash-doc bash-sh - Harden bash to be compiled with gcc 14 (boo#1220564) * Modify patch bash-4.2-nscdunmap.dif to include <sys/mman.h> * Port bash-5.2.dif to the former change * Add patch bash-5.2-gcc14.patch ==== bluez ==== Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3 - Add necessary Supplements (gnome-bluetooth, blueman, bluedevil5) to bluez-obexd, so that file transfer features of the applications can be used by default (bsc#1209153). - Update the description of bluez-obexd. ==== coreutils ==== - Use %patch -P N instead of deprecated %patchN. ==== coreutils-systemd ==== - Use %patch -P N instead of deprecated %patchN. ==== cyrus-sasl ==== Subpackages: cyrus-sasl-crammd5 cyrus-sasl-digestmd5 cyrus-sasl-gssapi cyrus-sasl-plain libsasl2-3 - Use %patch -P N instead of deprecated %patchN. ==== dcraw ==== Subpackages: dcraw-lang - Add fix_gcc14_errors.patch (bsc#1220467) ==== dmraid ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. - Rebase 0001-remove-partitions-with-O_RDONLY.patch to apply -p1. ==== fillup ==== - Use %patch -P N instead of deprecated %patchN. ==== findutils ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Add gdm-xvnc-start-session-failed.patch: None seat0 session runs without running launcher(bsc#1219205 glgo#GNOME/gdm#909). ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - nsswitch.conf: Add systemd also for shadow lookups, use merge strategy for group lookups - s390-clone-error-clobber-r7.patch: S390: Do not clobber r7 in clone (BZ [#31402]) ==== gmp ==== - Use %patch -P N instead of deprecated %patchN. ==== gnu-unifont-fonts ==== Version update (15.1.04 -> 15.1.05) - update to 15.1.05: * Plane 0: redraw all Hangul glyphs not in the Hangul Syllables range, so their style more closely resembles the style of the Hangul Syllables range * improve several glyphs in the range U+2100..U+214F Letterlike Symbols. * redraw U+013D LATIN CAPITAL LETTER L WITH CARON for better compatibility with other glyphs in the Czech and Slovak alphabets. * Planes 2 and 3: almost 600 new ideographs * Plane F: modify the Sitelen Pona script, added combining character indicators and adding several new glyphs since the last release ==== google-noto-fonts ==== Version update (20240101 -> 20240301) - Update to 20240301 * Fixes to Balinese, Sans Canadian Aboriginal, Sans Georgian and Kufi Arabic - Remove fonttools build requires - Delete old specfile constructs. ==== gpm ==== Subpackages: libgpm2 - Use %patch -P N instead of deprecated %patchN. ==== gzip ==== - Use %patch -P N instead of deprecated %patchN. ==== irda ==== - Use %patch -P N instead of deprecated %patchN. ==== kbd ==== Subpackages: kbd-legacy - Use %patch -P N instead of deprecated %patchN. ==== kernel-firmware ==== Version update (20240220 -> 20240229) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240229 (git commit 977332782302): * amdgpu: Update VCN firmware binaries * Intel IPU2: Add firmware files * brcm: Add nvram for the Acer Iconia One 7 B1-750 tablet * i915: Add Xe2LPD DMC v2.18 * i915: Update MTL DMC v2.21 ==== kernel-source ==== Version update (6.7.6 -> 6.7.7) - mptcp: fix possible deadlock in subflow diag (git-fixes). - mptcp: avoid printing warning once on client side (git-fixes). - commit 1ff84c5 - Linux 6.7.7 (bsc#1012628). - dmaengine: apple-admac: Keep upper bits of REG_BUS_WIDTH (bsc#1012628). - scsi: smartpqi: Add new controller PCI IDs (bsc#1012628). - scsi: smartpqi: Fix logical volume rescan race condition (bsc#1012628). - tools: selftests: riscv: Fix compile warnings in hwprobe (bsc#1012628). - tools: selftests: riscv: Fix compile warnings in cbo (bsc#1012628). - tools: selftests: riscv: Fix compile warnings in vector tests (bsc#1012628). - tools: selftests: riscv: Fix compile warnings in mm tests (bsc#1012628). - scsi: target: core: Add TMF to tmr_list handling (bsc#1012628). - cifs: open_cached_dir should not rely on primary channel (bsc#1012628). - dmaengine: shdma: increase size of 'dev_id' (bsc#1012628). - dmaengine: fsl-qdma: increase size of 'irq_name' (bsc#1012628). - dmaengine: dw-edma: increase size of 'name' in debugfs code (bsc#1012628). - wifi: cfg80211: fix missing interfaces when dumping (bsc#1012628). - wifi: mac80211: fix race condition on enabling fast-xmit (bsc#1012628). - fbdev: savage: Error out if pixclock equals zero (bsc#1012628). - fbdev: sis: Error out if pixclock equals zero (bsc#1012628). - platform/mellanox: mlxbf-tmfifo: Drop Tx network packet when Tx TmFIFO is full (bsc#1012628). - spi: intel-pci: Add support for Arrow Lake SPI serial flash (bsc#1012628). - spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected (bsc#1012628). - block: Fix WARNING in _copy_from_iter (bsc#1012628). - smb: Work around Clang __bdos() type confusion (bsc#1012628). - cifs: cifs_pick_channel should try selecting active channels (bsc#1012628). - cifs: translate network errors on send to -ECONNABORTED (bsc#1012628). - cifs: helper function to check replayable error codes (bsc#1012628). - ahci: asm1166: correct count of reported ports (bsc#1012628). - aoe: avoid potential deadlock at set_capacity (bsc#1012628). - spi: cs42l43: Handle error from devm_pm_runtime_enable (bsc#1012628). - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers (bsc#1012628). - ARM: dts: Fix TPM schema violations (bsc#1012628). - drm/amd/display: Disable ips before dc interrupt setting (bsc#1012628). - MIPS: reserve exception vector space ONLY ONCE (bsc#1012628). - platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus tablet (bsc#1012628). - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block bitmap corrupt (bsc#1012628). - ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (bsc#1012628). - ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1012628). - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx == 0 (bsc#1012628). - dmaengine: ti: edma: Add some null pointer checks to the edma_probe (bsc#1012628). - ASoC: amd: acp: Add check for cpu dai link initialization (bsc#1012628). - regulator: pwm-regulator: Add validity checks in continuous .get_voltage (bsc#1012628). - HID: logitech-hidpp: add support for Logitech G Pro X Superlight 2 (bsc#1012628). - ALSA: hda: Replace numeric device IDs with constant values (bsc#1012628). - ALSA: hda: Increase default bdl_pos_adj for Apollo Lake (bsc#1012628). - HID: nvidia-shield: Add missing null pointer checks to LED initialization (bsc#1012628). - nvmet-tcp: fix nvme tcp ida memory leak (bsc#1012628). - usb: ucsi_acpi: Quirk to ack a connector change ack cmd (bsc#1012628). - ALSA: usb-audio: Check presence of valid altsetting control (bsc#1012628). - ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616 (bsc#1012628). - ALSA: hda: cs35l41: Support additional ASUS Zenbook UX3402VA (bsc#1012628). - ALSA: hda: cs35l41: Support ASUS Zenbook UM3402YAR (bsc#1012628). - regulator (max5970): Fix IRQ handler (bsc#1012628). - spi: sh-msiof: avoid integer overflow in constants (bsc#1012628). - Input: xpad - add Lenovo Legion Go controllers (bsc#1012628). - misc: open-dice: Fix spurious lockdep warning (bsc#1012628). - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in sctp_new (bsc#1012628). - drm/amdkfd: Use correct drm device for cgroup permission check (bsc#1012628). - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz ... changelog too long, skipping 511 lines ... - commit ce46963 ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - Trim descriptions for size (keep the big one for the prominently installed libX11-6). - Spin documentation off to libX11-devel-doc, this saves buildroots 800+ files and time (mandb is run in %posttrans). - Use %patch -P N instead of deprecated %patchN. ==== libXcursor ==== Version update (1.2.1 -> 1.2.2) - Update to version 1.2.2 * gitlab CI: stop requiring Signed-off-by in commits * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * If O_CLOEXEC is defined, add "e" to fopen modes * Add comment about keeping libxcb-cursor copy of code in sync * XcursorXcFileLoad: plug memory leak in error paths * Remove superfluous and unguarded config.h include ==== libXdmcp ==== Version update (1.1.4 -> 1.1.5) - Update to version 1.1.5 * Remove "All rights reserved" from Oracle copyright notices * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * Xdmcp.h: add access attributes to function prototypes * Clear -Wunused-macros warnings when arc4random_buf() is available * XdmcpWriteHeader: drop unnecessary cast of free() argument * XdmcpWriteHeader: use calloc instead of malloc to alloc buffer * gitlab CI: add xz-utils to container for "make distcheck" ==== libaio ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libao ==== Subpackages: libao-plugins4 libao4 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libapparmor ==== - Remove workaround for boo#853019 in %postun parser - apparmor.service contains a more safe workaround. This also fixes boo#1220708 (missing daemon-reload). - Add smbd-unix_chkpwd.diff to allow smbd to execute unix_chkpwd and fix other pam related denies; (boo#1220032). ==== libatasmart ==== Subpackages: libatasmart-utils libatasmart4 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libavc1394 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libbase ==== - Use %patch -P N instead of deprecated %patchN. ==== libcddb ==== - Use %patch -P N instead of deprecated %patchN. ==== libdb-4_8 ==== Subpackages: db48-utils - Use %patch -P N instead of deprecated %patchN. ==== libe-book ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libev ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN - modified patches % libev-4.15_compiler_warnings.patch (refreshed) ==== libevent ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libfontenc ==== Version update (1.1.7 -> 1.1.8) - update to 1.1.8 * This release includes build system cleanups and adds "e" to the fopen() flags to avoid leaking fd's when calling applications exec another program. ==== libfonts ==== - Use %patch -P N instead of deprecated %patchN. ==== libformula ==== - Use %patch -P N instead of deprecated %patchN. ==== libgpod ==== Subpackages: libgpod-tools libgpod4 - Use %patch -P N instead of deprecated %patchN. ==== libgsm ==== - Use %patch -P N instead of deprecated %patchN. ==== libixion ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libkate ==== Subpackages: libkate1 liboggkate1 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libloader ==== - Use %patch -P N instead of deprecated %patchN. ==== libmad ==== - Use %patch -P N instead of deprecated %patchN. ==== libmetalink ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libmpd ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libmspub ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libmwaw ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libnscd ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== liboauth ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libofa ==== - Use %patch -P N instead of deprecated %patchN. ==== libogg ==== - Use %patch -P N instead of deprecated %patchN. ==== liborcus ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libotf ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libpcap ==== - Use %patch -P N instead of deprecated %patchN. ==== libpciaccess ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libraw1394 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== librepository ==== - Use %patch -P N instead of deprecated %patchN. ==== libsamplerate ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libserializer ==== - Use %patch -P N instead of deprecated %patchN. ==== libspectre ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== libstorage-ng ==== Version update (4.5.193 -> 4.5.197) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Spanish) (bsc#1149754) - 4.5.197 - Translated using Weblate (Portuguese (Brazil)) (bsc#1149754) - 4.5.196 - Translated using Weblate (Italian) (bsc#1149754) - merge gh#openSUSE/libstorage-ng#989 - simplify memory handling in SystemCmd class - 4.5.195 - Translated using Weblate (German) (bsc#1149754) - 4.5.194 ==== libunwind ==== Version update (1.8.0 -> 1.8.1) - Update to 1.8.1: * Fix issue #713 by @cshung in #717 * Add do-release script by @bregma in #725 * Backport dotnet-runtime fixes to the 1.8 branch by @bregma in #726 * [v1.8] Make tests installable by @bregma in #722 * Bump version to 1.8.1 by @bregma in #727 ==== libvdpau ==== - Use %patch -P N instead of deprecated %patchN. ==== libvisual ==== - Use %patch -P N instead of deprecated %patchN. ==== libvorbis ==== Subpackages: libvorbis0 libvorbisenc2 libvorbisfile3 - Use %patch -P N instead of deprecated %patchN. ==== libxcb ==== Version update (1.16 -> 1.16.1) Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1 - Update to version 1.16.1 * This release fixes build issues for Windows & NetBSD platforms * For those building for 32-bit platforms, it also enables use of the "large file" APIs - though xcb mainly uses stat() calls on sockets, not normal files. - Use %patch -P N instead of deprecated %patchN. ==== live555 ==== Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 libliveMedia112 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== lmdb ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== lomoco ==== - Use %patch -P N instead of deprecated %patchN. ==== luajit ==== Version update (5.1.2.1.0+git.1693350652.41fb94d -> 5.1.2.1.0+git.1707061634.0d313b2) - Update to version 5.1.2.1.0+git.1707061634.0d313b2: * Rework stack overflow handling. * Preserve keys with dynamic values in template tables when saving bytecode. * Prevent include of luajit_rolling.h. * Fix documentation bug about '\z' string escape. * Fix zero stripping in %g number formatting. * Fix unsinking of IR_FSTORE for NULL metatable. * DynASM/x86: Add endbr instruction. * MIPS64 R2/R6: Fix FP to integer conversions. * Add cross-32/64 bit and deterministic bytecode generation. * DynASM/x86: Allow [&expr] operand. * Check for IR_HREF vs. IR_HREFK aliasing in non-nil store check. * Respect jit.off() on pending trace exit. * Simplify handling of instable types in TNEW/TDUP load forwarding. * Only emit proper parent references in snapshot replay. * Fix anchoring for string buffer set() method (again). * ARM: Fix stack restore for FP slots. * Document workaround for multilib vs. cross-compiler conflict. * Fix anchoring for string buffer set() method. * Fix runtime library flags for MSVC debug builds. * Fix .debug_abbrev section in GDB JIT API. * Optimize table.new() with constant args to (sinkable) IR_TNEW. * Emit sunk IR_NEWREF only once per key on snapshot replay. * Fix last commit. * x86/x64: Don't fuse loads across IR_NEWREF. * Improve last commit. * x86/x64: Don't fuse loads across table.clear. * x86/x64: Add more red zone checks to assembler backend. * Add stack check to pcall/xpcall. * Invalidate SCEV entry when returning to lower frame. * FFI: Fix pragma push stack limit check and throw on overflow. * ARM64: Fix disassembly of ldp/stp offsets. * Check for upvalue state transition in IR_UREFO. * x64: Properly fix __call metamethod return dispatch. * Windows/x86: _BitScan*64 are only available on 64 bit archs. * Add 'cc' file type for saving bytecode. * FFI/Windows: Fix type declaration for int64_t and uint64_t. * FFI: Fix dangling reference to CType in carith_checkarg(). * DynASM/ARM64: Support ldp/stp of q registers. * ARM64: Use ADR and ADRP to form constants. * ARM64: Fix disassembly of U12 loads. * ARM64: Unify constant register handling in interpreter. * ARM: Fix register hint for FFI calls with FP results. * ARM64: Fix register hint for FFI calls with FP results. * ARM64: Restore fp before sp in C stack unwinders. * FFI: Fix ffi.abi("pauth"). * Maintain chain invariant in DCE. * LJ_FR2: Fix stack checks in vararg calls. * Follow-up fix for stack overflow handling cleanup. * Handle OOM error on stack resize in coroutine.resume and lua_checkstack. * Restore cur_L for specific Lua/C API use case. * Consistently use 64 bit constants for 64 bit IR instructions. * ARM64: Fix IR_HREF code generation for constant FP keys. * ARM64: Fuse negative 32 bit constants into arithmetic ops again. * Handle all stack layouts in (delayed) TRACE vmevent. * Add missing coercion when recording select(string, ...) * Cleanup stack overflow handling. * Windows/ARM64: Add MSVC cross-build support for x64 to ARM64. * IR_MIN/IR_MAX is non-commutative due to underlying FPU ops. * ARM64: Set fixed interpreter registers before rethrow. * Windows/ARM64: Update install docs. * Windows: Call C++ destructors without compiling with /EHa. * Windows: Pass scratch CONTEXT record to RtlUnwindEx. * ARM64: External unwinder already restores non-volatile registers. * Windows/ARM64: Fix exception unwinding (again). * Windows/ARM64: Fix typo in exception unwinding. * FFI: Fix 64 bit shift fold rules. * Windows/ARM64: Support Windows calling conventions. * Windows/ARM64: Fix exception unwinding. * ARM64: Remove unneeded IRCALL_* defs for math intrinsics. * Fix Cygwin build. * Allow path overrides in genversion.lua with minilua, too. * Windows/ARM64: Add initial support. * Improve architecture detection error messages. * ARM64: Fuse rotates into logical operands. * ARM64: Don't fuse sign extensions into logical operands. * ARM64: Disassemble rotates on logical operands. * ARM: Fix stack check code generation. * ARM64: Fix LDP/STP fusion (again). * ARM64: Ensure branch is in range before emitting TBZ/TBNZ. * Fix mcode limit check for non-x86 archs. * ARM64: Improve BC_JLOOP. * ARM64: Improve integer IR_MUL code generation. * ARM64: Simplify code generation for IR_STRTO. * ARM64: Use RID_TMP instead of scratch register in more places. * ARM64: Improve IR_OBAR code generation. * ARM64: Improve IR_UREF code generation. * ARM64: Improve IR_HREF code generation. * ARM64: Reload BASE via GL instead of spilling it. * ARM64: Consolidate 32/64-bit constant handling in assembler. * ARM64: Tune emit_lsptr. Avoid wrong load for asm_prof. * ARM64: Inline only use of emit_loada. * ARM64: Improve K13 constant rematerialization. * Add NaN check to IR_NEWREF. * Allow override of paths for genversion.lua. * Fix native MinGW build. - Also refresh luajit-s390x.patch from the rebased pull request. ==== m4 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== mc ==== Version update (4.8.30 -> 4.8.31) Subpackages: mc-lang - Use %patch -P N instead of deprecated %patchN. - Update to 4.8.31 - Core * Minimal version of GLib is 2.32.0. - VFS * fish: drop support of native FISH server and protocol. Rename VFS to shell (#4232) * extfs; - uc1541 extfs: update up to 3.6 version (#4511) - s3+: port to Python3 (#4324) * Support for LZO/LZOP compression format (#4509) - Misc * Skins: add color for non-printable characters in editor (#4433) - Fixes * FTBFS on FreeBSD with ext2fs attribute support (#4493) * Broken stickchars (-a) mode (#4498) * Wrong timestamp after resuming of file copy operation (#4499) * Editor: wrong deletion of marked column (#3761) * Diff viewer: segfault when display of line numbers is enabled (#4500) * Tar VFS: broken handling of hard links (#4494) * Sftp VFS: failure establishing SSH session due hashed host names in ~/.ssh/known_hosts (#4506) * Shell VFS: incorrect file names with cyrillic or diacritic symbols (#4507) * mc.ext.ini: incorrect description of of how multiple sections and keys with same names are processed (#4497) * mc.ext.ini: unescaped backslash \ is treated as invalid escape sequence in glib-2.77.3 and glib-2.79 (#4502) * mc.ext.ini: file "Makefile.zip" is handled as Makefile not as zip-arhive (#4419) - Rebase mc-ext-audio.patch, mc-extd-xdg.patch and mc-vfs-fish-deleted_source_file.patch ==== netcontrol ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== openblas_openmp ==== Version update (0.3.25 -> 0.3.26) - Remove DYNAMIC_LIST for aarch64 for older gcc versions: This has been fixed upstream. - Update to version 0.3.26: * General: - Improved the version of openblas.pc that is created by the CMAKE build. - Fixed a CMAKE-specific build problem on older versions of MacOS. - Worked around linking problems on old versions of MacOS. - Corrected installation location of the lapacke_mangling header in CMAKE builds. - Added type declarations for complex variables to the MSVC-specific parts of the LAPACK header. - Significantly sped up ?GESV for small problem sizes by introducing a lower bound for multithreading. - Imported additions and corrections from the Reference-LAPACK project: + Added new LAPACK functions for truncated QR with pivoting (Reference-LAPACK PRs 891&941). + Handle miscalculation of minimum work array size in corner cases (Reference-LAPACK PR 942). + Fixed use of uninitialized variables in ?GEDMD and improved inline documentation. + Fixed use of uninitialized variables (and consequential failures) in ?BBCSD. + Added tests for the recently introduced Dynamic Mode Decomposition functions. + Fixed several memory leaks in the LAPACK testsuite. + Fixed counting of testsuite results by the Python script. * x86-64: - Fixed computation of CASUM on SkylakeX and newer targets in the special case that AVX512 is not supported by the compiler or operating environment. - Fixed potential undefined behaviour in the CASUM/ZASUM kernels for AVX512 targets. - worked around a problem in the pre-AVX kernels for GEMV * arm64: - Sped up SGEMM and DGEMM on Neoverse V1 and N1. - Sped up ?DOT on SVE-capable targets. - Reduced the number of targets in DYNAMIC_ARCH builds by eliminating functionally equivalent ones. * POWER: - Improved the SGEMM kernel for POWER10. - Fixed compilation with (very) old versions of gcc. - Fixed detection of old 32bit PPC targets in CMAKE-based builds. - Added autodetection of the POWERPC 7400 subtype. - Fixed CMAKE-based compilation for PPCG4 and PPC970 targets. * LONGARCH64: - Added and improved optimized kernels for almost all BLAS functions. ==== openblas_pthreads ==== Version update (0.3.25 -> 0.3.26) - Remove DYNAMIC_LIST for aarch64 for older gcc versions: This has been fixed upstream. - Update to version 0.3.26: * General: - Improved the version of openblas.pc that is created by the CMAKE build. - Fixed a CMAKE-specific build problem on older versions of MacOS. - Worked around linking problems on old versions of MacOS. - Corrected installation location of the lapacke_mangling header in CMAKE builds. - Added type declarations for complex variables to the MSVC-specific parts of the LAPACK header. - Significantly sped up ?GESV for small problem sizes by introducing a lower bound for multithreading. - Imported additions and corrections from the Reference-LAPACK project: + Added new LAPACK functions for truncated QR with pivoting (Reference-LAPACK PRs 891&941). + Handle miscalculation of minimum work array size in corner cases (Reference-LAPACK PR 942). + Fixed use of uninitialized variables in ?GEDMD and improved inline documentation. + Fixed use of uninitialized variables (and consequential failures) in ?BBCSD. + Added tests for the recently introduced Dynamic Mode Decomposition functions. + Fixed several memory leaks in the LAPACK testsuite. + Fixed counting of testsuite results by the Python script. * x86-64: - Fixed computation of CASUM on SkylakeX and newer targets in the special case that AVX512 is not supported by the compiler or operating environment. - Fixed potential undefined behaviour in the CASUM/ZASUM kernels for AVX512 targets. - worked around a problem in the pre-AVX kernels for GEMV * arm64: - Sped up SGEMM and DGEMM on Neoverse V1 and N1. - Sped up ?DOT on SVE-capable targets. - Reduced the number of targets in DYNAMIC_ARCH builds by eliminating functionally equivalent ones. * POWER: - Improved the SGEMM kernel for POWER10. - Fixed compilation with (very) old versions of gcc. - Fixed detection of old 32bit PPC targets in CMAKE-based builds. - Added autodetection of the POWERPC 7400 subtype. - Fixed CMAKE-based compilation for PPCG4 and PPC970 targets. * LONGARCH64: - Added and improved optimized kernels for almost all BLAS functions. ==== openslp ==== Subpackages: libslp1 openslp-server - Use %patch -P N instead of deprecated %patchN. ==== openssl-3 ==== Subpackages: libopenssl3 - Build the 32bit flavor of libopenssl-3-fips-provider [bsc#1220232] * Update baselibs.conf ==== openssl ==== - Build the 32bit flavor of libopenssl-fips-provider [bsc#1220232] * Update baselibs.conf ==== pcmciautils ==== - Use %patch -P N instead of deprecated %patchN. ==== pcr-oracle ==== - Remove fix_efi_measure.patch - Add fix_efi_measure_and_shim.patch (bsc#1219807) ==== pcre ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pcsc-lite ==== Subpackages: libpcsclite1 - Use %patch -P N instead of deprecated %patchN. ==== pentaho-libxml ==== - Use %patch -P N instead of deprecated %patchN. ==== perl-IPC-Run3 ==== Version update (0.048 -> 0.49.0) - updated to 0.049 see /usr/share/doc/packages/perl-IPC-Run3/Changes 0.049 2024-01-20 - avoid some uninitialized warnings in ProfLogReader - improve errno handling on Windows (thanks, Graham Ollis) - avoid leaking fds (thanks, Dan Book) - fix typos in docs (thanks, Yoshikazu Sawa and Jakub Wilk) ==== perl-LWP-Protocol-https ==== Version update (6.110.0 -> 6.130.0) - updated to 6.13 see /usr/share/doc/packages/perl-LWP-Protocol-https/Changes 6.13 2024-02-06 01:00:50Z - Fix ssl upgrade for regular host names (GH#77) (Axel Burri) 6.12 2024-01-22 17:51:31Z - Enable MultiHomed for IO::Socket::SSL (GH#61) (âicolas â.) - Making it possible to use IPv6 in https call through https proxy environment (in case of using CONNECT method to create a tunnel) (GH#74) (Dmitriy Shamatrin) ==== perl-URI ==== Version update (5.210.0 -> 5.270.0) - updated to 5.27 see /usr/share/doc/packages/perl-URI/Changes 5.27 2024-02-09 15:01:24Z - Add missing NAME section to POD of URI::geo (GH#142) (gregor herrmann) 5.26 2024-02-02 19:04:40Z - Add URI::geo (GH#141) (david-dick) 5.25 2024-01-27 16:11:41Z - cache scheme so it never attempt to load it again (GH#55) (mschae94) 5.24 2024-01-26 04:36:32Z - Really revert "use Scalar::Util::reftype instead of ref to check for ARRAY" (GH#136) (Olaf Alders) 5.23 2024-01-25 21:02:18Z - Revert the reftype change introduced in 5.22 as it causes warnings. (GH#134) (Olaf Alders) 5.22 2024-01-25 15:22:54Z - Use Scalar::Util::reftype instead of ref to check for ARRAY (GH#132) (Jacques Deguest) ==== perl-libwww-perl ==== Version update (6.720.0 -> 6.760.0) - updated to 6.76 see /usr/share/doc/packages/perl-libwww-perl/Changes 6.76 2024-01-25 18:31:25Z - Simplify code slightly for Perl v5.8+ (GH#455) (James Raspass) - Move HTTP::CookieJar::LWP to test requires (GH#453) (Olaf Alders) 6.75 2024-01-24 14:29:17Z - Update lwp-request to suport PATCH HTTP method (GH#452) (Javier Puche) 6.74 2024-01-22 17:48:18Z - Making it possible to use IPv6 in https call through https proxy environment (in case of using CONNECT method to create a tunnel) (GH#450) (Dmitriy Shamatrin) 6.73 2024-01-13 20:19:09Z - Fix no_proxy subdomain matching (GH#447) (Axel Burri) ==== phalanx ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Use %patch -P N instead of deprecated %patchN. ==== ppp ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pptp ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== procinfo ==== - Use %patch -P N instead of deprecated %patchN. ==== procmail ==== - Use %patch -P N instead of deprecated %patchN. ==== procps ==== Subpackages: libprocps8 - Use %patch -P N instead of deprecated %patchN. ==== psmisc ==== - Use %patch -P N instead of deprecated %patchN. ==== ptools ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pwgen ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== python-cffi ==== - drop unnecessary buildrequire python-py ==== python-pygit2 ==== Version update (1.14.0 -> 1.14.1) - update to 1.14.1: * Now `Object.filemode` returns `enums.FileMode` and `Reference.type` returns `enums.ReferenceType` * Fix tests on Fedora 40 * Deprecate `ReferenceType.OID`, use `ReferenceType.DIRECT` * Deprecate `ReferenceType.LISTALL`, use `ReferenceType.ALL` ==== python311 ==== Subpackages: python311-curses python311-dbm - (bsc#1219666, CVE-2023-6597) Add CVE-2023-6597-TempDir-cleaning-symlink.patch (patch from gh#python/cpython!99930) fixing symlink bug in cleanup of tempfile.TemporaryDirectory. - Remove double definition of /usr/bin/idle%%{version} in %%files. ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - (bsc#1219666, CVE-2023-6597) Add CVE-2023-6597-TempDir-cleaning-symlink.patch (patch from gh#python/cpython!99930) fixing symlink bug in cleanup of tempfile.TemporaryDirectory. - Remove double definition of /usr/bin/idle%%{version} in %%files. ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Backports and bugfixes: * [openSUSE]: Increase default phys bits to 42, if host supports that (bsc#1205978, bsc#1219977) * vfio/pci: Clear MSI-X IRQ index always (bsc#1220275) ==== qpdf ==== Version update (11.8.0 -> 11.9.0) - Update to 11.9.0: * CLI Enhancements - Add new command-line arguments --file and --range which can be used within --pages in place of positional arguments. Allow - -file to be used inside of --overlay and --underlay as well. These new options can be freely intermixed with positional arguments. - Allow --overlay and --underlay to be repeated. They may appear multiple times on the command-line and will be stacked in the order in which they appear. In QPDFJob JSON (see QPDFJob: a Job-Based Interface), the overlay and underlay keys may contain arrays. For compatibility, they may also contain a single dictionary. * Library Enhancements - Add file(), range(), and password() to QPDFJob::PagesConfig as an alternative to pageSpec. - Add QPDFObjectHandle::writeJSON to write the JSON representation of the object directly to a pipeline. This is much faster than calling QPDFObjectHandle::getJSON. * Other Enhancements - There have been non-user-visible improvements to the reliability of the JSON parser. The JSON parser has been added to fuzz testing with OSS-Fuzz. * Remove openssl3_2-fuzz-16214.patch fixed upstream ==== rpm ==== Subpackages: librpmbuild10 - added a missing %patch NR conversion ==== screen ==== - Use %patch -P N instead of deprecated %patchN. ==== sharutils ==== - Use %patch -P N instead of deprecated %patchN. ==== slang ==== - Drop slsh/lib/test/test_timestamp.sl: Do not test timestamps but trust on upstream (calculations in leap years are off in the test). ==== susefirewall2-to-firewalld ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== tcl ==== Version update (8.6.13 -> 8.6.14) - Version 8.6.14: * Backport TIP #402: path name starting with '//' not replaced by '/' also on Cygwin and QNX * (bug) [8f7fde] string compare failing on big endian * (bug) [3e8074] y2k38 problem in [interp limit time -seconds] * (bug) [e3dcab] crash with tcl_precision equal 15..18 * (bug) [d19fe0] output replacement character on incomplete sequences in unicode encoding * (bug) [534172] sporadic crash in memchan thread cleanup. * (bug) [f9eafc] throw error in zip command when file comment/filename to long or not iso-latin-1 * (bug)[183a1a] Prevent BO by Tcl_UtfToExternal * (bug) [ea69b0], crash when using a channel transformation on TCP client socket * (bug)[026575] Prevent invalid read in Tcl_UtfToUniChar * (rfe) Allow empty mode in [chan create] to allow refchan version of [socket -server] * (bug) [ab123c] argument position overflow in [scan %num$mode] * (bug) [784bef] tailcall crash * (bug) [af3ebc] clock scan and clock add bugs in error cases / with abbreviated options * (bug) [66ffaf] incomplete double byte encoding sequences ignored like in [encoding convertfrom gb12345 x] * (rfe) [c54e4a] fork multithreading performance by using vfork/spawn when supported * Update libtommath to version 1.2.1 * (bug) [60cacf] Fix tclvfs tkt Segmentation Fault at interpreter exit when tclvfs loaded. * (bug) [b5ac3e] Tcl_GetUniChar reads beyond string length for ASCII strings * Unicode 15.1 * (bug) [00655c] ClockGetdatefieldsObjCmd(): avoid signed integer overflow and platform-dependent behavior * TIP #662: Tcl_VarEval is not depreciated any more * (bug) [7b3167] tclOO.c: initialize fakeObject.refCount * (bug) [7371b6] AddressSanitizer use-after-return detection breaks NRE tests, coroutines * (bug)[32b889] prevent spurious errors from [clock format] * (rfe) [0ac9d0] Don't call getsockname(2) in Tcl_MakeFileChannel(3) unless absolutely necessary. Permits better constraining of Tcl/tclsh via OpenBSD's pledge(2) or similar mechanisms. Minor rewrite. * (feature) Adapt tcltest to support Tcl 9. * (bug) [fd27ad] doc change of Tcl_PkgRequire & friends: version string specification refers to "package require". * (bug) [16e25e] error for [tcl_startOfPreviousWord string end-1] * [db4f28] segfault when Tcl_ReadChars is called with unicode object * fix/document Tcl_ObjPrintf with "ll" modifier * [8e666d] endless loop when redefining proc ::history * [86b3c1] endless loop when ::unknown is moved into a namespace - Obsoleted patches: * tcl-interp-limit-time.patch * tcl-refchan-mode-needed.patch * tcl-string-compare.patch ==== tgt ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== time ==== - Use %patch -P N instead of deprecated %patchN. ==== unbound ==== Version update (1.19.0 -> 1.19.1) Subpackages: libunbound8 unbound-anchor - Update to 1.19.1: * Bug Fixes: [bsc#1219823, CVE-2023-50387][bsc#1219826, CVE-2023-50868] - Fix CVE-2023-50387, DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers. - Fix CVE-2023-50868, NSEC3 closest encloser proof can exhaust CPU. ==== update-alternatives ==== - Prepare for RPM 4.20. ==== xen ==== Subpackages: xen-libs xen-tools-domU - bsc#1219885 - VUL-0: CVE-2023-46841: xen: x86: shadow stack vs exceptions from emulation stubs (XSA-451) xsa451.patch ==== xorg-x11-fonts ==== Subpackages: xorg-x11-fonts-core xorg-x11-fonts-legacy - encodings-1.1.0 * Add a meson build system * Add the ISO8859-14 encoding ==== xorg-x11-fonts-converted ==== - encodings-1.1.0 * Add a meson build system * Add the ISO8859-14 encoding ==== yast2-bootloader ==== Version update (5.0.5 -> 5.0.6) - Feature: Do not timeout boot menue in systemd-boot. (bsc#1216366) - 5.0.6

1 0

New Arm Tumbleweed snapshot 20240229 released!
by Guillaume Gardet 01 Mar '24

01 Mar '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: accountsservice ca-certificates-mozilla (2.62 -> 2.66) cpupower dvd+rw-tools emacs-w3m (1.4.632+546+gf8819bca -> 1.4.632+563+gdc5136d2) exiv2 (0.28.1 -> 0.28.2) gstreamer-plugins-rs (0.11.3 -> 0.12.2) libjxl (0.10.0 -> 0.10.1) libjxl-gtk (0.10.0 -> 0.10.1) libproxy-backend libproxy-client numactl opensc pcsc-asedriveiiie-usb pcsc-asekey pcsc-cyberjack pcsc-gempc pulseaudio python-atspi (2.46.0 -> 2.46.1) python-typing_extensions (4.9.0 -> 4.10.0) read-only-root-fs (1.0+git20220808.cd59f4f -> 1.0+git20240228.d85232a) tuned (2.21.0.0+git.670541d -> 2.22.1.2+git.86ac977) === Details === ==== accountsservice ==== Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0 - Rebase accountsservice-sysconfig.patch: to fix build with GCC 14 (bsc#1219909). ==== ca-certificates-mozilla ==== Version update (2.62 -> 2.66) - Updated to 2.66 state of Mozilla SSL root CAs (bsc#1220356) Added: - CommScope Public Trust ECC Root-01 - CommScope Public Trust ECC Root-02 - CommScope Public Trust RSA Root-01 - CommScope Public Trust RSA Root-02 - D-Trust SBR Root CA 1 2022 - D-Trust SBR Root CA 2 2022 - Telekom Security SMIME ECC Root 2021 - Telekom Security SMIME RSA Root 2023 - Telekom Security TLS ECC Root 2020 - Telekom Security TLS RSA Root 2023 - TrustAsia Global Root CA G3 - TrustAsia Global Root CA G4 Removed: - Autoridad de Certificacion Firmaprofesional CIF A62634068 - Chambers of Commerce Root - 2008 - Global Chambersign Root - 2008 - Security Communication Root CA - Symantec Class 1 Public Primary Certification Authority - G6 - Symantec Class 2 Public Primary Certification Authority - G6 - TrustCor ECA-1 - TrustCor RootCert CA-1 - TrustCor RootCert CA-2 - VeriSign Class 1 Public Primary Certification Authority - G3 - VeriSign Class 2 Public Primary Certification Authority - G3 - remove-trustcor.patch: removed, now upstream - do a versioned obsoletes of "openssl-certs". - use rpm 4.20 compatible patch syntax - Use %patch -P N instead of deprecated %patchN. ==== cpupower ==== Subpackages: cpupower-bash-completion libcpupower1 - Use %patch -P N instead of deprecated %patchN. ==== dvd+rw-tools ==== - Avoid comment out of patch application that leads to failure ot "osc service runall" - Use %patch -P N instead of deprecated %patchN. ==== emacs-w3m ==== Version update (1.4.632+546+gf8819bca -> 1.4.632+563+gdc5136d2) - Update to version 1.4.632+563+gdc5136d2: * * shimbun/sb-sankei.el (shimbun-sankei-login, shimbun-sankei-keep-login): Revert * * shimbun/sb-sankei.el (shimbun-sankei-get-headers): Add author's name to subject if possible (shimbun-sankei-login, shimbun-sankei-keep-login): Update cookies handling * * shimbun/sb-sankei.el (shimbun-sankei-get-headers-ranking) (shimbun-sankei-get-headers): Update regexps * * shimbun/sb-sankei.el (shimbun-sankei-get-headers): Minor fixes * Add ``lexical-binding: nil'' to many files * * shimbun/sb-sankei.el (shimbun-sankei-get-headers-ranking): New function (shimbun-sankei-get-headers): Use it for the sankeisyo group; minor improvements * * shimbun/sb-sankei.el: Fix it so to work again for almost groups * * w3m.el (w3m-fontify-anchors): Improve the way to find unsafe links * * shimbun/mew-shimbun.el (mew-shimbun-unseen-setup): Fix advice * * w3m.el (w3m-add-referer, w3m-puny-utf-16be): Fix custom types * * w3mhack.el (w3mhack-insert-git-revision, w3mhack-generate-load-file): Fix so to generate emacs-w3m-git-revision on Emacs 29 and up as well * * nnshimbun.el (nnshimbun-replace-date-header): Compile it if and only if it is necessary * * mew-shimbun.el (mew-shimbun-unseen-setup): Use advice-add instead of defadvice that's been marked obsolete in Emacs 30 * * w3m-util.el (w3m-delete-w3m-initial-frames): Doc fix * * mime-w3m.el (mime-display-message, kill-new): Use advice-add instead of defadvice that's been marked obsolete in Emacs 30 * Drop Emacs 27 support * * nnshimbun.el (nnshimbun-replace-date-header): Don't quote lambda form ==== exiv2 ==== Version update (0.28.1 -> 0.28.2) - update to 0.28.2 (bsc#1219870, CVE-2024-24826, bsc#1219871, CVE-2024-25112): * CVE-2024-24826: out-of-bounds read in QuickTimeVideo::NikonTagsDecoder. * CVE-2024-25112: denial of service due to unbounded recursion in QuickTimeVideo::multipleEntriesDecoder. ==== gstreamer-plugins-rs ==== Version update (0.11.3 -> 0.12.2) - Update to version 0.12.2: * Fixed - rtpgccbwe: Don't reset PTS/DTS to None as otherwise rtpsession won't be able to generate valid RTCP. - webrtcsink: Fix usage with 1.22. * Added - janusvrwebrtcsink: Add secret-key property. - janusvrwebrtcsink: Allow for string room ids and add string-ids property. - textwrap: Don't split on all whitespaces, especially not on non-breaking whitespace. - Update to version 0.12.1: * Added - gtk4: Create a window for testing purposes when running in gst-launch-1.0 or if GST_GTK4_WINDOW=1 is set. - webrtcsink: Add msid property. - Update to version 0.12.0: * Changed - ndi: ndisrc passes received data downstream without an additional copy, if possible. - webrtc: Cleanups to webrtcsrc/sink default signalling protocol, JavaScript implementation and server implementation. - webrtc: whipwebrtcsink is renamed to whipclientsink and deprecate old whipsink. * Fixed - gtk4: Fix Windows build when using EGL. - gtk4: Fix ARGB pre-multiplication with GTK 4.14. This requires building with the gtk_v4_10 or even better gtk_v4_14 feature. - gtk4: Fix segfault if GTK3 is used in the same process. - gtk4: Always draw background behind the video frame and not only when borders have to be added to avoid glitches. - livekitwebrtcsink: Add high-quality layer for video streams. - webrtc: Fix potential hang and fd leak in signalling server. - webrtc: Fix closing of WebSockets. - webrtchttp: Allow setting None for audio/video caps for WHEP. * Added - New awss3putobjectsink that works similar to awss3sink but with a different upload strategy. - New hlscmafsink element for writing HLS streams with CMAF/ISOBMFF fragments. - New inter plugin with intersink / intersrc elements that allow to connect different pipelines in the same process. - New janusvrwebrtcsink element for the Janus VideoRoom API. - New rtspsrc2 element. - New whipserversrc element. - gtk4: New background-color property for setting the color of the background of the frame and the borders, if any. - gtk4: New scale-filter property for defining how to scale the frames. - livesync: Add support for image formats. - ndi: Closed Caption support in ndisrc / ndisink. - textwrap: Add support for gaps. - tracers: Optionally only show late buffers in buffer-lateness tracer. - webrtc: Add support for custom headers. - webrtcsink: New payloader-setup signal to configure payloader elements. - webrtcsrc: Support for navigation events. ==== libjxl ==== Version update (0.10.0 -> 0.10.1) - Update to release 0.10.1 * reduce allocations and fixing speed regressions since 0.9.0 * resolve some bug in streaming encoding ==== libjxl-gtk ==== Version update (0.10.0 -> 0.10.1) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update to release 0.10.1 * reduce allocations and fixing speed regressions since 0.9.0 * resolve some bug in streaming encoding ==== libproxy-backend ==== - Drop pkgconfig(libsoup-3.0) BuildRequires: no longer needed. ==== libproxy-client ==== - Drop pkgconfig(libsoup-3.0) BuildRequires: no longer needed. ==== numactl ==== Subpackages: libnuma1 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== opensc ==== - Add CVE-2024-1454.patch. Fix for CVE-2024-1454 / bsc#1219868. ==== pcsc-asedriveiiie-usb ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pcsc-asekey ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pcsc-cyberjack ==== - Use %patch -P N instead of deprecated %patchN. ==== pcsc-gempc ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - Do not BuildRequire pkgconfig(webrtc-audio-processing-1) on big endian architectures (s390, s390x, ppc64) as the dependency is not available: * WebRTC echo canceller will be disabled there ==== python-atspi ==== Version update (2.46.0 -> 2.46.1) - Update to version 2.46.1: + Fix some implicit function declarations and other compiler warnings in the tests. + Remove some unused code. + Update the README to describe the module's current status. ==== python-typing_extensions ==== Version update (4.9.0 -> 4.10.0) - update to 4.10.0: This feature release adds support for PEP 728 (TypedDict with extra items) and PEP 742 (``TypeIs``). - Add support for PEP 728, supporting the `closed` keyword argument and the special `__extra_items__` key for TypedDict. Patch by Zixuan James Li. - Add support for PEP 742, adding `typing_extensions.TypeIs`. Patch by Jelle Zijlstra. - Drop runtime error when a read-only `TypedDict` item overrides a mutable one. Type checkers should still flag this as an error. Patch by Jelle Zijlstra. - Speedup `issubclass()` checks against simple runtime-checkable protocols by around 6% (backporting https://github.com/python/cpython/pull/112717, by Alex Waygood). - Fix a regression in the implementation of protocols where `typing.Protocol` classes that were not marked as `@runtime_checkable` would be unnecessarily introspected, potentially causing exceptions to be raised if the protocol had problematic members. Patch by Alex Waygood, backporting https://github.com/python/cpython/pull/113401. - obsoletes backport-recent-implementation-of-protocol.patch ==== read-only-root-fs ==== Version update (1.0+git20220808.cd59f4f -> 1.0+git20240228.d85232a) - Update to version 1.0+git20240228.d85232a: * etc/grub.d/01_suse_ro_root: Don't btrfs-mount-subvol inside grub-emu ==== tuned ==== Version update (2.21.0.0+git.670541d -> 2.22.1.2+git.86ac977) - Update to version 2.22.1.2+git.86ac977: * fix-error * new release (2.22.1) * Rename plugin_intel_uncore.py to plugin_uncore.py * Rename IntelUncorePlugin to UncorePlugin * network-throughput: increased net.ipv4.tcp_rmem default value * spec: cleanup, drop RHEL dynamic_tuning customization * new release (2.22.0) - Polkit changes got accepted by security review (bsc#1220081) - Update to version 2.22.0.rc.1.0+git.ad314ee: * Disable dynamic tuning by default * plugin_cpu: improved backward compat. of the pm_qos parser warnings - Update to version 2.22.0-rc.1.0+git.ad314ee: * new release (2.22.0-rc.1) * Add missing install command for tuned-ppd.py * Fixes for intel uncore plugin * Add intel uncore plugin * scheduler: add option for ignoring IRQs affinity * Configure the PPD-to-TuneD daemon to work as a replacement of PPD * Implement the PPD-to-TuneD daemon * Make DBusExporter reusable for other services * Do not report errors on systems with no wifi * Add an ACPI plugin * plugin_cpu: Support cstate settings of `pm_qos_resume_latency_us` * Skip calling rpm-ostree kargs in no-op case * Expand sysctl plugin options when reporting overrides * profiles: add energy_performance_preference hints to profiles * hotplug: do not report ENOENT errors on device remove * profiles: Improve 'isolated_cores=' help text * Be explicit about amd-pstate support * Fixed REs escape sequences not to trigger SyntaxWarning * sap-hana-kvm-guest: fix whitespaces * Fix TextView to expand with window

1 0

New Arm Tumbleweed snapshot 20240228 released!
by Guillaume Gardet 29 Feb '24

29 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox (122.0.1 -> 123.0) apache2 apache2-manual apache2-prefork apache2-utils apparmor c-ares (1.26.0 -> 1.27.0) cdparanoia chrony (4.4 -> 4.5) clamav cpio cronie cups delayacct-utils dhcp distribution-logos-openSUSE dmidecode docbook-xsl docbook_4 dracut (059+suse.554.g6144bf71 -> 059+suse.557.g8a62bf73) drbd drbd-utils dump emacs-jinx (1.2 -> 1.3) file fltk freecell-solver fwupd (1.9.13 -> 1.9.14) gcc12 gdb giflib (5.2.1 -> 5.2.2) git (2.43.2 -> 2.44.0) gle glyr gnutls gpsd greybird-geeko-theme gsl guile icewm icewm-theme-branding kplotting (5.114.0 -> 5.115.0) libapparmor libgpg-error (1.47 -> 1.48) libimobiledevice-glue (1.0.0+git3.20230513 -> 1.1.0+git0.20240222) libixion (0.18.1 -> 0.19.0) libksba (1.6.5 -> 1.6.6) liborcus (0.18.1 -> 0.19.2) libstorage-ng (4.5.191 -> 4.5.193) libunistring (1.1 -> 1.2) mokutil mozilla-nss multipath-tools (0.9.8~1+82+suse.dcd98a3 -> 0.9.8+83+suse.bcae610) ncurses (6.4.20240210 -> 6.4.20240224) npth (1.6 -> 1.7) nvidia-open-driver-G06-signed open-vm-tools openssh (9.3p2 -> 9.6p1) openssh-askpass-gnome (9.3p2 -> 9.6p1) openvpn python-PyYAML rubygem-airbrussh (1.5.0 -> 1.5.1) rubygem-attr_required (1.0.1 -> 1.0.2) rubygem-bootsnap (1.17.0 -> 1.17.1) rubygem-childprocess (4.1.0 -> 5.0.0) rubygem-concurrent-ruby (1.2.2 -> 1.2.3) rubygem-debase-ruby_core_source (3.2.3 -> 3.3.1) rubygem-debug_inspector (1.1.0 -> 1.2.0) rubygem-domain_name (0.6.20231109 -> 0.6.20240107) rubygem-excon (0.104.0 -> 0.109.0) rubygem-fog-core (2.3.0 -> 2.4.0) rubygem-google-protobuf (3.25.1 -> 3.25.2) rubygem-googleapis-common-protos-types (1.10.0 -> 1.11.0) rubygem-haml (6.2.3 -> 6.3.0) rubygem-hashdiff (1.0.1 -> 1.1.0) rubygem-hoe (4.1.0 -> 4.2.0) rubygem-importmap-rails (1.2.3 -> 2.0.1) rubygem-json (2.6.3 -> 2.7.1) rubygem-json-jwt (1.16.3 -> 1.16.5) rubygem-json_pure (2.6.3 -> 2.7.1) rubygem-mime-types (3.5.1 -> 3.5.2) rubygem-mime-types-data (3.2023.1003 -> 3.2023.1205) rubygem-net-ldap (0.18.0 -> 0.19.0) rubygem-net-ssh (7.2.0 -> 7.2.1) rubygem-nio4r (2.6.1 -> 2.7.0) rubygem-omniauth (2.1.1 -> 2.1.2) rubygem-parallel (1.23.0 -> 1.24.0) rubygem-parallel_tests (4.3.0 -> 4.4.0) rubygem-passenger (6.0.18 -> 6.0.20) rubygem-pdf-reader (2.11.0 -> 2.12.0) rubygem-pg (1.4.5 -> 1.5.4) rubygem-pry-doc (1.4.0 -> 1.5.0) rubygem-public_suffix (5.0.3 -> 5.0.4) rubygem-puma-5 (5.6.7 -> 5.6.8) rubygem-puma (6.4.0 -> 6.4.2) rubygem-rack-2.2 (2.2.8 -> 2.2.8.1) rubygem-rack (3.0.8 -> 3.0.9.1) rubygem-rack-oauth2 (2.2.0 -> 2.2.1) rubygem-rack-protection (3.1.0 -> 4.0.0) rubygem-rake-compiler (1.2.5 -> 1.2.6) rubygem-regexp_parser (2.8.2 -> 2.9.0) rubygem-rice (4.1.0 -> 4.2.1) rubygem-rspec-rails (6.1.0 -> 6.1.1) rubygem-ruby_parser (3.20.3 -> 3.21.0) rubygem-sexp_processor (4.17.0 -> 4.17.1) rubygem-slim (5.2.0 -> 5.2.1) rubygem-sshkit (1.21.6 -> 1.22.0) rubygem-stimulus-rails (1.3.0 -> 1.3.3) rubygem-swd (2.0.2 -> 2.0.3) rubygem-tzinfo-data (1.2023.3 -> 1.2023.4) rubygem-webfinger (2.1.2 -> 2.1.3) salt sbl sendmail setserial sha1collisiondetection slang sord soundtouch spamassassin speex splix spu-tools susepaste switcheroo-control syslogd system-config-printer sysvinit thin-provisioning-tools (1.0.11 -> 1.0.12) tigervnc transfig upower (1.90.2 -> 1.90.2+15) usbutils virtiofsd vlc xauth xdm xf86-input-evdev xf86-input-wacom xf86-video-mga xf86-video-nouveau xf86-video-nv xf86-video-vesa xfsdump xinetd xinit xkeyboard-config xmlsec1 xorg-x11-server xrandr yast2-trans (84.87.20240219.f6e4117fe0 -> 84.87.20240224.f7ab2886c1) zlib (1.3 -> 1.3.1) === Details === ==== MozillaFirefox ==== Version update (122.0.1 -> 123.0) - Mozilla Firefox 123.0 https://www.mozilla.org/en-US/firefox/123.0/releasenotes/ MFSA 2024-05 (bsc#1220048) * CVE-2024-1546 (bmo#1843752) Out-of-bounds memory read in networking channels * CVE-2024-1547 (bmo#1877879) Alert dialog could have been spoofed on another site * CVE-2024-1554 (bmo#1816390) fetch could be used to effect cache poisoning * CVE-2024-1548 (bmo#1832627) Fullscreen Notification could have been hidden by select element * CVE-2024-1549 (bmo#1833814) Custom cursor could obscure the permission dialog * CVE-2024-1550 (bmo#1860065) Mouse cursor re-positioned unexpectedly could have led to unintended permission grants * CVE-2024-1551 (bmo#1864385) Multipart HTTP Responses would accept the Set-Cookie header in response parts * CVE-2024-1555 (bmo#1873223) SameSite cookies were not properly respected when opening a website from an external browser * CVE-2024-1556 (bmo#1870414) Invalid memory access in the built-in profiler * CVE-2024-1552 (bmo#1874502) Incorrect code generation on 32-bit ARM devices * CVE-2024-1553 (bmo#1855686, bmo#1867982, bmo#1871498, bmo#1872296, bmo#1873521, bmo#1873577, bmo#1873597, bmo#1873866, bmo#1874080, bmo#1874740, bmo#1875795, bmo#1875906, bmo#1876425, bmo#1878211, bmo#1878286) Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8, and Thunderbird 115.8 * CVE-2024-1557 (bmo#1746471, bmo#1848829, bmo#1864011, bmo#1869175, bmo#1869455, bmo#1869938, bmo#1871606) Memory safety bugs fixed in Firefox 123 - requires NSS 3.97 ==== apache2 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apache2-manual ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apache2-prefork ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apache2-utils ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - Fix systemd userdb access in unix-chkpwd ==== c-ares ==== Version update (1.26.0 -> 1.27.0) - c-ares 1.27.0 Security: * Moderate. CVE-2024-25629. Reading malformatted /etc/resolv.conf, /etc/nsswitch.conf or the HOSTALIASES file could result in a crash. GHSA-mg26-v6qh-x48q (CVE-2024-25629, bsc#1220279) Features: * New function ares_queue_active_queries() to retrieve number of in-flight queries. PR #712 * New function ares_queue_wait_empty() to wait for the number of in-flight queries to reach zero. PR #710 * New ARES_FLAG_NO_DEFLT_SVR for ares_init_options() to return a failure if no DNS servers can be found rather than attempting to use 127.0.0.1. This also introduces a new ares status code of ARES_ENOSERVER. PR #713 Changes: * EDNS Packet size should be 1232 as per DNS Flag Day. PR #705 Bugfixes: * Fix warning due to ignoring return code of write(). PR #709 * CMake: don't override target output locations if not top-level. Issue #708 * Fix building c-ares without thread support. PR #700 ==== cdparanoia ==== Subpackages: libcdda_interface0 libcdda_paranoia0 - Use %patch -P N instead of deprecated %patchN. ==== chrony ==== Version update (4.4 -> 4.5) Subpackages: chrony-pool-openSUSE - Use %patch -P N instead of deprecated %patchN. - Update to version 4.5: * Add support for AES-GCM-SIV in GnuTLS * Add support for corrections from PTP transparent clocks * Add support for systemd socket activation * Fix presend in interleaved mode * Fix reloading of modified sources from sourcedir ==== clamav ==== Subpackages: libclamav9 libfreshclam2 - Use %patch -P N instead of deprecated %patchN. ==== cpio ==== Subpackages: cpio-mt - Use %autopatch instead of deprecated %patchN. ==== cronie ==== Subpackages: cron - Use %patch -P N instead of deprecated %patchN. ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - Use %patch -P N instead of deprecated %patchN. ==== delayacct-utils ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== dhcp ==== Subpackages: dhcp-relay dhcp-server - Use %patch -P N instead of deprecated %patchN. ==== distribution-logos-openSUSE ==== Subpackages: distribution-logos-openSUSE-Aeon distribution-logos-openSUSE-Tumbleweed distribution-logos-openSUSE-icons - Add handling for Leap Micro 6.X and Leap 16.X ==== dmidecode ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== docbook-xsl ==== - Use %patch -P N instead of deprecated %patchN. ==== docbook_4 ==== - Use %patch -P N instead of deprecated %patchN. ==== dracut ==== Version update (059+suse.554.g6144bf71 -> 059+suse.557.g8a62bf73) - Update to version 059+suse.557.g8a62bf73: * fix(zfcp_rules): correct shellcheck regression when parsing ccw args (bsc#1220485) ==== drbd ==== Subpackages: drbd-kmp-default - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== drbd-utils ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== dump ==== - Use %patch -P N instead of deprecated %patchN. ==== emacs-jinx ==== Version update (1.2 -> 1.3) - Depend on emacs-devel to make sure Emacs packaging macros are installed when not building with emacs-eln - Update to version 1.3: * jinx-mode: hack-local-variables - ignore mode variables * README: List packages needed on OpenSUSE * Fix interaction bug with the newest version of AUCTeX, where the major mode got changed unexpectedly. * No need to use hashed symbol as argument for derived-mode-p * Fix deadlock on macOS during Jinx startup (Fix #91, #113) * Revert "Simplify rescheduling" * timer-activate-when-idle: Pass DONT-WAIT=t ==== file ==== Subpackages: file-magic libmagic1 - Prepare for RPM 4.20 ==== fltk ==== - Use %patch -P N instead of deprecated %patchN. ==== freecell-solver ==== Subpackages: freecell-solver-presets libfreecell-solver0 - Set CMAKE_INSTALL_DOCDIR to work around incompatible changes added to macros.cmake. ==== fwupd ==== Version update (1.9.13 -> 1.9.14) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.14: * Correctly detect ARM32 and RISC-V UEFI binaries. * Correctly migrate the database schema from very old fwupd versions. * Fix DS-20 descriptors by opening the GUsbDevice earlier. * Fix updating the fingerprint reader on the Framework 13 and 16 laptop. * Fix warning when probing devices using the metadata allowlist. * Only recover the version format for specific devices. ==== gcc12 ==== - Use %patch -P N instead of deprecated %patchN. ==== gdb ==== - Use %patch -P N instead of deprecated %patchN. - Maintenance script qa.sh: * Add PR31214 kfail. * Add kfail for fails in gdb.reverse/solib-precsave.exp / gdb.reverse/solib-reverse.exp fixed by commit fe6356def67 ("PowerPC and aarch64: Fix reverse stepping failure"). * Extend PR31004 kfail. - Don't require %{python}-base for gdb-testresults package. - Fix debuginfod handling: * Enable for sle_version >= 150400 (bsc#1185605, jsc#PED-1149, jsc#PED-1138), SLE15-SP4 and later. * Enable for suse_version >= 1600, ALP and Tumbleweed. * Add back "BuildRequires: libdebuginfod1" to prevent selecting dummy variant. * Add "BuildRequires: debuginfod-client" to prevent unresolved due to conflict with dummy variant. * Add --with-debuginfod=yes to prevent silently dropping support. - Patches added (backport from master): * gdb-testsuite-add-missing-no-prompt-anchor-in-gdb.ba.patch * gdb-testsuite-remove-spurious-in-save_vars.patch ==== giflib ==== Version update (5.2.1 -> 5.2.2) - Update to version 5.2.2 * Fixes for CVE-2023-48161 (bsc#1217390), CVE-2022-28506 (bsc#1198880) * Address SF issue #138 Documentation for obsolete utilities still installed * Address SF issue #139: Typo in "LZW image data" page ("110_2 = 4_10") * Address SF issue #140: Typo in "LZW image data" page ("LWZ") * Address SF issue #141: Typo in "Bits and bytes" page ("filed") * Note as already fixed SF issue #143: cannot compile under mingw * Address SF issue #144: giflib-5.2.1 cannot be build on windows and other platforms using c89 * Address SF issue #145: Remove manual pages installation for binaries that are not installed too * Address SF issue #146: [PATCH] Limit installed man pages to binaries, move giflib to section 7 * Address SF issue #147 [PATCH] Fixes to doc/whatsinagif/ content * Address SF issue #148: heap Out of Bound Read in gif2rgb.c:298 DumpScreen2RGB * Declared no-info on SF issue #150: There is a denial of service vulnerability in GIFLIB 5.2.1 * Declared Won't-fix on SF issue 149: Out of source builds no longer possible * Address SF issue #151: A heap-buffer-overflow in gif2rgb.c:294:45 * Address SF issue #152: Fix some typos on the html documentation and man pages * Address SF issue #153: Fix segmentation faults due to non correct checking for args * Address SF issue #154: Recover the giffilter manual page * Address SF issue #155: Add gifsponge docs * Address SF issue #157: An OutofMemory-Exception or Memory Leak in gif2rgb * Address SF issue #158: There is a null pointer problem in gif2rgb * Address SF issue #159 A heap-buffer-overflow in GIFLIB5.2.1 DumpScreen2RGB() in gif2rgb.c:298:45 * Address SF issue #163: detected memory leaks in openbsd_reallocarray giflib/openbsd-reallocarray.c * Address SF issue #164: detected memory leaks in GifMakeMapObject giflib/gifalloc.c * Address SF issue #166: a read zero page leads segment fault in getarg.c and memory leaks in gif2rgb.c and gifmalloc.c * Address SF issue #167: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function at Line 321 of gif2rgb.c - Added patch: * giflib-5.2.2-no-imagemagick.patch + do not use ImageMagick to resize one gif file. It creates a build cycle. * 0001-Clean-up-memory-better-at-end-of-run-CVE-2021-40633.patch + upstream fix for CVE-2021-40633 (bsc#1200551) - Modified patches: * PIE.patch * reproducible.patch + rediff to changed context ==== git ==== Version update (2.43.2 -> 2.44.0) Subpackages: git-core git-email git-web perl-Git - update to 2.44.0: * "git checkout -B <branch>" now longer allows switching to a branch that is in use on another worktree. The users need to use "--ignore-other-worktrees" option. * Faster server-side rebases with git replay * Faster pack generation with multi-pack reuse * rebase auto-squashing now works in non-interactive mode * pathspec now understands attr, e.g. ':(attr:~binary) for selecting non-binaries, or builtin_objectmode for selecting items by file mode or other properties * Many other cli UI and internal improvements and extensions ==== gle ==== - Use SRPM base name for subpackages like -devel. - Delete old specfile constructs. - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== glyr ==== - Use %patch -P N instead of deprecated %patchN. ==== gnutls ==== Subpackages: libgnutls-dane0 libgnutls30 - Remove some if..endif that do not affect any result - Split documentation (some 1100 files) to separate subpackage ==== gpsd ==== - Use %patch -P N instead of deprecated %patchN. ==== greybird-geeko-theme ==== Subpackages: gtk2-metatheme-greybird-geeko gtk3-metatheme-greybird-geeko gtk4-metatheme-greybird-geeko metatheme-greybird-geeko-common - Use %patch -P N instead of deprecated %patchN. ==== gsl ==== Subpackages: libgsl27 libgslcblas0 - Use %patch -P N instead of deprecated %patchN. ==== guile ==== Subpackages: guile-modules-3_0 libguile-3_0-1 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== icewm ==== Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite - Use %patch -P N instead of deprecated %patchN. ==== icewm-theme-branding ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN - Add fix-web-browser-icon.patch: The Adwaita theme does not provide much legacy apps icon now, redirect icewm web-browser icon to the right place. See: https://gitlab.gnome.org/GNOME/adwaita-icon-theme/-/issues/163 https://gitlab.gnome.org/GNOME/adwaita-icon-theme/-/merge_requests/34/ ==== kplotting ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== libapparmor ==== - Fix systemd userdb access in unix-chkpwd ==== libgpg-error ==== Version update (1.47 -> 1.48) - Update to 1.48: * New configure option --with-libtool-modification. [T6619] * New option parser flag to detect commands given without a double dash. There is also the new meta command "command-mode" to set this flag via a config file. [T6978] * Added an es_fopen mode flag "sequential" with support on Windows. [rE7a42ff0ec9] * Added an es_fopen mode flag "wipe" to cleanup internal buffers at close time. [T6954] * New function gpgrt_wipememory. [T6964] * Improvements to setenv on Windows. [rE89e53ad90f] * Fixed call to estream-printf string filters. [T6737] * Many improvements to the yat2m tool. * Updates to the build system. * Interface changes relative to the 1.47 release: - ARGPARSE_FLAG_COMMAND NEW. - gpgrt_wipememory NEW. * Release-info: https://dev.gnupg.org/T6441 * Update upstream libgpg-error.keyring ==== libimobiledevice-glue ==== Version update (1.0.0+git3.20230513 -> 1.1.0+git0.20240222) - Update to version 1.1.0+git0.20240222: - Changes: * socket: Use poll() - when available - instead of select() * socket: Allow NULL as address for socket_create() and socket_connect() * win32: Remove windows.h from public headers * Add version function to interface - Bugfixes: * opack: Fixed 32bit buffer overflow * opack: Fix parsing of 32 and 64 bit packed values - Internal: * Move LIMD_GLUE_API definitions to public headers * socket: Conditionally compile using poll or select based on availability * socket: Fix select failing when the process has many file descriptors by using poll instead * win32: Fix external compilation using libimobiledevice-glue/thread.h ==== libixion ==== Version update (0.18.1 -> 0.19.0) - Update to 0.19.0: * C++ API * added support for renaming sheets after they have been created. * formula interpreter * added support for inline arrays. ==== libksba ==== Version update (1.6.5 -> 1.6.6) - Update to 1.6.6: * Fix a possible wrong error return from the DER builder. [T6992] * Release-info: https://dev.gnupg.org/T7009 * Update upstream libksba.keyring ==== liborcus ==== Version update (0.18.1 -> 0.19.2) - Update to orcus 0.19.2: * fixed a build issue with gcc 14 due to a missing include for std::find_if and std::for_each. * fixed a segmentation fault with the orcus-test-xml-mapped test which manifested on hppa hardware, as originally reported on https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1054376. * fixed a crash when loading a document that includes a style record referencing an unnamed style record as its parent. In Excel-generated documents, styles only reference named styles as their parents. But in 3rd-party generated documents, styles referencing unnamed styles as their parents can occur. * fixed a crash when the document model returned a null pointer when a reference resolver interface was requested. - Update to orcus 0.19.1: * implemented orcus::create_filter() which instantiates a filter object of specified type. The returned object is of type orcus::iface::import_filter. * moved test cases for format detection to the respective filter test files. * fixed a bug where the import filter did not set the formula grammer prior to importing. - Update to orcus 0.19.0: * added support for allowing use of std::filesystem, std::experimental::filesystem or boost::filesystem per build configuration. * refactored styles import to use style indices returned by the document model implementer rather than using the indices stored in the file. This allows the implementer to aggregate some style records and re-use the same index for records that are stored as different records in the original file. * fixed a bug where column styles were not applied to the correct columns when the starting column index was not 0. * overhauled the Gnumeric import filter to fix many bugs and support many missing features relative to the other filters included in orcus. Most notable mentions are: * cell styles * rich-text strings * named ranges * row heights and column widths * merged cells * added partial support for Apache Parquet import filter. This is still heavily experimental. - Remove patches: * 0001-Possibility-to-build-against-a-host-of-filesystem-im.patch (upstreamed) * 0002-Allow-using-older-boost-filesystem.patch ==== libstorage-ng ==== Version update (4.5.191 -> 4.5.193) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#988 - allow more control of environment in SystemCmd class - 4.5.193 - merge gh#openSUSE/libstorage-ng#987 - fixed check in testsuite - 4.5.192 ==== libunistring ==== Version update (1.1 -> 1.2) - update to 1.2: * Support Unicode 15.1.0 * Improve UTF-8 decoder Unicode Standard compliance * The *printf functions no longer support the %n directive, for security reasons. * Fixed a bug in the *printf functions: In the %U, %lU, %llU directives, a negative width given as an argument did not trigger left-justification. * The functions u16_strstr and u32_strstr now operate in worst-case linear time. * Useful API function extensions ==== mokutil ==== - Use %patch -P N instead of deprecated %patchN. ==== mozilla-nss ==== Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-sysinit mozilla-nss-tools - Use %patch -P N instead of deprecated %patchN. ==== multipath-tools ==== Version update (0.9.8~1+82+suse.dcd98a3 -> 0.9.8+83+suse.bcae610) Subpackages: kpartx libmpath0 - Remove libmpathpersist-example-old.c, which has been obsolete since multipath-tools 0.8.6. - Update to version 0.9.8+83+suse.bcae610 (bsc#1220374) * multipath-tools: added NEWS.md ==== ncurses ==== Version update (6.4.20240210 -> 6.4.20240224) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240217 + add vt100+noapp, vt100+noapp+pc, xterm+app+pc, xterm+decedit from xterm #389 -TD + fix inconsistent description of wmouse_trafo() (Debian #1059778). + modify wenclose() to handle pads (Debian #1059783). + improve manpage discussion of mouseinterval() (Debian #1058560). - Add ncurses patch 20240224 + improve man/curs_mouse.3x style (Brandon Robinson, Sven Joachim). + provide for CCHARW_MAX greater than 1 + eliminate use of PATH_MAX in lib_trace.c + work around misconfiguration of MacPorts gcc13, which exposes invalid definition of MB_LEN_MAX in gcc's fallback copy of limits.h (MacPorts [#69374]). ==== npth ==== Version update (1.6 -> 1.7) - Update to 1.7: * The npth-config command is not installed by default, because it is now replaced by use of pkg-config/gpgrt-config with npth.pc. Supply --enable-install-npth-config configure option, if needed. * Support for legacy systems w/o pthread_rwlock_t support. [T4306] * New functions npth_poll and npth_ppoll for Unix. [T5748] * Fixes to improve support for 64 bit Windows. * Fix declaration conflict using newer mingw versions. [T5889] * Fix build problems on Solaris 11. [T4491] * Fix detecting of the pthread library. [rPTH6629a4b801] * Clean up handling of unsafe semaphores on AIX. [T6947] * Link without -flat_namespace to support macOS 11. [T5610] * Release-info: https://dev.gnupg.org/T7010 * Update spec file * Update upstream npth.keyring ==== nvidia-open-driver-G06-signed ==== - let's provide/obsolete nvidia-open-driver-G06 instead of nvidia-open-driver-G06-kmp since older versions still had conflicts to nvidia-open-driver-G06-kmp ... ==== open-vm-tools ==== Subpackages: libvmtools0 open-vm-tools-desktop - Use %patch -P N instead of deprecated %patchN. ==== openssh ==== Version update (9.3p2 -> 9.6p1) Subpackages: openssh-clients openssh-common openssh-server - Update to openssh 9.6p1: = Security * ssh(1), sshd(8): implement protocol extensions to thwart the so-called "Terrapin attack" discovered by Fabian BÃ¤umer, Marcus Brinkmann and JÃ¶rg Schwenk. This attack allows a MITM to effect a limited break of the integrity of the early encrypted SSH transport protocol by sending extra messages prior to the commencement of encryption, and deleting an equal number of consecutive messages immediately after encryption starts. A peer SSH client/server would not be able to detect that messages were deleted. * ssh-agent(1): when adding PKCS#11-hosted private keys while specifying destination constraints, if the PKCS#11 token returned multiple keys then only the first key had the constraints applied. Use of regular private keys, FIDO tokens and unconstrained keys are unaffected. * ssh(1): if an invalid user or hostname that contained shell metacharacters was passed to ssh(1), and a ProxyCommand, LocalCommand directive or "match exec" predicate referenced the user or hostname via %u, %h or similar expansion token, then an attacker who could supply arbitrary user/hostnames to ssh(1) could potentially perform command injection depending on what quoting was present in the user-supplied ssh_config(5) directive. = Potentially incompatible changes * ssh(1), sshd(8): the RFC4254 connection/channels protocol provides a TCP-like window mechanism that limits the amount of data that can be sent without acceptance from the peer. In cases where this limit was exceeded by a non-conforming peer SSH implementation, ssh(1)/sshd(8) previously discarded the extra data. From OpenSSH 9.6, ssh(1)/sshd(8) will now terminate the connection if a peer exceeds the window limit by more than a small grace factor. This change should have no effect of SSH implementations that follow the specification. = New features * ssh(1): add a %j token that expands to the configured ProxyJump hostname (or the empty string if this option is not being used) that can be used in a number of ssh_config(5) keywords. bz3610 * ssh(1): add ChannelTimeout support to the client, mirroring the same option in the server and allowing ssh(1) to terminate quiescent channels. * ssh(1), sshd(8), ssh-add(1), ssh-keygen(1): add support for reading ED25519 private keys in PEM PKCS8 format. Previously only the OpenSSH private key format was supported. * ssh(1), sshd(8): introduce a protocol extension to allow renegotiation of acceptable signature algorithms for public key authentication after the server has learned the username being used for authentication. This allows varying sshd_config(5) PubkeyAcceptedAlgorithms in a "Match user" block. * ssh-add(1), ssh-agent(1): add an agent protocol extension to allow specifying certificates when loading PKCS#11 keys. This allows the use of certificates backed by PKCS#11 private keys in all OpenSSH tools that support ssh-agent(1). Previously only ssh(1) supported this use-case. = Bugfixes * ssh(1): when deciding whether to enable the keystroke timing obfuscation, enable it only if a channel with a TTY is active. * ssh(1): switch mainloop from poll(3) to ppoll(3) and mask signals before checking flags set in signal handler. Avoids potential race condition between signaling ssh to exit and polling. bz3531 * ssh(1): when connecting to a destination with both the AddressFamily and CanonicalizeHostname directives in use, the AddressFamily directive could be ignored. bz5326 * sftp(1): correct handling of the limits(a)openssh.com option when the server returned an unexpected message. * A number of fixes to the PuTTY and Dropbear regress/integration tests. * ssh(1): release GSS OIDs only at end of authentication, avoiding unnecessary init/cleanup cycles. bz2982 * ssh_config(5): mention "none" is a valid argument to IdentityFile in the manual. bz3080 * scp(1): improved debugging for paths from the server rejected for not matching the client's glob(3) pattern in old SCP/RCP protocol mode. * ssh-agent(1): refuse signing operations on destination-constrained keys if a previous session-bind operation has failed. This may prevent a fail-open situation in future if a user uses a mismatched ssh(1) client and ssh-agent(1) where the client supports a key type that the agent does not support. - Update to openssh 9.5p1: = Potentially incompatible changes * ssh-keygen(1): generate Ed25519 keys by default. Ed25519 public keys are very convenient due to their small size. Ed25519 keys are specified in RFC 8709 and OpenSSH has supported them since version 6.5 (January 2014). * sshd(8): the Subsystem directive now accurately preserves quoting of subsystem commands and arguments. This may change behaviour for exotic configurations, but the most common subsystem configuration (sftp-server) is unlikely to be affected. = New features * ssh(1): add keystroke timing obfuscation to the client. This attempts to hide inter-keystroke timings by sending interactive traffic at fixed intervals (default: every 20ms) when there is only a small amount of data being sent. It also sends fake "chaff" keystrokes for a random interval after the last real keystroke. These are controlled by a new ssh_config ObscureKeystrokeTiming keyword. * ssh(1), sshd(8): Introduce a transport-level ping facility. This adds a pair of SSH transport protocol messages SSH2_MSG_PING/PONG to implement a ping capability. These messages use numbers in the "local extensions" number space and are advertised using a "ping(a)openssh.com" ext-info message with a string version number of "0". ... changelog too long, skipping 104 lines ... * openssh-8.0p1-gssapi-keyex.patch ==== openssh-askpass-gnome ==== Version update (9.3p2 -> 9.6p1) - Update to openssh 9.6p1: * No changes for askpass, see main package changelog for details. ==== openvpn ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== python-PyYAML ==== - Switch to pyproject and autosetup macros. - Drop patch setuptools.patch, we can now cope. ==== rubygem-airbrussh ==== Version update (1.5.0 -> 1.5.1) - 1.5.1: This is a gem housekeeping release. No user-facing changes. [#]# ð Housekeeping - Add Ruby 3.3 to CI matrix (#154) @mattbrictson * *Full Changelog:** https://github.com/mattbrictson/airbrussh/compare/v1.5.0...v1.5.1 ==== rubygem-attr_required ==== Version update (1.0.1 -> 1.0.2) - New upstream release 1.0.2, no changelog found ==== rubygem-bootsnap ==== Version update (1.17.0 -> 1.17.1) - New upstream release 1.17.1, see bundled CHANGELOG.md ==== rubygem-childprocess ==== Version update (4.1.0 -> 5.0.0) - ### Version 5.0.0 / 2024-01-06 * [#175](https://github.com/enkessler/childprocess/pull/175): Replace all backends by `Process.spawn` for portability, reliability and simplicity. * [#185](https://github.com/enkessler/childprocess/pull/185): Add support for Ruby 3.x ==== rubygem-concurrent-ruby ==== Version update (1.2.2 -> 1.2.3) - ## Release v1.2.3 (16 Jan 2024) * See [the GitHub release](https://github.com/ruby-concurrency/concurrent-ruby/releases/tag/v… for details. ==== rubygem-debase-ruby_core_source ==== Version update (3.2.3 -> 3.3.1) - ## [3.3.1](https://github.com/ruby-debug/debase-ruby_core_source/compare/3.3.0.… * prism headers added for ruby-3.3.0 [#]# [3.3.0](https://github.com/ruby-debug/debase-ruby_core_source/compare/3.2.3.… * ruby-3.3.0-preview3 sources removed * ruby-3.3.0 sources added ==== rubygem-debug_inspector ==== Version update (1.1.0 -> 1.2.0) - 1.2.0: [#]# What's Changed * Fix CI: MiniTest is no longer defined in minitest 5.20.0 by @eregon in https://github.com/banister/debug_inspector/pull/38 * Rename RubyVM::DebugInspector to DebugInspector and add support for truffleruby by @eregon in https://github.com/banister/debug_inspector/pull/37 * Add MIT license file. by @junaruga in https://github.com/banister/debug_inspector/pull/39 [#]# New Contributors * @eregon made their first contribution in https://github.com/banister/debug_inspector/pull/38 * *Full Changelog**: https://github.com/banister/debug_inspector/compare/v1.1.0...v1.2.0 ==== rubygem-domain_name ==== Version update (0.6.20231109 -> 0.6.20240107) - New upstream release 0.6.20240107, see bundled CHANGELOG.md ==== rubygem-excon ==== Version update (0.104.0 -> 0.109.0) - New upstream release 0.109.0, no changelog found ==== rubygem-fog-core ==== Version update (2.3.0 -> 2.4.0) - 2.4.0 01/03/2024 - fixes for caching/restoring collection attributes - add explicit CRUD methods to models, make returns more consistent - add filter_attributes method - allow cache loading with aliases - update rubocop config and apply styles/fixes - fix minitest compatibility - remove coveralls - fixes for method delegation for ruby 3.x - update ruby versions in test matrix ==== rubygem-google-protobuf ==== Version update (3.25.1 -> 3.25.2) - New upstream release 3.25.2, no changelog found ==== rubygem-googleapis-common-protos-types ==== Version update (1.10.0 -> 1.11.0) - ### 1.11.0 (2023-12-04) [#]### Features * Automated update of googleapis-common-protos-types ([#217](https://github.com/googleapis/common-protos-ruby/issues/217)) ==== rubygem-haml ==== Version update (6.2.3 -> 6.3.0) - ## 6.3.0 * Remove `Haml::RailsTemplate#default_format` that was added in v6.1.3 for Turbo [#1152](https://github.com/haml/haml/issues/1152), [#1154](https://github.com/haml/haml/issues/1154) ([discussion](https://github.com/haml/haml/pull/1144#issuecomment-1755088572)) * See [the reference](https://github.com/haml/haml/blob/v6.3.0/REFERENCE.md#turbo) for suggested alternatives. [#]# 6.2.5 * Deprecate `Haml::RailsTemplate#default_format` that was added in v6.1.3 for Turbo ([discussion](https://github.com/haml/haml/pull/1144#issuecomment-1755088572)) * See [the reference](https://github.com/haml/haml/blob/v6.2.5/REFERENCE.md#turbo) for suggested alternatives. [#]# 6.2.4 * Support case-in statement [#1155](https://github.com/haml/haml/issues/1155) ==== rubygem-hashdiff ==== Version update (1.0.1 -> 1.1.0) - ## v1.1.0 2020-02-25 * Add ignore_keys option (#86 @Matzfan) * Remove pinned version of rake < 11 * Bump rspec dep ~> 3.5 * Bump rubocop dep >= 1.52.1 * Bump rubocop-rspec dep > 1.16.0 ==== rubygem-hoe ==== Version update (4.1.0 -> 4.2.0) - New upstream release 4.2.0, see bundled History.rdoc ==== rubygem-importmap-rails ==== Version update (1.2.3 -> 2.0.1) - 2.0.1: [#]# What's Changed * Ensure update only runs when there are outdated packages by @dhh * *Full Changelog**: https://github.com/rails/importmap-rails/compare/v2.0.0...v2.0.1 2.0.0: [#]# What's Changed This major release includes two potentially backwards-incompatible changes: * The compatibility shim is no longer included, since [all major browsers now natively support import maps](https://caniuse.com/import-maps). But if you need to support old browsers, like Safari 15, Firefox 75, Chrome 88, you should continue using the 1.x series of this gem. * Preloading is now the default. So if you have pins that you intend to lazy load, you need to specifically call `preload: false` as part of the pin. All changes: * Drop the bundled shim by @dhh in https://github.com/rails/importmap-rails/pull/216 * Pinning should just always download by @dhh in https://github.com/rails/importmap-rails/pull/217 * Preload all by default by @dhh in https://github.com/rails/importmap-rails/pull/218 * Update Impoortmaps::Command#puts_table to be markdown compatible by @faqndo97 in https://github.com/rails/importmap-rails/pull/222 * bin/importmap update by @botandrose in https://github.com/rails/importmap-rails/pull/214 * *Full Changelog**: https://github.com/rails/importmap-rails/compare/v1.2.3...v2.0.0 ==== rubygem-json ==== Version update (2.6.3 -> 2.7.1) - 2.7.1: [#]# What's Changed [#]## Improved * [DOC] RDoc for additions by @BurdetteLamar in https://github.com/flori/json/pull/557 [#]## Fixed * JSON.dump: handle unenclosed hashes regression by @casperisfine in https://github.com/flori/json/pull/554 * Overload kwargs in JSON.dump by @k0kubun in https://github.com/flori/json/pull/556 * Fix JSON.dump overload combination by @tompng in https://github.com/flori/json/pull/558 [#]## Misc * Remove needless encodings by @hsbt in https://github.com/flori/json/pull/559 * Unify versions by @hsbt in https://github.com/flori/json/pull/560 [#]# New Contributors * @k0kubun made their first contribution in https://github.com/flori/json/pull/556 * @tompng made their first contribution in https://github.com/flori/json/pull/558 * *Full Changelog**: https://github.com/flori/json/compare/v2.7.0...v2.7.1 2.7.0: [#]# What's Changed [#]## Improved * Perf. improvements to Hash#to_json in pure implementation generator. by @vipulnsward in https://github.com/flori/json/pull/203 * Remove unnecessary initialization of create_id in JSON.parse() by @Watson1978 in https://github.com/flori/json/pull/454 [#]## Added * Call `super` in `included` hook by @paracycle in https://github.com/flori/json/pull/486 * Rename escape_slash in script_safe and also escape E+2028 and E+2029 by @casperisfine in https://github.com/flori/json/pull/525 * Add a `strict` option to Generator by @casperisfine in https://github.com/flori/json/pull/519 [#]## Fixed * Fix homepage url in gemspec by @unasuke in https://github.com/flori/json/pull/508 * Fix dead link to Ragel in README by @okuramasafumi in https://github.com/flori/json/pull/509 * [DOC] Fix yet another dead link to Ragel by @nobu in https://github.com/flori/json/pull/510 * Fix "unexpected token" offset for Infinity by @jhawthorn in https://github.com/flori/json/pull/507 * Use ruby_xfree to free buffers by @casperisfine in https://github.com/flori/json/pull/518 [#]## Compatibility changes * JRuby requires a minimum of Java 8 by @headius in https://github.com/flori/json/pull/516 * Rename JSON::ParseError to JSON:ParserError by @dalizard in https://github.com/flori/json/pull/530 * Removed code for Ruby 1.8 by @hsbt in https://github.com/flori/json/pull/540 * alias_method is private on Ruby 2.3 and 2.4 by @hsbt in https://github.com/flori/json/pull/541 * remove_method of Module is private at Ruby 2.3 and 2.4 by @hsbt in https://github.com/flori/json/pull/544 * [jruby] avoid using deprecated BigDecimal.new by @kares in https://github.com/flori/json/pull/546 * Always indent even if empty by @headius in https://github.com/flori/json/pull/517 [#]## Misc * Update CI matrix by @hsbt in https://github.com/flori/json/pull/521 * Add missing changelog entries for 1.8.5 and 1.8.6 by @r7kamura in https://github.com/flori/json/pull/520 * Actions workflow - Add new OS's, Ruby 3.1, Ruby master, Windows by @MSP-Greg in https://github.com/flori/json/pull/491 * Skip unsupported test on JRuby by @nobu in https://github.com/flori/json/pull/532 * Skip BigDecimal tests when it's missing to load by @hsbt in https://github.com/flori/json/pull/533 * Simplify by @nobu in https://github.com/flori/json/pull/531 * Load extension ('json/ext') consistently in test_ext by @aeroastro in https://github.com/flori/json/pull/536 * Use test-unit-ruby-core gem by @hsbt in https://github.com/flori/json/pull/539 * [CI] Add Windows mswin job by @MSP-Greg in https://github.com/flori/json/pull/545 * Exclude truffleruby-head from Actions by @hsbt in https://github.com/flori/json/pull/551 * tests/ractor_test.rb: make assert_separately available by @lucaskanashiro in https://github.com/flori/json/pull/506 * Added changes for 2.7.0 and restore entries to 2.6.3 and 2.6.2 by @hsbt in https://github.com/flori/json/pull/552 [#]# New Contributors * @unasuke made their first contribution in https://github.com/flori/json/pull/508 * @okuramasafumi made their first contribution in https://github.com/flori/json/pull/509 * @r7kamura made their first contribution in https://github.com/flori/json/pull/520 * @MSP-Greg made their first contribution in https://github.com/flori/json/pull/491 * @paracycle made their first contribution in https://github.com/flori/json/pull/486 * @dalizard made their first contribution in https://github.com/flori/json/pull/530 * @aeroastro made their first contribution in https://github.com/flori/json/pull/536 * @jhawthorn made their first contribution in https://github.com/flori/json/pull/507 * @lucaskanashiro made their first contribution in https://github.com/flori/json/pull/506 * @Watson1978 made their first contribution in https://github.com/flori/json/pull/454 * *Full Changelog**: https://github.com/flori/json/compare/v2.6.3...v2.7.0 ==== rubygem-json-jwt ==== Version update (1.16.3 -> 1.16.5) - New upstream release 1.16.5, see bundled CHANGELOG.md ==== rubygem-json_pure ==== Version update (2.6.3 -> 2.7.1) - 2.7.1: [#]# What's Changed [#]## Improved * [DOC] RDoc for additions by @BurdetteLamar in https://github.com/flori/json/pull/557 [#]## Fixed * JSON.dump: handle unenclosed hashes regression by @casperisfine in https://github.com/flori/json/pull/554 * Overload kwargs in JSON.dump by @k0kubun in https://github.com/flori/json/pull/556 * Fix JSON.dump overload combination by @tompng in https://github.com/flori/json/pull/558 [#]## Misc * Remove needless encodings by @hsbt in https://github.com/flori/json/pull/559 * Unify versions by @hsbt in https://github.com/flori/json/pull/560 [#]# New Contributors * @k0kubun made their first contribution in https://github.com/flori/json/pull/556 * @tompng made their first contribution in https://github.com/flori/json/pull/558 * *Full Changelog**: https://github.com/flori/json/compare/v2.7.0...v2.7.1 2.7.0: [#]# What's Changed [#]## Improved * Perf. improvements to Hash#to_json in pure implementation generator. by @vipulnsward in https://github.com/flori/json/pull/203 * Remove unnecessary initialization of create_id in JSON.parse() by @Watson1978 in https://github.com/flori/json/pull/454 [#]## Added * Call `super` in `included` hook by @paracycle in https://github.com/flori/json/pull/486 * Rename escape_slash in script_safe and also escape E+2028 and E+2029 by @casperisfine in https://github.com/flori/json/pull/525 * Add a `strict` option to Generator by @casperisfine in https://github.com/flori/json/pull/519 [#]## Fixed * Fix homepage url in gemspec by @unasuke in https://github.com/flori/json/pull/508 * Fix dead link to Ragel in README by @okuramasafumi in https://github.com/flori/json/pull/509 * [DOC] Fix yet another dead link to Ragel by @nobu in https://github.com/flori/json/pull/510 * Fix "unexpected token" offset for Infinity by @jhawthorn in https://github.com/flori/json/pull/507 * Use ruby_xfree to free buffers by @casperisfine in https://github.com/flori/json/pull/518 [#]## Compatibility changes * JRuby requires a minimum of Java 8 by @headius in https://github.com/flori/json/pull/516 * Rename JSON::ParseError to JSON:ParserError by @dalizard in https://github.com/flori/json/pull/530 * Removed code for Ruby 1.8 by @hsbt in https://github.com/flori/json/pull/540 * alias_method is private on Ruby 2.3 and 2.4 by @hsbt in https://github.com/flori/json/pull/541 * remove_method of Module is private at Ruby 2.3 and 2.4 by @hsbt in https://github.com/flori/json/pull/544 * [jruby] avoid using deprecated BigDecimal.new by @kares in https://github.com/flori/json/pull/546 * Always indent even if empty by @headius in https://github.com/flori/json/pull/517 [#]## Misc * Update CI matrix by @hsbt in https://github.com/flori/json/pull/521 * Add missing changelog entries for 1.8.5 and 1.8.6 by @r7kamura in https://github.com/flori/json/pull/520 * Actions workflow - Add new OS's, Ruby 3.1, Ruby master, Windows by @MSP-Greg in https://github.com/flori/json/pull/491 * Skip unsupported test on JRuby by @nobu in https://github.com/flori/json/pull/532 * Skip BigDecimal tests when it's missing to load by @hsbt in https://github.com/flori/json/pull/533 * Simplify by @nobu in https://github.com/flori/json/pull/531 * Load extension ('json/ext') consistently in test_ext by @aeroastro in https://github.com/flori/json/pull/536 * Use test-unit-ruby-core gem by @hsbt in https://github.com/flori/json/pull/539 * [CI] Add Windows mswin job by @MSP-Greg in https://github.com/flori/json/pull/545 * Exclude truffleruby-head from Actions by @hsbt in https://github.com/flori/json/pull/551 * tests/ractor_test.rb: make assert_separately available by @lucaskanashiro in https://github.com/flori/json/pull/506 * Added changes for 2.7.0 and restore entries to 2.6.3 and 2.6.2 by @hsbt in https://github.com/flori/json/pull/552 [#]# New Contributors * @unasuke made their first contribution in https://github.com/flori/json/pull/508 * @okuramasafumi made their first contribution in https://github.com/flori/json/pull/509 * @r7kamura made their first contribution in https://github.com/flori/json/pull/520 * @MSP-Greg made their first contribution in https://github.com/flori/json/pull/491 * @paracycle made their first contribution in https://github.com/flori/json/pull/486 * @dalizard made their first contribution in https://github.com/flori/json/pull/530 * @aeroastro made their first contribution in https://github.com/flori/json/pull/536 * @jhawthorn made their first contribution in https://github.com/flori/json/pull/507 * @lucaskanashiro made their first contribution in https://github.com/flori/json/pull/506 * @Watson1978 made their first contribution in https://github.com/flori/json/pull/454 * *Full Changelog**: https://github.com/flori/json/compare/v2.6.3...v2.7.0 ==== rubygem-mime-types ==== Version update (3.5.1 -> 3.5.2) - New upstream release 3.5.2, see bundled History.md ==== rubygem-mime-types-data ==== Version update (3.2023.1003 -> 3.2023.1205) - New upstream release 3.2023.1205, see bundled History.md ==== rubygem-net-ldap ==== Version update (0.18.0 -> 0.19.0) - New upstream release 0.19.0, see bundled History.rdoc ==== rubygem-net-ssh ==== Version update (7.2.0 -> 7.2.1) - === 7.2.1 rc1 * feat: allow load of certkey from string [#926] * fix: fix for Socket#recv returning nil on ruby 3.3.0 [#928] ==== rubygem-nio4r ==== Version update (2.6.1 -> 2.7.0) - ## 2.6.2 * Convert NIO objects to TypedData API. [#]# 2.6.1 * Don't update `io` which is subsequently stored. Retain the original. [#]# 2.6.0 * Fix conversion loses int precision. * Avoid direct access to IO internals. * Resolve issue loading both nio and nio4r gems. ==== rubygem-omniauth ==== Version update (2.1.1 -> 2.1.2) - New upstream release 2.1.2, no changelog found ==== rubygem-parallel ==== Version update (1.23.0 -> 1.24.0) - New upstream release 1.24.0, no changelog found ==== rubygem-parallel_tests ==== Version update (4.3.0 -> 4.4.0) - New upstream release 4.4.0, no changelog found ==== rubygem-passenger ==== Version update (6.0.18 -> 6.0.20) Subpackages: ruby3.3-rubygem-passenger rubygem-passenger-apache2 - New upstream release 6.0.20, see bundled CHANGELOG ==== rubygem-pdf-reader ==== Version update (2.11.0 -> 2.12.0) - v2.12.0 (26th December 2023) - Fix a sorbet method signature (http://github.com/yob/pdf-reader/pull/512) - Reduce allocations when parsing PDFs with hex strings (http://github.com/yob/pdf-reader/pull/528) - Fix text extraction of some rare unicode codepoints (http://github.com/yob/pdf-reader/pull/529) ==== rubygem-pg ==== Version update (1.4.5 -> 1.5.4) - New upstream release 1.5.4, see bundled History.md ==== rubygem-pry-doc ==== Version update (1.4.0 -> 1.5.0) - New upstream release 1.5.0, see bundled CHANGELOG.md ==== rubygem-public_suffix ==== Version update (5.0.3 -> 5.0.4) - ## 5.0.4 [#]## Changed - Reduced .gem file size (GH-259). [Thanks @ybiquitous] - Updated definitions. ==== rubygem-puma-5 ==== Version update (5.6.7 -> 5.6.8) - New upstream release 5.6.8, see bundled History.md ==== rubygem-puma ==== Version update (6.4.0 -> 6.4.2) - 6.4.1: * Bugfixes * DSL#warn_if_in_single_mode - fixup when workers set via CLI ([#3256]) * Fix `idle-timeout` not working in cluster mode ([#3235], [#3228], [#3282], [#3283]) * Fix worker 0 timing out during phased restart ([#3225], [#2786]) * context_builder.rb - require openssl if verify_mode != 'none' ([#3179]) * Make puma cluster process suitable as PID 1 ([#3255]) * Improve Puma::NullIO consistency with real IO ([#3276]) * extconf.rb - fixup to detect openssl info in Ruby build ([#3271], [#3266]) * MiniSSL.java - set serialVersionUID, fix RaiseException deprecation ([#3270]) * dsl.rb - fix warn_if_in_single_mode when WEB_CONCURRENCY is set ([#3265], [#3264]) * Maintenance * LOTS of test refactoring to make tests more stable and easier to write - thanks to @MSP-Greg! * Fix bug in tests re: TestPuma::HOST4 ([#3254]) * Dockerfile for minimal repros: use Ruby 3.2, expect bundler installed ([#3245]) * fix define_method calls, use Symbol parameter instead of String ([#3293]) * Docs * README.md - add the puma-acme plugin ([#3301]) * Remove `--keep-file-descriptors` flag from systemd docs ([#3248]) * Note symlink mechanism in restart documentation for hot restart ([#3298]) ==== rubygem-rack-2.2 ==== Version update (2.2.8 -> 2.2.8.1) - update to version 2.2.8.1 * Fixed ReDoS in Accept header parsing [CVE-2024-26146] * Fixed ReDoS in Content Type header parsing [CVE-2024-25126] * Reject Range headers which are too large [CVE-2024-26141] ==== rubygem-rack ==== Version update (3.0.8 -> 3.0.9.1) - version update to 3.0.9.1 * Fixed ReDoS in Accept header parsing [CVE-2024-26146][bsc#1220248] * Fixed ReDoS in Content Type header parsing [CVE-2024-25126][bsc#1220239] * Reject Range headers which are too large [CVE-2024-26141][bsc#1220242] * Fix content-length calcuation in Rack:Response#write #2150 ==== rubygem-rack-oauth2 ==== Version update (2.2.0 -> 2.2.1) - ## [2.2.0] - 2022-10-11 [#]## Changed - automatic json response decoding, and remove legacy token support by @nov in https://github.com/nov/rack-oauth2/pull/95 ==== rubygem-rack-protection ==== Version update (3.1.0 -> 4.0.0) - New upstream release 4.0.0, no changelog found ==== rubygem-rake-compiler ==== Version update (1.2.5 -> 1.2.6) - New upstream release 1.2.6, see bundled History.md ==== rubygem-regexp_parser ==== Version update (2.8.2 -> 2.9.0) - New upstream release 2.9.0, no changelog found ==== rubygem-rice ==== Version update (4.1.0 -> 4.2.1) - ## 4.2.1 * Support systems who use `#include <experimental/filesystem>` over `#include<filesystem>`. See [#197](https://github.com/jasonroelofs/rice/issues/197) and [#201](https://github.com/jasonroelofs/rice/pull/201) [#]# 4.2 * Support Ruby 3.3.0. * Split Object.call to an explicit Object.call_kw for calling methods expecting keyword arguments. * Previously, if a wrapper used `keepAlive` on an argument or return value that was itself a Rice type, calling said method would segfault. We've now added an explicit exception to be thrown in this case, prevending the segfault and providing guidance on what was wrong and how to fix it. See [#193](https://github.com/jasonroelofs/rice/pull/193) and [#194](https://github.com/jasonroelofs/rice/pull/194) * Fix wrapping of std::shared_ptr to properly take default arguments into account. ==== rubygem-rspec-rails ==== Version update (6.1.0 -> 6.1.1) - New upstream release 6.1.1, see bundled Changelog.md ==== rubygem-ruby_parser ==== Version update (3.20.3 -> 3.21.0) - New upstream release 3.21.0, see bundled History.rdoc ==== rubygem-sexp_processor ==== Version update (4.17.0 -> 4.17.1) - New upstream release 4.17.1, see bundled History.rdoc ==== rubygem-slim ==== Version update (5.2.0 -> 5.2.1) - 5.2.1 (2024-01-20) * Support Ruby 3.3 * Update Gem metadata ==== rubygem-sshkit ==== Version update (1.21.6 -> 1.22.0) - New upstream release 1.22.0, see bundled CHANGELOG.md ==== rubygem-stimulus-rails ==== Version update (1.3.0 -> 1.3.3) - 1.3.3: [#]# What's Changed * Fix syntax error in stimulus_with_node.rb by @euxx in https://github.com/hotwired/stimulus-rails/pull/134 * *Full Changelog**: https://github.com/hotwired/stimulus-rails/compare/v1.3.2...v1.3.3 1.3.2: [#]# What's Changed * Support for dasherized controller filenames by @adrienpoly in https://github.com/hotwired/stimulus-rails/pull/126 * Describe the two options under stimulus:manifest so they can be found in a rails -T listing (closes #128) by @walterdavis in https://github.com/hotwired/stimulus-rails/pull/129 * Fix duplicate controllers in manifest on update by @nachiket87 in https://github.com/hotwired/stimulus-rails/pull/132 * Rely on import map-rails using preload by default by @dhh * Improve Bun support by @rubys in https://github.com/hotwired/stimulus-rails/pull/127 * *Full Changelog**: https://github.com/hotwired/stimulus-rails/compare/v1.3.0...v1.3.2 ==== rubygem-swd ==== Version update (2.0.2 -> 2.0.3) - ## [2.0.2] - 2022-10-09 [#]## Changed * convert Faraday::Error to SWD::Exception https://github.com/nov/SWD/commit/a5bacba3c0fe740b1e36be220980b29dc50de095 [#]## Fixed * SWD::Resource#to_response_object was needed for openid_connect gem https://github.com/nov/SWD/commit/c4d916d3cd8d4fe076bd27a64403d98dea9b00ef [#]# [2.0.1] - 2022-10-08 [#]## Fixed * typo https://github.com/nov/SWD/commit/3fd7a4fbe8fdf586824edc5d2b4222c43e7a9655 ==== rubygem-tzinfo-data ==== Version update (1.2023.3 -> 1.2023.4) - New upstream release 1.2023.4, no changelog found ==== rubygem-webfinger ==== Version update (2.1.2 -> 2.1.3) - ## [2.1.1] - 2022-10-09 [#]## Changed - convert Faraday::Error to WebFinger::Exception https://github.com/nov/webfinger/commit/a0d8da20f6ce819eea8c2d2c81bcc90d3f4… ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Fix problematic tests and allow smooth tests executions on containers - Added: * fix-problematic-tests-and-allow-smooth-tests-executi.patch - Discover Ansible playbook files as "*.yml" or "*.yaml" files (bsc#1211888) - Added: * discover-both-.yml-and-.yaml-playbooks-bsc-1211888.patch - Extend dependencies for python3-salt-testsuite and python3-salt packages - Improve Salt and testsuite packages multibuild - Enable multibuilld and create test flavor - Additionally we require python-mock just for older Python versions. - Remove python-boto dependency for the python3-salt-testsuite package for Tumbleweed - Rename salt-tests to python3-salt-testsuite ==== sbl ==== - Use %patch -P N instead of deprecated %patchN. ==== sendmail ==== Subpackages: libmilter1_0 - Use %patch -P N instead of deprecated %patchN. ==== setserial ==== - Use %patch -P N instead of deprecated %patchN. ==== sha1collisiondetection ==== - Use %patch -P N instead of deprecated %patchN. ==== slang ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== sord ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== soundtouch ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== spamassassin ==== Subpackages: perl-Mail-SpamAssassin spamassassin-spamc - Use %patch -P N instead of deprecated %patchN. ==== speex ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== splix ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== spu-tools ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== susepaste ==== Subpackages: susepaste-screenshot - Use %patch -P N instead of deprecated %patchN. ==== switcheroo-control ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== syslogd ==== Subpackages: klogd syslog-service - Use %patch -P N instead of deprecated %patchN. ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-dbus-service udev-configure-printer - remove dependency on /usr/bin/python3 using %python3_fix_shebang_path macro, [bsc#1212476] ==== sysvinit ==== Subpackages: sysvinit-tools sysvinit-tools-doc - Use %patch -P N instead of deprecated %patchN. ==== thin-provisioning-tools ==== Version update (1.0.11 -> 1.0.12) - Update to version 1.0.12: * [thin_dump] Do not print error messages on BrokenPipe (EPIPE) * Bump version to 1.0.12 * [build] Update dependencies * [commands] Fix version string compatibility issue with LVM * [thin_dump] Do not print error messages on BrokenPipe (EPIPE) * [build] Update license to SPDX identifier ==== tigervnc ==== Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== transfig ==== - Use %patch -P N instead of deprecated %patchN ==== upower ==== Version update (1.90.2 -> 1.90.2+15) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Update to version 1.90.2+15: * Revert "ci: Update last ABI break" * Revert "build: Bump the library soname after recent changes" * Revert "all: Remove Lid handling" * Revert "lib: Remove deprecated up_client_get_devices()" * dbus: org.freedesktop.UPower: EnergyRate is a positive value * linux: Adjust test_bluetooth_le_device for dbusmock 0.30.1 * linux: stop assuming power supply of unknown type as battery * linux: drop f-literals without format string * linux: prefer is not None over != * build: make 'udevrulesdir' and 'udevhwdbdir' as Linux-only - Introduce _service obs_scm and obsinfo files for automated update service via: osc service mr ==== usbutils ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== virtiofsd ==== - Spec: We don't want /usr/libexec to be namespaced like it is with /usr/lib (bsc#1220304) ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau - Add vlc-taglib-2.0.patch: Fix build against taglib 2.0 (based on upstream commit ec29dfca, d2663d6c, ac59d0ba, c404fdb2). - Use %patch -P N instead of deprecated %patchN. ==== xauth ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xdm ==== Subpackages: xdm-xsession - Use %patch -P N instead of deprecated %patchN. ==== xf86-input-evdev ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xf86-input-wacom ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xf86-video-mga ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xf86-video-nouveau ==== - Use %patch -P N instead of deprecated %patchN. ==== xf86-video-nv ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xf86-video-vesa ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xfsdump ==== - Use %patch -P N instead of deprecated %patchN. ==== xinetd ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xinit ==== - Use %patch -P N instead of deprecated %patchN. - revert previous change; cpp is not needed for xinit, but only for xdm package - since xrdb no longer requires cpp, it needs to be reqired here now ==== xkeyboard-config ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== xmlsec1 ==== Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Use %patch -P N instead of deprecated %patchN. ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Use %patch -P N instead of deprecated %patchN. ==== xrandr ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated PatchN. ==== yast2-trans ==== Version update (84.87.20240219.f6e4117fe0 -> 84.87.20240224.f7ab2886c1) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240224.f7ab2886c1: * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Ukrainian) * Translated using Weblate (Catalan) * Translated using Weblate (Catalan) * Translated using Weblate (Catalan) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Finnish) * Translated using Weblate (Spanish) ==== zlib ==== Version update (1.3 -> 1.3.1) Subpackages: libminizip1 libz1 - Use %autopatch instead of %patch - Update to 1.3.1: * Reject overflows of zip header fields in minizip * Fix bug in inflateSync() for data held in bit buffer * Add LIT_MEM define to use more memory for a small deflate speedup * Fix decision on the emission of Zip64 end records in minizip * Add bounds checking to ERR_MSG() macro, used by zError() * Neutralize zip file traversal attacks in miniunz * Fix a bug in ZLIB_DEBUG compiles in check_match() - Update pacthes: * CVE-2023-45853.patch * zlib-1.3-IBM-Z-hw-accelerated-deflate-s390x.patch

1 0

OpenSuSE proccess on RPI4 hangs up and makes crazy things during boot
by Radomir Terber 29 Feb '24

29 Feb '24

I run Tumbleweed on several RPI4 boards for some time, and now (couple of months ago) I observe crasy behaviour of the boot proccess. The boot starts normally, but ends just after the "U-Boot>" message is written on the screen. After that, boot loader writes several rows of random characters and freezes. If the board is cold (i.e I power it down, wait couple hours and power it up) the boot proccess usually continues normally on the cold board. I also tried several MicroSD cards (difernt types, speeds, sizes, vendors ...) with the same result. The behaviour is the same on 4GB and 8GB boards. I didn't notice the exact date when this started to happen (since it does not usually apear on the cold board). At the same time when OpenSuSE hangs up, the original RaspberryOs and also DietPi OS boot normally (i tried it many times). If the boot is successfull, everything works normally until restart.

1 0

New Arm Tumbleweed snapshot 20240225 released!
by Guillaume Gardet 26 Feb '24

26 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: bash-completion (2.11 -> 2.12.0) judy kernel-firmware-nvidia-gspx-G06 (545.29.06 -> 550.54.14) kernel-source (6.7.5 -> 6.7.6) libcaca libvirt libzypp-plugin-appdata (1.0.1+git.20230117 -> 1.0.1+git.20240209) mailutils mailx man-pages mariadb mariadb-connector-c mdadm (4.2 -> 4.3) microos-tools (2.21+git11 -> 2.21+git12) nvidia-open-driver-G06-signed (545.29.06_k6.7.5_1 -> 550.54.14_k6.7.6_1) pam pam-full-src pcaudiolib polkit-default-privs (1550+20240207.d833f4b -> 1550+20240223.b0857d7) python-distro rtkit rubygem-gem2rpm speech-dispatcher (0.11.5 -> 0.12.0~rc2) spice wicked (0.6.73 -> 0.6.74) wsdd yast2-bootloader (5.0.4 -> 5.0.5) === Details === ==== bash-completion ==== Version update (2.11 -> 2.12.0) - Remove also patch bash-completion-fix-missing-directory-completion-with-filename-pattern.patch as the problem is fixed upstream - Update to version 2.12.0: Features * _comp_backup_glob: add ucf generated backup files (351be1c) * _comp_backup_glob: require dash in dpkg backup files (59a57f9) * comp_compgen{filedir,set}: define exit status (7920c9d) * _comp_compgen_commands: align return value with other compgens (9d3362e) * _comp_compgen_commands: auto set -o filenames when appropriate (4d4839e) * _comp_compgen_commands: include dirs (b9c7b5d) * _comp_compgen_known_hosts: return 2 on usage error (43bb8f0) * _comp_compgen: support -i cmd and -x cmd (39cc200) * _comp_compgen: support -U var to unlocal var (b603535) * _comp_compgen: support option -C (6b3dfa5) * _comp_expand_glob: fail when no paths are generated (6b0a466) * _comp_get_fist_arg: support "-o GLOB" to skip optargs (0f14cc0) * _ip_addresses: auto ltrim colon completions when appropriate (ccdf953) * add _comp_compgen_split (542bf73) * add _comp_locate_first_arg (0384bd5) * airflow: add fallback 3rd party completion loader (bf5550b) * ansible:* add fallback 3rd party completion loader (5f8384e) * apt-get: prefer apt-cache in same dir as command (a731bfd) * b2sum: new completion (cd985df) * bash_completion: add function _comp_compgen_ltrim_colon (ce5889b) * black,blackd: add fallback 3rd party completion loader (47a1f05) * carton: support exec command completions (0eb3a21) * chezmoi: add 3rd-party completion loader (cobra) (31baa69) * conda: add 3rd-party completion loader (argcomplete) (c0f5ba2) * crc: add 3rd-party completion loader (cobra) (f10866e) * cz: add fallback 3rd party completion loader (b7ba70e) * dot: support filename extension .gv (be0010e) * dprint: add fallback 3rd party completion loader (e201e0e) * eog: add missing extension .heif (9e4a48f) * eog: associate with *.avif and *.webp (#1005) (f1c04b8) * eog: associate with *.heic and *.jxl (20c9cea) * eog: associate with *.pbm (#1006) (5472cc1) * feh: associate with y4m and heic/heif/avif (e252c73) * feh: deassociate with avci/avcs (af46f34) * flask: add fallback 3rd party completion loader (3e0d00d) * hash: new completion (#1013) (4d0bffb) * httpx: add fallback 3rd party completion loader (3f4861c) * ip: Add completion for monitor subcommand (fa696e6) * jungle: add fallback 3rd-party completion loader (c69845a) * keyring: add fallback 3rd party completion loader (8082602) * kontena: add fallback 3rd-party completion loader (5eef0ce) * lefthook: add fallback 3rd party completion loader (dc9650e) * mailman: prefer list_lists in same dir as command (a46ccf1) * mysql: prefer mysqlshow from same dir (643886c) * no empty command completion if no_empty_cmd_completion is on (faab292) * npm: add fallback 3rd-party completion loader (f1c085c) * nvm: add fallback 3rd-party completion loader (dea7e1d) * oc: add 3rd-party completion loader (cobra) (26b5f09) * pip{,3}: add fallback 3rd-party completion loader (e3cbfba) * pipenv: add fallback 3rd party completion loader (#1020) (6ecf5bd) * pytest: complete new --import-mode value (#1021) (2d636a3) * rtx: add fallback 3rd party completion loader (0628e22) * scp,sftp: prefer ssh from same dir to resolve options etc (d55f5e6) * ssh-copy-id,ssh-keygen: prefer ssh from same dir (5c1d270) * ssh-inscribe: add fallback 3rd party completion loader (7f2c197) * ssh: complete RequiredRSASize (#1064) (de15205) * tkn-pac: add 3rd-party completion loader (cobra) (d0f2604) * tkn: add 3rd-party completion loader (cobra) (161fc5d) * xrandr: comma separated --setmonitor third argument (8a76f3d) Bug Fixes * __load_completion: quoted compspec for variants (#1008) (0a2443e) * _cd_devices: /dev/cdc-* CDC device false positives (5250728) * _comp__init_set_up_service_completions: work around failglob (2529d40) * comp{first_arg,count_args}: count - as argument (e23a79e) * comp{first_arg,count_args}: count any arguments after -- (9bfd760) * _comp_command_offset: Support complete -C (80450ca) * _comp_compgen_fstypes: avoid unexpected expansions (a856d81) * _comp_compgen_help: allow dots to connect names in longopt (79dadfc) * _comp_compgen_known_hosts: work around bash-4.2 nounset (d2860cb) * _comp_compgen_split: work around nounset (f488f96) * _comp_compgen_term: replace completions by default (d3696a3) * _comp_compgen_usergroup: avoid directly overwriting COMPREPLY (d380498) * _comp_compgen: do not inherit -a for explicitly specified var (3c20766) * _comp_compgen: explicitly exclude cur from the target variable (5fe98f3) * _comp_count_args: check optarg correctly (874c503) * _comp_count_args: exclude <>& from wordbreaks as _comp_initialize (521d2bb) * _comp_count_args: ignore empty $3 (76eea74) * _comp_count_args: perform optarg check also on $3 (21d3122) * _comp_count_args: skip reassembling cword and words (3127703) * _comp_delimited: treat delimiter as a fixed string (571a0f7) * _comp_deprecate_func: argument order in usage error message (597f62f) * _comp_get_words: empty prev if unavailable (localvar_inherit) (d8b8eef) * _comp_initialize: fix completions of redirections without space (da16bf6) * _comp_initialize: protect against "localvar_inherit" (0cc8d83) * _comp_split,_comp_compgen: strip periods from error message (b3b6a7c) * _comp_split: update error message for the correct options (3c4a89c) * _comp_sysvdirs: work around nounset (da26178) * _filedir_xspec: clean up unused variable tmp (67f1189) * _get_cword_at_cursor,cvs: quote array length (201239c) * _get_first_arg: remove invalid doccomment (eb40f56) * _known_hosts: use array for options (work around SC2178,SC2179) (743d0a9) * _mock,rpm: avoid icase flag s/reg/rep/i of GNU sed (33c18ce) * _service: quote word (c2d7fb7) * _slackpkg: do not scan after cword (ecd1384) ... changelog too long, skipping 144 lines ... as not known how to port and if this is required ==== judy ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== kernel-firmware-nvidia-gspx-G06 ==== Version update (545.29.06 -> 550.54.14) - update firmware to version 550.54.14 ==== kernel-source ==== Version update (6.7.5 -> 6.7.6) - Linux 6.7.6 (bsc#1012628). - work around gcc bugs with 'asm goto' with outputs (bsc#1012628). - update workarounds for gcc "asm goto" issue (bsc#1012628). - mm: mmap: map MAP_STACK to VM_NOHUGEPAGE (bsc#1012628). - btrfs: forbid creating subvol qgroups (bsc#1012628). - btrfs: do not ASSERT() if the newly created subvolume already got read (bsc#1012628). - btrfs: forbid deleting live subvol qgroup (bsc#1012628). - btrfs: send: return EOPNOTSUPP on unknown flags (bsc#1012628). - btrfs: don't reserve space for checksums when writing to nocow files (bsc#1012628). - btrfs: reject encoded write if inode has nodatasum flag set (bsc#1012628). - btrfs: don't drop extent_map for free space inode on write error (bsc#1012628). - driver core: Fix device_link_flag_is_sync_state_only() (bsc#1012628). - kselftest: dt: Stop relying on dirname to improve performance (bsc#1012628). - selftests/landlock: Fix net_test build with old libc (bsc#1012628). - selftests/landlock: Fix fs_test build with old libc (bsc#1012628). - of: unittest: Fix compile in the non-dynamic case (bsc#1012628). - drm/msm/gem: Fix double resv lock aquire (bsc#1012628). - selftests/landlock: Fix capability for net_test (bsc#1012628). - ASoC: Intel: avs: Fix pci_probe() error path (bsc#1012628). - spi: imx: fix the burst length at DMA mode and CPU mode (bsc#1012628). - ASoC: Intel: avs: Fix dynamic port assignment when TDM is set (bsc#1012628). - wifi: iwlwifi: clear link_id in time_event (bsc#1012628). - wifi: iwlwifi: Fix some error codes (bsc#1012628). - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table() (bsc#1012628). - ASoC: SOF: ipc3-topology: Fix pipeline tear down logic (bsc#1012628). - dpll: fix possible deadlock during netlink dump operation (bsc#1012628). - net/mlx5: DPLL, Fix possible use after free after delayed work timer triggers (bsc#1012628). - net/handshake: Fix handshake_req_destroy_test1 (bsc#1012628). - bonding: do not report NETDEV_XDP_ACT_XSK_ZEROCOPY (bsc#1012628). - devlink: Fix command annotation documentation (bsc#1012628). - of: property: Improve finding the consumer of a remote-endpoint property (bsc#1012628). - of: property: Improve finding the supplier of a remote-endpoint property (bsc#1012628). - ALSA: hda/cs35l56: select intended config FW_CS_DSP (bsc#1012628). - perf: CXL: fix mismatched cpmu event opcode (bsc#1012628). - selftests/net: convert test_bridge_backup_port.sh to run it in unique namespace (bsc#1012628). - selftests: net: Fix bridge backup port test flakiness (bsc#1012628). - selftests: forwarding: Fix layer 2 miss test flakiness (bsc#1012628). - selftests: forwarding: Fix bridge MDB test flakiness (bsc#1012628). - selftests: forwarding: Suppress grep warnings (bsc#1012628). - selftests: forwarding: Fix bridge locked port test flakiness (bsc#1012628). - net: openvswitch: limit the number of recursions from action sets (bsc#1012628). - lan966x: Fix crash when adding interface under a lag (bsc#1012628). - net: tls: factor out tls_*crypt_async_wait() (bsc#1012628). - tls: fix race between async notify and socket close (bsc#1012628). - tls: fix race between tx work scheduling and socket close (bsc#1012628). - net: tls: handle backlogging of crypto requests (bsc#1012628). - net: tls: fix use-after-free with partial reads and async decrypt (bsc#1012628). - net: tls: fix returned read length with async decrypt (bsc#1012628). - spi: ppc4xx: Drop write-only variable (bsc#1012628). - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() (bsc#1012628). - drm/i915/dsc: Fix the macro that calculates DSCC_/DSCA_ PPS reg address (bsc#1012628). - net: sysfs: Fix /sys/class/net/<iface> path for statistics (bsc#1012628). - nouveau/svm: fix kvcalloc() argument order (bsc#1012628). - MIPS: Add 'memory' clobber to csum_ipv6_magic() inline assembler (bsc#1012628). - ptrace: Introduce exception_ip arch hook (bsc#1012628). - mm/memory: Use exception ip to search exception tables (bsc#1012628). - i40e: Do not allow untrusted VF to remove administratively set MAC (bsc#1012628). - i40e: Fix waiting for queues of all VSIs to be disabled (bsc#1012628). - mm: thp_get_unmapped_area must honour topdown preference (bsc#1012628). - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb (bsc#1012628). - selftests/mm: ksm_tests should only MADV_HUGEPAGE valid memory ... changelog too long, skipping 457 lines ... - commit 8ef8383 ==== libcaca ==== - Use %autosetup, prepare for RPM 4.20. * Rewrote patches so that they are applied uniformly via %autosetup. * Correctly reorder the patches in specfile declaration. ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Add SLE virtiofsd path to apparmor profiles bsc#1219772 - Fix return value when libnetcontrol fails to initialize boo#1219986 ==== libzypp-plugin-appdata ==== Version update (1.0.1+git.20230117 -> 1.0.1+git.20240209) - Update to version 1.0.1+git.20240209: * Move to /var/cache/swcatalog * Remove Google Plus web app * make google-chrome.xml pass appstream validation * Add a type=remote icon for google-chrome * Use application-x-addon for codec icons * Add screenshots for Chromium * Wings3d apddata file merged upstream * Tag the web-apps with the correct license IDs * Add Telegram web app * added screenshot for IQMol * added screenshot for FBReader * Updated Cmake screenshot to a HighDPI version * Ensure all the webapps have valid icons * Fix the list of webapps to be a single XML document * Merge the webapps into one file * Convert the codec AppData files to 0.6 format * Upgrade the IBus AppData files to 0.6 format * Add the licence changes for the GStreamer packages * Add the GStreamer AppStream descriptions for gstreamer1-libav - Require appstream-glib with the asglib(swcatalog) symbol: ensure we support the new location. ==== mailutils ==== Subpackages: libmailutils9 - Use %patch -P N instead of deprecated %patchN. ==== mailx ==== - Use %patch -P N instead of deprecated %patchN. ==== man-pages ==== - use %autosetup macro ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Use %patch -P N instead of deprecated %patchN. ==== mariadb-connector-c ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== mdadm ==== Version update (4.2 -> 4.3) - Update mdadm-4.3 to latest status (jsc#PED-7542) - Remove hardcoded checkpoint interval checking 0001-Remove-hardcoded-checkpoint-interval-checking.patch - monitor: refactor checkpoint update 0002-monitor-refactor-checkpoint-update.patch - Super-intel: Fix first checkpoint restart 0003-Super-intel-Fix-first-checkpoint-restart.patch - Grow: Move update_tail assign to Grow_reshape() 0004-Grow-Move-update_tail-assign-to-Grow_reshape.patch - Add understanding output section in man 0005-Add-understanding-output-section-in-man.patch - Upgrade to mdadm-4.3 (jsc#PED-7542). Beside previous already back ported patches, mdadm-4.3 has the following extra changes since last update upto commit 582945c2d3bb, - Fix null pointer for incremental in mdadm. - Super1: fix truncation check for journal device. - Fix some cases eyesore formatting. - Bump minimum kernel version to 2.6.32. - Remove the config files in mdcheck_start|continue service. - Define DEV_MD_DIR, DEV_NUM_PREF, is_devname_ignore(), ident_set_devname(). - Enable RAID for SATA under VMD. - Imsm: Fix possible segfault in check_no_platform() - Imsm refactor on imsm_get_free_size(), merge_extents(). - Imsm: return free space after volume for expand. - Imsm: fix free space calculations. - Add secure gethostname() wrapper. - mdadm: Stop mdcheck_continue timer when mdcheck_start service can finish check. - Fix memory leak in files Assemble.c, Kill.c, Manage.c, mdadm.c. - Fix unsafe string functions. - platform-intel: limit guid length. - Imsm: Add reading vmd register for finding imsm capability. - Add compiler defenses flags. - Assemble: fix redundant memory free. - More regression test cases added into tests. - Mdadm: set ident.devname if applicable. - Mdadm: refactor ident->name handling. - Mdadm: Follow POSIX Portable Character Set. - Incremental: remove obsoleted calls to udisks. - Fix race of "mdadm --add" and "mdadm --incremental". - mdadm/ddf: Abort when raid disk is smaller in getinfo_super_ddf. - mdadm/super1: Add MD_FEATURE_RAID0_LAYOUT if kernel>=5.4. - Fix assembling RAID volume by using incremental. - Mdmonitor: Improve udev event handling. - Udev: Move udev_block() and udev_unblock() into udev.c. - Manage: adjust checking subarray state in update_subarray. - Super1: remove support for name= in config. - Mdadm: fix update=resync regression. - Rebase to keep consistent behavior for current code base. - 1004-call-mdadm_env.sh-from-usr-libexec-mdadm.patch - The following patches are moved from package because they are all included in mdadm-4.3, - 0001-Unify-error-message.patch - 0002-mdadm-Fix-double-free.patch - 0003-Grow_reshape-Add-r0-grow-size-error-message-and-upda.patch - 0004-udev-adapt-rules-to-systemd-v247.patch - 0005-Replace-error-prone-signal-with-sigaction.patch - 0006-mdadm-Respect-config-file-location-in-man.patch - 0007-mdadm-Update-ReadMe.patch - 0008-mdadm-Update-config-man-regarding-default-files-and-.patch - 0009-mdadm-Update-config-manual.patch - 0010-Create-Build-use-default_layout.patch - 0011-mdadm-add-map_num_s.patch - 0012-mdmon-Stop-parsing-duplicate-options.patch - 0013-Grow-block-n-on-external-volumes.patch - 0014-Incremental-Fix-possible-memory-and-resource-leaks.patch - 0015-Mdmonitor-Fix-segfault.patch - 0016-Mdmonitor-Improve-logging-method.patch - 0017-Fix-possible-NULL-ptr-dereferences-and-memory-leaks.patch - 0018-imsm-Remove-possibility-for-get_imsm_dev-to-return-N.patch - 0019-Revert-mdadm-fix-coredump-of-mdadm-monitor-r.patch - 0020-util-replace-ioctl-use-with-function.patch - 0021-mdadm-super1-restore-commit-45a87c2f31335-to-fix-clu.patch - 0022-imsm-introduce-get_disk_slot_in_dev.patch - 0023-imsm-use-same-slot-across-container.patch - 0024-imsm-block-changing-slots-during-creation.patch - 0025-mdadm-block-update-ppl-for-non-raid456-levels.patch - 0026-mdadm-Fix-array-size-mismatch-after-grow.patch - 0027-mdadm-Remove-dead-code-in-imsm_fix_size_mismatch.patch - 0028-Monitor-use-devname-as-char-array-instead-of-pointer.patch - 0029-Monitor-use-snprintf-to-fill-device-name.patch - 0030-Makefile-Don-t-build-static-build-with-everything-an.patch - 0031-DDF-Cleanup-validate_geometry_ddf_container.patch - 0032-DDF-Fix-NULL-pointer-dereference-in-validate_geometr.patch - 0033-mdadm-Grow-Fix-use-after-close-bug-by-closing-after-.patch - 0034-monitor-Avoid-segfault-when-calling-NULL-get_bad_blo.patch - 0035-mdadm-Fix-mdadm-r-remove-option-regression.patch - 0036-mdadm-Fix-optional-write-behind-parameter.patch - 0037-mdadm-Replace-obsolete-usleep-with-nanosleep.patch - 0038-mdadm-remove-symlink-option.patch - 0039-mdadm-move-data_offset-to-struct-shape.patch - 0040-mdadm-Don-t-open-md-device-for-CREATE-and-ASSEMBLE.patch - 0041-Grow-Split-Grow_reshape-into-helper-function.patch - 0042-Assemble-check-if-device-is-container-before-schedul.patch - 0043-super1-report-truncated-device.patch - 0044-mdadm-Correct-typos-punctuation-and-grammar-in-man.patch - 0046-Monitor-Fix-statelist-memory-leaks.patch - 0047-mdadm-added-support-for-Intel-Alderlake-RST-on-VMD-p.patch ... changelog too long, skipping 55 lines ... - 0103-Create-Fix-checking-for-container-in-update_metadata.patch ==== microos-tools ==== Version update (2.21+git11 -> 2.21+git12) - Update to version 2.21+git12: * 98selinux-microos: Avoid "/sysroot-selinux: not mounted" on new util-linux - Switch _service to use mode="manual" instead of "disabled" ==== nvidia-open-driver-G06-signed ==== Version update (545.29.06_k6.7.5_1 -> 550.54.14_k6.7.6_1) - Update to 550.54.14 * Added vGPU Host and vGPU Guest support. For vGPU Host, please refer to the README.vgpu packaged in the vGPU Host Package for more details. - supersedes the following patches: * 0001-Don-t-override-INSTALL_MOD_DIR.patch * kernel-6.7.patch ==== pam ==== - Use autosetup to prepare for RPM 4.20. ==== pam-full-src ==== - Use autosetup to prepare for RPM 4.20. ==== pcaudiolib ==== - Use %autosetup in %prep section. ==== polkit-default-privs ==== Version update (1550+20240207.d833f4b -> 1550+20240223.b0857d7) - Update to version 1550+20240223.b0857d7: * profiles: add new tuned actions (bsc#1220081) ==== python-distro ==== - Switch to autosetup macro. ==== rtkit ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== rubygem-gem2rpm ==== - Added 0034-plugin-dir.patch - also own the new gem plugin dir - Added 0035-fix-patch-syntax.patch: Fix patch syntax for the upcoming rpm 4.20 ==== speech-dispatcher ==== Version update (0.11.5 -> 0.12.0~rc2) Subpackages: libspeechd2 speech-dispatcher-module-espeak - Update to version 0.12.0~rc2: * Add openjtalk module. * Fix splitting long UTF-8 sequences. * Update CLDR to version 44 and symbols from NVDA. * Add spd_fd function to C api. - Use _multibuild to build also a python311 flavor in SLE15 (jsc#PED-68) - Rename the python3-speechd package to %{primary_python}-speechd in TW/ALP so that it follows the python package naming policy. - Fix %_datadir which is now included in the main speech-dispatcher package instead of in -configure. - Only provide python3-speechd from python311-speechd in TW/ALP, otherwise the python 3.11 flavor might be selected instead of the real python3-speechd package in SLE15. - Only require python-speechd for the -configure package. The base package does not require it to be installed. - Update to version 0.12.0~rc1: * Add socket activation * libspeechd: Simplify buffer management. * Add language and variant parameters to "list voice" command. - Add pkgconfig(libsystemd) to BuildRequires. ==== spice ==== - do not require six https://trello.com/c/MO53MocR/143-remove-python3-six - added patches https://gitlab.freedesktop.org/spice/spice-common/-/commit/29dacb5f53f5183f… + spice-no-six.patch ==== wicked ==== Version update (0.6.73 -> 0.6.74) Subpackages: wicked-service - update to version 0.6.74 + team: add new options like link_watch_policy (jsc#PED-7183) + Fix memory leaks in dbus variant destroy and fsm free (gh#openSUSE/wicked#1001) + xpath: allow underscore in node identifier (gh#openSUSE/wicked#999) + vxlan: don't format unknown rtnl attrs (bsc#1219751) - removed patches included in the source archive: [- 0009-ifreload-VLAN-changes-require-device-deletion-bsc-12.patch] [- 0008-ifcheck-fix-config-changed-check-bsc-1218926.patch] [- 0007-Fix-ifstatus-exit-code-for-NI_WICKED_ST_NO_CARRIER-s.patch] [- 0006-dhcp6-omit-the-SO_REUSEPORT-option-bsc-1215692.patch] [- 0005-duid-fix-comment-for-v6time.patch] [- 0004-rtnl-parse-peer-address-on-non-ptp-interfaces.patch] [- 0003-rtnl-pass-ifname-in-newaddr-parsing-and-logging.patch] [- 0002-system-updater-Parse-updater-format-from-XML-configu.patch] [- 0001-fix_arp_notify_loop_and_burst_sending.patch] ==== wsdd ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== yast2-bootloader ==== Version update (5.0.4 -> 5.0.5) - Proposal: Trying to take the bootloader which has been defined in the product description file (entry globals/prefered_bootloader) (jsc#PED-1906) - 5.0.5

1 0

New Arm Tumbleweed snapshot 20240223 released!
by Guillaume Gardet 25 Feb '24

25 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (23.3.5 -> 23.3.6) Mesa-drivers (23.3.5 -> 23.3.6) MozillaFirefox (122.0 -> 122.0.1) aaa_base (84.87+git20231023.f347d36 -> 84.87+git20240202.9526d46) aalib accountsservice acl (2.3.1 -> 2.3.2) acpid alsa-utils amarok apache-commons-logging apache2-mod_dnssd apache2-mod_php8 (8.2.15 -> 8.2.16) apparmor appstream-glib argon2 argyllcms arj attr (2.5.1 -> 2.5.2) autofs (5.1.8 -> 5.1.9) autotrace autoyast2 (5.0.1 -> 5.0.2) awesfx babl (0.1.106 -> 0.1.108) bc bind (9.18.21 -> 9.18.24) binutils (2.41 -> 2.42) bolt (0.9.6 -> 0.9.7) boost-base boost-extra branding-openSUSE btrfsprogs (6.7 -> 6.7.1) busybox-links curl dav1d (1.3.0 -> 1.4.0) dcraw djvulibre dnsmasq (2.89 -> 2.90) dracut (059+suse.549.gc9f63878 -> 059+suse.554.g6144bf71) e2fsprogs ebook-tools ed (1.20 -> 1.20.1) eekboard efont-unicode-bitmap-fonts ell (0.61 -> 0.62) emacs-flim epson-inkjet-printer-escpr espeak expat (2.5.0 -> 2.6.0) fde-tools gcc gcc14 (13.2.1+git8285 -> 14.0.1+git8957) gd gdm gegl (0.4.46 -> 0.4.48) git (2.43.0 -> 2.43.2) gnome-control-center (45.2 -> 45.3) gnome-maps gnome-music (45.0 -> 45.1) gnome-shell gpgme gpgmeqt graphviz grub2 hdparm hfsutils highway (1.0.7 -> 1.1.0) hp2xx hplip hwdata (0.378 -> 0.379) ibus intlfonts iso_ent jasper (4.2.0 -> 4.2.1) jfsutils kColorPicker-Qt5 kernel-firmware (20240201 -> 20240220) kernel-source (6.7.4 -> 6.7.5) keyutils kmozillahelper kvm_stat (6.7.4 -> 6.7.5) lastlog2 (1.2.0 -> 1.3.1) libHX (4.21 -> 4.23) libadwaita (1.4.2 -> 1.4.3) libapparmor libblockdev (3.0.4 -> 3.1.0) libdbusmenu-qt5 libdecor libdeflate libei libguestfs libgusb libjpeg-turbo libjxl-gtk (0.9.2 -> 0.10.0) liblangtag (0.6.4 -> 0.6.7) libnvme (1.7.1+0.g13ba383 -> 1.8+0.gbff7dda) libpaper (2.1.2 -> 2.1.3) libphonenumber (8.13.23 -> 8.13.30) libpng16 (1.6.40 -> 1.6.42) libqt5-qtbase (5.15.12+kde147 -> 5.15.12+kde151) libqt5-qtwebengine libshumate libstorage-ng (4.5.176 -> 4.5.191) libunwind (1.7.2 -> 1.8.0) make man mariadb (11.2.2 -> 11.2.3) mdevctl mozilla-nss (3.96.1 -> 3.97) mpg123 (1.32.4 -> 1.32.5) mtools multipath-tools (0.9.7+93+suse.e2f2272 -> 0.9.8~1+82+suse.dcd98a3) musepack ncurses (6.4.20240120 -> 6.4.20240210) neon nodejs21 (21.5.0 -> 21.6.2) nvidia-open-driver-G06-signed (545.29.06_k6.7.4_1 -> 545.29.06_k6.7.5_1) nvme-cli (2.7.1 -> 2.8) obex-data-server openssl-1_1 openvpn (2.6.8 -> 2.6.9) orc (0.4.34 -> 0.4.37) osinfo-db pam-config (2.10 -> 2.11) parted patterns-server pcr-oracle pcre2 (10.42 -> 10.43) perl-Bootloader (1.11 -> 1.12) php8 (8.2.15 -> 8.2.16) pipewire pkcs11-helper (1.29.0 -> 1.30.0) pkgconf (1.8.0 -> 2.1.1) poppler (23.12.0 -> 24.02.0) poppler-qt5 (23.12.0 -> 24.02.0) potrace prctl publicsuffix (20240123 -> 20240212) pulseaudio python-cryptography (41.0.7 -> 42.0.4) python-linux-procfs python-lxml python311 python311-core qalculate (4.8.1 -> 4.9.0) qemu (8.2.0 -> 8.2.1) rdma-core rpm rpm-config-SUSE (20240118 -> 20240214) rubygem-vagrant_cloud (3.0.5 -> 3.1.1) rzip samba (4.19.4+git.339.acf1ccaa020 -> 4.19.5+git.342.57620c4f7e) sane-backends sdbootutil (1+git20240122.c0d8f76 -> 1+git20240215.cb7e392) sg3_utils (1.48+7.63e63cb -> 1.48+8.37ca384) shadow (4.14.3 -> 4.14.5) shared-mime-info shim signon-plugin-oauth2 spacenavd spice-gtk suseconnect-ng (1.3.0~git0.ae8ba1e -> 1.7.0~git2.21ba08e) systemd (254.8 -> 254.9) tecla-keyboard-layout-viewer (45.rc -> 45.0) thin-provisioning-tools (1.0.10 -> 1.0.11) tigervnc tmux (3.3a -> 3.4) transmission u-boot-rpiarm64 unison (2.53.3 -> 2.53.4) unixODBC unzip utempter util-linux util-linux-systemd vacation vde2 vid_stab vim (9.1.0000 -> 9.1.0111) virt-manager virtiofsd vmaf vorbis-tools vpnc vsftpd webkit2gtk3 webkit2gtk3-soup2 webrtc-audio-processing wget wmctrl wpa_supplicant wsdd xdg-menu xfce4-notifyd (0.9.3 -> 0.9.4) xfce4-terminal (1.1.1 -> 1.1.2) xfsprogs (6.5.0 -> 6.6.0) xml-commons-apis xorg-x11-server xtermset xwayland yast2 (5.0.5 -> 5.0.6) yast2-packager (5.0.2 -> 5.0.4) yast2-perl-bindings (5.0.0 -> 5.0.1) yast2-storage-ng (5.0.4 -> 5.0.6) yast2-trans (84.87.20240210.1383f689ba -> 84.87.20240219.f6e4117fe0) zchunk zip zlib zvbi === Details === ==== Mesa ==== Version update (23.3.5 -> 23.3.6) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - Update to bugfix release 23.3.6 - -> https://docs.mesa3d.org/relnotes/23.3.6.html ==== Mesa-drivers ==== Version update (23.3.5 -> 23.3.6) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to bugfix release 23.3.6 - -> https://docs.mesa3d.org/relnotes/23.3.6.html ==== MozillaFirefox ==== Version update (122.0 -> 122.0.1) - Mozilla Firefox 122.0.1 https://www.mozilla.org/en-US/firefox/122.0.1/releasenotes/ * Fixed the Library and Sidebar context menus only displaying Multi-Account Containers icons in the "Open in New Container Tab" menu. (bmo#1876518) * Fixed an issue when clicking the Dismiss button in notification pop-ups on Windows causing a webpage in a new tab. (bmo#1848801) * Fixed the yaru-remix system theme not applying correctly on Linux. (bmo#1877002) * Fixed adding an extra new line to a rule in the Developer Tools' Inspector when copying it to the clipboard. (bmo#1876220) * Rolled back a keyboard behavior change made to the Developer Tools' Rules view when validating a property name or input with the Enter key. This moves the focus to the next input, as was the behavior in Firefox 121. (bmo#1877457) ==== aaa_base ==== Version update (84.87+git20231023.f347d36 -> 84.87+git20240202.9526d46) Subpackages: aaa_base-extras - Update to version 84.87+git20240202.9526d46: * properly shorten the variable when setting JAVA_HOME and JRE_HOME * silence output of alljava * Restrict ptrace with Yama LSM by default * patch alljava.sh and alljava.csh, use the links from update alternatives ==== aalib ==== - Use %patch -P N instead of deprecated %patchN. ==== accountsservice ==== Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0 - First part to fix build with GCC 14: + Inject patched mocklibc-1.0.tar.gz: only some header modifications to address implicit declaration of print_indent. + Add accountsservice-mocklib-gcc14.patch: patch meson' subproject definition to validate the injected tarball. ==== acl ==== Version update (2.3.1 -> 2.3.2) Subpackages: libacl1 - Update to version 2.3.2: + libobj: declare s_str directly in string_obj_tag. + Use thread-safe getpwnam_r and getgrnam_r. + setfacl: preserve the failed status when processing multiple files. + man: Document pitfall with negative permissions and user namespaces. + tools: mark long_options static & const. ==== acpid ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== alsa-utils ==== - Use %patch -P N instead of deprecated %patchN. ==== amarok ==== - Remove the taglib-extras dependency, it fails to build with taglib 2 and will be dropped. - Add patch to support taglib 2: * 0001-Use-non-deprecated-TagLib-functions-fix-build-with-T.patch ==== apache-commons-logging ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apache2-mod_dnssd ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== apache2-mod_php8 ==== Version update (8.2.15 -> 8.2.16) - version update to 8.2.16 * This is a bug fix release. - modified patches % php-build-reproducible-phar.patch (refreshed) ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - Use %patch -P N instead of deprecated %patchN. - Add apparmor-abstractions-openssl-allow-version-specific-en.patch to allow version specific engdef & engines openssl paths (boo#1219571) ==== appstream-glib ==== Subpackages: libappstream-glib8 - Add asglib(swcatalog) provides: allow other packages to declare that they need swcatalog support. - Add patch for interoperability with newer AppStream spec (boo#1218427): * 0001-Move-from-app-info-to-swcatalog-locations.patch ==== argon2 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== argyllcms ==== - Use %patch -P N instead of deprecated %patchN. ==== arj ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== attr ==== Version update (2.5.1 -> 2.5.2) Subpackages: libattr1 - update to 2.5.2: * attr: eliminate a dead store in attr_copy_action() * libattr: Set symbol versions for legacy syscalls via attribute or asm * exports: use LGPL for library code * documentation updates * translation updates (Polish, Dutch, Gregorian, French) * build system updates ==== autofs ==== Version update (5.1.8 -> 5.1.9) - Use %patch -P N instead of deprecated %patchN. - update to 5.1.9 (bsc#1219508) * fix kernel mount status notification. * fix fedfs build flags. * fix set open file limit. * improve descriptor open error reporting. * fix root offset error handling. * fix fix root offset error handling. * fix nonstrict fail handling of last offset mount. * dont fail on duplicate offset entry tree add. * fix loop under run in cache_get_offset_parent(). * bailout on rpc systemerror. * fix nfsv4 only mounts should not use rpcbind. * simplify cache_add() a little. * fix use after free in tree_mapent_delete_offset_tree(). * fix memory leak in xdr_exports(). * avoid calling pthread_getspecific() with NULL key_thread_attempt_id. * fix sysconf(3) return handling. * remove nonstrict parameter from tree_mapent_umount_offsets(). * fix handling of incorrect return from umount_ent(). * dont use initgroups() at spawn. * fix bashism in configure. * musl: fix missing include in hash.h. * musl: define fallback dummy NSS config path * musl: avoid internal stat.h definitions. * musl: add missing include to hash.h for _WORDSIZE. * musl: add missing include to log.h for pid_t. * musl: define _SWORD_TYPE. * add autofs_strerror_r() helper for musl. * update configure. * handle innetgr() not present in musl. * fix missing unlock in sasl_do_kinit_ext_cc(). * fix a couple of null cache locking problems. * restore gcc flags after autoconf Kerberos 5 check. * prepare for OpenLDAP SASL binding. * let OpenLDAP handle SASL binding. * configure: LDAP function checks ignore implicit declarations. * improve debug logging of LDAP binds. * improve debug logging of SASL binds. * internal SASL logging only in debug log mode. * more comprehensive verbose logging for LDAP maps. * fix invalid tsv access. * support SCRAM for SASL binding. * ldap_sasl_interactive_bind() needs credentials for auto-detection. * fix autofs regression due to positive_timeout. * fix parse module instance mutex naming. * serialise lookup module open and reinit. * coverity fix for invalid access. * fix hosts map deadlock on restart. * fix deadlock with hosts map reload. * fix memory leak in update_hosts_mounts(). * fix minus only option handling in concat_options(). * fix incorrect path for is_mounted() in try_remount(). * fix additional tsv invalid access. * fix use_ignore_mount_option description. * include addtional log info for mounts. * fail on empty replicated host name. * improve handling of ENOENT in sss setautomntent(). * don't immediately call function when waiting. * define LDAP_DEPRECATED during LDAP configure check. * fix return status of mount_autofs(). * don't close lookup at umount. * fix deadlock in lookups. * dont delay expire. * make amd mapent search function name clear. * rename statemachine() to signal_handler(). * make signal handling consistent. * eliminate last remaining state_pipe usage. * add function master_find_mapent_by_devid(). * use device id to locate autofs_point when setting log priotity. * add command pipe handling functions. * switch to application wide command pipe. * get rid of unused field submnt_count. * fix mount tree startup reconnect. * fix unterminated read in handle_cmd_pipe_fifo_message(). * fix memory leak in sasl_do_kinit() * fix fix mount tree startup reconnect. * fix amd selector function matching. * get rid entry thid field. * continue expire immediately after submount check. * eliminate realpath from mount of submount. * eliminate root param from autofs mount and umount. * remove redundant fstat from do_mount_direct(). * get rid of strlen call in handle_packet_missing_direct(). * remove redundant stat call in lookup_ghost(). * set mapent dev and ino before adding to index. * change to use printf functions in amd parser. * dont call umount_subtree_mounts() on parent at umount. * dont take parent source lock at mount shutdown. * fix possible use after free in handle_mounts_exit(). * make submount cleanup the same as top level mounts. * add soucre parameter to module functions. * add ioctlfd open helper. * make open files limit configurable. * use correct reference for IN6 macro call. * dont probe interface that cant send packet. * fix some sss error return cases. * fix incorrect matching of cached wildcard key. * fix expire retry looping. ... changelog too long, skipping 18 lines ... ("autofs-5.1.8 - add soucre parameter to module functions") ==== autotrace ==== Subpackages: libautotrace3 - Use %patch -P N instead of deprecated %patchN. ==== autoyast2 ==== Version update (5.0.1 -> 5.0.2) Subpackages: autoyast2-installation - Install standard SLES when the AY XML profile selects SLE_HPC, it has been dropped in SP6 (jsc#PED-7841) - 5.0.2 - jsc#PED-6407 - enabled lvm_vg_reuse to be used in general/storage/proposal section ==== awesfx ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== babl ==== Version update (0.1.106 -> 0.1.108) - disable gi-docgen docs for now - Update to 0.1.108: - "double" and "half" support in cli-tool, build fixes. ==== bc ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== bind ==== Version update (9.18.21 -> 9.18.24) Subpackages: bind-doc bind-utils - Update to release 9.18.24 Security Fixes: * Validating DNS messages containing a lot of DNSSEC signatures could cause excessive CPU load, leading to a denial-of-service condition. This has been fixed. (CVE-2023-50387) [bsc#1219823] * Preparing an NSEC3 closest encloser proof could cause excessiv CPU load, leading to a denial-of-service condition. This has been fixed. (CVE-2023-50868) [bsc#1219826] * Parsing DNS messages with many different names could cause excessive CPU load. This has been fixed. (CVE-2023-4408) [bsc#1219851] * Specific queries could cause named to crash with an assertion failure when nxdomain-redirect was enabled. This has been fixed. (CVE-2023-5517) [bsc#1219852] * A bad interaction between DNS64 and serve-stale could cause named to crash with an assertion failure, when both of these features were enabled. This has been fixed. (CVE-2023-5679) [bsc#1219853] * Query patterns that continuously triggered cache database maintenance could cause an excessive amount of memory to be allocated, exceeding max-cache-size and potentially leading to all available memory on the host running named being exhausted This has been fixed. (CVE-2023-6516) [bsc#1219854] * Under certain circumstances, the DNS-over-TLS client code incorrectly attempted to process more than one DNS message at a time, which could cause named to crash with an assertion failure. This has been fixed. Bug Fixes: * The counters exported via the statistics channel were changed back to 64-bit signed values; they were being inadvertently truncated to unsigned 32-bit values since BIND 9.15.0. ==== binutils ==== Version update (2.41 -> 2.42) Subpackages: libctf-nobfd0 libctf0 - riscv-no-relax.patch: RISC-V: Don't generate branch/jump relocation if symbol is local when no-relax - Add binutils-disable-code-arch-error.diff to demote an error about swapped .arch/.code directives to a warning. It happens in the wild. - Update to version 2.42: * Add support for many aarch64 extensions: SVE2.1, SME2.1, B16B16, RASv2, LSE128, GCS, CHK, SPECRES2, LRCPC3, THE, ITE, D128, XS and flags to enable them: '+fcma', '+jscvt', '+frintts', '+flagm2', '+rcpc2' and '+wfxt' * Add experimantal support for GAS to synthesize call-frame-info for some hand-written asm (--scfi=experimental) on x86-64. * Add support for more x86-64 extensions: APX: 32 GPRs, NDD, PUSH2/POP2, PUSHP/POPP; USER_MSR, AVX10.1, PBNDKB, SM4, SM3, SHA512, AVX-VNNI-INT16. * Add support for more RISC-V extensions: T-Head v2.3.0, CORE-V v1.0, SiFive VCIX v1.0. * BPF assembler: ';' separates statements now, and does not introduce line comments anymore (use '#' or '//' for this). * x86-64 ld: Add '-z mark-plt/-z nomark-plt' to mark PLT entries with dynamic tags. * risc-v ld: Add '--[no-]check-uleb128'. * New linker script directive: REVERSE, to be combined with SORT_BY_NAME or SORT_BY_INIT_PRIORITY, reverses the generated order. * New linker options --warn-execstack-objects (warn only about execstack when input object files request it), and --error-execstack plus - -error-rxw-segments to convert the existing warnings into errors. * objdump: Add -Z/--decompress to be used with -s/--full-contents to decompress section contents before displaying. * readelf: Add --extra-sym-info to be used with --symbols (currently prints section name of references section index). * objcopy: Add --set-section-flags for x86_64 to include SHF_X86_64_LARGE. * s390 disassembly: add target-specific disasm option 'insndesc', as in "objdump -M insndesc" to display an instruction description as comment along with the disassembly. - Add binutils-2.42-branch.diff.gz. - Rebased s390-biarch.diff. - Adjusted binutils-revert-hlasm-insns.diff, binutils-revert-plt32-in-branches.diff and binutils-revert-rela.diff for upstream changes. - Removed binutils-2.41-branch.diff.gz, binutils-2.41.tar.bz2, binutils-2.41-branch.diff.gz. - Removed binutils-use-less-memory.diff, binutils-old-makeinfo.diff and riscv-relro.patch (all upstreamed). - Removed add-ulp-section.diff, we use a different mechanism for live patching since a long time. ==== bolt ==== Version update (0.9.6 -> 0.9.7) - update to 0.9.7: * Add a 'nopcie' security level since some devices report nopcie when Thunderbolt is disabled through BIOS setting. * Markdown lint styling is used for documents. ==== boost-base ==== Subpackages: boost-license1_84_0 libboost_filesystem1_84_0 libboost_iostreams1_84_0 libboost_locale1_84_0 libboost_thread1_84_0 - avoid obsolete rpm syntax ==== boost-extra ==== - avoid obsolete rpm syntax ==== branding-openSUSE ==== Subpackages: grub2-branding-openSUSE libreoffice-branding-openSUSE plymouth-branding-openSUSE wallpaper-branding-openSUSE yast2-qt-branding-openSUSE - Remove update-alternatives usage, we don't have dynamic wallpapers anymore which were using that (bsc#1219919). ==== btrfsprogs ==== Version update (6.7 -> 6.7.1) Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - update to 6.7.1 * convert: raid-stripe-tree can be now enabled for the target filesystem * mkfs: * handle lifetime of open file descriptors so it does not trigger udev that could miss to create the UUID symlinks in /dev * update warning when CPU page size does not match sector size * merge features in summary, no more distinction of incompat and runtime to match the semantics of option -O * fi show: fix recognizing raw device mapper paths * other: * documentation updates, fix links to labels in included directories ==== busybox-links ==== Subpackages: busybox-bzip2 busybox-coreutils busybox-diffutils busybox-ed busybox-findutils busybox-gawk busybox-grep busybox-gzip busybox-misc busybox-psmisc busybox-sed busybox-sendmail busybox-tar busybox-which busybox-xz - busybox-udhcpc conflicts with udhcp. ==== curl ==== Subpackages: libcurl4 - Add patch to fix various TLS related issues including FTP over SSL transmission timeouts: * 0001-vtls-revert-receive-max-buffer-add-test-case.patch - Switch to %autosetup ==== dav1d ==== Version update (1.3.0 -> 1.4.0) - Update to version 1.4.0 * AVX-512 optimizations for z1, z2, z3 in 8bit and high-bitdepth * New architecture supported: loongarch * Loongarch optimizations for 8bit * New architecture supported: RISC-V * RISC-V optimizations for itx * Misc improvements in threading and in reducing binary size * Fix potential integer overflow with extremely large frame sizes (bsc#1220105, CVE-2024-1580) ==== dcraw ==== Subpackages: dcraw-lang - Use %patch -P N instead of deprecated %patchN. ==== djvulibre ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== dnsmasq ==== Version update (2.89 -> 2.90) - update to 2.90: * CVE-2023-50387, CVE-2023-50868, bsc#1219823, bsc#1219826: Denial Of Service while trying to validate specially crafted DNSSEC responses * Fix reversion in --rev-server introduced in 2.88 which caused breakage if the prefix length is not exactly divisible by 8 (IPv4) or 4 (IPv6). * Fix possible SEGV when there server(s) for a particular domain are configured, but no server which is not qualified for a particular domain. * Set the default maximum DNS UDP packet sice to 1232. Obsoletes: dnsmasq-CVE-2023-28450.patch * Add --no-dhcpv4-interface and --no-dhcpv6-interface for better control over which inetrfaces are providing DHCP service. * Fix issue with stale caching * Add configurable caching for arbitrary RR-types. * Add --filter-rr option, to filter arbitrary RR-types. ==== dracut ==== Version update (059+suse.549.gc9f63878 -> 059+suse.554.g6144bf71) - Update to version 059+suse.554.g6144bf71: * fix(dracut.spec): update dracut-fips requirements (bsc#1219869) - Update to version 059+suse.552.g4610ef1b: * fix(dracut-util): do not call `strcmp` if the `value` argument is NULL (bsc#1219841) ==== e2fsprogs ==== Subpackages: e2fsprogs-scrub libcom_err2 libext2fs2 - Use %patch -P N instead of deprecated %patchN. ==== ebook-tools ==== - Use %patch -P N instead of deprecated %patchN. ==== ed ==== Version update (1.20 -> 1.20.1) - GNU ed 1.20.1: * New command-line options '+line', '+/RE', and '+?RE' have been implemented to set the current line to the line number specified or to the first or last line matching the regular expression 'RE'. * File names containing control characters 1 to 31 are now rejected unless they are allowed with the command-line option '--unsafe-names'. * File names containing control characters 1 to 31 are now printed using octal escape sequences. * Ed now rejects file names ending with a slash. * Intervening commands that don't set the modified flag no longer make a second 'e' or 'q' command fail with a 'buffer modified' warning. * Tilde expansion is now performed on file names supplied to commands; if a file name starts with '~/', the tilde (~) is expanded to the contents of the variable HOME. * Ed now warns the first time that a command modifies a buffer loaded from a read-only file. * It has been documented that 'e' creates an empty buffer if file does not exist. * It has been documented that 'f' sets the default filename, whether or not its argument names an existing file. * The description of the exit status has been improved in '--help' and in the manual. ==== eekboard ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== efont-unicode-bitmap-fonts ==== - Use %patch -P N instead of deprecated %patchN. ==== ell ==== Version update (0.61 -> 0.62) - Update to version 0.62 * Add support for cleanup functions and macros. * Add support for setting DHCP max attempts. ==== emacs-flim ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== epson-inkjet-printer-escpr ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== espeak ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== expat ==== Version update (2.5.0 -> 2.6.0) Subpackages: libexpat1 - Fix handling of xmlwf.1 to avoid workarounds in specfile: * Added libxml2-fix-xmlwf.1-handling.patch - Call buildconf.sh to avoid (future) issues with expat_config.h.in - Update keyring automatically from keyserver during OBS service run. - Explicitly use --without-docbook (before it was implicit). - Include missing files for documentation and examples. - Add manpage for xmlwf, which is now available in the released tarball. - Clean the spec file a bit. - Update to 2.6.0: * Security fixes: - CVE-2023-52425 (boo#1219559) - - Fix quadratic runtime issues with big tokens that can cause denial of service, in partial where dealing with compressed XML input. Applications that parsed a document in one go -- a single call to functions XML_Parse or XML_ParseBuffer -- were not affected. The smaller the chunks/buffers you use for parsing previously, the bigger the problem prior to the fix. Backporters should be careful to no omit parts of pull request #789 and to include earlier pull request #771, in order to not break the fix. - CVE-2023-52426 (boo#1219561) - - Fix billion laughs attacks for users compiling *without* XML_DTD defined (which is not common). Users with XML_DTD defined have been protected since Expat >=2.4.0 (and that was CVE-2013-0340 back then). * Bug fixes: - Fix parse-size-dependent "invalid token" error for external entities that start with a byte order mark - Fix NULL pointer dereference in setContext via XML_ExternalEntityParserCreate for compilation with XML_DTD undefined - Protect against closing entities out of order * Other changes: - Improve support for arc4random/arc4random_buf - Improve buffer growth in XML_GetBuffer and XML_Parse - xmlwf: Support --help and --version - xmlwf: Support custom buffer size for XML_GetBuffer and read - xmlwf: Improve language and URL clickability in help output - examples: Add new example "element_declarations.c" - Be stricter about macro XML_CONTEXT_BYTES at build time - Make inclusion to expat_config.h consistent - Autotools: configure.ac: Support --disable-maintainer-mode - Autotools: Sync CMake templates with CMake 3.26 - Autotools: Make installation of shipped man page doc/xmlwf.1 independent of docbook2man availability - Autotools|CMake: Add missing -DXML_STATIC to pkg-config file section "Cflags.private" in order to fix compilation against static libexpat using pkg-config on Windows - Autotools|CMake: Require a C99 compiler (a de-facto requirement already since Expat 2.2.2 of 2017) - Autotools|CMake: Fix PACKAGE_BUGREPORT variable - Autotools|CMake: Make test suite require a C++11 compiler - CMake: Require CMake >=3.5.0 - CMake: Lowercase off_t and size_t to help a bug in Meson - CMake: Sort xmlwf sources alphabetically - CMake|Windows: Fix generation of DLL file version info - CMake: Build tests/benchmark/benchmark.c as well for a build with -DEXPAT_BUILD_TESTS=ON - docs: Document the importance of isFinal + adjust tests accordingly - docs: Improve use of "NULL" and "null" - docs: Be specific about version of XML (XML 1.0r4) and version of C (C99); (XML 1.0r5 will need a sponsor.) - docs: reference.html: Promote function XML_ParseBuffer more - docs: reference.html: Add HTML anchors to XML_* macros - docs: reference.html: Upgrade to OK.css 1.2.0 - docs: Fix typos - docs|CI: Use HTTPS URLs instead of HTTP at various places - Address compiler warnings - Address clang-tidy warnings - Version info bumped from 9:10:8 (libexpat*.so.1.8.10) to 10:0:9 (libexpat*.so.1.9.0); see https://verbump.de/ for what these numbers do ==== fde-tools ==== Subpackages: fde-tools-bash-completion fde-tpm-helper - Add fde-tools-bsc1213945-set-rsa-key-size.patch to set the highest supported RSA key size (bsc#1213945) ==== gcc ==== - Add gcc-build flavor for building ALP packages, but disabled for openSUSE. - Support building suffixed packages, but only allow installing one variant at the same time. - Remove obsolete obsoletes. ==== gcc14 ==== Version update (13.2.1+git8285 -> 14.0.1+git8957) Subpackages: libasan8 libatomic1 libgcc_s1 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-locale libstdc++6-pp libtsan2 libubsan1 - Update to trunk head, 4a1cd5560b9b545eb848eb1d1e06d345fb, git8957 * bumps libgphobos and libgdrundime SONAME - Use %patch -P N instead of %patchN - Refresh gcc44-rename-info-files.patch ==== gd ==== Subpackages: libgd3 - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Drop gdm-disable-wayland-on-mgag200-chipsets.patch: fixed upstream since version 43.0. ==== gegl ==== Version update (0.4.46 -> 0.4.48) Subpackages: gegl-0_4 libgegl-0_4-0 - Update to version 0.4.48: + Core: - GeglColor extended with GBytes API, and space aware accesors for RGB and CMYK. Better runtime handling of mismatched GEGL ops in graphs. + Build: - Use gi-docgen - Updated vendored libraries - ctx has been updated from upstream. + Operations: - dropshadow: Fix shrinking with negative-grow radius. - mantiuk: opt out of OpenMP when building with clang. - voroni: fix crash. - shuffle-search: in progress (in workshop, not built by default) brute-force dither optimizer. - prepare gi-docgen documentation. disabled for now. - Replace BuildRequires libSDL2-devel with pkgconfig(sdl2) which fixes building in SLE where both libSDL2-devel and a newer SDL2-devel packages are available. ==== git ==== Version update (2.43.0 -> 2.43.2) Subpackages: git-core git-email git-web perl-Git - Do not replace apparmor configuration, fixes bsc#1216545 - update to 2.43.2: * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.4… * Update to a new feature recently added, "git show-ref --exists". * Rename detection logic ignored the final line of a file if it is an incomplete line. * "git diff --no-rename A B" did not disable rename detection but did not trigger an error from the command line parser. * "git diff --no-index file1 file2" segfaulted while invoking the external diff driver, which has been corrected. * A failed "git tag -s" did not necessarily result in an error depending on the crypto backend, which has been corrected. * "git stash" sometimes was silent even when it failed due to unwritable index file, which has been corrected. * Recent conversion to allow more than 0/1 in GIT_FLUSH broke the mechanism by flipping what yes/no means by mistake, which has been corrected. - update to 2.43.1: * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.4… ==== gnome-control-center ==== Version update (45.2 -> 45.3) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 45.3: + Datetime: Fix build with -Wincompatible-pointer-types. + Region: Prevent preview crash from accessing invalid pointer. + Wifi: Fix build with -Wincompatible-pointer-types. - Drop gnome-control-center-fix-region-preview-crash.patch: fixed upstream. ==== gnome-maps ==== - Update license based on legaldb review ==== gnome-music ==== Version update (45.0 -> 45.1) - Update to version 45.1: + Tracker queries improvements. ==== gnome-shell ==== Subpackages: gnome-extensions gnome-shell-calendar - Add gjs Requires, because ScreenSaver DBus daemon is a gjs script. (bsc#1219359) ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Update gpgme-D545-obsolete-distutils.patch with upstream's changes (but use pip instead of python-build for wheel building) - Change from in-place build to out-of-place build in order to reflect upstream's build setup (See D545) - Don't replace distutils in 15.X ==== gpgmeqt ==== - Update gpgme-D545-obsolete-distutils.patch with upstream's changes (but use pip instead of python-build for wheel building) - Change from in-place build to out-of-place build in order to reflect upstream's build setup (See D545) - Don't replace distutils in 15.X ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - Use %patch -P N instead of deprecated %patchN. - Update graphviz-rpmlintrc ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix grub.xen memdisk script doesn't look for /boot/grub/grub.cfg (bsc#1219248) (bsc#1181762) * grub2-xen-pv-firmware.cfg * 0001-disk-Optimize-disk-iteration-by-moving-memdisk-to-th.patch - Fix PowerPC grub loads 5 to 10 minutes slower on SLE-15-SP5 compared to SLE-15-SP2 (bsc#1217102) * add 0001-ofdisk-enhance-boot-time-by-focusing-on-boot-disk-re.patch * add 0002-ofdisk-add-early_log-support.patch - Sort tar file order for reproducible builds ==== hdparm ==== - Use %patch -P N instead of deprecated %patchN. ==== hfsutils ==== - Use %patch -P N instead of deprecated %patchN. ==== highway ==== Version update (1.0.7 -> 1.1.0) - Update to release 1.1.0 * Add BitCastScalar, DispatchedTarget, Foreach * Add Div/Mod and MaskedDiv/ModOr, SaturatedAbs, SaturatedNeg * Add InterleaveWholeLower/Upper, Dup128VecFromValues * Add IsInteger, IsIntegerLaneType, RemoveVolatile, RemoveCvRef * Add MaskedAdd/Sub/Mul/Div/Gather/Min/Max/SatAdd/SatSubOr * Add MaskFalse, IfNegativeThenNegOrUndefIfZero, PromoteEven/OddTo * Add ReduceMin/Max, 8-bit reductions, f16 <-> f64 conversions * Add Span, AlignedArray, matrix-vector mul * Add SumsOf2/4, I8 SumsOf8, SumsOfAdjQuadAbsDiff, SumsOfShuffledQuadAbsDiff * Extend Dot to f32*bf16, FMA to integer * Fix: RVV 8-bit overflow, UB in vqsort, big-endian bugs, PPC HTM * New targets: HWY_Z14, HWY_Z15 ==== hp2xx ==== - Use %patch -P N instead of deprecated %patchN. ==== hplip ==== Subpackages: hplip-hpijs hplip-sane hplip-udev-rules - Use %patch -P N instead of deprecated %patchN. ==== hwdata ==== Version update (0.378 -> 0.379) - update to 0.379: * Update pci, usb and vendor ids ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Use %patch -P N instead of deprecated %patchN. ==== intlfonts ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== iso_ent ==== - Use %patch -P N instead of deprecated %patchN. ==== jasper ==== Version update (4.2.0 -> 4.2.1) - Update to 4.2.1: * Fix a build problem for the DJGPP/MS-DOS environment (#372). ==== jfsutils ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== kColorPicker-Qt5 ==== - Fix build on Leap. The Qt6 packaging macros set the minimum compiler version - Change %post/%postun to %ldconfig_scriptlets ==== kernel-firmware ==== Version update (20240201 -> 20240220) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240220 (git commit 73b4429fae36): * linux-firmware: update firmware for en8811h 2.5G ethernet phy * linux-firmware: add firmware for MT7996 * xe: First GuC release for LNL and Xe * i915: Add GuC v70.20.0 for ADL-P, DG1, DG2, MTL and TGL * linux-firmware: Add CS35L41 firmware for Lenovo Legion 7i gen7 laptop (16IAX7) * brcm: Add nvram for the Asus Memo Pad 7 ME176C tablet * ice: update ice DDP package to 1.3.36.0 * Intel IPU3 ImgU: Move firmware file under intel/ipu * Intel IPU6: Move firmware binaries under ipu/ * check_whence: Add a check for duplicate link entries * WHENCE: Clean up section separators * linux-firmware: Add CS35L41 firmware for additional ASUS Zenbook 2023 models * panthor: Add initial firmware for Gen10 Arm Mali GPUs * amdgpu: DMCUB Updates for DCN321: 7.0.38.0 * amdgpu: DMCUB updates for Yellow Carp: 4.0.68.0 * qcom: update venus firmware file for v5.4 * Montage: add firmware for Mont-TSSE * amdgpu: update DMCUB to v0.0.203.0 for DCN314 and DCN32 * linux-firmware: Remove 2 HP laptops using CS35L41 Audio Firmware * linux-firmware: Fix filenames for some CS35L41 firmwares for HP - Use patch macro -P option for RPM 4.20 ==== kernel-source ==== Version update (6.7.4 -> 6.7.5) - Linux 6.7.5 (bsc#1012628). - ext4: regenerate buddy after block freeing failed if under fc replay (bsc#1012628). - dmaengine: fsl-dpaa2-qdma: Fix the size of dma pools (bsc#1012628). - dmaengine: ti: k3-udma: Report short packet errors (bsc#1012628). - dmaengine: fsl-qdma: Fix a memory leak related to the status queue DMA (bsc#1012628). - dmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA (bsc#1012628). - phy: qcom-qmp-usb: fix register offsets for ipq8074/ipq6018 (bsc#1012628). - phy: qcom-qmp-usb: fix serdes init sequence for IPQ6018 (bsc#1012628). - phy: renesas: rcar-gen3-usb2: Fix returning wrong error code (bsc#1012628). - perf tests: Add perf script test (bsc#1012628). - perf test: Fix 'perf script' tests on s390 (bsc#1012628). - perf evlist: Fix evlist__new_default() for > 1 core PMU (bsc#1012628). - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV (bsc#1012628). - phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP (bsc#1012628). - cifs: avoid redundant calls to disable multichannel (bsc#1012628). - cifs: failure to add channel on iface should bump up weight (bsc#1012628). - drm/msms/dp: fixed link clock divider bits be over written in BPC unknown case (bsc#1012628). - drm/msm/dp: return correct Colorimetry for DP_TEST_DYNAMIC_RANGE_CEA case (bsc#1012628). - drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup (bsc#1012628). - wifi: iwlwifi: mvm: skip adding debugfs symlink for reconfig (bsc#1012628). - x86/efistub: Give up if memory attribute protocol returns an error (bsc#1012628). - x86/efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR (bsc#1012628). - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels (bsc#1012628). - wifi: cfg80211: consume both probe response and beacon IEs (bsc#1012628). - wifi: mac80211: fix RCU use in TDLS fast-xmit (bsc#1012628). - wifi: mac80211: fix unsolicited broadcast probe config (bsc#1012628). - wifi: mac80211: fix waiting for beacons logic (bsc#1012628). - wifi: iwlwifi: exit eSR only after the FW does (bsc#1012628). - wifi: brcmfmac: Adjust n_channels usage for __counted_by (bsc#1012628). - netdevsim: avoid potential loop in nsim_dev_trap_report_work() (bsc#1012628). - net: atlantic: Fix DMA mapping for PTP hwts ring (bsc#1012628). - selftests: net: cut more slack for gro fwd tests (bsc#1012628). - selftests/net: convert unicast_extensions.sh to run it in unique namespace (bsc#1012628). - selftests/net: convert pmtu.sh to run it in unique namespace (bsc#1012628). - selftests/net: change shebang to bash to support "source" (bsc#1012628). - selftests: net: fix tcp listener handling in pmtu.sh (bsc#1012628). - selftests: net: avoid just another constant wait (bsc#1012628). - tsnep: Fix mapping for zero copy XDP_TX action (bsc#1012628). - tunnels: fix out of bounds access when building IPv6 PMTU error (bsc#1012628). - atm: idt77252: fix a memleak in open_card_ubr0 (bsc#1012628). - octeontx2-pf: Fix a memleak otx2_sq_init (bsc#1012628). - hwmon: (aspeed-pwm-tacho) mutex for tach reading (bsc#1012628). - hwmon: (coretemp) Fix out-of-bounds memory access (bsc#1012628). - hwmon: (coretemp) Fix bogus core_id to attr name mapping (bsc#1012628). - inet: read sk->sk_family once in inet_recv_error() (bsc#1012628). - drm/i915/gvt: Fix uninitialized variable in handle_mmio() (bsc#1012628). - x86/efistub: Use 1:1 file:memory mapping for PE/COFF .compat section (bsc#1012628). - rxrpc: Fix generation of serial numbers to skip zero (bsc#1012628). - rxrpc: Fix delayed ACKs to not set the reference serial number (bsc#1012628). - rxrpc: Fix response to PING RESPONSE ACKs to a dead call (bsc#1012628). - rxrpc: Fix counting of new acks and nacks (bsc#1012628). - selftests: net: let big_tcp test cope with slow env (bsc#1012628). - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() (bsc#1012628). - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC (bsc#1012628). - devlink: avoid potential loop in devlink_rel_nested_in_notify_work() (bsc#1012628). - ppp_async: limit MRU to 64K (bsc#1012628). - selftests: cmsg_ipv6: repeat the exact packet (bsc#1012628). - netfilter: nft_compat: narrow down revision to unsigned 8-bits (bsc#1012628). ... changelog too long, skipping 163 lines ... - commit 1dccf2a ==== keyutils ==== Subpackages: libkeyutils1 - Use %patch -P N instead of deprecated %patchN. ==== kmozillahelper ==== - Remove rpm_macro(cmake_kf5) BR, not supported on Leap and extra-cmke-modules already takes care of that. ==== kvm_stat ==== Version update (6.7.4 -> 6.7.5) - Use %patch -P N instead of deprecated %patchN. ==== lastlog2 ==== Version update (1.2.0 -> 1.3.1) Subpackages: liblastlog2-1 - Verson 1.3.1 - pam_lastlog2: improve ll2_read_entry error handling [bsc#1220000] - Version 1.3.0 - fix sqlite3_step error handling ==== libHX ==== Version update (4.21 -> 4.23) - Update to release 4.23 * io: use smaller chunks with sendfile(2) to work around unusual API behavior * io: make HX_copy_file() utilize copy_file_range when available ==== libadwaita ==== Version update (1.4.2 -> 1.4.3) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.4.3: + AdwAboutWindow: Don't pre-select the first section on the Legal page. + AdwHeaderBar: Fix visibility after changing :show-back-button. + AdwPreferencesWindow: Fix :visible-page and :visible-page-name docs. + AdwViewSwitcherBar: Fix a warning when empty. + Updated translations. ==== libapparmor ==== - Use %patch -P N instead of deprecated %patchN. - Add apparmor-abstractions-openssl-allow-version-specific-en.patch to allow version specific engdef & engines openssl paths (boo#1219571) ==== libblockdev ==== Version update (3.0.4 -> 3.1.0) Subpackages: libbd_btrfs3 libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3 - Update to 3.1.0: * Add BDPluginSpec constructor and use it in plugin_specs_from_names * overrides: Remove unused 'sys' import * swap: Add support for checking label and UUID format * fs: Add a function to check label format for F2FS * fs: Add a generic function to check for fs info availability * fs: Fix allowed UUID for generic mkfs with VFAT * fs: Add support for getting filesystem min size for NTFS and Ext * Mark NVDIMM plugin as deprecated since 3.1 * part: Fix potential double free when getting parttype * Fix missing progress initialization in bd_crypto_luks_add_key * lvm-dbus: Fix leaking error * lvm-dbus: Avoid using already-freed memory * utils: Add expected printf string annotation * fs: Report reason for open() and ioctl() failures ==== libdbusmenu-qt5 ==== - Switch to %autosetup - Drop obsolete patch: * full_include_dir.patch ==== libdecor ==== Subpackages: libdecor-0-0 - Remove the -devel package from baselibs.conf ==== libdeflate ==== - baselibs for tools and devel reportedly not needed - modified sources % baselibs.conf - introduce baselibs.conf for openexr https://build.opensuse.org/request/show/1144873 - added sources + baselibs.conf ==== libei ==== - Add baselibs.conf: GNOME 46's at-spi2-core newly linkes libei, and the at-spi stack is made available bi-arch. ==== libguestfs ==== Subpackages: libguestfs-appliance libguestfs-xfs libguestfs0 - bsc#1206361 - SLES 15 SP5 Beta2 - virt-customize ssh-inject fails (s390x/kvm/libvirt) (-> Server-Applications module) use-rtc-driftfix-slew-for-x86-only.patch ==== libgusb ==== - Explicitly require python311-packaging if python 3.11 is being used. On SLE, python 3.6 is still the default, but 3.11 is used by meson. Drop python3-base from BuildRequires: it is not needed, since python will be pulled in by meson. ==== libjpeg-turbo ==== - Update to version 3.0.2 * Fixed a signed integer overflow in the tj3CompressFromYUV8(), tj3DecodeYUV8(), tj3DecompressToYUV8(), and tj3EncodeYUV8() functions, detected by the Clang and GCC undefined behavior sanitizers, that could be triggered by setting the align parameter to an unreasonably large value. This issue did not pose a security threat, but removing the warning made it easier to detect actual security issues, should they arise in the future. * Introduced a new parameter (TJPARAM_MAXMEMORY in the TurboJPEG C API and TJ.PARAM_MAXMEMORY in the TurboJPEG Java API) and a corresponding TJBench option (-maxmemory) for specifying the maximum amount of memory (in megabytes) that will be allocated for intermediate buffers, which are used with progressive JPEG compression and decompression, optimized baseline entropy coding, lossless JPEG compression, and lossless transformation. The new parameter and option serve the same purpose as the max_memory_to_use field in the jpeg_memory_mgr struct in the libjpeg API, the JPEGMEM environment variable, and the cjpeg/djpeg/jpegtran -maxmemory option. * Introduced a new parameter (TJPARAM_MAXPIXELS in the TurboJPEG C API and TJ.PARAM_MAXPIXELS in the TurboJPEG Java API) and a corresponding TJBench option (-maxpixels) for specifying the maximum number of pixels that the decompression, lossless transformation, and packed-pixel image loading functions/methods will process. * Fixed an error ("Unsupported color conversion request") that occurred when attempting to decompress a 3-component lossless JPEG image without an Adobe APP14 marker. The decompressor now assumes that a 3-component lossless JPEG image without an Adobe APP14 marker uses the RGB colorspace if its component IDs are 1, 2, and 3. ==== libjxl-gtk ==== Version update (0.9.2 -> 0.10.0) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update to release 0.10 * decoder: added ``JxlDecoderGetBoxSizeContents`` for getting the size of the content of a box without the headers. * encoder: implemented new API functions for streaming encoding. ==== liblangtag ==== Version update (0.6.4 -> 0.6.7) - version update to 0.6.7 0.6.6 -> 0.6.7 ================= Akira TAGOH (1): Add missing header 0.6.5 -> 0.6.6 ================= Akira TAGOH (2): Do not use variable array of bash-ism. Fix more compile warnings - deleted patches - 0001-ro-MD-ro-to-get-make-check-to-succeed.patch (upstreamed) ==== libnvme ==== Version update (1.7.1+0.g13ba383 -> 1.8+0.gbff7dda) Subpackages: libnvme-mi1 libnvme1 - Update to version 1.8+0.gbff7dda: * linux: Explicitly initialize auto-cleanup variables * example: fix mi identify failed with error cntid * tree: do not issue an error when subsys lookup fails during scanning * types: Add controller properties CMBEBS, CMBSWTP and NSSD * tests: Add sample NBFT table from Dell PowerEdge R660 * tests: Add sample NBFT table from Dell PowerEdge R760 * tests: Fix diffs output for duplicate HFI entries * nbft: avoid duplicate entries in ssns->hfis * nbft: Fix (struct nbft_info_subsystem_ns).num_hfis off-by-one * test: read and dump sysfs tar file * nvme: allow to overwrite hostnqn and hostid * nvme: allow to overwrite base sysfs path * json: dump the output to the user selected filedescriptor * libnvme: export nvme_dump_tree * fabrics: add 'concat' option * mi: set correct rc and errno when crc mismatch * tree: use logical block size for lba * json-schema: add keyring and tls_key details (bsc#1219086) * build: checkout full repo for checkpatch * linux: avoid segfault in check-tls-key due to null hostnqn/subsysnqn (bsc#1219086) * meson.build: fixup 'join' syntax * util: Explicitly initialize auto-cleanup variables * tree: Explicitly initialize auto-cleanup variables * linux: Explicitly initialize auto-cleanup variables * fabrics: Explicitly initialize auto-cleanup variables * util: Added function to find specific UUID in UUID list. * build: fix release python tag match - Disable new unit test which is not running stable in OSB * add 0001-build-disable-sysfs-test.patch ==== libpaper ==== Version update (2.1.2 -> 2.1.3) Subpackages: libpaper-tools libpaper2 - Update 2.1.3: * This release fixes a small problem with the paperspecs(5) man page, and ensures that the name of the âpaperâ program is always set, even in a non-relocatable build. ==== libphonenumber ==== Version update (8.13.23 -> 8.13.30) - Update to version 8.13.30: * Update alternate formatting data, phone metadata, geocoding data, carrier data * Updated / refreshed time zone meta data. * New geocoding data - Add patch submitted to upstream at gh#google/libphonenumber#3394 to fix building with protobuf 3.25.1: * 0001-Add-support-to-protobuf-3.25.1.patch - Add patch submitted in gh#sergiomb2/libphonenumber#1 by Fabian Vogt: * 0002-Avoid-intermediate-proto-object-library.patch ==== libpng16 ==== Version update (1.6.40 -> 1.6.42) - Update to version 1.6.42: * Fixed the implementation of the macro function "png_check_sig". This was an API regression, introduced in libpng-1.6.41. (Reported by Matthieu Darbois) ==== libqt5-qtbase ==== Version update (5.15.12+kde147 -> 5.15.12+kde151) Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.12+kde151: * Improve KTX file reading memory safety (CVE-2024-25580, boo#1219996) * Revert "xcb: only set base size when it's valid" * Fix potential leak of QPropertyAnimation in QLineEditIconButton * QBitArray: correct inline keyword ==== libqt5-qtwebengine ==== - Switch to '%patch -P' - Build with python 3.11 on Leap ==== libshumate ==== Subpackages: libshumate-1_0-1 typelib-1_0-Shumate-1_0 - Update licenses based on legaldb review ==== libstorage-ng ==== Version update (4.5.176 -> 4.5.191) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Finnish) (bsc#1149754) - 4.5.191 - Translated using Weblate (Indonesian) (bsc#1149754) - 4.5.190 - merge gh#openSUSE/libstorage-ng#986 - log textdomain codeset - 4.5.189 - merge gh#openSUSE/libstorage-ng#985 - log locale - 4.5.188 - merge gh#openSUSE/libstorage-ng#984 - log some languange environmant variables - log some language environment variables - 4.5.187 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.186 - Translated using Weblate (Swedish) (bsc#1149754) - 4.5.185 - Translated using Weblate (Czech) (bsc#1149754) - 4.5.184 - Translated using Weblate (Slovak) (bsc#1149754) - 4.5.183 - merge gh#openSUSE/libstorage-ng#983 - fixed typo - 4.5.182 - Translated using Weblate (Dutch) (bsc#1149754) - 4.5.181 - Translated using Weblate (Japanese) (bsc#1149754) - Translated using Weblate (Catalan) (bsc#1149754) - merge gh#openSUSE/libstorage-ng#982 - updated pot and po files - 4.5.180 - Translated using Weblate (Georgian) (bsc#1149754) - 4.5.179 - merge gh#openSUSE/libstorage-ng#981 - fix reusing volume group name (bsc#1219266) - 4.5.178 - merge gh#openSUSE/libstorage-ng#980 - added experimental support for bcachefs - 4.5.177 ==== libunwind ==== Version update (1.7.2 -> 1.8.0) - Disable LTO on aarch64 until upstream fix the issue: https://github.com/libunwind/libunwind/issues/693 - Update to 1.8.0: * Improve unwinding through a bad function pointer on x86_64 * Fix UMRs indicated by valgrind (x86_64) * fix byte_order_is_valid function logic * Use size_t to match R.H.S * Move get_proc_info_in_range under dwarf/ * Bump actions/checkout@v2 to @V3 * dwarf_find_unwind_table: Find load_base correctly when current segment does not start at segbase * Add introspection for march=armv8-a+sve * Linux: Make get_elf_image guaranteed AS-safe * Provide syscall wrappers for mmap and munmap * Allow to use a custom dl_iterate_phdr implementation * aarch64: unw_step() validates address before calling dwarf_get * Provide AS-safe allocator to LZMA * Rework register load in aarch64_local_resume() * Fix arm postdecrement * Added support for unwinding through PPC64 PLT entries * Fix array indexing bug in dwarf_search_unwind_table * Fix unaligned memory accesses in */Ginit.c * Get filename and offset from ip * Fix maps leak if caller's pathlen is too small * Adjust DYNAMIC addrs in loaded image * Fix crash in elf_w(valid_object) * Fix segfault on QNX ==== make ==== - Use %patch -P ==== man ==== - We don't need anymore systemd-tmpfiles (boo#1219370#c13) - Move creation of /var/cache/man into %pre scriplet (boo#1219370) ==== mariadb ==== Version update (11.2.2 -> 11.2.3) Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Update to 11.2.3: https://mariadb.com/kb/en/mariadb-11-2-3-release-notes/ https://mariadb.com/kb/en/mariadb-11-2-3-changelog/ - Update list of skipped tests ==== mdevctl ==== - Add /usr/lib/mdevctl/scripts.d/{callouts,notifiers} directories ==== mozilla-nss ==== Version update (3.96.1 -> 3.97) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-tools - update to NSS 3.97 * bmo#1875506 - make Xyber768d00 opt-in by policy * bmo#1871631 - add libssl support for xyber768d00 * bmo#1871630 - add PK11_ConcatSymKeys * bmo#1775046 - add Kyber and a PKCS#11 KEM interface to softoken * bmo#1871152 - add a FreeBL API for Kyber * bmo#1826451 - part 2: vendor github.com/pq-crystals/kyber/commit/e0d1c6ff * bmo#1826451 - part 1: add a script for vendoring kyber from pq-crystals repo * bmo#1835828 - Removing the calls to RSA Blind from loader.* * bmo#1874111 - fix worker type for level3 mac tasks * bmo#1835828 - RSA Blind implementation * bmo#1869642 - Remove DSA selftests * bmo#1873296 - read KWP testvectors from JSON * bmo#1822450 - Backed out changeset dcb174139e4f * bmo#1822450 - Fix CKM_PBE_SHA1_DES2_EDE_CBC derivation * bmo#1871219 - Wrap CC shell commands in gyp expansions ==== mpg123 ==== Version update (1.32.4 -> 1.32.5) Subpackages: libmpg123-0 mpg123-openal - Update to version 1.32.5 build: * CMake port uses CFLAGS for pulse/jack/tinyalsa properly now (bug 366). * CMake port links libsyn123 with libm now (bug 370). libmpg123: * Fix --enable-portable (no usage of LFS_WRAP_NONE, bug 368). * Fix dct36 wrapper usage for x86-64 and NEON. Stupid (bug 367) and also avoid returning void. * Make ARM builds work with nagging (missing feature macros for std=c99). ==== mtools ==== - Use %autosetup macro. ==== multipath-tools ==== Version update (0.9.7+93+suse.e2f2272 -> 0.9.8~1+82+suse.dcd98a3) Subpackages: kpartx libmpath0 - Update to version 0.9.8~1+82+suse.dcd98a3: * Adapt package version such that it shows as a 0.9.8 prerelease * Add missing udev rules file - Update to version 0.9.7+148+suse.9780ae0: * 11-dm-mpath.rules: Fix quoting mistake (bsc#1219142) - Update to version 0.9.7+148+suse.7d9953e.obscpio * This is a multipath-tools 0.9.8 pre-release * fix fast_io_fail for Infinibox (bsc#1219348) * Fix activation of LVM volume groups during coldplug (bsc#1219142) - Update to version 0.9.7+140+suse.2d78457: * This is a multipath-tools 0.9.8 pre-release * Socket activation via multipathd.socket has been disabled by default because it has undesirable side effects on systems without multipath. Users with multipath hardware should enable multipathd.service * The restorequeueing CLI command now only enables queueing if disablequeueing had been sent before * Avoid multipathd hang during map flush * multipathd now tracks the queueing mode of maps in its internal features string * Improve error messages in 'multipathd -k' * Fix segfault in autoresize code (bsc#1219289) * Fix missing map reloads (bsc#1219796) * Documentation fixes, spelling fixes, minor code fixes ==== musepack ==== - Use %patch -P N instead of deprecated %patchN. ==== ncurses ==== Version update (6.4.20240120 -> 6.4.20240210) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240210 + compiler-warning fixes, while investigating an optimizer bug in "gcc (MacPorts gcc13 13.2.0_4+stdlib_flag) 13.2.0" which results in only the first byte of a multibyte character being printed to the screen. - Change order of use=vt100+4bsd and use=rxvt+pcfkeys in rxvt-basic to get correct arrow keys back (boo#1219626) - Add ncurses patch 20240203 + minor changes to tracing and locale-checks. - Add ncurses patch 20240127 + amend change to z39-a (report by Sven Joachim). + use xterm+nopcfkeys, vt52-basic, dec+pp, dec+sl, vt52+arrows, hp+pfk+cr, klone+acs, klone+color, klone+sgr, ncr160wy50+pp to trim -TD + NetBSD-related fixes for x68k and wsvt52 (patch by Thomas Klausner) ==== neon ==== - Use %patch -P N instead of deprecated %patchN. ==== nodejs21 ==== Version update (21.5.0 -> 21.6.2) Subpackages: npm21 - Update to 21.6.2: (security updates) * (CVE-2024-21892, bsc#1219992) - Code injection and privilege escalation through Linux capabilities- (High) * (CVE-2024-22019, bsc#1219993) - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High) * (CVE-2024-21896, bsc#1219994) - Path traversal by monkey-patching Buffer internals- (High) * (CVE-2024-22017, bsc#1219995) - setuid() does not drop all privileges due to io_uring - (High) * (CVE-2023-46809, bsc#1219997) - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium) * (CVE-2024-21891, bsc#1219998) - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium) * (CVE-2024-21890, bsc#1219999) - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium) * (CVE-2024-22025, bsc#1220014) - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium) * undici version 5.28.3 (CVE-2024-24758, bsc#1220017) * libuv version 1.48.0 - Update to 21.6.1: * Revert "stream: fix cloned webstreams not being unref'd" - Changes in 21.6.0: * New connection attempt events * --allow-addons to enable addon usage when using the Permission Model. * Support configurable snapshot through --build-snapshot-config flag - fix_ci_tests.patch: refreshed ==== nvidia-open-driver-G06-signed ==== Version update (545.29.06_k6.7.4_1 -> 545.29.06_k6.7.5_1) - re-enable build of -azure kernel flavor; syntax check was wrong - remove conflicts to nvidia-open-driver-G06-kmp, since it's now provided instead (OMG!); add obsoletes to it as well to make sure it gets replaced (bsc#1220196) - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN - kernel-syms-azure is not available on ALP ==== nvme-cli ==== Version update (2.7.1 -> 2.8) Subpackages: nvme-cli-bash-completion - Update to version 2.8: * nvme-print-json: append array object in json_support_log * sed: Add plugin for basic SED Opal operations (jsc#PED-5061) * don't include newlines in already wrapped text * nvme: do not include meta data for PRACT=1 and MD=8 (version 2) * create-ns: align the namespaces to 1Mib boundaries when using SI suffixes * doc: Fix config-schema.json's URL * plugins/solidigm: Compressing vs-internal-log log files into zip file. * nbft: do not issue an error if ACPI tables are missing * nbft: fixup include for libnvme * doc: Fix short option name for cfg-file * completions: added Solidigm plugin to autocomplete scripts * nvme: Remove unused cfg argument from NVME_ARGS() macro * nvme: fix directive receive identify offsets * nvme-fabrics: enable option 'concat' * build: Update libnvme wrap * plugins/wdc: Add Debug Log Collection Support * nbft: fix tcp/dhcp address fallback retry (bsc#1218873) * nvme: use correct telemetry log size * nvme-print: fix typo in list verbose output (bsc#1219086) * nvme: print inserted tls key for check-tls-key (bsc#1219086) * plugins/wdc: Plugin fixes and updates * fabrics: move hostid/hostnqn warnings to verbose level (bsc#1219086) ==== obex-data-server ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. - Clean spec file ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Enable running the regression tests in FIPS mode. ==== openvpn ==== Version update (2.6.8 -> 2.6.9) - update to 2.6.9: * Remove unused function prototype crypto_adjust_frame_parameters * Log SSL alerts more prominently * Document tls-exit option mainly as test option * Remove TEST_GET_DEFAULT_GATEWAY as it duplicates --show-gateway * Fix check_session_buf_not_used using wrong index * Add missing check for nl_socket_alloc failure * Add check for nice in cmake config * Remove compat versionhelpers.h and remove cmake/configure check for it * Extend the error message when TLS 1.0 PRF fails * Fix unaligned access in macOS, FreeBSD, Solaris hwaddr * Check PRF availability on initialisation and add --force-tls-key-material-export * Make it more explicit and visible when pkg-config is not found * Clarify that the tls-crypt-v2-verify has a very limited env set * Implement the --tls-export-cert feature * Remove conditional text for Apache2 linking exception * Remove --tls-export-cert * Remove superfluous x509_write_pem() * sample-keys: renew for the next 10 years * GHA: clean up libressl builds with newer libressl * configure.ac: Remove unused AC_TYPE_SIGNAL macro * documentation: remove reference to removed option --show-proxy-settings * unit_tests: remove includes for mock_msg.h * documentation: improve documentation of --x509-track * NTLM: add length check to add_security_buffer * NTLM: increase size of phase 2 response we can handle * proxy-options.rst: Add proper documentation for --http-proxy-user-pass * buf_string_match_head_str: Fix Coverity issue 'Unsigned compared against 0' * --http-proxy-user-pass: allow to specify in either order with --http-proxy * README.cmake.md: Document minimum required CMake version for --preset * documentation: Update and fix documentation for --push-peer-info * documentation: Fixes for previous fixes to --push-peer-info * OpenBSD: repair --show-gateway * get_default_gateway() HWADDR overhaul * fix uncrustify complaints about previous patch * preparing release 2.6.9 * dco-freebsd: dynamically re-allocate buffer if it's too small * tun.c: don't attempt to delete DNS and WINS servers if they're not set * vcpkg-ports/pkcs11-helper: bump to version 1.30 * Add support for mbedtls 3.X.Y * Update README.mbedtls * Disable TLS 1.3 support with mbed TLS * Enable key export with mbed TLS 3.x.y * protocol_dump: tls-crypt support * Fix IPv6 route add/delete message log level * fix(ssl): init peer_id when init tls_multi ==== orc ==== Version update (0.4.34 -> 0.4.37) - version update to 0.4.37 0.4.37 ====== - enable neon instructions on Apple ARM64 (Aleix Conchillo FlaquÃ©) - orcc: Fix regression, was hard-coded to use "sse" as default target (Sebastian DrÃ¶ge) - MMX backend fixes (L. E. Segovia, Jorge Zapata) - testsuite: Build fixes for Clang (L. E. Segovia) - testsuite, tools: Fix warning caused by inserting unneeded source operands (L. E. Segovia) - orccompiler: call sys_icache_invalidate() to invalidate macos inst cache (Aleix Conchillo FlaquÃ©) - macOS/iOS version/target check build fixes (Aleix Conchillo FlaquÃ©) 0.4.36 ====== - Only use AVX / AVX2 instructions on CPUs that support both AVX and AVX2 (fixes crash on machines that only support AVX) (L. E. Segovia) 0.4.35 ====== - Add support for AVX / AVX2 (L. E. Segovia) - SSE backend improvements (L. E. Segovia) - New `orf` and `andf` opcodes for bitwise AND and OR for single precision floats (Jorge Zapata) - Add support for `convwf`, int16 to float conversion (Jorge Zapata) - Allow backend selection through ORC_TARGET environment variable (L. E. Segovia) - Documentation improvements (Jorge Zapata, L. E. Segovia, Tim-Philipp MÃ¼ller) - orconce: Use Win32 once implementation with MSVC (Seungha Yang, L. E. Segovia) - orcc: add --binary option to output raw machine code for functions (L. E. Segovia) - orcprofile: Implement Windows high-resolution timestamp for MSVC to allow benchmarking on MSVC builds (L. E. Segovia) ==== osinfo-db ==== - Add support for SLE Micro 6.0 (jsc#PED-6305) add-slem6.0-support.patch - Add support for openSUSE Leap 15.6 (jsc#PED-6305) add-opensuse-leap-15.6-support.patch ==== pam-config ==== Version update (2.10 -> 2.11) - Update to version 2.11 - pam_gnome_keyring: use options in AUTH [bsc#1219767] ==== parted ==== Subpackages: libparted-fs-resize0 libparted2 - avoid deprecated rpm syntax ==== patterns-server ==== Subpackages: patterns-server-dhcp_dns_server patterns-server-directory_server patterns-server-file_server patterns-server-kvm_server patterns-server-kvm_tools patterns-server-lamp_server patterns-server-mail_server patterns-server-printing - Do not recommend mailman: pulls a 2nd python stack. - kvm_server pattern: - stop Recommending tigervnc and virt-install as they're 100% client tools. In fact, it is the kvm_tools pattern that does Require them (leave them as Suggested, for now, just to leave a record of them... but only temporarily). Note that this will result in a different behavior, wrt to the current one. I.e., anyone installing _only_ the kvm_server pattern, will not get those two packages automatically. ==== pcr-oracle ==== - Add fix_loader_conf.patch to measure the systemd-boot loader.conf file ==== pcre2 ==== Version update (10.42 -> 10.43) Subpackages: libpcre2-16-0 libpcre2-32-0 libpcre2-8-0 - pcre2 10.43: * The JIT code no longer supports ARMv5 architecture. * A new function pcre2_get_match_data_heapframes_size() for finer heap control. * New option flags to restrict the interaction between ASCII and non-ASCII characters for caseless matching and \d and friends. There are also new pattern constructs to control these flags from within a pattern. * Upgrade to Unicode 15.0.0. * Treat a NULL pattern with zero length as an empty string. * Added support for limited-length variable-length lookbehind assertions, with a default maximum length of 255 characters (same as Perl) but with a function to adjust the limit. * Perl changed the meaning of (for example) {,3} which did not used to be recognized as a quantifier. Now it means {0,3} and PCRE2 has also changed. Note that {,} is still not a quantifier. * Following Perl, allow spaces and tabs after { and before } in all Perl- compatible items that use braces, and also around commas in quantifiers. The one exception in PCRE2 is \u{...}, which is from ECMAScript, not Perl, and PCRE2 follows ECMAScript usage. * Changed the meaning of \w and its synonyms and derivatives (\b and \B) in UCP mode to follow Perl. It now matches characters whose general categories are L or N or whose particular categories are Mn (non-spacing mark) or Pc (combining punctuation). * Changed the default meaning of [:xdigit:] in UCP mode to follow Perl. It now matches the "fullwidth" versions of hex digits. PCRE2_EXTRA_ASCII_DIGIT can be used to keep it ASCII only. * Make PCRE2_UCP the default in UTF mode in pcre2grep and add - no_ucp, --case-restrict and --posix-digit. * Add --group-separator and --no-group-separator to pcre2grep. ==== perl-Bootloader ==== Version update (1.11 -> 1.12) - merge gh#openSUSE/perl-bootloader#163 - validate test output for each shell individually - update and extend tests - reworked default-settings command - add test case for default-settings - rework get-option command - add test case for get-option - rework del-option command - add test case for del-option - rework add-option command - add test case for add-option - rework grub2-efi install - adjust some tests - systemd-boot test adjusted - rework remove-kernel option and add tests - rework add-kernel option and add tests - adjust kexec-bootloader and add tests - remove support for dash - remove ancient perl library code from master branch - updated git2log script - adjust spec file - rewrite grub2 install to be more compatible (bsc#1214361) - 1.12 ==== php8 ==== Version update (8.2.15 -> 8.2.16) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.2.16 * This is a bug fix release. - modified patches % php-build-reproducible-phar.patch (refreshed) ==== pipewire ==== Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Force using doxygen-1_10 in SLE where the default doxygen is too old and generates broken docs (boo#1217886) - Add a conflict in -pulseaudio with pipewire-modules-%{apiver} < 1.0.0 since the libpipewire-module-protocol-pulse.so module was included in - modules before 1.0.0 so we should avoid a file conflict. ==== pkcs11-helper ==== Version update (1.29.0 -> 1.30.0) - update to 1.30.0: * core: add dynamic loader provider attribute * openssl: support DSA in libressl-3.5.0 * openssl: fix openssl_ex_data_dup prototype - get rid of almost empty pkcs11-helper package ==== pkgconf ==== Version update (1.8.0 -> 2.1.1) Subpackages: pkgconf-m4 pkgconf-pkg-config - update to 2.1.1: * Fix --modversion with constraints * Reintroduce an optimization to the dependency graph walker which avoids revisiting already visited nodes * Add a regression test to check that the dependency flattener is working as expected - update to 2.1.0: * new solver for higher performance with complicated graphs * Add --license selector to the pkgconf CLI * Add flag --verbose and --solution to CLI * Changes and fixes to --modversion * bug fixes and developer visible changes - drop pkgconf-CVE-2023-24056.patch, now included ==== poppler ==== Version update (23.12.0 -> 24.02.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools - version update to 24.02.0 Release 24.02.0: core: * Fix reading some JBIG2 streams. Issue #1319 * Fix saving some annotation interior color when it's empty * Make searching for fonts when adding annotations a bit faster * Make sure images are compressed when adding them * Small internal code cleanup utils: * pdfimages: return exit code 2 when error opening output files Release 24.01.0: core: * Don't crash on certain documents on the NSS signature backend * Fix infinite loop in some annotation code if there's not space for even one character * Fix build on Android with generic font configuration * Small internal code cleanup ==== poppler-qt5 ==== Version update (23.12.0 -> 24.02.0) - version update to 24.02.0 Release 24.02.0: core: * Fix reading some JBIG2 streams. Issue #1319 * Fix saving some annotation interior color when it's empty * Make searching for fonts when adding annotations a bit faster * Make sure images are compressed when adding them * Small internal code cleanup utils: * pdfimages: return exit code 2 when error opening output files Release 24.01.0: core: * Don't crash on certain documents on the NSS signature backend * Fix infinite loop in some annotation code if there's not space for even one character * Fix build on Android with generic font configuration * Small internal code cleanup ==== potrace ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== prctl ==== - Use %patch -P N instead of deprecated %patchN. - Move license to %license section ==== publicsuffix ==== Version update (20240123 -> 20240212) - Update to version 20240212: * Add cprapid.com suffix to private section (#1892) * util: gTLD data autopull updates for 2024-02-08T15:13:14 UTC (#1932) * Added Cyclic Software (#1737) * Update public_suffix_list.dat for scw.cloud subdomains (#1740) * Update public_suffix_list.dat (#1926) * Add ZAP-Hosting cloud domain (#1907) * Add `flutterflow.app` (#1666) * Update public_suffix_list.dat (#1614) * Brave Submissions to the Public Suffix List - Q4 2023 (#1872) * Add pley.games (#1881) * Add panel.dev (#1916) * add 12CHARS to private domains (#1915) * Azure updates for Microsoft Corporate Domains (#1891) * Remove blog.kg from private section (#1840) * AWS Submissions to the Public Suffix List - Q4 2023 (#1876) * Homebase requested the addition of id.pub kin.one kin.pub (#1768) * Replace run.app and a.run.app with *.run.app (#1928) * Add pages.gay (#1920) * Update Platform.sh domains (#1792) * fix(adobe): add aem.live and aem.page domains (#1874) * Update code builder domains with the canary (#1802) * Add atmeta.com to PSL and consolidate Meta entries (#1736) * util: gTLD data autopull updates for 2024-01-24T15:14:29 UTC (#1923) ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - Add cherry-picks to fix UCM crashes * pulseaudio-replace-port-device-UCM-context-assertion-with-an-error.patch * pulseaudio-check-UCM-verb-before-working-with-device-status.patch ==== python-cryptography ==== Version update (41.0.7 -> 42.0.4) - update to 42.0.4 (bsc#1220210, CVE-2024-26130): * Fixed a null-pointer-dereference and segfault that could occur when creating a PKCS#12 bundle. Credit to Alexander-Programming for reporting the issue. CVE-2024-26130 * Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields SMIMECapabilities and SignatureAlgorithmIdentifier should now be correctly encoded according to the definitions in :rfc:2633 :rfc:3370. - update to 42.0.3: * Fixed an initialization issue that caused key loading failures for some users. - Drop patch skip_openssl_memleak_test.patch not needed anymore. - update to 42.0.2: * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1. * Fixed an issue that prevented the use of Python buffer protocol objects in sign and verify methods on asymmetric keys. * Fixed an issue with incorrect keyword-argument naming with EllipticCurvePrivateKey :meth:`~cryptography.hazmat.primitive s.asymmetric.ec.EllipticCurvePrivateKey.exchange`, X25519PrivateKey :meth:`~cryptography.hazmat.primitives.asymm etric.x25519.X25519PrivateKey.exchange`, X448PrivateKey :meth :`~cryptography.hazmat.primitives.asymmetric.x448.X448Private Key.exchange`, and DHPrivateKey :meth:`~cryptography.hazmat.p rimitives.asymmetric.dh.DHPrivateKey.exchange`. - update to 42.0.1: * Fixed an issue with incorrect keyword-argument naming with EllipticCurvePrivateKey :meth:`~cryptography.hazmat.primitive s.asymmetric.ec.EllipticCurvePrivateKey.sign`. * Resolved compatibility issue with loading certain RSA public keys in :func:`~cryptography.hazmat.primitives.serialization. load_pem_public_key`. * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.7. * BACKWARDS INCOMPATIBLE: Loading a PKCS7 with no content field using :func:`~cryptography.hazmat.primitives.serialization.pk cs7.load_pem_pkcs7_certificates` or :func:`~cryptography.hazm at.primitives.serialization.pkcs7.load_der_pkcs7_certificates ` will now raise a ValueError rather than return an empty list. * Parsing SSH certificates no longer permits malformed critical options with values, as documented in the 41.0.2 release notes. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0. * Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0. * We now publish both py37 and py39 abi3 wheels. This should resolve some errors relating to initializing a module multiple times per process. * Support :class:`~cryptography.hazmat.primitives.asymmetric.pa dding.PSS` for X.509 certificate signing requests and certificate revocation lists with the keyword-only argument rsa_padding on the sign methods for :class:`~cryptography.x509.CertificateSigningRequestBuilder` and :class:`~cryptography.x509.CertificateRevocationListBuilder`. * Added support for obtaining X.509 certificate signing request signature algorithm parameters (including PSS) via :meth:`~cr yptography.x509.CertificateSigningRequest.signature_algorithm _parameters`. * Added support for obtaining X.509 certificate revocation list signature algorithm parameters (including PSS) via :meth:`~cr yptography.x509.CertificateRevocationList.signature_algorithm _parameters`. * Added mgf property to :class:`~cryptography.hazmat.primitives .asymmetric.padding.PSS`. * Added algorithm and mgf properties to :class:`~cryptography.h azmat.primitives.asymmetric.padding.OAEP`. * Added the following properties that return timezone-aware datetime objects: :meth:`~cryptography.x509.Certificate.not_valid_before_utc`, :meth:`~cryptography.x509.Certificate.not_valid_after_utc`, : meth:`~cryptography.x509.RevokedCertificate.revocation_date_u tc`, :meth:`~cryptography.x509.CertificateRevocationList.next _update_utc`, :meth:`~cryptography.x509.CertificateRevocation List.last_update_utc`. These are timezone-aware variants of existing properties that return naÃ¯ve datetime objects. * Deprecated the following properties that return naÃ¯ve datetime objects: :meth:`~cryptography.x509.Certificate.not_valid_before`, :meth:`~cryptography.x509.Certificate.not_valid_after`, :meth :`~cryptography.x509.RevokedCertificate.revocation_date`, :me th:`~cryptography.x509.CertificateRevocationList.next_update` , :meth:`~cryptography.x509.CertificateRevocationList.last_up date` in favor of the new timezone-aware variants mentioned above. * Added support for :class:`~cryptography.hazmat.primitives.cip hers.algorithms.ChaCha20` on LibreSSL. * Added support for RSA PSS signatures in PKCS7 with :meth:`~cr yptography.hazmat.primitives.serialization.pkcs7.PKCS7Signatu reBuilder.add_signer`. * In the next release (43.0.0) of cryptography, loading an X.509 certificate with a negative serial number will raise an exception. This has been deprecated since 36.0.0. * Added support for :class:`~cryptography.hazmat.primitives.cip hers.aead.AESGCMSIV` when using OpenSSL 3.2.0+. * Added the :mod:`X.509 path validation <cryptography.x509.verification>` APIs for ... changelog too long, skipping 9 lines ... - switch to new cargo-vendor ==== python-linux-procfs ==== - align license tag with COPYING ==== python-lxml ==== - Add skip-test-under-libexpat-2.6.0.patch to skip broken test with expat 2.6.0, gh#python/cpython#115133 ==== python311 ==== Subpackages: python311-curses python311-dbm - Add upstream patch libexpat260.patch, Fix tests for XMLPullParser with Expat 2.6.0, gh#python/cpython#115289 ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Add upstream patch libexpat260.patch, Fix tests for XMLPullParser with Expat 2.6.0, gh#python/cpython#115289 ==== qalculate ==== Version update (4.8.1 -> 4.9.0) Subpackages: libqalculate22 qalculate-data - update to v4.9.0: * Support for specifying a fixed denominator for display of fractions (e.g. "0.3 ft â 1/8 â (3 + 5/8) in") * Return gcd of numerators divided by lcm of denominators in gcd() with non-integer rational numbers, and vice versa for lcm() * Add units for mean Gregorian and tropical years * Ignore underscore in number * Replace defunct exchange rates source and fix bitcoin exchange rate * Fix asin(x)=a, acos(x)=a, and atan(x)=a, when a contains an angle unit and default angle unit is set * Fix output of value converted to unit expression with numerical multiplier in denominator, e.g. "â L/(100 km)" * Fix segfault when trying to solve "(xsqrt(x)-ysqrt(y))/(sqrt(x)-sqrt(y))=x+sqrt(x*y)+y" * Fix parsing of case insensitive object name ending with Unicode character when followed by another Unicode character in expression, e.g. "Ð¼Ð¸ÐºÑÐ¾Ð¼ÐµÑÑ" * Add history command, listing expression history * Display all exponents 0-9 using Unicode superscript characters if these are the only exponents in the expression ==== qemu ==== Version update (8.2.0 -> 8.2.1) Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Just "prettify" the spec files a little: * [openSUSE][RPM] Cosmetic fixes to spec files (copyright, sorting, etc) - Patchqueue shrinking and bugfixing (actually, more of a temporary workaround, until a proper solution is found upstream): * [openSUSE] roms/seabios: revert some upstream commits that break a lot of use-cases * [openSUSE] roms/seabios: Drop an old (and no longer necessary) downstream patch (bsc#1219977) Update to latest stable version (8.2.1) - Downstream changes: * [openSUSE][RPM]: Install the VGA module "more often" (bsc#1219164) * [openSUSE][RPM] Fix handling of qemu-kvm legacy package for RISCV * [openSUSE][RPM] factor common definitions between qemu and qemu-linux-user spec files - Upstream backports: * target/arm: Fix incorrect aa64_tidcp1 feature check * target/arm: Fix A64 scalar SQSHRN and SQRSHRN * target/xtensa: fix OOB TLB entry access * qtest: bump aspeed_smc-test timeout to 6 minutes * monitor: only run coroutine commands in qemu_aio_context * iotests: port 141 to Python for reliable QMP testing * iotests: add filter_qmp_generated_node_ids() * block/blklogwrites: Fix a bug when logging "write zeroes" operations. * virtio-net: correctly copy vnet header when flushing TX (bsc#1218484, CVE-2023-6693) * tcg/arm: Fix SIGILL in tcg_out_qemu_st_direct * linux-user/riscv: Adjust vdso signal frame cfa offsets * linux-user: Fixed cpu restore with pc 0 on SIGBUS * block/io: clear BDRV_BLOCK_RECURSE flag after recursing in bdrv_co_block_status * coroutine-ucontext: Save fake stack for pooled coroutine * tcg/s390x: Fix encoding of VRIc, VRSa, VRSc insns * accel/tcg: Revert mapping of PCREL translation block to multiple virtual addresses * acpi/tests/avocado/bits: wait for 200 seconds for SHUTDOWN event from bits VM * s390x/pci: drive ISM reset from subsystem reset * s390x/pci: refresh fh before disabling aif * s390x/pci: avoid double enable/disable of aif * hw/scsi/esp-pci: set DMA_STAT_BCMBLT when BLAST command issued * hw/scsi/esp-pci: synchronise setting of DMA_STAT_DONE with ESP completion interrupt * hw/scsi/esp-pci: generate PCI interrupt from separate ESP and PCI sources * hw/scsi/esp-pci: use correct address register for PCI DMA transfers * migration/rdma: define htonll/ntohll only if not predefined * hw/pflash: implement update buffer for block writes * hw/pflash: use ldn_{be,le}_p and stn_{be,le}_p * hw/pflash: refactor pflash_data_write() * backends/cryptodev: Do not ignore throttle/backends Errors * target/i386: pcrel: store low bits of physical address in data[0] * target/i386: fix incorrect EIP in PC-relative translation blocks * target/i386: Do not re-compute new pc with CF_PCREL * load_elf: fix iterator's type for elf file processing * target/hppa: Update SeaBIOS-hppa to version 15 * target/hppa: Fix IOR and ISR on error in probe * target/hppa: Fix IOR and ISR on unaligned access trap * target/hppa: Export function hppa_set_ior_and_isr() * target/hppa: Avoid accessing %gr0 when raising exception * hw/hppa: Move software power button address back into PDC * target/hppa: Fix PDC address translation on PA2.0 with PSW.W=0 * hw/pci-host/astro: Add missing astro & elroy registers for NetBSD * hw/hppa/machine: Disable default devices with --nodefaults option * hw/hppa/machine: Allow up to 3840 MB total memory * readthodocs: fully specify a build environment * .gitlab-ci.d/buildtest.yml: Work around htags bug when environment is large * target/s390x: Fix LAE setting a wrong access register * tests/qtest/virtio-ccw: Fix device presence checking * tests/acpi: disallow tests/data/acpi/virt/SSDT.memhp changes * tests/acpi: update expected data files * edk2: update binaries to git snapshot * edk2: update build config, set PcdUninstallMemAttrProtocol = TRUE. * edk2: update to git snapshot * tests/acpi: allow tests/data/acpi/virt/SSDT.memhp changes * util: fix build with musl libc on ppc64le * tcg/ppc: Use new registers for LQ destination * hw/intc/arm_gicv3_cpuif: handle LPIs in in the list registers * hw/vfio: fix iteration over global VFIODevice list * vfio/container: Replace basename with g_path_get_basename * edu: fix DMA range upper bound check * hw/net: cadence_gem: Fix MDIO_OP_xxx values * audio/audio.c: remove trailing newline in error_setg * chardev/char.c: fix "abstract device type" error message * target/riscv: Fix mcycle/minstret increment behavior * hw/net/can/sja1000: fix bug for single acceptance filter and standard frame * target/i386: the sgx_epc_get_section stub is reachable * configure: use a native non-cross compiler for linux-user * include/ui/rect.h: fix qemu_rect_init() mis-assignment * target/riscv/kvm: do not use non-portable strerrorname_np() * iotests: Basic tests for internal snapshots * vl: Improve error message for conflicting -incoming and -loadvm * block: Fix crash when loading snapshot on inactive node - Fixes: * bsc#1218484 (CVE-2023-6693) - Try to solve the qemu-kvm dependency issues on all arches (see, e.g., bsc#1218684) * [openSUSE][RPM] Create the legacy qemu-kvm symlink for all arches - Update the service file to use OBS-scm (by fvogt) - Various fixes: * [openSUSE][RPM] Fix enabling features on non-x86_64 (bsc#1220011, bsc#1219818) * [openSUSE][RPM] Disable test-crypto-secret in linux-user build * [openSUSE] Update ipxe submodule reference (bsc#1219733, bsc#1219722) * [openSUSE][RPM] spec: allow building without spice ==== rdma-core ==== Subpackages: libefa1 libibverbs libibverbs1 libmana1 libmlx4-1 libmlx5-1 librdmacm1 rdma-ndd - Add kernel-boot-do-not-load-module-unsupported-on-s390.patch to prevent autoload of module not supported on s390. (bsc#1219805) ==== rpm ==== Subpackages: librpmbuild10 - Add patches to enable reproducible builds by default (bsc#1148824). For upstream versions see: https://github.com/rpm-software-management/rpm/pull/2880 0001-Add-option-to-set-mtime-of-files-in-rpms.patch 0002-log-build-time-if-it-is-set-from-SOURCE_DATE_EPOCH.patch 0003-Error-out-on-a-missing-changelog-date.patch ==== rpm-config-SUSE ==== Version update (20240118 -> 20240214) - Update to version 20240214: * set_permissions: handle chkstat failure more grateful (bsc#1219736) ==== rubygem-vagrant_cloud ==== Version update (3.0.5 -> 3.1.1) - update to 3.1.1: * Update path prefixing behavior on request [GH-85] - update to 3.1.0: * Add support for architecture in providers [GH-82] ==== rzip ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. ==== samba ==== Version update (4.19.4+git.339.acf1ccaa020 -> 4.19.5+git.342.57620c4f7e) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs - Update to 4.19.5 * Windows 2016 fails to restore previous version of a file from a shadow_copy2 snapshot; (bso#13688). * Symlinks on AIX are broken in 4.19 (and a few version before that); (bso#15549). * Fake directory create times has no effect; (bso#12421). * ctime mixed up with mtime by smbd; (bso#15550). * samba-gpupdate --rsop fails if machine is not in a site; (bso#15548). * gpupdate: The root cert import when NDES is not available is broken; (bso#15557). * samba-gpupdate should print a useful message if cepces-submit can't be found; (bso#15552). * samba-gpupdate logging doesn't work; (bso#15558). * smbpasswd reset permissions only if not 0600; (bso#15555). ==== sane-backends ==== Subpackages: libsane1 sane-backends-autoconfig - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN. - Add BuildArch noarch to autoconfig subpackage ==== sdbootutil ==== Version update (1+git20240122.c0d8f76 -> 1+git20240215.cb7e392) Subpackages: sdbootutil-rpm-scriptlets sdbootutil-snapper - Update to version 1+git20240215.cb7e392: * Add --no-random-seed argument - Update to version 1+git20240214.ba81e0e: * Fix pcr-oracle use * Add device when generating initrd for snapshots * Use systemd-pcrlock * Pre-built initrd support * Add subvolumes_prefix support ==== sg3_utils ==== Version update (1.48+7.63e63cb -> 1.48+8.37ca384) Subpackages: libsgutils2-1_48-2 - Fix missing SCSI_MODEL and other fields for "sg_inq --export" (bsc#1219874) ==== shadow ==== Version update (4.14.3 -> 4.14.5) Subpackages: libsubid4 login_defs - Update to 4.14.5: * Build system: + Fix regression introduced in 4.14.4, due to a typo. chgpasswd had been deleted from a Makefile variable, but it should have been chpasswd. - Remove shadow-4.14.4-chgpasswd-typo.patch - Update to 4.14.4: * Build system: + Link correctly with libdl. + Install pam configs for chpasswd(8) and newusers(8) when using ./configure --with-libpam --disable-account-tools-setuid. * libshadow: + Fix build error (parameter name omitted). + Fix off-by-one bug. + Remove warning. - Add shadow-4.14.4-chgpasswd-typo.patch: to fix build. See #926 - Update patch macro `patchN` -> `patch -P N` ==== shared-mime-info ==== - Explicitly use gcc 13 on SLE. ==== shim ==== - Modified shim.spec file to add suffix string of project to filename of included certificates. e.g. rpm -pql shim-15.8-lp155.6.1.x86_64.rpm /etc/uefi /etc/uefi/certs /etc/uefi/certs/2B697CB1-shim-devel.crt /etc/uefi/certs/4659838C-shim-opensuse.crt /etc/uefi/certs/BCA4E38E-shim-sles.crt The original name of crt files are: /etc/uefi/certs/2B697CB1-shim.crt /etc/uefi/certs/4659838C-shim.crt /etc/uefi/certs/BCA4E38E-shim.crt It can indicate the souce project of certificates. - Sometimes SLE shim signature be Microsoft updated before openSUSE shim signature. When submit request on IBS for updating SLE shim, the submitreq project be generated, but it always be blocked by checking the signature of openSUSE shim. It doesn't make sense checking openSUSE shim signature when building SLE shim on SLE platform, and vice versa. So the following change adds the logic to compare suffix (sles, opensuse) with distro_id (sle, opensuse). When and only when hash mismatch and distro_id match with suffix, stop building. [#] compare suffix (sles, opensuse) with distro_id (sle, opensuse) [#] when hash mismatch and distro_id match with suffix, stop building - Sync the changelog between openSUSE:Factory/shim with SLE-15-SP3/shim - Add CVE-2022-28737 number to "Mon Mar 27 09:26:02 UTC 2023" record - Add "Thu Apr 13 05:28:10 UTC 2023" record for updating shim-install for bsc#1210382. - Add "Thu Apr 13 09:13:22 UTC 2023" record for changing the logic of checking shim signature. - Update shim-install to set the TPM2 SRK algorithm (bsc#1213945) 92d0f4305df73 Set the SRK algorithm for the TPM2 protector ==== signon-plugin-oauth2 ==== - Switch to %autosetup ==== spacenavd ==== - Replace %patchN with %autosetup ==== spice-gtk ==== Subpackages: libspice-client-glib-2_0-8 libspice-client-glib-helper libspice-client-gtk-3_0-5 typelib-1_0-SpiceClientGlib-2_0 typelib-1_0-SpiceClientGtk-3_0 - do not require six (https://trello.com/c/MO53MocR/143-remove-python3-six) - added patches fix https://gitlab.freedesktop.org/spice/spice-common/-/commit/29dacb5f53f5183f… + spice-gtk-no-six.patch ==== suseconnect-ng ==== Version update (1.3.0~git0.ae8ba1e -> 1.7.0~git2.21ba08e) Subpackages: libsuseconnect suseconnect-ruby-bindings - Update to version 1.7.0~git2.21ba08e * Allow SUSEConnect on read write transactional systems (bsc#1219425) - Update to version 1.6.0 * Disable EULA display for addons (bsc#1218649 and bsc#1217961) - Update to version 1.5.0 * Configure docker credentials for registry authentication * Feature: Support usage from Agama + Cockpit for ALP Micro system registration (bsc#1218364) * Add --json output option - Update to version 1.4.0 * Added EULA display for addons (bsc#1170267) * Fix zypper argument for auto-agreeing licenses (bsc#1214781) * Enable building on SLE12 SP5 (jsc#PED-3179) ==== systemd ==== Version update (254.8 -> 254.9) Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - Import commit 31f1148f75a1155d3eb37fd1a450096d669ec65b 31f1148f75 seccomp: include `fchmodat2` in `@file-system` (bsc#1219766) 001f349c57 service: Demote log level of NotifyAccess= messages to debug (bsc#1210113 jsc#PED-6214) - Add a new %upstream macro to support building from upstream sources. This will allow upstream to build systemd rpms using the opensuse systemd packaging specs. These rpms will be built and used in upstream's mkosi based hacking and testing environment to test changes and in the future to run integration tests as well. By building the rpms using the opensuse packaging specs, the idea is to catch more issues ahead of time as the mkosi environment will behave more like a regular opensuse system. - Add new %version_override and %version_release macros to allow overriding the version and release of the rpm respectively. - Import commit 53e2aaaf9d69fb1c8f6ae2c9f8a99b02d70d318f 53e2aaaf9d vconsole-setup: don't fail if the only found vc is already used by plymouth (bsc#1218618) 22c4878430 vconsole-setup: port to main-func.h boilerplate - systemd-testsuite: depend on "qemu" instead of "qemu-kvm", the latter is obsolete. (bsc#1218684) - Import commit fbf9f32eb774ba6ec54e0d5d53b36baaf3e6b146 fbf9f32eb7 test/test-shutdown.py: optionally display the test I/Os in a dedicated log file cd012774df test-69: send SIGTERM to ask systemd-nspawn to properly stop the container d883b83244 man: Document ranges for distributions config files and local config files - Import commit fa94ab006d09686cef121aaa3baa10cf5ca95e19 (merge of v254.9) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/67a5ac1043417d900bf417a884372ae… - Update the version of libbpf dlopened by systemd (weak dependency) (bsc#1219440) ==== tecla-keyboard-layout-viewer ==== Version update (45.rc -> 45.0) - Update to version 45.0: + Added shortcuts to exit the dialog + Fix UI in RTL environments + Fix a11y initialization + Updated translations. ==== thin-provisioning-tools ==== Version update (1.0.10 -> 1.0.11) - Update to version 1.0.11: * Bump version nr to 1.0.11 * [thin/cache_check] Print suggestive hints for improving error resolution * [tests] Fix a typo in command name * [cache_check] Fix boundary check on the bitset for cached blocks ==== tigervnc ==== Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module - Set the URL at Source0. - patches have been renamed * u_build_libXvnc_as_separate_library.patch --> u_tigervnc-Build-libXvnc-as-separate-library.patch * n_vncserver.patch --> n_tigervnc-Vncserver.patch * n_correct_path_in_desktop_file.patch --> n_tigervnc-Correct-path-in-desktop-file.patch * n_tigervnc-date-time.patch --> n_tigervnc-Date-time.patch * u_change-button-layout-in-ServerDialog.patch --> u_tigervnc-Change-button-layout-in-ServerDialog.patch * n_dont_sign_java_client.patch --> n_tigervnc-Dont-sign-java-client.patch * u_tigervnc-add-autoaccept-parameter.patch --> u_tigervnc-Add-autoaccept-parameter.patch * u_tigervnc-ignore-epipe-on-write.patch u_tigervnc-Ignore-epipe-on-write.patch - Cleanup specfile * Use the same format for all the patches. * Use autosetup to apply all the patches with -p1. * Clean number of sources. - buildrequire xorg-x11-server-source/-sdk >= 21.1.11 and trigger rebuild with newer xorg-x11-server-source package (bsc#1219311, bsc#1219205) ==== tmux ==== Version update (3.3a -> 3.4) - tmux 3.4 * Improve handling of newer Unicode combined characters * Add basic support for SIXEL images * Add support for spawning panes in separate cgroups with systemd * Add support for OSC 8 hyperlinks. * Expanded configuration options * Improved detection and support of terminal options * Tweaks to UI and behavior - drop patches: * ncurses.patch * tmux-CVE-2022-47016.patch ==== transmission ==== Subpackages: transmission-common transmission-gtk - Fix build with recent cmake macro change (DOCDIR): do not install the documentation using cmake, as we already do so using %doc. Change if(INSTALL_DOC) to if(FALSE) in CMakeLists.txt. The more obvious option of passing -DINSTALL_DOC=OFF is ot viable, as that also disables installing the man pages. - Migrate from update-alternatives to libalternatives (bsc#1219107). ==== u-boot-rpiarm64 ==== Subpackages: u-boot-rpiarm64-doc Patch queue updated from https://github.com/openSUSE/u-boot.git tumbleweed-2024.01 * Patches dropped: 0020-bcm2835-brcm-bcm2708-fb-device-is-u.patch 0023-pci-pcie-brcmstb-Add-bcm2712-PCIe-c.patch * Patches added: 0020-bcm2835-Dynamically-calculate-bytes.patch 0023-configs-rpi_arm64-build-position-in.patch ==== unison ==== Version update (2.53.3 -> 2.53.4) - Update to version 2.53.4 * Preferences "force", "prefer" and related "partial" preferences now work slightly differently with values "newer" and "older". Previously, if mtimes in both replicas were equal then always the second root propagated to the first root (possibly reverting user changes). It is now made explicit that "newer" and "older" only work when mtimes are different. * Bugfixes, minor improvements, cleanups. ==== unixODBC ==== - Use %patch -P N instead of deprecated %patchN. ==== unzip ==== Subpackages: unzip-doc - Use %patch -P N instead of deprecated %patchN. ==== utempter ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Add file conflict of util-linux-tty-tools and busybox-util-linux. ==== util-linux-systemd ==== - Add file conflict of util-linux-tty-tools and busybox-util-linux. ==== vacation ==== - Install german manual page as well - Use %patch -P N instead of deprecated %patchN. ==== vde2 ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== vid_stab ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== vim ==== Version update (9.1.0000 -> 9.1.0111) Subpackages: vim-data vim-data-common xxd - Use %patch -P N instead of deprecated %patchN. - update to 9.1.0111: * filetype: no support for bats files * filetype: add 'Config.in' filetype detection * runtime(asciidoc): include basic ftplugin * filetype: no support for its files * runtime(vim): Update base-syntax, remove unused vimString region * runtime(vim): Update base-syntax, fix :behave highlighting * runtime(vim): update Vim Syntax generator * filetype: no support for dtso files * Visual highlight hard to read with 'termguicolors' * runtime(vim): include Vim Syntax generator * Style: typos found * Linking fails with -lto because of PERL_CFLAGS * 'breakindentopt' "min" not correct with 'signcolumn' * settabvar() may change the last accessed tabpage * upper-case of German sharp s should be U+1E9E * Redrawing can be improved with undo and 'spell' * Not able to use diff() with 'diffexpr' * runtime(gpg): Mark dangerous use-embedded-filename with WarningMsg * CompletionChanged not triggered when new leader added without matches * 'breakindent' behaves inconsistently with 'list' and splits * runtime(vim): Update syntax file * diff() function uses 'diffexpr' * tests: test_restricted() fails * xxd: buffer-overflow when writing color output * Still a qsort() comparison function that returns result of subtraction * Compiler warning for missing type in scroll_event() * Syntax test fails when run with non C locale * Assigning wrong colors when parsing terminal OSC response * runtime(vim): Fix indent after line with literal dict * qsort() comparison functions should be transitive * TextChanged not triggered for :norm! commands * Restoring lastused_tabpage too early in do_arg_all() * Problem when scrolling using slow touchpads scroll event * X11 scroll size changes after accessing clipboard * Visual hl wrong when it ends before multibyte 'showbreak' * Redrawing can be improved when deleting lines with 'number' * Redrawing can be improved when deleting lines with 'cursorline' * runtime(doc): further improve docs about List/Blob += operator * X11 mouse-scrolling stutters * runtime(doc): Clarify list-concatenation a bit more * unexpected error for modifying final list using += * LineNrAbove/Below highlighting wrong on wrapped lines * runtime(dosbatch): improve '::' comment highlighting * GTK3: using wrong style for pre-edit area * Unnecessary call to redraw_for_cursorline() in nv_mousescroll() * runtime(colors): color names in the v:colornames dict should be lower cased * luau config file not detected * runtime(vim): Update syntax file * insert completion not correct when adding new leader * did_set_breakat() should be in optionstr.c * Looping over modifier_keys_table unnecessarily * Not able to build without FEAT_DIFF * translation(ca): Fixe typos in Catalan translation * Need a diff() Vim script function * translation(ru): Updated Russian translation of messages * runtime(vim): Update syntax file * runtime(fortran): update syntax * ScreenLines may not be correctly initialized, causing hang * Visual highlighting can still be improved * gcc still complains about use of uninitialized var * runtime(racket): add missing space to b:undo_indent var * runtime(Filelist): include README_vimlogo.txt * gcc complains about use of uninitialized var * runtime(vimlogo): Include and modernize vimlogo.svg * runtime(netrw): fixing remote file removal via ssh * runtime(doc): correct Vim patch for Wayland support * runtime(racket): undo some indent options only when vim9script is available * runtime(doc): Update help for Wayland support * Segfault with CompleteChanged autocommand * No Wayland support * GTK code can be improved * Internal error when :luado/perldo/pydo etc delete lines * UX of visual highlighting can be improved * runtime(netrw): Use :exec norm! <leftmouse> before :call mapping in netrw * Recorded register cannot be translated using keytrans() * runtime(vim): Highlight string interpolation * runtime(vim): Update syntax and ftplugin files * runtime(ant): Update syntax file * runtime(hurl): add hurl filetype plugin * runtime(vim): Update syntax file * runtime(doc): style fixes in vim9.txt * No event triggered before creating a window * Cannot map Super Keys in GTK UI * wrong number of trailing spaces inserted after blockwise put * formatting long lines is slow * 'linebreak' may still apply to leading whitespace * Patch 9.1.0041 causes regressions for users * runtime(mail): fix #13913 * runtime(netrw): Don't change global options * runtime(fortran): update syntax and documentation * Win32 Keyboard handling is sub-optimal * Make "[Command Line]" a special buffer name * Abort opening cmdwin if autocmds screw things up * issues with temp curwin/buf while cmdwin is open * runtime(c): Highlight user defined functions * :drop does not re-use empty buffer * --remote-* does not ignore `wilidignore` ... changelog too long, skipping 76 lines ... * Add support for `syntax foldlevel` command ==== virt-manager ==== Subpackages: virt-install virt-manager-common - bsc#1219791 - [virt-manager][aarch64] Error launching details: name 'log' is not defined virtinst-enable-video-virtio-for-arm.patch ==== virtiofsd ==== - Spec: Adjust libvirt/virtiofsd interop config file to handle differences in the definition of libexecdir macro on SLE and Tumbleweed (bsc#1219772) ==== vmaf ==== - fix dependency on xxd ==== vorbis-tools ==== - Use %patch -P N instead of deprecated %patchN. ==== vpnc ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== vsftpd ==== - Use %patch -P N instead of deprecated %patchN. ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Increase mem_per_process again to match what is in SLE. The build was sporadically failing there (bsc#1198743). - Require libwaylandclient0 >= 1.20. 15.4 originally had 1.19.0, but webkitgtk uses a function added in 1.20.0, so we need to ensure that the wayland update is pulled in (bsc#1215072). - Fix package names for v6, and obsolete old packages. - Use gcc 11 on SLE, to match what is currently used on SP4, and adjust version check to include SP6. Also, use system malloc there; the build currently fails without this (webkit#243535). - Require gcc >= 10.2 to match the current cmake test. - Disable jpegxl on SLE; it isn't currently available there. ==== webkit2gtk3-soup2 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Increase mem_per_process again to match what is in SLE. The build was sporadically failing there (bsc#1198743). - Require libwaylandclient0 >= 1.20. 15.4 originally had 1.19.0, but webkitgtk uses a function added in 1.20.0, so we need to ensure that the wayland update is pulled in (bsc#1215072). - Fix package names for v6, and obsolete old packages. - Use gcc 11 on SLE, to match what is currently used on SP4, and adjust version check to include SP6. Also, use system malloc there; the build currently fails without this (webkit#243535). - Require gcc >= 10.2 to match the current cmake test. - Disable jpegxl on SLE; it isn't currently available there. ==== webrtc-audio-processing ==== - Use %patch -P N instead of deprecated %patchN. ==== wget ==== - Use %patch -P N instead of deprecated %patchN. ==== wmctrl ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== wpa_supplicant ==== - Add CVE-2023-52160.patch - Bypassing WiFi Authentication (bsc#1219975) ==== wsdd ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN ==== xdg-menu ==== - Use %patch -P N instead of deprecated %patchN. ==== xfce4-notifyd ==== Version update (0.9.3 -> 0.9.4) Subpackages: xfce4-notifyd-lang - update to 0.9.4: * Clarify why the symbolic icons don't go in symbolic/status * Fix icons directory names * Fall back to monitor 0 if no primary monitor set * Add a fallback for drawing the unread notification emblem * Remove redundant icon embleming code * Fix opacity on notification hover * Translation Updates ==== xfce4-terminal ==== Version update (1.1.1 -> 1.1.2) Subpackages: xfce4-terminal-lang - Update to version 1.1.2 * Update copyright year * Update tooltip when hovering over a hyperlink * build: Align CFLAGS with LDADD * prefs-dialog: Add missing strings to translate (#222) * dropdown: Default dropdown-toggle-focus to false * Add runtime guard for XfceSMClient * build: Restrict XfceSMClient to X11 * Determine cwd on FreeBSD in a native way instead of using linprocfs * window: Remove weak ref on prefs dialog in finalize() * build: Get rid of #ifdef G_ENABLE_DEBUG * Do not reconnect accels when closing last tab * build: Lower xfce4-dev-tools requirements to stable version * search-dialog: Use xfce_titled_dialog_set_default_response() * Translation Updates - Update gxo-282.patch - Add gxo-299.patch * backport fix for "paste unsafe text" dialog not popping up (gxo#apps/xfce4-terminal#299) ==== xfsprogs ==== Version update (6.5.0 -> 6.6.0) Subpackages: libhandle1 xfsprogs-scrub - update to 6.6.0 - xfs_scrub: add missing license and copyright information - xfs_db: report the device associated with each io cursor - libxfs: Fix UAF in a requeued EFI - xfs_io: Add new option, to exercise log2_data_unit_size in kernel fscrypt_policy_v2 - xfs_db: Add upport to read from external log device - metadump: New metadump format - xfs_quota: fix missing mount point warning ==== xml-commons-apis ==== - Clean the spec file and simplify it a bit ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - fix permissions of files in xorg-x11-server-source for tigervnc build later (needed since latest autoconf) - Provide again xorg-x11-server-source * xwayland sources are not meant for a generic server. * https://github.com/TigerVNC/tigervnc/issues/1728 - Stop providing xorg-x11-server-source from xorg-x11-server * Now the sources are provided by xwayland because it is more updated. * Fixes bsc#1219892. ==== xtermset ==== - Use %patch -P N instead of deprecated %patchN. ==== xwayland ==== - Don't provide xorg-x11-server-source * xwayland sources are not meant for a generic server. * https://github.com/TigerVNC/tigervnc/issues/1728 - Provide xorg-x11-server-source from xwayland * xwayland will be more updated than xorg-x11-server, so the server sources will be more updated too if are provided by xwayland. * Fixes bsc#1219892. ==== yast2 ==== Version update (5.0.5 -> 5.0.6) Subpackages: yast2-logs - Allow host/domain names starting with an underscore (bsc#1219920) - 5.0.6 ==== yast2-packager ==== Version update (5.0.2 -> 5.0.4) - SLE HPC is not a base product anymore, it is replaced by SLES + HPC module, added migration mapping (jsc#PED-7841) - 5.0.4 - Fixed ERB template loading in self update, if the template cannot be found using a relative path then fallback to the absolute path (bsc#1219174) - 5.0.3 ==== yast2-perl-bindings ==== Version update (5.0.0 -> 5.0.1) - Fix the locale after initializing embedded Perl interpreter (bsc#1216689) - 5.0.1 ==== yast2-storage-ng ==== Version update (5.0.4 -> 5.0.6) - jsc#PED-6407 - new env variable YAST_REUSE_LVM for reusing LVM in new installation. It can be used as linuxrc boot param. - 5.0.6 - Added new libstorage enum value UF_BCACHEFS to fix build failure (bsc#1219804) - 5.0.5 ==== yast2-trans ==== Version update (84.87.20240210.1383f689ba -> 84.87.20240219.f6e4117fe0) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240219.f6e4117fe0: * Translated using Weblate (Japanese) * Translated using Weblate (Catalan) * Translated using Weblate (Czech) * New POT for text domain 'packager'. * New POT for text domain 'installation'. * New POT for text domain 'hana-ha'. * New POT for text domain 'control'. ==== zchunk ==== - remove dependency on /usr/bin/python3 using %python3_fix_shebang_path macro, [bsc#1212476] ==== zip ==== - Use %patch -P N instead of deprecated %patchN. ==== zlib ==== Subpackages: libminizip1 libz1 - Use %patch -P N instead of deprecated %patchN. ==== zvbi ==== - Use %autosetup macro. Allows to eliminate the usage of deprecated %patchN.

1 0

New Arm Tumbleweed snapshot 20240212 released!
by Guillaume Gardet 14 Feb '24

14 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: attica-qt5 (5.114.0 -> 5.115.0) baloo5 (5.114.0 -> 5.115.0) bluez-qt (5.114.0 -> 5.115.0) breeze5-icons (5.114.0 -> 5.115.0) frameworkintegration (5.114.0 -> 5.115.0) kImageAnnotator-Qt5 kactivities-stats (5.114.0 -> 5.115.0) kactivities5 (5.114.0 -> 5.115.0) karchive (5.114.0 -> 5.115.0) kauth (5.114.0 -> 5.115.0) kbookmarks (5.114.0 -> 5.115.0) kcalendarcore (5.114.0 -> 5.115.0) kcmutils (5.114.0 -> 5.115.0) kcodecs (5.114.0 -> 5.115.0) kcompletion (5.114.0 -> 5.115.0) kconfig (5.114.0 -> 5.115.0) kconfigwidgets (5.114.0 -> 5.115.0) kcontacts (5.114.0 -> 5.115.0) kcoreaddons (5.114.0 -> 5.115.0) kcrash (5.114.0 -> 5.115.0) kdav (5.114.0 -> 5.115.0) kdbusaddons (5.114.0 -> 5.115.0) kdeclarative (5.114.0 -> 5.115.0) kded (5.114.0 -> 5.115.0) kdelibs4support (5.114.0 -> 5.115.0) kdesu (5.114.0 -> 5.115.0) kdnssd-framework (5.114.0 -> 5.115.0) kdoctools (5.114.0 -> 5.115.0) kfilemetadata5 (5.114.0 -> 5.115.0) kglobalaccel (5.114.0 -> 5.115.0) kguiaddons (5.114.0 -> 5.115.0) kholidays (5.114.0 -> 5.115.0) khtml (5.114.0 -> 5.115.0) ki18n (5.114.0 -> 5.115.0) kiconthemes (5.114.0 -> 5.115.0) kidletime (5.114.0 -> 5.115.0) kimageformats (5.114.0 -> 5.115.0) kinit (5.114.0 -> 5.115.0) kio (5.114.0 -> 5.115.0) kirigami2 (5.114.0 -> 5.115.0) kitemmodels (5.114.0 -> 5.115.0) kitemviews (5.114.0 -> 5.115.0) kjobwidgets (5.114.0 -> 5.115.0) kjs (5.114.0 -> 5.115.0) knewstuff (5.114.0 -> 5.115.0) knotifications (5.114.0 -> 5.115.0) knotifyconfig (5.114.0 -> 5.115.0) kpackage (5.114.0 -> 5.115.0) kparts (5.114.0 -> 5.115.0) kpeople5 (5.114.0 -> 5.115.0) kpty (5.114.0 -> 5.115.0) kquickcharts (5.114.0 -> 5.115.0) kross (5.114.0 -> 5.115.0) krunner (5.114.0 -> 5.115.0) kservice (5.114.0 -> 5.115.0) ktexteditor (5.114.0 -> 5.115.0) ktextwidgets (5.114.0 -> 5.115.0) kunitconversion (5.114.0 -> 5.115.0) kwallet (5.114.0 -> 5.115.0) kwayland (5.114.0 -> 5.115.0) kwidgetsaddons (5.114.0 -> 5.115.0) kwindowsystem (5.114.0 -> 5.115.0) kxmlgui (5.114.0 -> 5.115.0) libKF5ModemManagerQt (5.114.0 -> 5.115.0) libKF5NetworkManagerQt (5.114.0 -> 5.115.0) libxml2 libxml2-python plasma-framework (5.114.0 -> 5.115.0) prison-qt5 (5.114.0 -> 5.115.0) purpose (5.114.0 -> 5.115.0) qqc2-desktop-style (5.114.0 -> 5.115.0) solid (5.114.0 -> 5.115.0) sonnet (5.114.0 -> 5.115.0) syndication (5.114.0 -> 5.115.0) syntax-highlighting (5.114.0 -> 5.115.0) threadweaver (5.114.0 -> 5.115.0) xorg-x11-server yast2-trans (84.87.20240205.897f2593b3 -> 84.87.20240210.1383f689ba) === Details === ==== attica-qt5 ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Attica5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== baloo5 ==== Version update (5.114.0 -> 5.115.0) Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== bluez-qt ==== Version update (5.114.0 -> 5.115.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== breeze5-icons ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Update Google icon (kde#462165) ==== frameworkintegration ==== Version update (5.114.0 -> 5.115.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kImageAnnotator-Qt5 ==== - Fix build on Leap. The Qt6 packaging macros set the minimum compiler version - Change %post/%postun to %ldconfig_scriptlets - Rename the library to libkImageAnnotator-Qt$ver-0 to fix rpmlint errors on Leap ==== kactivities-stats ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kactivities5 ==== Version update (5.114.0 -> 5.115.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== karchive ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kauth ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kbookmarks ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kcalendarcore ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * src/incidence.cpp - fix infinite looping ==== kcmutils ==== Version update (5.114.0 -> 5.115.0) Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kcodecs ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kcompletion ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kconfig ==== Version update (5.114.0 -> 5.115.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kconfigwidgets ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kcontacts ==== Version update (5.114.0 -> 5.115.0) Subpackages: kcontacts-lang libKF5Contacts5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kcoreaddons ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5CoreAddons5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Add isProcExists func to check if /proc exists * Determine UNIX process if "/proc" does not exist ==== kcrash ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdav ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5DAV5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdbusaddons ==== Version update (5.114.0 -> 5.115.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdeclarative ==== Version update (5.114.0 -> 5.115.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Show GridDelegate labels as plaintext (kde#480106) ==== kded ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdelibs4support ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdesu ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdnssd-framework ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kdoctools ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5DocTools5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kfilemetadata5 ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Fix compilation with latest TagLib git master * Fix build with taglib 2 ==== kglobalaccel ==== Version update (5.114.0 -> 5.115.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kguiaddons ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5GuiAddons5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kholidays ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * holiday_ie_en-gb - Add St Brigid's Day (kde#479832) ==== khtml ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== ki18n ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 - Add upstream change: * 0001-KCountrySubdivision-unbreak-support-of-iso-codes-4.1.patch ==== kiconthemes ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * CI: Don't require Windows test to pass ==== kidletime ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kimageformats ==== Version update (5.114.0 -> 5.115.0) Subpackages: kimageformats-eps - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kinit ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kio ==== Version update (5.114.0 -> 5.115.0) Subpackages: kio-core - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * KDirModel: Consider invalid roots are local fs (kde#477039) * slavebase: abort mimetype emission when the worker was terminated (kde#474909, boo#1217175) * KDirModel: Allow expanding network directories in file picker again (kde#479531) * KCoreDirLister: updateDirectory: update parent folder if it is listed (kde#440712) * copyjob: Fix implicitly skipping files when copying (kde#479082) ==== kirigami2 ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Kirigami2-5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== kitemmodels ==== Version update (5.114.0 -> 5.115.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kitemviews ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kjobwidgets ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kjs ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== knewstuff ==== Version update (5.114.0 -> 5.115.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== knotifications ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== knotifyconfig ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kpackage ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kparts ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kpeople5 ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kpty ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kquickcharts ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * CI: Don't require FreeBSD test to pass ==== kross ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== krunner ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kservice ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== ktexteditor ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Add parent widget for diff dialogs ==== ktextwidgets ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kunitconversion ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kwallet ==== Version update (5.114.0 -> 5.115.0) Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Emit the walletCreated signal in the KWalletD::pamOpen function if a new wallet is created during its call ==== kwayland ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kwidgetsaddons ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kwindowsystem ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== kxmlgui ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== libKF5ModemManagerQt ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== libKF5NetworkManagerQt ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== libxml2 ==== Subpackages: libxml2-2 libxml2-tools - Security fix (CVE-2024-25062, bsc#1219576) use-after-free in XMLReader * Added libxml2-CVE-2024-25062.patch ==== libxml2-python ==== - Security fix (CVE-2024-25062, bsc#1219576) use-after-free in XMLReader * Added libxml2-CVE-2024-25062.patch ==== plasma-framework ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-desktoptheme - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== prison-qt5 ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - Changes since 5.114.0: * Enable exceptions for videoscannerworker.cpp ==== purpose ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== qqc2-desktop-style ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== solid ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5Solid5 solid-imports solid-tools - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== sonnet ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== syndication ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== syntax-highlighting ==== Version update (5.114.0 -> 5.115.0) Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== threadweaver ==== Version update (5.114.0 -> 5.115.0) - Update to 5.115.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.115.0 - No code change since 5.114.0 ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Release 21.1.11 also covers fixes for security issue CVE-2022-46340 and bug numbers bsc#1205874, bsc#1217765 - Release 21.1.11 covers fixes for the following bug numbers, which are not mentioned in this changelog before: bsc#1218845, bsc#1218846, bsc#1216261, bsc#1216133, bsc#1216135 - Release 21.1.11 supersedes the following patches still used with xorg-x11-server 21.1.4 on sle15-sp5/Leap 15.5 and not mentioned in this changelog as superseded before: * U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch * U_bsc1216133-mi-reset-the-PointerWindows-reference-on-screen-swit.patch * U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch * U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch * U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch * U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch * bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch * bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch * bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch * bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch * bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch * bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch * bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch * U_bsc1218845-glx-Call-XACE-hooks-on-the-GLX-buffer.patch * U_bsc1218846-ephyr-xwayland-Use-the-proper-private-key-for-cursor.patch - xserver sources of this release fixes segfault in Xvnc (bsc#1219311) ==== yast2-trans ==== Version update (84.87.20240205.897f2593b3 -> 84.87.20240210.1383f689ba) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240210.1383f689ba: * Translated using Weblate (Chinese (China) (zh_CN)) * Translated using Weblate (Czech) * New POT for text domain 'control'. * Translated using Weblate (Slovak) * Translated using Weblate (Indonesian) * Translated using Weblate (Catalan) * Translated using Weblate (Dutch) * Translated using Weblate (Japanese) * Translated using Weblate (Czech) * Translated using Weblate (Catalan)

1 0

New Arm Tumbleweed snapshot 20240211 released!
by Guillaume Gardet 12 Feb '24

12 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa (23.3.4 -> 23.3.5) Mesa-drivers (23.3.4 -> 23.3.5) SDL2 (2.28.5 -> 2.30.0) apparmor (3.1.6 -> 3.1.7) c-ares (1.20.1 -> 1.26.0) catfish cpio (2.14 -> 2.15) distribution-logos-openSUSE (20230921 -> 20240207) dracut (059+suse.538.ge7a5cff9 -> 059+suse.549.gc9f63878) ethtool (6.6 -> 6.7) freeipmi (1.6.11 -> 1.6.14) fwupd (1.9.12 -> 1.9.13) gc (8.2.4 -> 8.2.6) gcc12 gcc13 (13.2.1+git8250 -> 13.2.1+git8285) gcc7 glibc grub2 gstreamer-plugins-bad gtk4 (4.12.4 -> 4.12.5) gwenview5 ibus imlib2 (1.12.1 -> 1.12.2) inxi (3.3.32 -> 3.3.33) jasper (4.1.2 -> 4.2.0) kdsoap kernel-source (6.7.2 -> 6.7.4) libXext (1.3.5 -> 1.3.6) libapparmor (3.1.6 -> 3.1.7) libei (1.2.0 -> 1.2.1) libgarcon (4.18.1 -> 4.18.2) libgit2 (1.7.1 -> 1.7.2) libgsf (1.14.51 -> 1.14.52) libidn2 (2.3.4 -> 2.3.7) libjxl (0.9.0 -> 0.9.2) libjxl-gtk (0.9.0 -> 0.9.2) libpciaccess (0.17 -> 0.18) libxcb libxfce4ui (4.18.4 -> 4.18.5) libxfce4util (4.18.1 -> 4.18.2) libxkbfile (1.1.2 -> 1.1.3) libzypp (17.31.28 -> 17.31.31) lzip (1.23 -> 1.24) man menulibre microos-tools (2.21+git9 -> 2.21+git11) mousepad (0.6.1 -> 0.6.2) netpbm numactl (2.0.17.4.g63befa8 -> 2.0.18.0.g3871b1c) nvidia-open-driver-G06-signed (545.29.06_k6.7.2_1 -> 545.29.06_k6.7.4_1) openssl-1_1 openssl-3 pam pam-full-src permissions (1699_20230602 -> 1699_20240206) pipewire (1.0.2 -> 1.0.3) polkit-default-privs (1550+20231213.09963a4 -> 1550+20240207.d833f4b) postgresql postgresql16 (16.1 -> 16.2) pulseaudio (16.1 -> 17.0) python-MarkupSafe (2.1.4 -> 2.1.5) python-h11 python-msgpack (1.0.5 -> 1.0.7) python-mysqlclient (2.2.1 -> 2.2.4) python-pip python-rpm (4.19.1 -> 4.19.1.1) python-typing_extensions python311 (3.11.7 -> 3.11.8) python311-core (3.11.7 -> 3.11.8) qemu (8.1.3 -> 8.2.0) rebootmgr (2.1 -> 2.2) ristretto (0.13.1 -> 0.13.2) rp-pppoe rpm (4.19.1 -> 4.19.1.1) selinux-policy (20240116 -> 20240205) sendmail (8.17.2 -> 8.18.1) shim spectacle systemd transmission virt-manager webkit2gtk3 (2.42.4 -> 2.42.5) webkit2gtk3-soup2 (2.42.4 -> 2.42.5) wireplumber xfce4-screenshooter (1.10.4 -> 1.10.5) xkbcomp (1.4.6 -> 1.4.7) xprop (1.2.6 -> 1.2.7) yast2-installation (5.0.5 -> 5.0.6) yast2-network (5.0.1 -> 5.0.2) yast2-trans (84.87.20240126.9c7185e3f6 -> 84.87.20240205.897f2593b3) === Details === ==== Mesa ==== Version update (23.3.4 -> 23.3.5) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - Update to bugfix release 23.3.5 - -> https://docs.mesa3d.org/relnotes/23.3.5.html - re-enabled rusticl on sle15-sp6 after linkpac'ing rust-bindgen in X11:XOrg project ==== Mesa-drivers ==== Version update (23.3.4 -> 23.3.5) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to bugfix release 23.3.5 - -> https://docs.mesa3d.org/relnotes/23.3.5.html - re-enabled rusticl on sle15-sp6 after linkpac'ing rust-bindgen in X11:XOrg project ==== SDL2 ==== Version update (2.28.5 -> 2.30.0) - Update to release 2.30 * Added support for 2 bits-per-pixel indexed surface formats. * Added the function SDL_GameControllerGetSteamHandle() to get the Steam API handle for a controller, if available. * Added the event SDL_CONTROLLERSTEAMHANDLEUPDATED which is sent when the Steam API handle for a controller changes. This could also change the name, VID, and PID of the controller. * Added the environment variable SDL_LOGGING to control default log output. ==== apparmor ==== Version update (3.1.6 -> 3.1.7) Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - Update to AppArmor 3.1.7 - aa-logprof: don't skip exec events in hats - fix aa-cleanprof to work with named profiles - add permissions in various abstractions - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.7 for the full list of changes - drop upstreamed apparmor-systemd-sessions.patch ==== c-ares ==== Version update (1.20.1 -> 1.26.0) - Ensure multibuild flavors result in different src names. - c-ares 1.26.0: * Event Thread support. Integrators are no longer required to monitor the file descriptors registered by c-ares for events and call ares_process() when enabling the event thread feature via ARES_OPT_EVENT_THREAD passed to ares_init_options(). * Added flags to are_dns_parse() to force RAW packet parsing * Mark ares_fds() as deprecated * Bug fixes - move tests into a build flavor to avoid gtest/gmock build loop - Update to version 1.25 Changes: o Rewrite ares_strsplit() as a wrapper for ares__buf_split() for memory safety reasons. o The ahost utility now uses ares_getaddrinfo() and returns both IPv4 and IPv6 addresses by default. Bug Fixes: o Tests: Live reverse lookups for Google's public DNS servers no longer return results, replace with CloudFlare pubic DNS servers. o Connection failures should increment the server failure count first or a retry might be enqueued to the same server o On systems that don't implement the ability to enumerate network interfaces the stubs used the wrong prototype. o Fix minor warnings and documentation typos o Fix support for older GoogleTest versions o getrandom() may require sys/random.h on some systems. o Fix building tests with symbol hiding enabled. - 0001-Use-RPM-compiler-options.patch: dropped, obsolete - Update to version 1.24 Features: * Add support for IPv6 link-local DNS servers. Nameserver formats can now accept the 0face suffix, and a new ares_get_servers_csv() function was added to return servers that can contain the link-local interface name. Changes: * Unbundle GoogleTest for test cases. Package maintainers will now need torequire GoogleTest (GMock) as a build dependency if building tests. New GoogleTest versions require C++14 or later. * Replace nameserver parsing code to use new memory-safe functions. * Replace the sortlist parser with new memory-safe functions. * Various warning fixes and dead code removal. Bugfixes: * Old Linux versions require POSIX_C_SOURCE or _GNU_SOURCE to compile with thread safety support * A non-responsive DNS server that caused timeouts wouldn't increment thefailure count, this would lead to other servers not being tried. Regression introduced in 1.22.0 * Some projects that depend on c-ares expect invalid parameter option valuespassed into ares_init_options() to simply be ignored. This behavior has been restored * getrandom() can fail if the kernel doesn't support the syscall, fall back to another random source * ares_cancel() when performing ares_gethostbyname() or ares_getaddrinfo()with AF_UNSPEC, if called after one address class was returned but before the other address class, it would return ARES_SUCCESS rather than ARES_ECANCELLED - disable-live-tests.patch: dropped, not needed - Update to version 1.23 Features: Introduce optional (but on by default) thread-safety for the c-ares library. This has no API nor ABI implications. resolv.conf in modern systems uses attempts and timeouts options instead of the old retrans and retry options. Query caching support based on TTL of responses. Can be enabled via ares_init_options() with ARES_OPT_QUERY_CACHE. Bugfixes: ares_init_options() for ARES_OPT_UDP_PORT and ARES_OPT_TCP_PORT accept theport in host byte order, but it was reading it as network byte order. Regression introduced in 1.20.0. ares_init_options() for ARES_FLAG_NOSEARCH was not being honored forares_getaddrinfo() or ares_gethostbyname(). Regression introduced in 1.16.0. Autotools MacOS and iOS version check was failing Environment variables passed to c-ares are meant to be an override for system configuration. Regression introduced in 1.22.0. Spelling fixes as detected by codespell. The timeout returned by ares_timeout() was truncated to milliseconds butvalidated to microseconds which could cause a user to attempt to process timeouts prior to the timeout actually expiring. CMake was not honoring CXXFLAGS passed in via the environment which couldcause compile and link errors with distribution hardening flags during packaging. Fix Windows UWP and Cygwin compilation. ares_set_servers_*() for legacy reasons needs to accept an empty server listand zero out all servers. This results in an inoperable channel and thus is only used in simulation testing, but we don't want to break users. Regression introduced in 1.21.0. Changes in version 1.22.1 Bugfixes: Fix /etc/hosts processing performance with all entries using same IPaddress. Large hosts files using the same IP address for all entries could use exponential time. Fix typos in manpages Fix OpenWatcom building Changes in version 1.22.0 Features: ares_reinit() is now implemented to re-read any system configuration and immediately apply to an existing ares channel The adig command line program has been rewritten and its format now more closely matches that of BIND's dig utility The new DNS message parser and writer functions have now been made public RFC9460 HTTPS and SVCB records are now supported RFC6698 TLSA records are now supported The server list is now internally dynamic and can be changed without impacting existing queries Hosts file processing is now cached until the file is detected to be changed to speed up repetitive lookups of large hosts files Changes: Internally all DNS messages are now written using the new DNS writing functions EDNS is now enabled by default Internal cleanups in function prototypes Bugfixes: Randomize retry penalties to prevent thundering herd issues when dns servers throttle requests Fix Windows build error for missing if_indextoname() - update to 1.21.0: * Replace multiple DNS hand-made parsers with new memory-safe DNS message parser * developer visible changes and bug fixes ==== catfish ==== Subpackages: catfish-lang - As long as a new Python version does not ship a broken python3-distutils, like python311 did in its early days, there is no need to deal with or skip a specific python version at all. Disable all %%{python_module ...} and skip_python... stuff again. - Don't use %%{python_module ...} as we only build for the default Python interpreter. python312 still needs to be skipped due to python3-distutils! - Skip python312 for now until all required Python modules have been built. - Use %%{python_module ...} to specify required Python modules to build this package. ==== cpio ==== Version update (2.14 -> 2.15) Subpackages: cpio-mt - Update to 2.15: * Fix the operation of --no-absolute-filenames --make-directories. * Restore access and modification times of symlinks in copy-in and copy-pass modes. - Remove fix-operation-no-absolute-filenames.patch ==== distribution-logos-openSUSE ==== Version update (20230921 -> 20240207) Subpackages: distribution-logos-openSUSE-Tumbleweed distribution-logos-openSUSE-icons - switch to a service using zstd - list the source url - Update Leap 15.6 branding poo#131666 ==== dracut ==== Version update (059+suse.538.ge7a5cff9 -> 059+suse.549.gc9f63878) - Update to version 059+suse.549.gc9f63878: * fix(overlayfs): split overlayfs mount in two steps (bsc#1219778) * fix(dracut-init.sh): handle decompress with `--sysroot` * fix(i18n): handle keymap includes with `--sysroot` * fix(dracut-systemd): replace `rd.udev.log-priority` with `rd.udev.log_level` * fix(i18n): handle symlinked keymap ==== ethtool ==== Version update (6.6 -> 6.7) Subpackages: ethtool-bash-completion - update to upstream release 6.7 * Feature: support for setting TCP data split * Fix: fix new gcc14 warning * Fix: fix SFF-8472 transceiver module identification (-m) ==== freeipmi ==== Version update (1.6.11 -> 1.6.14) Subpackages: libfreeipmi17 libipmiconsole2 libipmidetect0 - freeipmi 1.6.14 * Fix build issue common to non-x86 systems. - freeipmi 1.6.13 * Fix build issues on systems where inb/outb are declared with inline assembly. * Add additional sensor/event interpretations. - freeipmi 1.6.12 * Use poll() over select() to avoid fd limit in openipmi driver. * Fix potential portability problems on systems without cbrt(). * Minor documentation updates. ==== fwupd ==== Version update (1.9.12 -> 1.9.13) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.13: + This release adds the following features: - Add a timer inhibit if the daemon took a long time to startup. - Add a concept of 'Test Mode' rather than enabling specific plugins. - Do not idle-quit the daemon if there is a connected D-Bus client. + This release fixes the following bugs: - Allow plugins to opt-out of the child-device first depsolve. - Allow setting multiple flags in LVFS::DeviceFlags. - Do not migrate config comments for removed keys. - Do not request the Advantech BMC to reboot. - Do not warn the user about ESP when using MBR. - Fix a critical warning when adding a PixArt wireless device. - Fix migration of legacy config files. - Only save config values to the mutable config file. - Parse DS-20 descriptors earlier in device setup. - Store the version format in the history database to fix offline reports. - Use the correct GUID for matching realtek-mst and parade-lspcon. + This release adds support for the following hardware: - GoodWay Acer Dock. ==== gc ==== Version update (8.2.4 -> 8.2.6) - Update to release 8.2.6 * Compiler warning fixes on various non-Linux platforms * Fix null dereference in check_finalizer_nested if redirecting malloc on Linux * Fix race in init_lib_bounds on Linux/glibc-2.34+ if redirecting malloc ==== gcc12 ==== - Use %{_target_cpu} to determine host and build. ==== gcc13 ==== Version update (13.2.1+git8250 -> 13.2.1+git8285) Subpackages: cpp13 libasan8 libatomic1 libgcc_s1 libgccjit0 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-locale libstdc++6-pp libtsan2 libubsan1 - Add gcc13-sanitizer-remove-crypt-interception.patch to remove crypt and crypt_r interceptors. The crypt API change in SLE15 SP3 breaks them. [bsc#1219520] - Update to gcc-13 branch head, 67ac78caf31f7cb3202177e642, git8285 - Add gcc13-pr88345-min-func-alignment.diff to add support for - fmin-function-alignment. [bsc#1214934] - Use %{_target_cpu} to determine host and build. ==== gcc7 ==== - Use %{_target_cpu} to determine host and build. - Add gcc7-pr87723.patch to avoid ICE when hitting a broken pattern in the s390 backend. - Add gcc7-bsc1216488.patch to avoid creating recursive DIE references through DW_AT_abstract_origin when using LTO. [bsc#1216488] ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - Add libnsl1 to baselibs.conf (bsc#1219640) - arm-dl-start-user.patch: arm: Remove wrong ldr from _dl_start_user (BZ [#31339]) ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix build error on gcc-14 (bsc#1218949) * 0001-squash-ieee1275-ofpath-enable-NVMeoF-logical-device-.patch ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Require libvpl only on supported architectures (x86_64 and aarch64) - drop support for libmfx, which is no longer supported upstream at all (boo#1219494) - added support for oneVPL ==== gtk4 ==== Version update (4.12.4 -> 4.12.5) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Update to version 4.12.5: + GtkColumnView: Fix a crash on dispose. + GtkEmojiChooser: - Update to CLDR v44. - Add more translations. + GtkFileDialog: - Return an error if no file is selected. - Make closing the portal file chooser work. + GtkDropDown: Fix display of the initial checkmark. + GtkShortcutsWindow: Reduce the minimum width. + GDK: Make the png loader safer against overflow. + Wayland: Fix cursor handling with graphics tablets. ==== gwenview5 ==== - Add patch to support newer kImageAnnotator: * 0001-Support-building-against-kImageAnnotator-Qt5-as-well.patch ==== ibus ==== Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Fix dead keys with non-English keyboard in some applications (MAME, Wine) (boo#1218135) ibus-complete-preedit-signals-for-postprocesskeyevent.patch ibus-enginesimple-dont-commit-any-characters.patch ==== imlib2 ==== Version update (1.12.1 -> 1.12.2) Subpackages: imlib2-loaders libImlib2-1 - update to 1.12.2: * Fixes for Y4M, ANI, PNG and JPG loaders ==== inxi ==== Version update (3.3.32 -> 3.3.33) - Updated to version 3.3.33: + /usr/share/doc/packages/inxi/inxi.changelog. ==== jasper ==== Version update (4.1.2 -> 4.2.0) - Update to 4.2.0: * Add the JAS_PACKAGING option to the CMake build in an attempt to allow easier control over rpath settings by packagers of JasPer. * Remove a number of obsolete scripts. * Make some cosmetic changes to the code for the JPC codec in order to improve readability (#371). * Fix a portability bug related to threads/atomics. * Replace some lingering uses of strtok in the JPC coder with jas_strtok, since the use of strtok is problematic in multithreading contexts. ==== kdsoap ==== - Fix package docs - Fix build to handle changes in (open)SUSE specific cmake macros, no user visible changes ==== kernel-source ==== Version update (6.7.2 -> 6.7.4) - Linux 6.7.4 (bsc#1012628). - asm-generic: make sparse happy with odd-sized put_unaligned_*() (bsc#1012628). - powerpc/mm: Fix null-pointer dereference in pgtable_cache_add (bsc#1012628). - arm64: irq: set the correct node for VMAP stack (bsc#1012628). - drivers/perf: pmuv3: don't expose SW_INCR event in sysfs (bsc#1012628). - powerpc: Fix build error due to is_valid_bugaddr() (bsc#1012628). - powerpc/mm: Fix build failures due to arch_reserved_kernel_pages() (bsc#1012628). - powerpc/64s: Fix CONFIG_NUMA=n build due to create_section_mapping() (bsc#1012628). - x86/boot: Ignore NMIs during very early boot (bsc#1012628). - powerpc: pmd_move_must_withdraw() is only needed for CONFIG_TRANSPARENT_HUGEPAGE (bsc#1012628). - powerpc/lib: Validate size for vector operations (bsc#1012628). - x86/mce: Mark fatal MCE's page as poison to avoid panic in the kdump kernel (bsc#1012628). - sched/numa: Fix mm numa_scan_seq based unconditional scan (bsc#1012628). - perf/core: Fix narrow startup race when creating the perf nr_addr_filters sysfs file (bsc#1012628). - debugobjects: Stop accessing objects after releasing hash bucket lock (bsc#1012628). - sched/fair: Fix tg->load when offlining a CPU (bsc#1012628). - regulator: core: Only increment use_count when enable_count changes (bsc#1012628). - audit: Send netlink ACK before setting connection in auditd_set (bsc#1012628). - ACPI: tables: Correct and clean up the logic of acpi_parse_entries_array() (bsc#1012628). - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop (bsc#1012628). - PNP: ACPI: fix fortify warning (bsc#1012628). - ACPI: extlog: fix NULL pointer dereference check (bsc#1012628). - selftests/nolibc: fix testcase status alignment (bsc#1012628). - ACPI: NUMA: Fix the logic of getting the fake_pxm value (bsc#1012628). - kunit: tool: fix parsing of test attributes (bsc#1012628). - kunit: Reset test->priv after each param iteration (bsc#1012628). - PM / devfreq: Synchronize devfreq_monitor_[start/stop] (bsc#1012628). - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous events (bsc#1012628). - OPP: The level field is always of unsigned int type (bsc#1012628). - thermal: core: Fix thermal zone suspend-resume synchronization (bsc#1012628). - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree (bsc#1012628). - UBSAN: array-index-out-of-bounds in dtSplitRoot (bsc#1012628). - jfs: fix slab-out-of-bounds Read in dtSearch (bsc#1012628). - jfs: fix array-index-out-of-bounds in dbAdjTree (bsc#1012628). - jfs: fix uaf in jfs_evict_inode (bsc#1012628). - hwrng: starfive - Fix dev_err_probe return error (bsc#1012628). - crypto: p10-aes-gcm - Avoid -Wstringop-overflow warnings (bsc#1012628). - pstore/ram: Fix crash when setting number of cpus to an odd number (bsc#1012628). - erofs: fix up compacted indexes for block size < 4096 (bsc#1012628). - crypto: starfive - Fix dev_err_probe return error (bsc#1012628). - crypto: octeontx2 - Fix cptvf driver cleanup (bsc#1012628). - erofs: fix ztailpacking for subpage compressed blocks (bsc#1012628). - crypto: stm32/crc32 - fix parsing list of devices (bsc#1012628). - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu() (bsc#1012628). - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock() (bsc#1012628). - jfs: fix array-index-out-of-bounds in diNewExt (bsc#1012628). - s390/boot: always align vmalloc area on segment boundary (bsc#1012628). - arch: consolidate arch_irq_work_raise prototypes (bsc#1012628). - arch: fix asm-offsets.c building with -Wmissing-prototypes (bsc#1012628). - s390/vfio-ap: fix sysfs status attribute for AP queue devices (bsc#1012628). - s390/ptrace: handle setting of fpc register correctly (bsc#1012628). - KVM: s390: fix setting of fpc register (bsc#1012628). - sysctl: Fix out of bounds access for empty sysctl registers (bsc#1012628). - SUNRPC: Fix a suspicious RCU usage warning (bsc#1012628). - ext4: treat end of range as exclusive in ext4_zero_range() (bsc#1012628). - smb: client: fix renaming of reparse points (bsc#1012628). - smb: client: fix hardlinking of reparse points (bsc#1012628). - cifs: fix in logging in cifs_chan_update_iface (bsc#1012628). - ecryptfs: Reject casefold directory inodes (bsc#1012628). - ext4: fix inconsistent between segment fstrim and full fstrim (bsc#1012628). - ext4: unify the type of flexbg_size to unsigned int (bsc#1012628). - ext4: remove unnecessary check from alloc_flex_gd() (bsc#1012628). ... changelog too long, skipping 1153 lines ... - commit f71b395 ==== libXext ==== Version update (1.3.5 -> 1.3.6) - Update to version 1.3.6 * Wrap Xext*CheckExtension() in do { ... } while(0) * configure: raise minimum autoconf requirement to 2.70 * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * _xgeGetExtensionVersion should not free info on failure * Check for malloc failure in _xgeGetExtensionVersion * _xgeDpyClose: handle NULL return from _xgeFindDisplay * XEVI: fix -Walloc-size ==== libapparmor ==== Version update (3.1.6 -> 3.1.7) - Update to AppArmor 3.1.7 - aa-logprof: don't skip exec events in hats - fix aa-cleanprof to work with named profiles - add permissions in various abstractions - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.7 for the full list of changes - drop upstreamed apparmor-systemd-sessions.patch ==== libei ==== Version update (1.2.0 -> 1.2.1) - Update to release 1.2.1 * Previously, using OEFFIS_DEVICE_ALL_DEVICES in oeffis_create_session() would erroneously result in the portal selecting no devices instead of all. ==== libgarcon ==== Version update (4.18.1 -> 4.18.2) Subpackages: libgarcon-1-0 libgarcon-data libgarcon-lang - Update to version 4.18.2 * Update copyright year * garcon-gtk: Remove weak ref on GarconMenu on finalize() * Use target desktop files instead of symlinks (Fixes #1) * garcon-gtk: Avoid populating a wrong menu * garcon-gtk: Prevent use-after-free when loading garcon menu * Add icon at 64px, clean up SVG metadata * Translation Updates ==== libgit2 ==== Version update (1.7.1 -> 1.7.2) - update to 1.7.2: * CVE-2024-24574: infinite loop condition given specially crafted inputs (boo#1219664) * CVE-2024-24577: arbitrary code execution due to heap corruption in git_index_add (boo#1219660) * Fix a bug in the smart transport negotiation could have caused an out-of-bounds read when a remote server did not advertise capabilities. ==== libgsf ==== Version update (1.14.51 -> 1.14.52) Subpackages: gsf-office-thumbnailer libgsf-1-114 - Update to version 1.14.52: + xml: Fix build with libxml2 2.12. ==== libidn2 ==== Version update (2.3.4 -> 2.3.7) - update to 2.3.7: * Un-deprecate idn2_to_ascii_4i and make it NUL terminate output * Export punycode APIs * Developer visible code maintenance ==== libjxl ==== Version update (0.9.0 -> 0.9.2) - Update to release 0.9.2 * Fixed some unspecified bugs in the gdk-pixbuf plugin ==== libjxl-gtk ==== Version update (0.9.0 -> 0.9.2) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update to release 0.9.2 * Fixed some unspecified bugs in the gdk-pixbuf plugin ==== libpciaccess ==== Version update (0.17 -> 0.18) - Update to version 0.18 * Remove "All rights reserved" from Oracle copyright notices * Try fopen(".../pci.ids", "re") on Solarish systems as well * Remove autotools build * gitlab-ci: use `meson setup` * gitlab-ci: don't bother to configure meson for the version check * gitlab-ci: remove unnecessary call to `meson configure` * FreeBSD: Fallback to /usr/share/misc/pci_vendors * FreeBSD: Remove sparc64 code * Fix compilation warnings when building against hurd-amd64. ==== libxcb ==== Subpackages: libxcb-composite0 libxcb-damage0 libxcb-dpms0 libxcb-dri2-0 libxcb-dri3-0 libxcb-glx0 libxcb-present0 libxcb-randr0 libxcb-record0 libxcb-render0 libxcb-res0 libxcb-shape0 libxcb-shm0 libxcb-sync1 libxcb-xfixes0 libxcb-xinerama0 libxcb-xinput0 libxcb-xkb1 libxcb-xv0 libxcb1 - devel package: added missing Requires to libxcb-dbe0 (boo#1219572) ==== libxfce4ui ==== Version update (4.18.4 -> 4.18.5) Subpackages: libxfce4kbd-private-3-0 libxfce4ui-2-0 libxfce4ui-lang libxfce4ui-tools typelib-1_0-Libxfce4ui-2_0 - Update to version 4.18.5 * Update copyright year * build: Search for bind_textdomain_codeset in libintl too * sm-client: Reset SmcConnection when IceConnection is closed on error * docs: Improve xfce_sm_client_get() * shortcuts-grabber: Fix filtering by level * shortcuts-grabber: Simplify filtering by group * shortcuts-grabber: Variable renaming * shortcuts-grabber: Filter grabbing by key level * Detect keyboard shortcuts with only single modifier keys on key release * Translation Updates ==== libxfce4util ==== Version update (4.18.1 -> 4.18.2) Subpackages: libxfce4util-lang libxfce4util7 typelib-1_0-Libxfce4util-1_0 - Update to version 4.18.2 * Update copyright year * Search for bind_textdomain_codeset in libintl too * xfce-rc: Add support for the LANGUAGE environment variable * Add missing config.h includes * Improve checksum calculation (#17) * xfce-rc: Document the fact that delimiter escaping is not supported * xfce-rc: Properly write translated entries when available * Update bug report address ==== libxkbfile ==== Version update (1.1.2 -> 1.1.3) - update to 1.1.3 * configure: Use LT_INIT from libtool 2 instead of deprecated AC_PROG_LIBTOOL * Set close-on-exec when opening files * _XkbMakeAtom: remove check for impossible case * _XkbInitAtoms: check for malloc() failure * XkbChangeAtomDisplay: stop leaking atom name * XkbCFReportError: avoid -Wformat-nonliteral warning * XkbWriteCFile: stop leaking header file ifdef name * DefaultParser: avoid -Wimplicit-fallthrough warnings * xkbtext.c: Add tbGetBufferString helper function * XkbIndentText: Fix -Wsign-compare warning * Fix -Wsign-compare warnings in xkbtext.c & xkmread.c * Add a meson build system - switched to meson build system ==== libzypp ==== Version update (17.31.28 -> 17.31.31) - tui: allow to access the underlying ostream of out::Info. - Add MLSep: Helper to produce not-NL-terminated multi line output. - version 17.31.31 (22) - applydeltaprm: Create target directory if it does not exist (bsc#1219442) - Add ProblemSolution::skipsPatchesOnly (for openSUSE/zypper#514) - Fix problems with EINTR in ExternalDataSource::getline (fixes bsc#1215698) - version 17.31.30 (22) - CheckAccessDeleted: fix running_in_container detection (bsc#1218782) - Detect CURLOPT_REDIR_PROTOCOLS_STR availability at runtime (bsc#1218831) - Make Wakeup class EINTR safe. - Add a way to cancel media operations on shutdown (openSUSE/zypper#522) This patch adds a mechanism to signal libzypp that a shutdown was requested, usually when CTRL+C was pressed by the user. Currently only the media backend will utilize this, but can be extended to all code paths that use g_poll() to wait for events. - Manually poll fds for curl in MediaCurl. Using curl_easy_perform does not give us the required control on when we want to cancel a download. Switching to the MultiCurl implementation with a external poll() event loop will give us much more freedom and helps us to improve our Ctrl+C handling. - Move reusable curl poll code to curlhelper.h. - version 17.31.29 (22) ==== lzip ==== Version update (1.23 -> 1.24) - Update to release 1.24 * Added the command-line switches --empty-error and - -marking-error * The option -o/--output now preserves dates, permissions, and ownership of the file when (de)compressing exactly one file. * The option -o/--output now creates missing intermediate directories when writing to a file. ==== man ==== - Make lua scriplets more failsafe (boo#1219370) ==== menulibre ==== - As long as a new Python version does not ship a broken python3-distutils, like python311 did in its early days, there is no need to deal with or skip a specific python version at all. Disable all %%{python_module ...} and skip_python... stuff again. - Don't use %%{python_module ...} as we only build for the default Python interpreter. python312 still needs to be skipped due to python3-distutils! - Skip python312 for now until all required Python modules have been built. - Use %%{python_module ...} to specify required Python modules to build this package. ==== microos-tools ==== Version update (2.21+git9 -> 2.21+git11) - Update to version 2.21+git11: * Install man-online alias only for bash ==== mousepad ==== Version update (0.6.1 -> 0.6.2) Subpackages: libmousepad0 - Update to version 0.6.2 * Update copyright year * history: Default to yes when user is asked to restore previous session * build: Search for bind_textdomain_codeset in libintl too * tests: Increase timeout a bit * tests: Check for pwait/pidwait * dialogs: Do not reuse text buffer to test encoding in save-as dialog * history: Remove dead code * history: Rework paste menu * Move paste history to mousepad-history.c * window: Fix GVariant management * Do not scroll text view when zooming in or out * file-monitoring: Delay emission of "externaly-modified" signal * Fix a typo in a comment, additionnal â additional. * Add icons at missing sizes, clean up SVG metadata * search: Properly reset current match * Translation Updates ==== netpbm ==== Subpackages: libnetpbm11 - added patches fix CVE-2017-5849 [bsc#1022790], CVE-2017-5849 [bsc#1022791] + netpbm-use-byrow-when-needed.patch ==== numactl ==== Version update (2.0.17.4.g63befa8 -> 2.0.18.0.g3871b1c) Subpackages: libnuma1 - Update to version 2.0.18.0.g3871b1c: * Increase version number to 2.0.18 * man pages: fix table include preprocessor - Update to version 2.0.17.8.g67984e5: * numastat: Print package version number instead of own. * numastat: Remove commented out perl code * Check for MPOL_PREFERRED_MANY lazily * libnuma: add numa_set_mempolicy_home_node API ==== nvidia-open-driver-G06-signed ==== Version update (545.29.06_k6.7.2_1 -> 545.29.06_k6.7.4_1) - provide nvidia-open-driver-G06-kmp = %version (jsc#PED-7117) * this makes it easy to replace the package from nVidia's CUDA repository with this presigned package ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Rename engines directories to the same name like in SLE: /etc/ssl/engines1_1.d -> /etc/ssl/engines1.1.d /etc/ssl/engdef1_1.d -> /etc/ssl/engdef1.1.d * Add migration script to move files (bsc#1219562) /etc/ssl/engines.d/* -> /etc/ssl/engines1.1.d /etc/ssl/engdef.d/* -> /etc/ssl/engdef1.1.d - Security fix: [bsc#1219243, CVE-2024-0727] * Add NULL checks where ContentInfo data can be NULL * Add openssl-CVE-2024-0727.patch ==== openssl-3 ==== Subpackages: libopenssl3 - Add migration script to move old files (bsc#1219562) /etc/ssl/engines.d/* -> /etc/ssl/engines1.1.d.rpmsave /etc/ssl/engdef.d/* -> /etc/ssl/engdef1.1.d.rpmsave They will be later restored by openssl-1_1 package to engines1.1.d and engdef1.1.d - Security fix: [bsc#1219243, CVE-2024-0727] * Add NULL checks where ContentInfo data can be NULL * Add openssl-CVE-2024-0727.patch ==== pam ==== - pam.tmpfiles: Make sure the content of the /run directories get removed in case of a soft-reboot ==== pam-full-src ==== - pam.tmpfiles: Make sure the content of the /run directories get removed in case of a soft-reboot ==== permissions ==== Version update (1699_20230602 -> 1699_20240206) Subpackages: chkstat permissions-config - Drop superfluous mkdir /usr/share/permissions/permissions.d This is now created by the Makefile. See also commit 5900bc1ffe6275298ded3c96dee03a5c98e4db1c - Update to version 20240206: * Whitelisting libgtop_server2 (bsc#1218921) * Removing bogus whitespaces * chkstat: harmonize and transform to a more compact coding and doc style * gitignore: also ignore hidden ctags * build: Create /usr/share/permissions/permissions.d for packagers * profiles: drop /usr/sbin/lockdev which is no longer packaged in Factory * profiles: drop /etc/ftpusers which is no longer shipped in netcfg ==== pipewire ==== Version update (1.0.2 -> 1.0.3) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.3: * Highlights - Fix ALSA version check. This should allow the alsa plugin to work again. - Some small fixes and improvements. * PipeWire - Escape @DEFAULT_SINK@ in the conf files. * Modules - Improve logging in module-pipe-tunnel. * SPA - Always recheck rate matching in ALSA when moving drivers. This fixes a potential issue where the adaptive resampler would not be activated in some cases. * ALSA - Fix ALSA version check. This should allow the alsa plugin to work again. ==== polkit-default-privs ==== Version update (1550+20231213.09963a4 -> 1550+20240207.d833f4b) - Update to version 1550+20240207.d833f4b: * profiles: remove no longer used device-rebind action ==== postgresql ==== Subpackages: postgresql-contrib postgresql-server - bsc#1219340: Require fillup. ==== postgresql16 ==== Version update (16.1 -> 16.2) Subpackages: libpq5 postgresql16-contrib postgresql16-server - Upgrade to 16.2: * bsc#1219679, CVE-2024-0985: Tighten security restrictions within REFRESH MATERIALIZED VIEW CONCURRENTLY. One step of a concurrent refresh command was run under weak security restrictions. If a materialized view's owner could persuade a superuser or other high-privileged user to perform a concurrent refresh on that view, the view's owner could control code executed with the privileges of the user running REFRESH. Fix things so that all user-determined code is run as the view's owner, as expected * If you use GIN indexes, you may need to reindex after updating to this release. * LLVM 18 is now supported. * https://www.postgresql.org/docs/release/16.2/ ==== pulseaudio ==== Version update (16.1 -> 17.0) Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - Update to version 17.0: * Updates to ALSA UCM-based setups * Battery level indication to Bluetooth devices * Support for the Bluetooth FastStream codec * webrtc-audio-processing dependency updated * Trigger role groups added to module-role-cork * XDG base directory spec for profile-set loading * PA_RATE_MAX increased * webrtc-audio-processing dependency updated For details, see: https://www.freedesktop.org/wiki/Software/PulseAudio/Notes/17.0/ - Drop obsoleted patches: echo-cancel-add-webrtc-AEC3-support.patch build-sys-Bump-cpp_std-to-c-17.patch build-sys-Bump-webrtc-audio-processing-dependency.patch ==== python-MarkupSafe ==== Version update (2.1.4 -> 2.1.5) - update to 2.1.5: * Fix striptags not collapsing spaces. :issue:`417` ==== python-h11 ==== - spec cleanup ==== python-msgpack ==== Version update (1.0.5 -> 1.0.7) - update to 1.0.7: * remove inline macro for msvc * do not fallback on build error * fix: build status badge * Drop python2 support * Drop Python 3.6 support * try Cython 3.0 * sphinx-related work ==== python-mysqlclient ==== Version update (2.2.1 -> 2.2.4) - update to 2.2.4: * Support ssl=True in connect(). ==== python-pip ==== - Fix shebang path for "pip3.XX" binaries ==== python-rpm ==== Version update (4.19.1 -> 4.19.1.1) - update to rpm-4.19.1.1 ==== python-typing_extensions ==== - Add backport-recent-implementation-of-protocol.patch upstream patch gh#python/typing_extensions@004b893ddce2 ==== python311 ==== Version update (3.11.7 -> 3.11.8) Subpackages: python311-curses python311-dbm - Update to 3.11.8: - Security - gh-113659: Skip .pth files with names starting with a dot or hidden file attribute. - Core and Builtins - gh-114887: Changed socket type validation in create_datagram_endpoint() to accept all non-stream sockets. This fixes a regression in compatibility with raw sockets. - gh-114388: Fix a RuntimeWarning emitted when assign an integer-like value that is not an instance of int to an attribute that corresponds to a C struct member of type T_UINT and T_ULONG. Fix a double RuntimeWarning emitted when assign a negative integer value to an attribute that corresponds to a C struct member of type T_UINT. - gh-89811: Check for a valid tp_version_tag before performing bytecode specializations that rely on this value being usable. - gh-113602: Fix an error that was causing the parser to try to overwrite existing errors and crashing in the process. Patch by Pablo Galindo - gh-113566: Fix a 3.11-specific crash when the repr of a Future is requested after the module has already been garbage-collected. - gh-106905: Use per AST-parser state rather than global state to track recursion depth within the AST parser to prevent potential race condition due to simultaneous parsing. - The issue primarily showed up in 3.11 by multithreaded users of ast.parse(). In 3.12 a change to when garbage collection can be triggered prevented the race condition from occurring. - gh-112716: Fix SystemError in the import statement and in __reduce__() methods of builtin types when __builtins__ is not a dict. - gh-105967: Workaround a bug in Appleâs macOS platform zlib library where zlib.crc32() and binascii.crc32() could produce incorrect results on multi-gigabyte inputs. Including when using zipfile on zips containing large data. - gh-94606: Fix UnicodeEncodeError when email.message.get_payload() reads a message with a Unicode surrogate character and the message content is not well-formed for surrogateescape encoding. Patch by Sidney Markowitz. - Library - gh-114965: Update bundled pip to 24.0 - gh-114959: tarfile no longer ignores errors when trying to extract a directory on top of a file. - gh-109475: Fix support of explicit option value âââ in argparse (e.g. --option=--). - gh-110190: Fix ctypes structs with array on Windows ARM64 platform by setting MAX_STRUCT_SIZE to 32 in stgdict. Patch by Diego Russo - gh-113280: Fix a leak of open socket in rare cases when error occurred in ssl.SSLSocket creation. - gh-77749: email.policy.EmailPolicy.fold() now always encodes non-ASCII characters in headers if utf8 is false. - gh-114492: Make the result of termios.tcgetattr() reproducible on Alpine Linux. Previously it could leave a random garbage in some fields. - gh-75128: Ignore an OSError in asyncio.BaseEventLoop.create_server() when IPv6 is available but the interface cannot actually support it. - gh-114257: Dismiss the FileNotFound error in ctypes.util.find_library() and just return None on Linux. - gh-101438: Avoid reference cycle in ElementTree.iterparse. The iterator returned by ElementTree.iterparse may hold on to a file descriptor. The reference cycle prevented prompt clean-up of the file descriptor if the returned iterator was not exhausted. - gh-104522: OSError raised when run a subprocess now only has filename attribute set to cwd if the error was caused by a failed attempt to change the current directory. - gh-109534: Fix a reference leak in asyncio.selector_events.BaseSelectorEventLoop when SSL handshakes fail. Patch contributed by Jamie Phan. - gh-114077: Fix possible OverflowError in socket.socket.sendfile() when pass count larger than 2 GiB on 32-bit platform. - gh-114014: Fixed a bug in fractions.Fraction where an invalid string using d in the decimals part creates a different error compared to other invalid letters/characters. Patch by Jeremiah Gabriel Pascual. - gh-113951: Fix the behavior of tag_unbind() methods of tkinter.Text and tkinter.Canvas classes with three arguments. Previously, widget.tag_unbind(tag, sequence, funcid) destroyed the current binding for sequence, leaving sequence unbound, and deleted the funcid command. Now it removes only funcid from the binding for sequence, keeping other commands, and deletes the funcid command. It leaves sequence unbound only if funcid was the last bound command. - gh-113877: Fix tkinter method winfo_pathname() on 64-bit Windows. - gh-113781: Silence unraisable AttributeError when warnings are emitted during Python finalization. - gh-113594: Fix UnicodeEncodeError in email when re-fold lines that contain unknown-8bit encoded part followed by non-unknown-8bit encoded part. - gh-113538: In asyncio.StreamReaderProtocol.connection_made(), there is callback that logs an error if the task wrapping the âconnected callbackâ fails. This callback would itself fail if the task was cancelled. Prevent this by checking whether the task was cancelled first. If so, close the transport but donât log an error. - gh-85567: Fix resource warnings for unclosed files in pickle and ... changelog too long, skipping 159 lines ... - support-expat-CVE-2022-25236-patched.patch ==== python311-core ==== Version update (3.11.7 -> 3.11.8) Subpackages: libpython3_11-1_0 python311-base - Update to 3.11.8: - Security - gh-113659: Skip .pth files with names starting with a dot or hidden file attribute. - Core and Builtins - gh-114887: Changed socket type validation in create_datagram_endpoint() to accept all non-stream sockets. This fixes a regression in compatibility with raw sockets. - gh-114388: Fix a RuntimeWarning emitted when assign an integer-like value that is not an instance of int to an attribute that corresponds to a C struct member of type T_UINT and T_ULONG. Fix a double RuntimeWarning emitted when assign a negative integer value to an attribute that corresponds to a C struct member of type T_UINT. - gh-89811: Check for a valid tp_version_tag before performing bytecode specializations that rely on this value being usable. - gh-113602: Fix an error that was causing the parser to try to overwrite existing errors and crashing in the process. Patch by Pablo Galindo - gh-113566: Fix a 3.11-specific crash when the repr of a Future is requested after the module has already been garbage-collected. - gh-106905: Use per AST-parser state rather than global state to track recursion depth within the AST parser to prevent potential race condition due to simultaneous parsing. - The issue primarily showed up in 3.11 by multithreaded users of ast.parse(). In 3.12 a change to when garbage collection can be triggered prevented the race condition from occurring. - gh-112716: Fix SystemError in the import statement and in __reduce__() methods of builtin types when __builtins__ is not a dict. - gh-105967: Workaround a bug in Appleâs macOS platform zlib library where zlib.crc32() and binascii.crc32() could produce incorrect results on multi-gigabyte inputs. Including when using zipfile on zips containing large data. - gh-94606: Fix UnicodeEncodeError when email.message.get_payload() reads a message with a Unicode surrogate character and the message content is not well-formed for surrogateescape encoding. Patch by Sidney Markowitz. - Library - gh-114965: Update bundled pip to 24.0 - gh-114959: tarfile no longer ignores errors when trying to extract a directory on top of a file. - gh-109475: Fix support of explicit option value âââ in argparse (e.g. --option=--). - gh-110190: Fix ctypes structs with array on Windows ARM64 platform by setting MAX_STRUCT_SIZE to 32 in stgdict. Patch by Diego Russo - gh-113280: Fix a leak of open socket in rare cases when error occurred in ssl.SSLSocket creation. - gh-77749: email.policy.EmailPolicy.fold() now always encodes non-ASCII characters in headers if utf8 is false. - gh-114492: Make the result of termios.tcgetattr() reproducible on Alpine Linux. Previously it could leave a random garbage in some fields. - gh-75128: Ignore an OSError in asyncio.BaseEventLoop.create_server() when IPv6 is available but the interface cannot actually support it. - gh-114257: Dismiss the FileNotFound error in ctypes.util.find_library() and just return None on Linux. - gh-101438: Avoid reference cycle in ElementTree.iterparse. The iterator returned by ElementTree.iterparse may hold on to a file descriptor. The reference cycle prevented prompt clean-up of the file descriptor if the returned iterator was not exhausted. - gh-104522: OSError raised when run a subprocess now only has filename attribute set to cwd if the error was caused by a failed attempt to change the current directory. - gh-109534: Fix a reference leak in asyncio.selector_events.BaseSelectorEventLoop when SSL handshakes fail. Patch contributed by Jamie Phan. - gh-114077: Fix possible OverflowError in socket.socket.sendfile() when pass count larger than 2 GiB on 32-bit platform. - gh-114014: Fixed a bug in fractions.Fraction where an invalid string using d in the decimals part creates a different error compared to other invalid letters/characters. Patch by Jeremiah Gabriel Pascual. - gh-113951: Fix the behavior of tag_unbind() methods of tkinter.Text and tkinter.Canvas classes with three arguments. Previously, widget.tag_unbind(tag, sequence, funcid) destroyed the current binding for sequence, leaving sequence unbound, and deleted the funcid command. Now it removes only funcid from the binding for sequence, keeping other commands, and deletes the funcid command. It leaves sequence unbound only if funcid was the last bound command. - gh-113877: Fix tkinter method winfo_pathname() on 64-bit Windows. - gh-113781: Silence unraisable AttributeError when warnings are emitted during Python finalization. - gh-113594: Fix UnicodeEncodeError in email when re-fold lines that contain unknown-8bit encoded part followed by non-unknown-8bit encoded part. - gh-113538: In asyncio.StreamReaderProtocol.connection_made(), there is callback that logs an error if the task wrapping the âconnected callbackâ fails. This callback would itself fail if the task was cancelled. Prevent this by checking whether the task was cancelled first. If so, close the transport but donât log an error. - gh-85567: Fix resource warnings for unclosed files in pickle and ... changelog too long, skipping 159 lines ... - support-expat-CVE-2022-25236-patched.patch ==== qemu ==== Version update (8.1.3 -> 8.2.0) Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Fix a build issue of OVMF caused by https://gitlab.com/qemu-project/qemu/-/issues/2064: * target/i386: fix incorrect EIP in PC-relative translation blocks * target/i386: Do not re-compute new pc with CF_PCREL - Update to latest upstream release, 8.2.0: The full list of changes are available at: https://wiki.qemu.org/ChangeLog/8.2 Highlights include: * New virtio-sound device emulation * New virtio-gpu rutabaga device emulation used by Android emulator * New hv-balloon for dynamic memory protocol device for Hyper-V guests * New Universal Flash Storage device emulation * Network Block Device (NBD) 64-bit offsets for improved performance * dump-guest-memory now supports the standard kdump format * ARM: Xilinx Versal board now models the CFU/CFI, and the TRNG device * ARM: CPU emulation support for cortex-a710 and neoverse-n2 * ARM: architectural feature support for PACQARMA3, EPAC, Pauth2, FPAC, FPACCOMBINE, TIDCP1, MOPS, HBC, and HPMN0 * HPPA: CPU emulation support for 64-bit PA-RISC 2.0 * HPPA: machine emulation support for C3700, including Astro memory controller and four Elroy PCI bridges * LoongArch: ISA support for LASX extension and PRELDX instruction * LoongArch: CPU emulation support for la132 * RISC-V: ISA/extension support for AIA virtualization support via KVM, and vector cryptographic instructions * RISC-V: Numerous extension/instruction cleanups, fixes, and reworks * s390x: support for vfio-ap passthrough of crypto adapter for protected virtualization guests * Tricore: support for TC37x CPU which implements ISA v1.6.2 * Tricore: support for CRCN, FTOU, FTOHP, and HPTOF instructions * x86: Zen support for PV console and network devices - Patch added (from upstream stable tree): * include/ui/rect.h: fix qemu_rect_init() mis-assignment - Some packaging and dependencies fixes: * [openSUSE] rpm: restrict canokey to openSUSE only * [openSUSE] rpm: fix virtiofsd dependency on 32 bit systems * [openSUSE] rpm: add support for canokeys (boo#1217520) - Rearrange dependencies and subpackages and filter features for ALP * [openSUSE] rpm: disable Xen support in ALP-based distros * [openSUSE] rpm: some more refinements of inter-subpackage dependencies - Fix boo#1084909 and create a new qemu-spice metapackage: * [openSUSE] rpm: normalize hostname, for reproducible builds (#44) * [openSUSE] rpm: new subpackage, for SPICE ==== rebootmgr ==== Version update (2.1 -> 2.2) - Update to version 2.2 - Make sure /run/reboot-needed get's deleted after a soft-reboot ==== ristretto ==== Version update (0.13.1 -> 0.13.2) Subpackages: ristretto-lang - Update to version 0.13.2 * Update copyright year * Fix duplicate mnemonic in File menu * image_viewer: Add missing sanity check * Fix criticals about unset GIO attributes * viewer: Fix possible crash when closing while an image is loading * Ensure that file manager proxy creation is non-blocking * Add icons at missing sizes, clean up SVG metadata * Translation Updates ==== rp-pppoe ==== - Removed rcpppoe and rcpppoe-server rudiments. ==== rpm ==== Version update (4.19.1 -> 4.19.1.1) Subpackages: librpmbuild10 - update to rpm-4.19.1.1 * don't warn about missing user/group on skipped files * make user/group lookup caching thread-safe * fix regression in Lua scriptlet runaway child detection * restore readline support as an explicit option - refreshed patches: * rpmqpack.diff - fix %_host not containing the abi suffix on arm [bnc#1219627] updated patch: canongnu.diff - Need to mention the changed patches for the python-setuptools to cmake migration: * Drop python_setup.diff * Add cmake_python_version.diff ==== selinux-policy ==== Version update (20240116 -> 20240205) Subpackages: selinux-policy-targeted - Update to version 20240205: * Allow gpg manage rpm cache * Allow login_userdomain name_bind to howl and xmsg udp ports * Allow rules for confined users logged in plasma * Label /dev/iommu with iommu_device_t * Remove duplicate file context entries in /run * Dontaudit getty and plymouth the checkpoint_restore capability * Allow su domains write login records * Revert "Allow su domains write login records" * Allow login_userdomain delete session dbusd tmp socket files * Allow unix dgram sendto between exim processes * Allow su domains write login records * Allow smbd_t to watch user_home_dir_t if samba_enable_home_dirs is on * Allow chronyd-restricted read chronyd key files * Allow conntrackd_t to use bpf capability2 * Allow systemd-networkd manage its runtime socket files * Allow init_t nnp domain transition to colord_t * Allow polkit status systemd services * nova: Fix duplicate declarations * Allow httpd work with PrivateTmp * Add interfaces for watching and reading ifconfig_var_run_t * Allow collectd read raw fixed disk device * Allow collectd read udev pid files * Set correct label on /etc/pki/pki-tomcat/kra * Allow systemd domains watch system dbus pid socket files * Allow certmonger read network sysctls * Allow mdadm list stratisd data directories * Allow syslog to run unconfined scripts conditionally * Allow syslogd_t nnp_transition to syslogd_unconfined_script_t * Allow qatlib set attributes of vfio device files * Allow systemd-sleep set attributes of efivarfs files * Allow samba-dcerpcd read public files * Allow spamd_update_t the sys_ptrace capability in user namespace * Allow bluetooth devices work with alsa * Allow alsa get attributes filesystems with extended attributes * Allow hypervkvp_t write access to NetworkManager_etc_rw_t * Add interface for write-only access to NetworkManager rw conf * Allow systemd-sleep send a message to syslog over a unix dgram socket * Allow init create and use netlink netfilter socket * Allow qatlib load kernel modules * Allow qatlib run lspci * Allow qatlib manage its private runtime socket files * Allow qatlib read/write vfio devices * Label /etc/redis.conf with redis_conf_t * Remove the lockdown-class rules from the policy * Allow init read all non-security socket files * Replace redundant dnsmasq pattern macros * Remove unneeded symlink perms in dnsmasq.if * Add additions to dnsmasq interface * Allow nvme_stas_t create and use netlink kobject uevent socket * Allow collectd connect to statsd port * Allow keepalived_t to use sys_ptrace of cap_userns * Allow dovecot_auth_t connect to postgresql using UNIX socket * Make named_zone_t and named_var_run_t a part of the mountpoint attribute * Allow sysadm execute traceroute in sysadm_t domain using sudo * Allow sysadm execute tcpdump in sysadm_t domain using sudo * Allow opafm search nfs directories * Add support for syslogd unconfined scripts * Allow gpsd use /dev/gnss devices * Allow gpg read rpm cache * Allow virtqemud additional permissions * Allow virtqemud manage its private lock files * Allow virtqemud use the io_uring api * Allow ddclient send e-mail notifications * Allow postfix_master_t map postfix data files * Allow init create and use vsock sockets * Allow thumb_t append to init unix domain stream sockets * Label /dev/vas with vas_device_t * Create interface selinux_watch_config and add it to SELinux users * Update cifs interfaces to include fs_search_auto_mountpoints() * Allow sudodomain read var auth files * Allow spamd_update_t read hardware state information * Allow virtnetworkd domain transition on tc command execution * Allow sendmail MTA connect to sendmail LDA * Allow auditd read all domains process state * Allow rsync read network sysctls * Add dhcpcd bpf capability to run bpf programs * Dontaudit systemd-hwdb dac_override capability * Allow systemd-sleep create efivarfs files * Allow map xserver_tmpfs_t files when xserver_clients_write_xshm is on * Allow graphical applications work in Wayland * Allow kdump work with PrivateTmp * Allow dovecot-auth work with PrivateTmp * Allow nfsd get attributes of all filesystems * Allow unconfined_domain_type use io_uring cmd on domain * ci: Only run Rawhide revdeps tests on the rawhide branch * Label /var/run/auditd.state as auditd_var_run_t * Allow fido-device-onboard (FDO) read the crack database * Allow ip an explicit domain transition to other domains * Label /usr/libexec/selinux/selinux-autorelabel with semanage_exec_t * Allow winbind_rpcd_t processes access when samba_export_all_* is on * Enable NetworkManager and dhclient to use initramfs-configured DHCP connection * Allow ntp to bind and connect to ntske port. ==== sendmail ==== Version update (8.17.2 -> 8.18.1) Subpackages: libmilter1_0 - Update to version sendmail 8.18.1 2024/01/31 * sendmail is now stricter in following the RFCs and rejects some invalid input with respect to line endings and pipelining: - Prevent transaction stuffing by ensuring SMTP clients wait for the HELO/EHLO and DATA response before sending further SMTP commands. This can be disabled using the new srv_features option 'F'. Issue reported by Yepeng Pan and Christian Rossow from CISPA Helmholtz Center for Information Security. - Accept only CRLF . CRLF as end of an SMTP message as required by the RFCs, which can disabled by the new srv_features option 'O'. - Do not accept a CR or LF except in the combination CRLF (as required by the RFCs). These checks can be disabled by the new srv_features options 'U' and 'G', respectively. In this case it is suggested to use 'u2' and 'g2' instead so the server replaces offending bare CR or bare LF with a space. It is recommended to only turn these protections off for trusted networks due to the potential for abuse. * Full DANE support is available if OpenSSL versions 1.1.1 or 3.x are used, i.e., TLSA RR 2-x-y and 3-x-y are supported as required by RFC 7672. * OpenSSL version 3.0.x is supported. Note: OpenSSL 3 loads by default an openssl.cnf file from a location specified in the library which may cause unwanted behaviour in sendmail. Hence sendmail sets the environment variable OPENSSL_CONF to /etc/mail/sendmail.ossl to override the default. The file name can be changed by defining confOPENSSL_CNF in the mc file; using an empty value prevents setting OPENSSL_CONF. Note: referring to a file which does not exist does not cause an an error. * Two new values have been added for {verify}: "DANE_TEMP": DANE verification failed temporarily. "DANE_NOTLS": DANE was required but STARTTLS was not offered by the server. The default rules return a temporary error for these cases, so delivery is not attempted. * If the TLS setup code in the client fails and DANE requirements exist then {verify} will be set to "DANE_TEMP" thus preventing delivery by default. * DANE related logging has been slightly changed for clarification: "DANE configured in DNS but no STARTTLS available" changed to "DANE configured in DNS but STARTTLS not offered" * When the compile time option USE_EAI is enabled, vacation could fail to respond when it should (the code change in 8.17.2 was incomplete). Problem reported by Alex Hautequest. * If SMTPUTF8 BODY=7BIT are used as parameters for the MAIL command the parsing of UTF8 addresses could fail (USE_EAI). * If a reply to a previous RCPT was received while sending another RCPT in pipelining mode then parts of the reply could have been assigned to the wrong RCPT. * New DontBlameSendmail option CertOwner to relax requirement for certificate public and private key ownership. Based on suggestion from Marius Strobl of the FreeBSD project. * clt_features was not checked for connections via Unix domain sockets. * CONFIG: FEATURE(`enhdnsbl') did not handle multiple replies from DNS lookups thus potentially causing random "false negatives". Note: the fix creates an incompatibility: the arguments must not have a trailing dot anymore because the -a. option has been removed (as it only applies to the entire result, not individual values). * CONFIG: New FEATURE(`fips3') for basic FIPS support in OpenSSL 3. * VACATION: Add support for Return-Path header to set sender to match OpenBSD and NetBSD functionality. * VACATION: Honor RFC3834 and avoid an auto-reply if 'Auto-Submitted: no' is found in the headers to match OpenBSD and NetBSD functionality. * VACATION: Avoid an auto-reply if a 'List-Id:' is found in the headers to match OpenBSD functionality. * VACATION: Add support for $SUBJECT in .vacation.msg which is replaced with the first line of the subject of the original message to match OpenBSD and NetBSD functionality. * New Files: cf/feature/fips3.m4 devtools/OS/Darwin.23.x - This release fixes CVE-2023-51765 (bsc#1218351) - Port and rename patch sendmail-8.17.2.dif which is now sendmail-8.18.1.dif ==== shim ==== - Limit the requirement of fde-tpm-helper-macros to the distro with suse_version 1600 and above (bsc#1219460) ==== spectacle ==== - Drop meanwhile unneeeded BuildReqs on kColorPicker and kImageAnnotator ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - Drop python3-pefile dependency from the experimental package. MicroOs is fond of the experimental stuff but OTOH it doesn't ship python3. Let's drop the dependency for now, users of ukify are invited to install python3-pe manually. - Move systemd-reboot.service from udev to the main package as this service is useful in containers. ==== transmission ==== Subpackages: transmission-common transmission-gtk - Add correct creation of the transmission user/group (needed by the latest RPM 4.19). - Remove now useless Provides in the daemon subpackage. ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Handle case where vm-install no longer exists on the host. This is related to bsc#1219133. virt-install.rb ==== webkit2gtk3 ==== Version update (2.42.4 -> 2.42.5) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.42.5 (boo#1219604): + Fix webkit_web_context_allow_tls_certificate_for_host to handle IPv6 URIs produced by SoupURI. + Ignore stops with offset zero before last one when rendering gradients with cairo. + Write bwrapinfo.json to disk for xdg-desktop-portal. + Fix gamepads detection by correctly handling focused window in GTK4. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213. - Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream. - Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86 architectures. ==== webkit2gtk3-soup2 ==== Version update (2.42.4 -> 2.42.5) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.42.5 (boo#1219604): + Fix webkit_web_context_allow_tls_certificate_for_host to handle IPv6 URIs produced by SoupURI. + Ignore stops with offset zero before last one when rendering gradients with cairo. + Write bwrapinfo.json to disk for xdg-desktop-portal. + Fix gamepads detection by correctly handling focused window in GTK4. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213. - Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream. - Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86 architectures. ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio - Add patch to only enable bluetooth when audio support is enabled by installing wireplumber-audio (bsc#1219411): * fix-bsc1219411.patch ==== xfce4-screenshooter ==== Version update (1.10.4 -> 1.10.5) Subpackages: xfce4-screenshooter-lang xfce4-screenshooter-plugin - Update to 1.10.5 * Add imgur support as custom action (!51) * Translation Updates - Recommend curl, jq and zenity for the new script imgur.sh ==== xkbcomp ==== Version update (1.4.6 -> 1.4.7) - update to 1.4.7 * This release mainly focuses on code cleanup and improving maintainability and making static analysis work better on this code base. It also fixes a bug that could cause build failures with gcc when the -ftracer option was used. ==== xprop ==== Version update (1.2.6 -> 1.2.7) - Update to version 1.2.7 * This release fixes a failure to build with C23 compilers. ==== yast2-installation ==== Version update (5.0.5 -> 5.0.6) - Restore the selected products after reloading the package manager, properly install all products for new modules and extensions when upgrading from SLE12 (bsc#1218391) - 5.0.6 ==== yast2-network ==== Version update (5.0.1 -> 5.0.2) - Consider firmware configured interfaces as non bridgeable (bsc#1218595). - 5.0.2 ==== yast2-trans ==== Version update (84.87.20240126.9c7185e3f6 -> 84.87.20240205.897f2593b3) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240205.897f2593b3: * New POT for text domain 'control'. * Translated using Weblate (Russian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * Translated using Weblate (Georgian) * New POT for text domain 'installation'.

1 0

New Arm Tumbleweed snapshot 20240205 released!
by Guillaume Gardet 08 Feb '24

08 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 389-ds (2.4.0~git126.5936946 -> 3.0.1~git1.1f95b57) AppStream (1.0.0 -> 1.0.1) MozillaFirefox alsa (1.2.10 -> 1.2.11) alsa-ucm-conf (1.2.10 -> 1.2.11) alsa-utils (1.2.10 -> 1.2.11) crypto-policies cups cups-filters (1.28.15 -> 1.28.17) drkonqi5 emacs (29.1 -> 29.2) ffmpeg-4 glibc (2.38 -> 2.39) gnome-remote-desktop gstreamer (1.22.8 -> 1.22.9) gstreamer-plugins-bad (1.22.8 -> 1.22.9) gstreamer-plugins-base (1.22.8 -> 1.22.9) gstreamer-plugins-good (1.22.8 -> 1.22.9) gstreamer-plugins-libav (1.22.8 -> 1.22.9) gstreamer-plugins-ugly (1.22.8 -> 1.22.9) inxi (3.3.31 -> 3.3.32) iproute2 (6.6 -> 6.7) kernel-firmware (20240126 -> 20240201) kio kio-extras5 ksystemstats5 kwin5 libguestfs libksysguard5 libusb-1_0 (1.0.26 -> 1.0.27) libzio (1.08 -> 1.09) mutter netpbm (11.2.0 -> 11.5.2) pam pam-full-src parted (3.5 -> 3.6) perl-gettext pipewire (1.0.1 -> 1.0.2) plasma5-addons plasma5-workspace pragha python-Twisted python-jmespath python-pip python-pytz (2023.3.post1 -> 2023.4) python-rpm python-setuptools (69.0.2 -> 69.0.3) salt sddm sendmail shim (15.7 -> 15.8) strace systemd-presets-common-SUSE timezone (2023d -> 2024a) timezone-java (2023d -> 2024a) transmission virt-v2v vlc wicked xdg-utils xen (4.18.0_04 -> 4.18.0_06) === Details === ==== 389-ds ==== Version update (2.4.0~git126.5936946 -> 3.0.1~git1.1f95b57) Subpackages: lib389 libsvrcore0 - Update to version 3.0.1~git1.1f95b57: * Issue 6061 - Certificate lifetime displayed as NaN * Bump version to 3.0.1 * Issue 6043, 6044 - Enhance Rust and JS bundling and add SPDX licenses for both (#6045) * Issue 3555 - Remove audit-ci from dependencies (#6056) * Issue 6052 - Paged results test sets hostname to `localhost` on test collection * Issue 6051 - Drop unused pytest markers * Issue 6049 - lmdb - changelog is wrongly recreated by reindex task (#6050) * Issue 6047 - Add a check for tagged commits * Issue 6041 - dscreate ds-root - accepts relative path (#6042) * Switch default backend to lmdb and bump version to 3.0 (#6013) * Issue 6032 - Replication broken after backup restore (#6035) * Issue 6037 - Server crash at startup in vlvIndex_delete (#6038) * Issue 6034 - Change replica_id from str to int ==== AppStream ==== Version update (1.0.0 -> 1.0.1) Subpackages: libAppStreamQt5-3 libappstream5 - Update to 1.0.1 Bugfixes: * Fix lib name for Qt5 link target * meson: Pass -D_DARWIN_C_SOURCE on darwin * Fix macOS build * stemmer: Resolve potential issue where stemmer may never be initialized * cli: Don't fail what-provides if components were found * Fix query element order for what-provides queries * validator: Demote developer-name-tag-deprecated to info severity for now * content-rating: Fix missing or wrong value descriptions for rating IDs * curl: Add transfer speed timeouts for HTTP downloads * curl: Retry operations on potentially transient errors Miscellaneous: * validator: Improve hint for content-attribute-value-invalid * Allow building without zstd temporarily - Drop patches, merged upstream: * 0001-validator-Demote-developer-name-tag-deprecated-to-in.patch * 0001-content-rating-Fix-missing-or-wrong-value-descriptio.patch * 0001-Fix-lib-name-for-Qt5-link-target.patch - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== MozillaFirefox ==== - Recommend libfido2-udev on codestreams that exist, in order to try to get security keys (e.g. Yubikeys) work out of the box. (bsc#1184272) ==== alsa ==== Version update (1.2.10 -> 1.2.11) Subpackages: libasound2 libatopology2 - Updated to alsa-lib 1.2.11: * auto-tools fixes, versioned symbol fixes * support dB TLVs for single controls * various PCM updates, including subformat extensions * UMP and sequencer API fixes For details, see: https://www.alsa-project.org/wiki/Changes_v1.2.10_v1.2.11#alsa-lib - Dropped obsoleted patches: 0001-control.h-Fix-ump-header-file-detection.patch 0002-global.h-move-__STRING-macro-outside-PIC-ifdef-block.patch 0003-pcm-Fix-segfault-with-32bit-libs.patch 0004-reshuffle-included-files-to-include-config.h-as-firs.patch 0005-seq-Fix-typos-in-symbol-version-definitions.patch 0006-seq-Fix-invalid-sanity-check-in-snd_seq_set_input_bu.patch 0007-mixer-simple-Support-dB-TLVs-for-CTL_SINGLE-controls.patch 0008-seq-Clear-UMP-event-flag-for-legacy-apps.patch 0009-seq-Simplify-snd_seq_extract_output.patch 0010-seq-Check-protocol-compatibility-with-the-current-ve.patch ==== alsa-ucm-conf ==== Version update (1.2.10 -> 1.2.11) - Update to version 1.2.11: * Qualcomm, Mediatek, SOF soundwire, and various USB-audio profiles For details, see: https://www.alsa-project.org/wiki/Changes_v1.2.10_v1.2.11#alsa-ucm-conf - Drop obsoleted patch: 0001-SplitPCM-Device-argument-may-not-be-set.patch ==== alsa-utils ==== Version update (1.2.10 -> 1.2.11) - Update to alsa-utils 1.2.11: * alsactl buffer overflow fix * alsatplg updates, NHLT ACPI parser updates * use smaller periods for speaker-test * add bandwidth-limited pink noise for speaker-test * aplay updates, including subformat extensions * compile warning fixes For details, see: https://www.alsa-project.org/wiki/Changes_v1.2.10_v1.2.11#alsa-utils - Drop obsoleted patches: 0001-axfer-use-ATTRIBUTE_UNUSED-instead-remove-argument-n.patch 0002-amidi-use-ATTRIBUTE_UNUSED-instead-remove-argument-n.patch 0003-alsaloop-use-ATTRIBUTE_UNUSED-instead-remove-argumen.patch 0004-bat-use-ATTRIBUTE_UNUSED-instead-remove-argument-nam.patch 0005-seq-use-ATTRIBUTE_UNUSED-instead-remove-argument-nam.patch 0006-alsaucm-use-ATTRIBUTE_UNUSED-instead-remove-argument.patch 0007-topology-use-ATTRIBUTE_UNUSED-instead-remove-argumen.patch 0008-topology-include-locale.h.patch 0009-nhlt-dmic-info.c-include-sys-types.h.patch 0010-topology-pre-processor-Add-support-for-enum-controls.patch 0011-configure.ac-fix-UMP-support-detection.patch 0012-bat-really-skip-analysis-of-the-first-period-and-upd.patch 0013-topology-add-include-for-ENABLE_NLS-on-musl.patch 0014-nhlt-use-stdint.h-types.patch 0015-Revert-nhlt-dmic-info.c-include-sys-types.h.patch 0016-aplay-use-stdint.h-types-instead-u_int-u_short-u_cha.patch 0017-alsa-restore.rules-use-devnode-instead-number-atribu.patch 0018-nhlt-Revert-SSP_ANALOG-device_type-field.patch 0019-alsactl-fix-potential-buffer-overwrite.patch 0020-aplay-fix-buffer-overflow-and-tainted-format-string.patch 0021-misc-fix-incorrect-usages-of-strerror.patch 0022-aplay-Add-option-for-specifying-subformat.patch 0023-aplay-allow-to-compile-with-older-alsa-lib-subformat.patch 0024-aplay-log-pcm-status-before-reporting-a-fatal-error.patch 0025-aplay-enable-timestamps-by-default.patch 0026-aplay-status-dumps-are-called-only-in-verbose-mode.patch 0027-aplaymidi-Set-event-completely-for-tempo-event.patch ==== crypto-policies ==== Subpackages: crypto-policies-scripts - avoid the cycle rpm/cmake/crypto-policies/python-rpm-macros: we only need python3-base here, we don't need the python macros as no module is being built ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - Removed outdated ntadmin stuff from cups.spec (boo#1219503) ==== cups-filters ==== Version update (1.28.15 -> 1.28.17) - Removed outdated and obsoleted "Requires: cups > 1.5.4" which was used to require a sufficient CUPS version at times when also CUPS <= 1.5.4 was available but it was not meant to require CUPS (boo#1216560) - Version upgrade to 1.28.17 See https://github.com/OpenPrinting/cups-filters/releases Bug fix release, to more reliably discover all printer capablities from driverless printers, especially borderless printing, and to preferably use Apple Raster instead of PWG Raster or PCLM. * libcupsfilters: In PPD generator create only one *cupsFilter2: line for raster. Only use the most desirable/reliable format, usually Apple Raster (Issue #498). * libcupsfilters: In get_printer_attributes() poll media-col-database separately if needed. On some printers one gets media-col-database only this way. Often it reveals important functionality, like for example borderless printing (Issue #492). * libcupsfilters: Let PPD generator also parse media-col-ready IPP attribute. media-col-ready lists the loaded media, in contrary to media-ready, as list of complete descriptions of the media (media-col data structure). This often lists also variants like borderless (it is the same physical paper). Especially useful when media-col-database is not available (Issue #492). * libcupsfilters: In generate_sizes() consider all margin alternatives. When generating the PPD file for a driverless printer, and in the media-{left,right,top,bottom}-margin-supported printer IPP attributes there was more than 1 value, the first value (which often was the 0 for borderless printing) was not considered, leaving the borderless functionality of many printers undiscovered (Issue #492). Issues are those at https://github.com/OpenPrinting/cups-filters/issues - Version upgrade to 1.28.16 See https://github.com/OpenPrinting/cups-filters/releases Bug fix release, to make images be printed in their original size with "print-scaling=none" and to not use deprecated data types for reading TIFF images. * imagetoraster, imagetopdf, libcupsfilters: Added support for reading the resolution of an image from its EXIF data when loading it. This way we get the image reproduced in its original size with "print-scaling=none" (Issue #362). * libcupsfilters: Replaced deprecated data types uint16 and uint32. The function to read TIFF image files via libtiff in cupsfilters/image-tiff.c uses the deprecated types uint16 and uint32. The replacements for these types are uint16_t and uint32_t. Issues are those at https://github.com/OpenPrinting/cups-filters/issues ==== drkonqi5 ==== Subpackages: drkonqi5-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== emacs ==== Version update (29.1 -> 29.2) Subpackages: emacs-el emacs-eln emacs-info emacs-nox emacs-x11 etags - Update to GNU Emacs version 29.2 * Startup Changes in Emacs 29.2 On GNU/Linux, Emacs is now the default application for 'org-protocol'. Org mode provides a way to quickly capture bookmarks, notes, and links using 'emacsclient': emacsclient "org-protocol://store-link?url=URL&title=TITLE" * This is a bug-fix release with no new features. * Changes in Specialized Modes and Packages in Emacs 29.2 - Tramp New user option 'tramp-show-ad-hoc-proxies'. When non-nil, ad-hoc definitions are kept in remote file names instead of showing the shortcuts. * Incompatible Lisp Changes in Emacs 29.2 'with-sqlite-transaction' rolls back changes if its BODY fails. If the BODY of the macro signals an error, or committing the results of the transaction fails, the changes will now be rolled back. - Port patches mainly by correcting hunk offsets * emacs-24.1-ps-mule.patch * emacs-24.4-ps-bdf.patch * emacs-25.2-ImageMagick7.patch * emacs-27.1-Xauthority4server.patch * emacs-27.1-pdftex.patch * emacs-29.1.dif * pdump.patch ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - drop support for libmfx, which is no longer supported upstream at all (boo#1219494) ==== glibc ==== Version update (2.38 -> 2.39) Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - Update to glibc 2.39 * A new tunable, glibc.cpu.plt_rewrite, can be used to enable PLT rewrite on x86-64 * Sync with Linux kernel 6.6 shadow stack interface * struct statvfs now has an f_type member, equal to the f_type statfs member * On Linux, the functions posix_spawnattr_getcgroup_np and posix_spawnattr_setcgroup_np have been added, along with the POSIX_SPAWN_SETCGROUP flag * On Linux, the pidfd_spawn and pidfd_spawp functions have been added * On Linux, the pidfd_getpid function has been added * scanf-family functions now support the wN format length modifiers for arguments pointing to types intN_t, int_leastN_t, uintN_t or uint_leastN_t * A new tunable, glibc.mem.decorate_maps, can be used to add additional information on underlying memory allocated by the glibc * The <stdbit.h> header has been added from ISO C2X * On AArch64 new symbols were added to libmvec * The ldconfig program now skips file names containing ';' or ending in ".dpkg.tmp" or ".dpkg.new" * The dynamic linker calls the malloc and free functions in more cases during TLS access if a shared object with dynamic TLS is loaded and unloaded - aarch64-rawmemchr-unwind.patch, cache-amd-legacy.patch, cache-intel-shared.patch, call-init-proxy-objects.patch, fstat-implementation.patch, gb18030-2022.patch, getaddrinfo-eai-memory.patch, getaddrinfo-memory-leak.patch, getcanonname-use-after-free.patch, iconv-error-verbosity.patch, intl-c-utf-8-like-c-locale.patch, ldconfig-process-elf-file.patch, libio-io-vtables.patch, libio-wdo-write.patch, no-aaaa-read-overflow.patch, posix-memalign-fragmentation.patch, ppc64-flock-fob64.patch, qsort-invalid-cmp.patch, sem-open-o-creat.patch, setxid-propagate-glibc-tunables.patch, syslog-buffer-overflow.patch, tls-modid-reuse.patch, tunables-string-parsing.patch: Removed - syslog-buffer-overflow.patch: syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246, CVE-2023-6779, CVE-2023-6780, bsc#1218863, bsc#1218867, bsc#1218868) - qsort-invalid-cmp.patch: qsort: handle degenerated compare function (bsc#1218866) - Change minimum GCC to 13 - Split off libnsl.so.1 into a separate package ==== gnome-remote-desktop ==== - Explict require higher version of gcc on SLE/Leap. ==== gstreamer ==== Version update (1.22.8 -> 1.22.9) Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.22.9: + Highlighted bugfixes in 1.22.9 - More Security fixes for the AV1 video codec parser - va: fixes for Mesa Gallium drivers in Mesa versions older than v23.2 - v4l2src: Consider framerate during caps selection - v4l2codec: decoder fixes - rtspsrc: multicast fixes - camerabin viewfinder fixes - various bug fixes, build fixes, memory leak fixes, and other stability and reliability improvements + gstreamer - aggregator: fix use-after-free in queries processing - multiqueue: Ignore queue fullness for most events - Rebase reduce-required-meson.patch ==== gstreamer-plugins-bad ==== Version update (1.22.8 -> 1.22.9) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.22.9: + av1parser: Fix potential stack overflow during tile list parsing (CVE-2024-0444, bsc#1219453, ZDI-CAN-22300) + camerabin: Correctly relink viewfinderbin_queue + GstPlay: Fix error details parsing + h264decoder: Handle malformed avc/avc3 packets + h264decoder: h265decoder: Align with wraparound fix + vp8decoder: vp9decoder: av1decoder: mpeg2decoder: Fix multiplication wraparound + vah264enc/vah264dec issues after recent upgrade to 1.22.8 from 1.22.7 + va: fixes for Mesa Gallium drivers in Mesa versions older than v23.2 + vp9parse: Fix critical warning during caps negotiation - Rebase reduce-required-meson.patch ==== gstreamer-plugins-base ==== Version update (1.22.8 -> 1.22.9) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.22.9: + audiobasesink: Don't wait on gap events + audioconvert: change gst_audio_convert_get_unit_size() log levels + glcolorconvert: Correct transform_caps direction + gloverlay: Apply updated overlay coordinates correctly + videorate: keep pool if max_buffers is unlimited - Rebase reduce-required-meson.patch ==== gstreamer-plugins-good ==== Version update (1.22.8 -> 1.22.9) Subpackages: gstreamer-plugins-good-extra gstreamer-plugins-good-gtk gstreamer-plugins-good-jack gstreamer-plugins-good-qtqml - Update to version 1.22.9: + rtpsession: Only warn once if configured latency needs to be known but isn't yet + rtphdrext-clientaudiolevel: Fix level value being written by the extension + rtspsrc: set multicast-iface on udpsinks and fix RTCP sink TTL + v4l2object: clear old fds when initializing poll during opening v4l2 device + v4l2src: Consider framerate during caps selection + vpxdec: Use appropriate domain and code for decoding errors - Rebase reduce-required-meson.patch ==== gstreamer-plugins-libav ==== Version update (1.22.8 -> 1.22.9) - Update to version 1.22.9: + No changes, stable bump only. - Rebase reduce-required-meson.patch. ==== gstreamer-plugins-ugly ==== Version update (1.22.8 -> 1.22.9) - Update to version 1.22.9: + No changes, stable bump only. - Rebase reduce-required-meson.patch. ==== inxi ==== Version update (3.3.31 -> 3.3.32) - - Updated to version 3.3.32: + /usr/share/doc/packages/inxi/inxi.changelog. ==== iproute2 ==== Version update (6.6 -> 6.7) Subpackages: iproute2-bash-completion - Update to release 6.7 * devlink: Support setting port function ipsec_crypto cap and ipsec_packet cap * iplink: bridge: Add support for bridge FDB learning limits * bridge: fdb: support match on source VNI, nexthop ID, destination VNI, destination port, destination IP address and [no]router flag in the flush command * bridge: mdb: Add get support ==== kernel-firmware ==== Version update (20240126 -> 20240201) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - More update on version 20240201 (git commit 3677750467cb): * linux-firmware: wilc1000: update WILC1000 firmware to v16.1.2 * rtl_nic: add firmware for RTL8126A (bsc#1217417) * qcom: Add Audio firmware for SM8550 HDK - Update to version 20240201 (git commit 1b24d7d3379b): * linux-firmware: intel: Add IPU6 firmware binaries * ath11k: WCN6855 hw2.0: update to WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.37 * Revert "amdgpu: DMCUB updates for various AMDGPU ASICs" * amdgpu: update SMU 13.0.0 firmware * amdgpu: update PSP 13.0.0 firmware * amdgpu: update GC 11.0.0 firmware * brcm: Add brcmfmac43430-sdio.xxx.txt nvram for the Chuwi Hi8 (CWI509) tablet * amdgpu: DMCUB updates for various AMDGPU ASICs ==== kio ==== Subpackages: kio-core - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== kio-extras5 ==== Subpackages: libkioarchive5 - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== ksystemstats5 ==== - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== kwin5 ==== - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== libguestfs ==== Subpackages: libguestfs-appliance libguestfs-xfs libguestfs0 - BuildRequire pkgconfig(libzstd) additionaly to zstd: we need the devel package. In the past, it was pulled in by indirect deps. ==== libksysguard5 ==== Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-plugins - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== libusb-1_0 ==== Version update (1.0.26 -> 1.0.27) - Update to version 1.0.27 * New libusb_init_context API to replace libusb_init * New libusb_get_max_alt_packet_size API * New libusb_get_platform_descriptor API (BOS) * Allow setting log callback with libusb_set_option/libusb_init_context * New WebAssembly + WebUSB backend using Emscripten * Fix regression in libusb_set_interface_alt_setting * Fix sync transfer completion race and use-after-free * Fix hotplug exit ordering * Linux: NO_DEVICE_DISCOVERY option set per context - added signature and keyring. (key received via keyserver) ==== libzio ==== Version update (1.08 -> 1.09) - Version 1.09: Allow to create files without suffix as well ==== mutter ==== - Drop mutter-SLE-bsc984738-grab-display.patch: It blocks non-CSD apps with GNOME 45, and the latest LTS Oracle Installer works fine without it, the original bug is not a problem (bsc#1218935). ==== netpbm ==== Version update (11.2.0 -> 11.5.2) Subpackages: libnetpbm11 - version update to 11.5.2 Release 11.05.02 + ppmtowinicon: fix array overrun with 4 and 8 bits per pixel. Release 11.05.01 Fix typo in ppmforge test case. Release 11.05.00 + pnmpad: Add -color, -promote, -extend-edge, -detect-background . + pnmconvol: Restore ability of convolution matrix to be a pseudo-plain-PNM with samples that exceed the maxval. Lost in 10.30 (October 2005) because maxval-checking code was added to libnetpbm. (Was fixed in 10.47.08 in November 2010, but only in the 10.47 series). + pnmindex: Improve failure mode when -size or -across is zero. + pnmindex: Make -plain work. + pnmpad: fix behavior with -left, -right, and -width together or - top, -bottom, -height together: ignores -width where it should fail. Broken in Netpbm 10.72 (September 2015). + pamtosvg: fix "zero determinant" failure. Introduced in Netpbm 11.04 (September 2023). + pjtoppm: fix crash based on uninitialized variable. Introduced in Netpbm 11.04 (September 2023). + ppmtopcxl: fix incorrect output with > 256 colors. Always broken. (Program was added in primordial Netpbm in 1990). + pbmtext: fix buffer overrun with insanely large input. + picttoppm: fix buffer overrun with insanely wide input. + ppmtoxpm: fix incorrect output with insanely large number of colors. + pnmscalefixed: fix incorrect output with really big image and - pixels option. + ppmdither: fix buffer overrun with insanely large dithering matrix. + pnmpad: no longer accept old-style options (e.g. -t50). + libnetpbm: Add pm_feed_from_file, pm_accept_to_files, pm_accept_to_filestream Standard Input feeder, Output accepter for pm_system. + libnetpbm, programs that use color maps: fix buffer overrun with insanely deep images. + merge build: Fix 'pnmcat'. Introduced in Netpbm 11.00 (September 2023). Release 11.04.00 + pamaddnoise: add -salt. + pamaddnoise: reject options that aren't meaningful for the type of noise specified rather than just ignore them. + ppmtosixel: Add -7bit, so it works on more terminals, including xterms. Thanks Scott Pakin. + g3topbm: Add -correctlong + pnmtojpeg: minor improvement to error messages about bad files. + pammixmulti: Remove disclaimer of patent license. + pamstack: Fix bug: acts like -firstmaxval specified when it wasn't. Introduced in Netpbm 11.03 (June 2023). + pamstack: Fix -lcmmaxval: chooses wrong maxval. Always broken (-lcmmaxval was new in Netpbm 11.03 (June 2023)). + pamstack: Fail gracefully when total number of planes is too large for unsigned integer. Always broken (Pamstack was new in Netpbm 10.0 (June 2002). + pamtosvg: fix hang. + ppmfade: fix "file not found" crash for most fade modes. Introduced in Netpbm 10.98 (March 2022). + ppmfade: fix incorrect block mode fade. Always broken (ppmfade was new in Netpbm 8.4 (April 2000)). + pamaddnoise: fix very incorrect noise added for all types. Introduced in Netpbm 10.94 (March 2021). + ppmrough: fix buffer overrun. Always broken (Ppmrough was new in Netpbm 10.9 (September 2002). ppmrough: fix excessive roughness. Introduced in Netpbm 10.94 (March 2021). + pgmtexture: Fix buffer overflow with maxval > 255. Always broken. Maxvals > 255 were possible starting in Netpbm 9.0 (April 2000). + pgmtexture: Fix bug: ignores -d. Introduced in Netpbm 10.56 (September 2011). + xwdtopnm Fix spurious output with really wide/deep rows. + imgtoppm: Fix spurious output with really wide/deep rows. + pbmtopgm: Fix error message for excessive -width. + pbmtoxbm: Fix spurious output with really wide rows. + tifftopnm: Fix incorrect output with insanely wide/deep rows. + thinkjettopbm: Fix incorrect output with insanely wide rows. + ybmtopbm: Fix incorrect output with insanely wide rows. + pjtoppm: Fix incorrect output with insanely large number of rows. + library: add check of maxval for computable size. + Build: Include LDFLAGS in link of shared library. * Release 11.03.00 + pamstack: Add -firstmaxval, -lcmmaxval + pnmcolormap: make result independent of how system's qsort orders records with equal keys. Affects pnmquant. + pamtopng: fix typo in error message about -chroma option. + pamtopng, pnmtopng, pngtopam: fix error message when something fails in libpng. Always broken (the programs were new in Netpbm 8.1 (March 2000)). - modified patches % netpbm-gcc-warnings.patch (refreshed) % netpbm-security-code.patch (refreshed) ==== pam ==== - Enable pam_canonicalize_user.so ==== pam-full-src ==== - Enable pam_canonicalize_user.so ==== parted ==== Version update (3.5 -> 3.6) Subpackages: libparted-fs-resize0 libparted2 - update to version 3.6: - Support GPT partition attribute bit 63 as no_automount flag - Add type commands to set type-id on MS-DOS and type-uuid on GPT - Add swap flag support to the dasd disklabel - Add display of GPT disk and partition UUIDs in JSON output refreshed patches: - parted-mac.patch - libparted-dasd-implicit-partition-disk-flag.patch - tests-disable.patch removed patches: - direct-handling-of-partition-type-id-and-uuid.patch - type-command.patch - libparted-dasd-improve-lvm-raid-flag-handling.patch - libparted-dasd-add-swap-flag-handling-for-DASD-CDL.patch ==== perl-gettext ==== - Run testsuite with locale LANG=en_US.UTF. It fails otherwise with glibc 2.39 ==== pipewire ==== Version update (1.0.1 -> 1.0.2) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.2: * Highlights - Fix v4l2 enumeration with filter. This should fix negotiation in some GStreamer pipelines with capsfilter. Also probe for EXPBUF support before using it. - Fix max-latency property and Buffer param when dealing with small ALSA device buffers. This should fix stuttering with some AMD based soundcards. - More small cleanups an improvements. * Modules - Improve netjack2 channel positions. - Improve RAOP module state after suspend/resume. (#3778) - Avoid crash in some LV2 plugins by configuring the Atom ports. (#3815) * SPA - Bump libcamera requirements to 0.2.0. - Try to avoid unaligned load exceptions. (#3790) - Fix v4l2 enumeration with filter. (#1793) - Fix max-latency property and Buffer param when dealing with small ALSA device buffers. This should fix stuttering with some AMD based soundcards. (#3744,#3622) - Add a resync.ms option to node.driver to make it possible to resync fast to clock jumps. - Probe for EXPBUF support in v4l2 before using it. (#3821) * pulse-server - Also emit change events when the port list change. * Bluetooth - Log a more verbose explanation when other soundservers seem to be interfering with bluetooth. - Add quirks for Rockbox Brick. (#3786) - Add quirks for SoundCore mini2. (#2927) * JACK - Improve check for the running state of clients. (#3794) - Drop patches already included by upstream: * 0001-spa-libcamera-use-CameraConfigurationorientation.patch * 0002-spa-libcamera-bump-minimum-supported-version-to-0.2.0.patch ==== plasma5-addons ==== Subpackages: plasma5-addons-lang - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== pragha ==== Subpackages: pragha-lang pragha-plugins - Fix build for Leap 15.6 * Build with pkgconfig(gupnp-1.6) on 15.6 ==== python-Twisted ==== Subpackages: python311-Twisted python311-Twisted-tls - Add stop-using-3-arg-throw.patch: * Avoid 3-arg throw to fix a DeprecationWarning in Python 3.12. ==== python-jmespath ==== - switch to PEP517 / wheel build ==== python-pip ==== - Drop deprecated setup.py installmethod, bootstrap PEP517 with built-in pip instead - python3XX-pip-wheel can now be a regular subpackage - Drop obsolete python2 directives in specfile ==== python-pytz ==== Version update (2023.3.post1 -> 2023.4) - update to 2023.4: * Update olson to 2023d ==== python-rpm ==== - buildrequire setuptools ==== python-setuptools ==== Version update (69.0.2 -> 69.0.3) - update to 69.0.3: * Bugfixes - Retain valid names with underscores in egg_info. ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Prevent directory traversal when creating syndic cache directory on the master (CVE-2024-22231, bsc#1219430) - Prevent directory traversal attacks in the master's serve_file method (CVE-2024-22232, bsc#1219431) - Added: * fix-cve-2024-22231-and-cve-2024-22232-bsc-1219430-bs.patch ==== sddm ==== Subpackages: sddm-branding-openSUSE sddm-greeter-qt5 - Switch to the latest GCC version available in Leap for packages that can't build with the default compiler ==== sendmail ==== Subpackages: libmilter1_0 - Correct permisson files path to /usr/share/permissions/permissions.d/ (boo#1219339) - Fix file provides of openssl and timeout - Avoid error messages of chkstat as this tools does not accept slashes at the end of directory paths! - Move sendmails permissions files to /usr/share/permissions/ - Work on certificates usage of smart and relay host - Work on certificates for running sendmail ==== shim ==== Version update (15.7 -> 15.8) -- Update to version 15.8 - Various CVE fixes are already merged into this version mok: fix LogError() invocation (bsc#1215099,CVE-2023-40546) avoid incorrectly trusting HTTP headers (bsc#1215098,CVE-2023-40547) Fix integer overflow on SBAT section size on 32-bit system (bsc#1215100,CVE-2023-40548) Authenticode: verify that the signature header is in bounds (bsc#1215101,CVE-2023-40549) pe: Fix an out-of-bound read in verify_buffer_sbat() (bsc#1215102,CVE-2023-40550) pe-relocate: Fix bounds check for MZ binaries (bsc#1215103,CVE-2023-40551) - remove shim-Enable-the-NX-compatibility-flag-by-default.patch The codes in this patch are already existing in shim-15.8 The NX flag is disable which is same as the default value of shim-15.8, hence, not need to enable it by this patch now. - Patches (git log --oneline --reverse 15.7..15.8) 657b248 Make sbat_var.S parse right with buggy gcc/binutils 7c76425 Enable the NX compatibility flag by default. 89972ae CryptoPkg/BaseCryptLib: Fix buffer overflow issue in realloc wrapper c7b3051 pe: Align section size up to page size for mem attrs e4f40ae pe: Add IS_PAGE_ALIGNED macro f23883c Don't loop forever in load_certs() with buggy firmware 1f38cb3 Optionally allow to keep shim protocol installed 102a658 Drop invalid calls to `CRYPTO_set_mem_functions` aae3df0 test-sbat: Fix exit code cca3933 Block Debian grub binaries with SBAT < 4 cf59f34 Further improve load_certs() for non-compliant drivers/firmwares 0601f44 SBAT-related documents formatting and spelling 0640e13 Add a security contact email address in README.md 0bfc397 Work around malformed path delimiters in file paths from DHCP a8b0b60 pe: only process RelocDir->Size of reloc section f7a4338 Skip testing msleep() 549d346 Rename 'msecs' to 'usecs' to avoid potential confusion 908c388 Change type of fallback_verbose_wait from int to unsigned long 05eae92 Add SbatLevel_Variable.txt to document the various revocations 243f125 Use -Wno-unused-but-set-variable for Cryptlib and OpenSSL 89d25a1 Add a make rule for compile_commands.json 118ff87 Add gnu-stack notes f132655 test: Make our fake dprintf be a statement. be00279 Remove CentOS 7 test builds. 9964960 Split pe.c up even more. 569270d Test (and fix) ImageAddress() 61e9894 Verify signature before verifying sbat levels 1578b55 Add libFuzzer support for csv.c a0673e3 Fix a 1-byte memory leak in .sbat parsing. e246812 Add libFuzzer support to the .sbat parser. fd43eda Work around ImageAddress() usage mistake 1e985a3 Correctly free memory allocated in handle_image() dbbe3c8 mok: Avoid underflow in maximum variable size calculation 04111d4 Make some of the static analysis tools a little easier to run 7ba7440 compile_commands.json: remove stuff clang doesn't like 66e6579 CVE-2023-40546 mok: fix LogError() invocation f271826 Add primitives for overflow-checked arithmetic operations. 8372147 pe-relocate: Add a fuzzer for read_header() 5a5147d CVE-2023-40551: pe-relocate: Fix bounds check for MZ binaries e912071 pe-relocate: make read_header() use checked arithmetic operations. 93ce255 CVE-2023-40550 pe: Fix an out-of-bound read in verify_buffer_sbat() e7f5fdf pe-relocate: Ensure nothing else implements CVE-2023-40550 afdc503 CVE-2023-40549 Authenticode: verify that the signature header is in bounds. 96dccc2 CVE-2023-40548 Fix integer overflow on SBAT section size on 32-bit system dae82f6 Further mitigations against CVE-2023-40546 as a class ea0f9df Allow SbatLevel data from external binary b078ef2 Always clear SbatLevel when Secure Boot is disabled 7dfb687 BS Variables for bootmgr revocations a967c0e shim should not self revoke 577cedd Print message when refusing to apply SbatLevel e801b0d sbat revocations: check the full section name 0226b56 CVE-2023-40547 - avoid incorrectly trusting HTTP headers 6f0c8d2 Print errors when setting/clearing memory attrs 57c0eed Updated Revocations for January 2024 CVEs 49c6d95 Fix some minor ia32 build issues. be8ff7c post-process-pe: Don't set the NX_COMPAT flag by default after all. 13abd9f pe-relocate: Avoid __builtin_add_overflow() on GCC < 5 c46c975 Suppress "Failed to open <..>\revocations.efi" when file does not exist 30a4f37 Rename "previous" revocations to "automatic" 6f395c2 Build time selectable automatic SBATLevel revocations a23e2f0 netboot read_image() should not hardcode DEFAULT_LOADER 993a345 Try to load revocations.efi even if directory read fails 1770a03 gitmodules: use shim-15.8 for gnu-efi branch 5914984 (HEAD -> main, tag: latest-release, tag: 15.8, origin/main, origin/HEAD) Bump version to 15.8 ==== strace ==== - Enable SELinux Context Printing (--secontext). ==== systemd-presets-common-SUSE ==== - Split hcn-init.service to hcn-init-NetworkManager and hcn-init-wicked (bsc#1200731 ltc#198485 https://github.com/ibm-power-utilities/powerpc-utils/pull/84) Support both the old and new service to avoid complex version interdependency. ==== timezone ==== Version update (2023d -> 2024a) - Update to 2024a: * Kazakhstan unifies on UTC+5 beginning 2024-03-01 * Palestine springs forward a week later after Ramadan * zic no longer pretends to support indefinite-past DST * localtime no longer mishandles Ciudad JuÃ¡rez in 2422 ==== timezone-java ==== Version update (2023d -> 2024a) - Update to 2024a: * Kazakhstan unifies on UTC+5 beginning 2024-03-01 * Palestine springs forward a week later after Ramadan * zic no longer pretends to support indefinite-past DST * localtime no longer mishandles Ciudad JuÃ¡rez in 2422 - update to 2023d: * Ittoqqortoormiit, Greenland changes time zones on 2024-03-31. * Vostok, Antarctica changed time zones on 2023-12-18. * Casey, Antarctica changed time zones five times since 2020. * Code and data fixes for Palestine timestamps starting in 2072. * A new data file zonenow.tab for timestamps starting now. * Fix predictions for DST transitions in Palestine in 2072-2075, correcting a typo introduced in 2023a. * Vostok, Antarctica changed to +05 on 2023-12-18. It had been at +07 (not +06) for years. * Change data for Casey, Antarctica to agree with timeanddate.com, by adding five time zone changes since 2020. Casey is now at +08 instead of +11. * Much of Greenland, represented by America/Nuuk, changed its standard time from -03 to -02 on 2023-03-25, not on 2023-10-28. * localtime.c no longer mishandles TZif files that contain a single transition into a DST regime. Previously, it incorrectly assumed DST was in effect before the transition too. * tzselect no longer creates temporary files. * tzselect no longer mishandles the following: * Spaces and most other special characters in BUGEMAIL, PACKAGE, TZDIR, and VERSION. * TZ strings when using mawk 1.4.3, which mishandles regular expressions of the form /X{2,}/. * ISO 6709 coordinates when using an awk that lacks the GNU extension of newlines in -v option-arguments. * Non UTF-8 locales when using an iconv command that lacks the GNU //TRANSLIT extension. * zic no longer mishandles data for Palestine after the year 2075. ==== transmission ==== Subpackages: transmission-common transmission-gtk - Have transmission-daemon provide user(transmission) and group(transmission): the user/group are generated in the pre scriptlet using useradd/groupadd. ==== virt-v2v ==== Subpackages: virt-v2v-bash-completion - Relax the openssh requirement. Options passed to scp are known by openssh 8.4 - Move autoreconf from prep to build, to simplify quilt setup. ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-lang vlc-noX vlc-qt vlc-vdpau - drop support for libmfx, which is no longer supported upstream at all (boo#1219494) ==== wicked ==== Subpackages: wicked-service - ifreload: VLAN changes require device deletion (bsc#1218927) [+ 0009-ifreload-VLAN-changes-require-device-deletion-bsc-12.patch] - ifcheck: fix config changed check (bsc#1218926) [+ 0008-ifcheck-fix-config-changed-check-bsc-1218926.patch] - client: fix exit code for no-carrier status (bsc#1219265) [+ 0007-Fix-ifstatus-exit-code-for-NI_WICKED_ST_NO_CARRIER-s.patch] - dhcp6: omit the SO_REUSEPORT option (bsc#1215692) [+ 0006-dhcp6-omit-the-SO_REUSEPORT-option-bsc-1215692.patch] - duid: fix comment for v6time (https://github.com/openSUSE/wicked/pull/989) [+ 0005-duid-fix-comment-for-v6time.patch] - rtnl: fix peer address parsing for non ptp-interfaces (https://github.com/openSUSE/wicked/pull/987, https://github.com/openSUSE/wicked/pull/988) [+ 0003-rtnl-pass-ifname-in-newaddr-parsing-and-logging.patch] [+ 0004-rtnl-parse-peer-address-on-non-ptp-interfaces.patch] - system-updater: Parse updater format from XML configuration to ensure install calls can run. (https://github.com/openSUSE/wicked/pull/985) [+ 0002-system-updater-Parse-updater-format-from-XML-configu.patch] ==== xdg-utils ==== - Update to version 1.2.0+20240130: * xdg-icon-resource: unbreak syntax by removing stray grave accent (boo#1219420) ==== xen ==== Version update (4.18.0_04 -> 4.18.0_06) Subpackages: xen-libs xen-tools-domU - Upstream bug fixes (bsc#1027519) 6566fef3-x86-vLAPIC-x2APIC-derive-LDR-from-APIC-ID.patch 6569ad03-libxg-mem-leak-in-cpu-policy-get-set.patch 656ee5e1-x86emul-avoid-triggering-event-assertions.patch 656ee602-cpupool-adding-offline-CPU.patch 656ee6c3-domain_create-error-path.patch 6571ca95-fix-sched_move_domain.patch 6578598c-Arm-avoid-pointer-overflow-on-invalidate.patch 65842d5c-x86-AMD-extend-CPU-erratum-1474-fix.patch 65a7a0a4-x86-Intel-GPCC-setup.patch 65a9911a-VMX-IRQ-handling-for-EXIT_REASON_INIT.patch 65b27990-x86-p2m-pt-off-by-1-in-entry-check.patch 65b29e91-x86-ucode-stability-of-raw-policy-rescan.patch - bsc#1218851 - VUL-0: CVE-2023-46839: xen: phantom functions assigned to incorrect contexts (XSA-449) 65b8f961-PCI-fail-dev-assign-if-phantom-functions.patch - bsc#1219080 - VUL-0: CVE-2023-46840: xen: VT-d: Failure to quarantine devices in !HVM builds (XSA-450) 65b8f9ab-VT-d-else-vs-endif-misplacement.patch - Patches dropped / replaced by newer upstream versions xsa449.patch xsa450.patch - bsc#1219080 - VUL-0: CVE-2023-46840: xen: VT-d: Failure to quarantine devices in !HVM builds (XSA-450) xsa450.patch - bsc#1218851 - VUL-0: CVE-2023-46839: xen: phantom functions assigned to incorrect contexts (XSA-449) xsa449.patch

1 0

New Arm Tumbleweed snapshot 20240131 released!
by Guillaume Gardet 02 Feb '24

02 Feb '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cups (2.4.2 -> 2.4.7) curl (8.5.0 -> 8.6.0) fillup kexec-tools libbs2b libssh (0.10.5 -> 0.10.6) patterns-base permissions python-pygit2 (1.13.3 -> 1.14.0) python-rpm (4.18.0 -> 4.19.1) qt6-base rpm (4.18.0 -> 4.19.1) suse-module-tools (16.0.42 -> 16.0.43) vala-panel-appmenu virtiofsd (1.7.2 -> 1.10.1) vsftpd xz (5.4.5 -> 5.4.6) === Details === ==== cups ==== Version update (2.4.2 -> 2.4.7) Subpackages: cups-client cups-config libcups2 libcupsimage2 - Version upgrade to 2.4.7: See https://github.com/openprinting/cups/releases CUPS 2.4.7 is released to ship the fix for CVE-2023-4504 and several other changes, among them it is adding OpenSSL support for cupsHashData function and bug fixes. Detailed list: * CVE-2023-4504 - Fixed Heap-based buffer overflow when reading Postscript in PPD files * Added OpenSSL support for cupsHashData (Issue #762) * Fixed delays in lpd backend (Issue #741) * Fixed extensive logging in scheduler (Issue #604) * Fixed hanging of lpstat on IBM AIX (Issue #773) * Fixed hanging of lpstat on Solaris (Issue #156) * Fixed printing to stderr if we can't open cups-files.conf (Issue #777) * Fixed purging job files via cancel -x (Issue #742) * Fixed RFC 1179 port reserving behavior in LPD backend (Issue #743) * Fixed a bug in the PPD command interpretation code (Issue #768) Issues are those at https://github.com/OpenPrinting/cups/issues - Version upgrade to 2.4.6: See https://github.com/openprinting/cups/releases CUPS 2.4.6 is released to ship the fix for CVE-2023-34241 and two other bug fixes. Detailed list: * Fix linking error on old MacOS (Issue #715) * Fix printing multiple files on specific printers (Issue #643) * Fix use-after-free when logging warnings in case of failures in cupsdAcceptClient() (fixes CVE-2023-34241) Issues are those at https://github.com/OpenPrinting/cups/issues - Version upgrade to 2.4.5: See https://github.com/openprinting/cups/releases CUPS 2.4.5 is a hotfix release for a bug which corrupted locally saved certificates, which broke secured printing via TLS after the first print job. - Version upgrade to 2.4.4: See https://github.com/openprinting/cups/releases CUPS 2.4.4 release is created as a hotfix for segfault in cupsGetNamedDest(), when caller tries to find the default destination and the default destination is not set on the machine. - Version upgrade to 2.4.3: See https://github.com/openprinting/cups/releases CUPS 2.4.3 brings fix for CVE-2023-32324, several improvements and many bug fixes. CUPS now implements fallback for printers with broken firmware, which is not capable of answering to IPP request get-printer-attributes with all, media-col-database - this enables driverless support for bunch of printers which don't follow IPP Everywhere standard. Aside from the CVE fix the most important fixes are around color settings, printer application support fixes and OpenSSL support. Detailed list of changes: * Added a title with device uri for found network printers (Issues #402, #393) * Added new media sizes defined by IANA (Issues #501) * Added quirk for GoDEX label printers (Issue #440) * Fixed --enable-libtool-unsupported (Issue #394) * Fixed configuration on RISC-V machines (Issue #404) * Fixed the device_uri invalid pointer for driverless printers with .local hostname (Issue #419) * Fixed an OpenSSL crash bug (Issue #409) * Fixed a potential SNMP OID value overflow issue (Issue #431) * Fixed an OpenSSL certificate loading issue (Issue #465) * Fixed Brazilian Portuguese translations (Issue #288) * Fixed cupsd default keychain location when building with OpenSSL (Issue #529) * Fixed default color settings for CMYK printers as well (Issue #500) * Fixed duplicate PPD2IPP media-type names (Issue #688) * Fixed possible heap buffer overflow in _cups_strlcpy() (fixes CVE-2023-32324) * Fixed InputSlot heuristic for photo sizes smaller than 5x7" if there is no media-source in the request (Issue #569) * Fixed invalid memory access during generating IPP Everywhere queue (Issue #466) * Fixed lprm if no destination is provided (Issue #457) * Fixed memory leaks in create_local_bg_thread() (Issue #466) * Fixed media size tolerance in ippeveprinter (Issue #487) * Fixed passing command name without path into ippeveprinter (Issue #629) * Fixed saving strings file path in printers.conf (Issue #710) * Fixed TLS certificate generation bugs (Issue #652) * ippDeleteValues would not delete the last value (Issue #556) * Ignore some of IPP defaults if the application sends its PPD alternative (Issue #484) * Make Letter the default size in ippevepcl (Issue #543) * Now accessing Admin page in Web UI requires authentication (Issue #518) * Now look for default printer on network if needed (Issue #452) * Now we poll media-col-database separately if we fail at first (Issue #599) * Now report fax attributes and values as needed (Issue #459) * Now localize HTTP responses using the Content-Language value (Issue #426) * Raised file size limit for importing PPD via Web UI (Issue #433) * Raised maximum listen backlog size to INT MAX (Issue #626) * Update print-color-mode if the printer is modified ... changelog too long, skipping 14 lines ... see the above CUPS 2.4.3 changes ==== curl ==== Version update (8.5.0 -> 8.6.0) Subpackages: libcurl4 - Update to 8.6.0: [bsc#1219149, CVE-2024-0853] * Security fixes: - CVE-2024-0853: OCSP verification bypass with TLS session reuse * Changes: - add CURLE_TOO_LARGE, CURLINFO_QUEUE_TIME_T * Bugfixes: - altsvc: free 'as' when returning error - asyn-ares: with modern c-ares, use its default timeout - cf-socket: show errno in tcpkeepalive error messages - cmdline-opts: update availability for the *-ca-native options - configure: when enabling QUIC, check that TLS supports QUIC - content_encoding: change return code to typedef'ed enum - curl: show ipfs and ipns as supported "protocols" - CURLINFO_REFERER.3: clarify that it is the *request* header - dist: add tests/errorcodes.pl to the tarball - gen.pl: support ## for doing .IP in table-like lists - GHA: bump ngtcp2, gnutls, mod_h2, quiche - hostip: return error immediately when Curl_ip2addr() fails - http3/quiche: fix result code on a stream reset - http3: initial support for OpenSSL 3.2 QUIC stack - http: check for "Host:" case insensitively - http: fix off-by-one error in request method length check - http: only act on 101 responses when they are HTTP/1.1 - lib: add debug log outputs for CURLE_BAD_FUNCTION_ARGUMENT - lib: error out on multissl + http3 - lib: fix variable undeclared error caused by `infof` changes - lib: rename Curl_strndup to Curl_memdup0 to avoid misunderstanding - lib: strndup/memdup instead of malloc, memcpy and null-terminate - libssh2: use `libssh2_session_callback_set2()` with v1.11.1 - ngtcp2: put h3 at the front of alpn - openldap: fix an LDAP crash - openldap: fix STARTTLS - openssl: re-match LibreSSL deinit with init - rtsp: deal with borked server responses - sasl: make login option string override http auth - tool: prepend output_dir in header callback - tool_getparam: stop supporting `@filename` style for --cookie - transfer: fix upload rate limiting, add test cases - url: don't set default CA paths for Secure Transport backend - url: for disabled protocols, mention if found in redirect - vquic: extract TLS setup into own source - websockets: check for negative payload lengths * Remove patches fixed upstream: - curl-adjust-pollset-fix.patch - curl-tests-errorcodes.patch * Rebase dont-mess-with-rpmoptflags.patch ==== fillup ==== - remove bin symlink for non-suse distributions ==== kexec-tools ==== - add kexec-dont-use-kexec_file_load-on-xen.patch: kexec: don't use kexec_file_load on xen (bsc#1218590) ==== libbs2b ==== - Add libbs2b-clipping.patch to remove clipping of overloaded samples. Patch is taken from: https://github.com/alexmarsev/libbs2b For more details see: https://github.com/strawberrymusicplayer/strawberry/issues/1320 ==== libssh ==== Version update (0.10.5 -> 0.10.6) Subpackages: libssh-config libssh4 - Fix regression parsing IPv6 addresses provided as hostname * Added libssh-fix-ipv6-hostname-regression.patch - Update to version 0.10.6 https://www.libssh.org/2023/12/18/libssh-0-10-6-and-libssh-0-9-8-security-r… - Fix CVE-2023-6004: ProxyCommand/ProxyJump features allow injection of malicious code through hostname (bsc#1218209) - Fix CVE-2023-48795: prefix truncation breaking ssh channel integrity (bsc#1218126) - Fix CVE-2023-6918: Added Missing checks for return values for digests (bsc#1218186) ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - patterns-base-fips: Require openssl-fips-provider when libopenssl is installed (meta package and libopenssl3) (boo#1219384). ==== permissions ==== Subpackages: chkstat permissions-config - Create directory /usr/share/permissions/permissions.d for packages to place their drop-ins. ==== python-pygit2 ==== Version update (1.13.3 -> 1.14.0) - update to 1.14.0: * Drop support for Python 3.8 * New `Repository.submodules` namespace * New `Repository.listall_mergeheads()`, `Repository.message`, `Repository.raw_message` and `Repository.remove_message()` * New `pygit2.enums` supersedes the `GIT_` constants * Now `Repository.status()`, `Repository.status_file()`, `Repository.merge_analysis()`, `DiffFile.flags`, `DiffFile.mode`, `DiffDelta.flags` and `DiffDelta.status` return enums * Now repository\'s `merge()`, `merge_commits()` and `merge_trees()` take enums/flags for their `favor`, `flags` and `file_flags` arguments. * Fix crash in filter cleanup * Documentation fixes * Remove deprecated `Repository.create_remote(...)` function, use instead `Repository.remotes.create(...)` * Deprecate `Repository.add_submodule(...)`, use `Repository.submodules.add(...)` * Deprecate `Repository.lookup_submodule(...)`, use `Repository.submodules[...]` * Deprecate `Repository.init_submodules(...)`, use `Repository.submodules.init(...)` * Deprecate `Repository.update_submodule(...)`, use `Repository.submodules.update(...)` * Deprecate `GIT_*` constants, use `pygit2.enums` * Passign dicts to repository\'s `merge(...)`, `merge_commits(...)` and `merge_trees(...)` is deprecated. Instead pass `MergeFavor` for the `favor` argument, `MergeFlag` for `flags`, and `MergeFileFlag` for `file_flags`. ==== python-rpm ==== Version update (4.18.0 -> 4.19.1) - Modernize python-rpm.spec to stop using deprecated macros (%python_build and %python_install). - update to rpm-4.19.1 ==== qt6-base ==== Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 - Switch to the latest GCC version available in Leap - Replace 0001-Require-GCC-12.patch with 0001-Use-newer-GCC-on-Leap.patch ==== rpm ==== Version update (4.18.0 -> 4.19.1) - fix Source url to match what is listed on https://rpm.org/download.html - disable sysusers handling for now - update to rpm-4.19.1 * new spec snippet support for dynamic spec generation * new sysusers.d integration for automated user and group handling * new CMake build system * removal of various deprecated and/or unused APIs * various internal code cleanups - refreshed patches: * brp-compress-no-img.patch * brp.diff * brpcompress.diff * build.diff * enable-postin-scripts-error.diff * fileattrs.diff * findlang.diff * findsupplements.diff * langnoc.diff * macrosin.diff * platformin.diff * posttrans.diff * refreshtestarch.diff * rpm-findlang-inject-metainfo.patch * rpmqpack.diff * rpmrc.diff * selinux_transactional_update.patch * localetag.diff * weakdepscompat.diff * zstdpool.diff - deleted patches: * cpuid_lzcnt.patch * libmagic-exceptions.patch * remove-awk-dependency.patch * whatrequires-doc.diff * x86_64-microarchitectures.patch - new patches: * python_setup.diff * rpmsort_reverse.diff * canongnu.diff - new file: * build-aux.tar.bz2 (taken from rpm-4.18) - fix --runposttrans not working correctly with the --root option [bnc#1216091] ==== suse-module-tools ==== Version update (16.0.42 -> 16.0.43) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.43: * macros.initrd: %regenerate_initrd_post: don't fail if mkdir is unavailable (boo#1217979) * Don't rebuild existing initramfs imagees if the environment variable SKIP_REGENERATE_ALL=1 is set (boo#1192014) * README: Update blacklist description (gh#openSUSE/suse-module-tools#71) ==== vala-panel-appmenu ==== Subpackages: appmenu-gtk-module-common appmenu-gtk2-module appmenu-gtk3-module libappmenu-gtk2-parser0 libappmenu-gtk3-parser0 - Fix CFLAGS and CXXFLAGS to use distro flags ==== virtiofsd ==== Version update (1.7.2 -> 1.10.1) - Fix CVE-2023-50711: vmm-sys-util: out of bounds memory accesses (bsc#1218502, bsc#1218500) - Update to version 1.10.1: * Bump version to v1.10.1 * Fix mandatory user namespaces * Don't drop supplemental groups in unprivileged user namespace * Bump version to v1.10.0 * Update rust-vmm dependencies (bsc#1218500) * Bump version to v1.9.0 - Spec: switch to using the upstream virtio-fs config file for qemu - Spec: switch back to greedy cargo updates of vendored dependencies ==== vsftpd ==== - Fix location of ftpusers in /usr/lib/pam.d/vsftpd (boo#1219362) ==== xz ==== Version update (5.4.5 -> 5.4.6) Subpackages: liblzma5 - Build static library on SLE - update to 5.4.6: * Fixed a bug involving internal function pointers in liblzma not being initialized to NULL. The bug can only be triggered if lzma_filters_update() is called on a LZMA1 encoder, so it does not affect xz or any application known to us that uses liblzma. * Fixed a regression introduced in 5.4.2 that caused encoding in the raw format to unnecessarily fail if --suffix was not used. For instance, the following command no longer reports that --suffix must be used: echo foo | xz --format=raw --lzma2 | wc -c * Fixed an issue on MinGW-w64 builds that prevented reading from or writing to non-terminal character devices like NUL. * Added a new test.

1 0

New Arm Tumbleweed snapshot 20240130 released!
by Guillaume Gardet 31 Jan '24

31 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: GraphicsMagick MozillaFirefox apache2 apache2-manual apache2-prefork apache2-utils apparmor cryptsetup (2.6.1 -> 2.7.0) dos2unix (7.5.1 -> 7.5.2) duktape firewalld (2.1.0 -> 2.1.1) fwupd (1.9.11 -> 1.9.12) ghostscript (9.56.1 -> 10.02.1) grub2 gstreamer-plugins-rs iso-codes (4.15.0 -> 4.16.0) kernel-firmware (20240115 -> 20240126) libapparmor libexttextcat (3.4.6 -> 3.4.7) libgcrypt libjcat (0.2.0 -> 0.2.1) mdevctl (1.2.0 -> 1.3.0) mutter nghttp2 (1.58.0 -> 1.59.0) numactl (2.0.16.21.g693fee1 -> 2.0.17.4.g63befa8) openssl-3 openssl patterns-kde python-Jinja2 python-M2Crypto python-MarkupSafe (2.1.3 -> 2.1.4) python-argcomplete (3.2.1 -> 3.2.2) python-authheaders (0.16.1 -> 0.16.2) python-pyOpenSSL (23.3.0 -> 24.0.0) python-pycryptodome (3.19.1 -> 3.20.0) rubygem-parser (3.2.2.4 -> 3.3.0.5) rubygem-rubocop (1.59.0 -> 1.60.2) salt strace (6.6 -> 6.7) xdg-utils (1.2.0~beta1+20230929 -> 1.2.0+20240130) xf86-video-qxl xorg-x11-server xterm (388 -> 389) yast2 (5.0.4 -> 5.0.5) yast2-installation (5.0.4 -> 5.0.5) yast2-trans (84.87.20240120.54f4b9f06a -> 84.87.20240126.9c7185e3f6) zenity (4.0.0 -> 4.0.1) === Details === ==== GraphicsMagick ==== Subpackages: libGraphicsMagick++-Q16-12 libGraphicsMagick-Q16-3 libGraphicsMagick3-config - ghostscript-fonts-std: relax to recommends [bsc#1216604] ==== MozillaFirefox ==== - Fix file list ==== apache2 ==== - use grep -E for egrep ==== apache2-manual ==== - use grep -E for egrep ==== apache2-prefork ==== - use grep -E for egrep ==== apache2-utils ==== - use grep -E for egrep ==== apparmor ==== Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - Add dovecot-unix_chkpwd.diff to allow dovecot-auth to execute unix_chkpwd, and add a profile for unix_chkpwd. This is needed for PAM 1.6 (boo#1219139) - Refresh apparmor.keyring - the key was renewed ==== cryptsetup ==== Version update (2.6.1 -> 2.7.0) Subpackages: cryptsetup-doc libcryptsetup12 - Update to 2.7.0: * Full changelog in: mirrors.edge.kernel.org/pub/linux/utils/cryptsetup/v2.7/v2.7.0-ReleaseNotes * Introduce support for hardware OPAL disk encryption. * plain mode: Set default cipher to aes-xts-plain64 and password hashing to sha256. * Allow activation (open), luksResume, and luksAddKey to use the volume key stored in a keyring. * Allow to store volume key to a user-specified keyring in open and luksResume commands. * Do not flush IO operations if resize grows the device. This can help performance in specific cases where the encrypted device is extended automatically while running many IO operations. * Use only half of detected free memory for Argon2 PBKDF on systems without swap (for LUKS2 new keyslot or format operations). * Add the possibility to specify a directory for external LUKS2 token handlers (plugins). * Do not allow reencryption/decryption on LUKS2 devices with authenticated encryption or hardware (OPAL) encryption. * Do not fail LUKS format if the operation was interrupted on subsequent device wipe. * Fix the LUKS2 keyslot option to be used while activating the device by a token. * Properly report if the dm-verity device cannot be activated due to the inability to verify the signed root hash (ENOKEY). * Fix to check passphrase for selected keyslot only when adding new keyslot. * Fix to not wipe the keyslot area before in-place overwrite. * bitlk: Fix segfaults when attempting to verify the volume key. * Add --disable-blkid command line option to avoid blkid device check. * Add support for the meson build system. * Fix wipe operation that overwrites the whole device if used for LUKS2 header with no keyslot area. * Fix luksErase to work with detached LUKS header. * Disallow the use of internal kernel crypto driver names in "capi" specification. * Fix reencryption to fail early for unknown cipher. * tcrypt: Support new Blake2 hash for VeraCrypt. * tcrypt: use hash values as substring for limiting KDF check. * Add Aria cipher support and block size info. * Do not decrease PBKDF parameters if the user forces them. * Support OpenSSL 3.2 Argon2 implementation. * Add support for Argon2 from libgcrypt (requires yet unreleased gcrypt 1.11). * Used Argon2 PBKDF implementation is now reported in debug mode in the cryptographic backend version. For native support in OpenSSL 3.2 or libgcrypt 1.11, "argon2" is displayed. If libargon2 is used, "cryptsetup libargon2" (for embedded library) or "external libargon2" is displayed. * Link only libcrypto from OpenSSL. * Disable reencryption for Direct-Access (DAX) devices. * Print a warning message if the device is not aligned to sector size. * Fix sector size and integrity fields display for non-LUKS2 crypt devices for the status command. * Fix suspend for LUKS2 with authenticated encryption (also suspend dm-integrity device underneath). * Update keyring and locking documentation and LUKS2 specification for OPAL2 support. * Remove patches fixed upstream: - cryptsetup-Check-for-physical-memory-available-also-in-PBKDF-be.patch - cryptsetup-Try-to-avoid-OOM-killer-on-low-memory-systems-withou.patch - cryptsetup-Use-only-half-of-detected-free-memory-on-systems-wit.patch ==== dos2unix ==== Version update (7.5.1 -> 7.5.2) - update to 7.5.2: * Dos2unix can print info about the line break type of the last line, or indicate there is none * Updated documentation about ASCII mode conversion ==== duktape ==== - Build with distro flags ==== firewalld ==== Version update (2.1.0 -> 2.1.1) Subpackages: firewalld-bash-completion python3-firewall - update to 2.1.1: * fix(offline-cmd): use family when creating ipset (64f78a9) * fix(firewall-config): allow rich rule forwarded ports to be logged (d46ea62) * fix(ipXtables): log forwarded ports only (07dc202) * fix(nftables): log forwarded ports (5c26b73) * fix(io.ipset): raise exception if entries exceed limit (a2da5fb) * fix(policy): ipXtables: multiple policies using same zone (b6f2f09) * fix(policy): dispatch update for active policies (7f6f0e2) ==== fwupd ==== Version update (1.9.11 -> 1.9.12) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.12: + This release adds the following features: - Add remote modification support to fwupdtool - Add support for more modify-config options - Generate HTML pages for all man pages + This release fixes the following bugs: - Assume the legacy LVFS::UpdateRequestId tag is non-generic - Avoid crashing the daemon if not using udisks - Correctly mark the CPU as supported - Correctly match invalid EFI partitions - Do not change the device status until the action has completed - Do not require systemd for fwupdtool modify-config - Enable access to the home interface for snap - Fix an assertion when enabling lvfs-testing for the first time - Fix a possible crash in fwupdtool build-cabinet - Handle systems with more than one ccp device - Only check AMD CPUs for SHSTK, not IBT - Only write the mutable fwupd.conf with the current values - Re-evaluate supported every time pci-psp attributes are refreshed - Show "CET OS support" on AMD systems too + This release adds support for the following hardware: - AVer CAM340plus - AVer VB342 Pro - More Algoltek devices ==== ghostscript ==== Version update (9.56.1 -> 10.02.1) Subpackages: ghostscript-x11 - update to 10.02.1: * Patch release to address some security bugs * This release (10.02.0) marks the final demise of the PostScript based PDF interpreter. * This 10.01.1 release removes the "-dNEWPDF=false" command line option to fall back to the deprecated, old PDF interpreter. * This 10.01.0 release removes the "-dNEWPDF=false" command line option to fall back to the deprecated, old PDF interpreter. * This release officially deprecates the old Postscript implementation of PDF, we will not be updating or maintaining that code moving forward. The option to use the old PDF implementation _**will**_ be removed in the next full release (10.01.0) * Important: This release includes the new PDF interpreter (implemented in C rather than PostScript). It is both integrated into Ghostscript (now ENABLED by default), and available as a standalone, PDF only, binary. See https://ghostscript.com/pdfi.html for more details. * This also bundles the latest zlib (1.2.12) which addresses a security issue (CVE-2018-25032) * **Important**: This release includes the new PDF interpreter (implemented in C rather than PostScript). It is both integrated into Ghostscript (now **ENABLED** by default), and available as a standalone, PDF only, binary. See https://ghostscript.com/pdfi.html for more details. - drop CVE-2023-28879.patch, CVE-2023-36664.patch, CVE-2023-38559.patch, CVE-2023-43115.patch, CVE-2023-46751.patch: upstream - drop remove-zlib-h-dependency.patch: unused ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Remove magic number header field check on arm64 (bsc#1218783) * 0001-loader-arm64-efi-linux-Remove-magic-number-header-fi.patch ==== gstreamer-plugins-rs ==== - Increase memory to 12G for s390x builds in _constraints (bsc#1218563). ==== iso-codes ==== Version update (4.15.0 -> 4.16.0) Subpackages: iso-codes-lang - update to 4.16.0: + Updated translations + ISO 4217: New translation for Khmer (Central) + ISO 639-2: New translation for Armenian + ISO 639-5: New translation for Lithuanian ==== kernel-firmware ==== Version update (20240115 -> 20240126) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240126 (git commit 8fa621d2f9c1): * qcom: Add Audio firmware for SM8650 MTP * linux-firmware: Add firmware for Cirrus CS35L41 on HP Consumer Laptops * Intel Bluetooth: Make spacing consistent with rest of WHENCE * amdgpu: update raven2 firmware * amdgpu: update raven firmware * amdgpu: update SDMA 5.2.7 firmware * amdgpu: update PSP 13.0.8 firmware * amdgpu: update VCN 3.1.2 firmware * amdgpu: update SDMA 5.2.6 firmware * amdgpu: update PSP 13.0.5 firmware * amdgpu: update GC 10.3.6 firmware * amdgpu: add GC 11.0.1 rlc_1 firmware * amdgpu: update vega20 firmware * amdgpu: update VCN 4.0.0 firmware * amdgpu: update SMU 13.0.0 firmware * amdgpu: update PSP 13.0.0 firmware * amdgpu: update GC 11.0.0 firmware * amdgpu: update vega12 firmware * amdgpu: update vega10 firmware * amdgpu: update beige goby firmware * amdgpu: update picasso firmware * amdgpu: update dimgrey cavefish firmware * amdgpu: update vangogh firmware * amdgpu: update navy flounder firmware * amdgpu: update green sardine firmware * amdgpu: update sienna cichlid firmware * amdgpu: update PSP 13.0.11 firmware * amdgpu: update GC 11.0.4 firmware * amdgpu: update VCN 4.0.2 firmware * amdgpu: update PSP 13.0.4 firmware * amdgpu: update GC 11.0.1 firmware * amdgpu: update arcturus firmware * amdgpu: update navi14 firmware * amdgpu: add VCN 4.0.3 firmware * amdgpu: add SDMA 4.4.2 firmware * amdgpu: add SMU 13.0.6 firmware * amdgpu: add PSP 13.0.6 firmware * amdgpu: Add GC 9.4.3 firmware * amdgpu: update renoir firmware * amdgpu: update VCN 4.0.4 firmware * amdgpu: update SMU 13.0.7 firmware * amdgpu: update PSP 13.0.7 firmware * amdgpu: update GC 11.0.2 firmware * amdgpu: update navi12 firmware * amdgpu: update yellow carp firmware * amdgpu: update SMU 13.0.10 firmware * amdgpu: update SDMA 6.0.3 firmware * amdgpu: update PSP 13.0.10 firmware * amdgpu: update GC 11.0.3 firmware * amdgpu: update navi10 firmware * amdgpu: update aldebaran firmware * linux-firmware: Update AMD cpu microcode * RTL8192E: Remove old realtek WiFi firmware - Update aliases ==== libapparmor ==== - Add dovecot-unix_chkpwd.diff to allow dovecot-auth to execute unix_chkpwd, and add a profile for unix_chkpwd. This is needed for PAM 1.6 (boo#1219139) - Refresh apparmor.keyring - the key was renewed ==== libexttextcat ==== Version update (3.4.6 -> 3.4.7) Subpackages: libexttextcat-2_0-0 - Update to version 3.4.7: * Add Ilocano, Saraiki ==== libgcrypt ==== - add libgcrypt-no-deprecated-grep-alias.patch ==== libjcat ==== Version update (0.2.0 -> 0.2.1) - Update to version 0.2.1: + Do not dedupe sig and sig-of-checksum when loading. + Fix the installed tests. + Show the sig-of-checksum results clearer on the CLI. ==== mdevctl ==== Version update (1.2.0 -> 1.3.0) - Update to version 1.3.0 (jsc#PED-4981): * tests: add tests for live and defined support * doc: document live support and its options * cli: add live and defined parameters to modify command * callouts: add callout live event support * main: refactor jsonfile loading * main: refactor getting active devices * tests: add callout versioning tests * callouts: add warning for unknown supported actions and events * callouts: prevent repeating unsuccessful script searches * callouts: add versioning on callout scripts * callouts: make callout method reusable * callouts: add a check_result_fn to invoke_first_matching_script * Fix new clippy warnings * Cargo.toml: move tempfile to dev-dependencies * main: assemble active devices without overwriting * mdevctl.spec.in: Add systemd as build requirement * callout: ignore broken pipe on stdin * cli: improve lsmdev help * callouts: set script in callout on success only * main: fix file open error being suppressed * Fix clippy warning for useless vec * callouts: replace negated check and improve msgs * callouts: improve debug messages in get_attributes * callouts: match code format in Display for Event and Action * tests/callouts: make scripts cross distro compliant * actions: update release action to newer versions * Bump clap to 4.0 * Bump env_logger dependency to 0.9.0 * Fix deprecated github actions * cli: change modify parameter relationships * tests: use printf over echo * tests: add callout constructor panic tests * callouts: add MDev to callout struct * callouts: Move stdin generation from Callout::invoke_script() * callouts: Add a Callout argument to the invoke callback function * callouts: Reuse Callout::callout() for get_attributes() * callouts: Return Output from Callout::callout() * callouts: Remove Callout::callout_dir() * callouts: Move self.script invocation to callout() * callouts: make Callout::invoke() a method * mdev: provide better error message for invalid attr index * mdev: change attribute index arguments to usize * cli: adjust help text for modify option addattr * modify: ensure required parameter is given * trim trailing null from callout script get-attributes output * Add --force option for commands that have callouts * Bump 'nix' dependency * tests: test 'stop' with callouts * tests: remove stray debug prints during fork * tests: make test failure reports more obvious * Bump version to 1.3.0 * undefine: report error if device is not undefined * modify: add jsonfile optional parameter * cli: add cli tests * cli: fix clap deprecations warnings * tests: fix test_modify() when auto and manual are both set * Fix panic on modify delattr with invalid index * Active attributes (#71) * clippy: remove needless borrows * mdevctl.rst: align use of term state * Add tests for callout dir priority * Add system callout script dir outside /etc. * Add ability to set env root with env variable * Rename Environment::persist_base() to config_base() * Update github checkout action * Relax 'nix' dependency version requirement * callouts: remove return value from Callout::notify() * callouts: remove separate is_dir() check in notify() * callouts: filter and map iterator in notifier loop * Update uuid version * tests: verify that callout scripts are executed in order * callouts: make sure scripts are sorted * callouts: simplify loop through callout dir * callouts: Remove call to count() on callout dir entries * Fix new clippy warnings * Fix intermittent callout failure during test * rpm: set debug env vars when running tests in rpm build * Add python3-docutils to rpm BuildRequires ==== mutter ==== - mutter-SLE-bsc984738-grab-display.patch: * Temporary disable this SLE-only patch as it makes mutter 45 lock-up on non-CSD apps (bsc#1218935) ==== nghttp2 ==== Version update (1.58.0 -> 1.59.0) - update to 1.59.0: * Update bash_completion * h2load: Fix bug that ttfb is not recorded if h3 stream has no data * h2load: Consider all h2 HEADERS when counting bytes and recording ttfb * h2load: Ignore 1xx status code * nghttpd: Free SSL_CTX on exit * nghttpx: OpenSSL needs SSL_CTX_set_recv_max_early_data * nghttpx: OpenSSL needs SSL_CTX_set_recv_max_early_data * cmake: Require OpenSSL >= 1.1.1 * Add nghttp2_select_alpn and deprecate nghttp2_select_next_protocol * nghttpx: Add --alpn-list and deprecate --npn-list * h2load: Add --alpn-list and deprecate --npn-list * Remove NPN * src: Support building with aws-lc * Avoid detecting OpenSSL 3.2 as quictls * Use nghttp3_pri_parse_priority added since nghttp3 v1.1.0 * h2load: Fix IPv6 address in :authority * h2load: Fix IPv6 address in :authority * nghttpx: Propagate stream priority from backend to frontend * nghttpx: Propagate stream priority from backend to frontend * Merge pull request #1991 from nghttp2/get-and-parse- extpri * Add API to get and parse RFC 9218 priority * nghttpx: Prefer __FILE_NAME__ if defined ==== numactl ==== Version update (2.0.16.21.g693fee1 -> 2.0.17.4.g63befa8) Subpackages: libnuma1 - Update to version 2.0.17.4.g63befa8: * Fix CodeQl Warn: Wrong type of arguments to formatting function * libnuma: Fix incorrect print and exit of numa_preferred/_many APIs * libnuma: Fix unexpected output * Fix README.md * Increase version number * Fix build badge * Fix README.md * Update README.md * Add configure file for release * Fix unused function return warning in numastat * fix complain() fuction print newline * Document that numa_police_memory may cause data races * Add numastat_diff from jirka-h * Enable v1 compatibility for unused getnodemask test * libnuma: Handle initialization without sysfs * Support empty memory nodes * numactl: Add --version option to print version * Remove obsolete numamon file * numactl: Use standard tab indent for print_node_cpus * Avoid using /proc/cpuinfo in test suite * numact: Add --cpu-compress option * Pin release workflow script to minimize risk of supply chain attacks * move_pages: Fix warning (missing hunk from earlier revert) * numastat: Remove unused functions * distance: Remove unused variable (NFC) * numademo: Adjust memcpy test bandwidth calculation * numactl.c: Refactor print_node_cpus to display CPU ranges * numactl.c: Refactor print_node_cpus to display CPU ranges * numactl.c: Refactor print_node_cpus to display CPU ranges * Refactor print_node_cpus to display CPU ranges instead of individual CPUs * numactl: Fix manual for --preferred and --preferred-many * Revert "Fix build error on riscv64 by linking libatomic" * Include <fcntl.h> instead of <sys/fcntl.h> * Fix the example usage in the numactl manual * Fix issue #190 about numa_exit_on_warn does not work * Create SECURITY.md * fix: fix memory leaks when run with -H * use mems allowed nodes to test prefer_many policy. * fix typo in memhog.8 * Update move_pages.c * migspeed don't have to be linked against librt * Add MPOL_F_RELATIVE/STATIC_NODES ==== openssl-3 ==== Subpackages: libopenssl3 - Encapsulate the fips provider into a new package called libopenssl-3-fips-provider. - Added openssl-3-use-include-directive.patch so that the default /etc/ssl/openssl.cnf file will include any configuration files that other packages might place into /etc/ssl/engines3.d/ and /etc/ssl/engdef3.d/. Also create symbolic links /etc/ssl/engines.d/ and /etc/ssl/engdef.d/ to above versioned directories. - Updated spec file to create the two new necessary directores for the above patch and two symbolic links to above directories. [bsc#1194187, bsc#1207472, bsc#1218933] - Security fix: [bsc#1218810, CVE-2023-6237] * Limit the execution time of RSA public key check * Add openssl-CVE-2023-6237.patch - Rename openssl-Override-default-paths-for-the-CA-directory-tree.patch to openssl-crypto-policies-support.patch - Embed the FIPS hmac. Add openssl-FIPS-embed-hmac.patch - Load the FIPS provider and set FIPS properties implicitly. * Add openssl-Force-FIPS.patch [bsc#1217934] - Disable the fipsinstall command-line utility. * Add openssl-disable-fipsinstall.patch - Add instructions to load legacy provider in openssl.cnf. * openssl-load-legacy-provider.patch - Disable the default provider for the test suite. * openssl-Disable-default-provider-for-test-suite.patch - Security fix: [bsc#1218690, CVE-2023-6129] * POLY1305: Fix vector register clobbering on PowerPC * Add openssl-CVE-2023-6129.patch - Add patch to fix BTI enablement on aarch64: * openssl-Enable-BTI-feature-for-md5-on-aarch64.patch ==== openssl ==== - New libopenssl-fips-provider package. ==== patterns-kde ==== Subpackages: patterns-kde-kde patterns-kde-kde_edutainment patterns-kde-kde_games patterns-kde-kde_ide patterns-kde-kde_imaging patterns-kde-kde_internet patterns-kde-kde_multimedia patterns-kde-kde_office patterns-kde-kde_pim patterns-kde-kde_plasma patterns-kde-kde_utilities patterns-kde-kde_utilities_opt patterns-kde-kde_yast - Make phonon4qt5-backend a hard dep of the plasma pattern (boo#1219277) - Avoid gstreamer if not necessary - Change from phonon4qt5-backend-gstreamer to phonon4qt5-backend-vlc due to deprecation of the gstreamer backend ==== python-Jinja2 ==== - Disable broken test with latest version of MarkupSafe (2.1.4) (gh#pallets/jinja#1930, gh#pallets/markupsafe#417) ==== python-M2Crypto ==== - Disable broken tests with openssl 3.2, bsc#1217782 ==== python-MarkupSafe ==== Version update (2.1.3 -> 2.1.4) - update to 2.1.4: * Don't use regular expressions for striptags, avoiding a performance issue. :pr:`413` ==== python-argcomplete ==== Version update (3.2.1 -> 3.2.2) - update to 3.2.2: * Expand tilde in zsh ==== python-authheaders ==== Version update (0.16.1 -> 0.16.2) - update to 0.16.2: * Add checks for None results to avoid tracebacks (#31) * Account for FWS in From (which is legal, apparently) * Delete more setup.py cruft for non-supported Pythons ==== python-pyOpenSSL ==== Version update (23.3.0 -> 24.0.0) - update to 24.0.0: * Added OpenSSL.SSL.Connection.get_selected_srtp_profile to determine which SRTP profile was negotiated. #1279. ==== python-pycryptodome ==== Version update (3.19.1 -> 3.20.0) - update to 3.20.0: * Added support for TurboSHAKE128 and TurboSHAKE256. * Added method Crypto.Hash.new() to generate a hash object given a hash name. * Added support for AES-GCM encryption of PBES2 and PKCS#8 containers. * Added support for SHA-2 and SHA-3 algorithms in PBKDF2 when creating PBES2 and PKCS#8 containers. * Export of RSA keys accepts the prot_params dictionary as parameter to control the number of iterations for PBKDF2 and scrypt. * C unit tests also run on non-x86 architectures. * GH#787: Fixed autodetect logic for GCC 14 in combination with LTO. ==== rubygem-parser ==== Version update (3.2.2.4 -> 3.3.0.5) Subpackages: ruby3.2-rubygem-parser ruby3.3-rubygem-parser - updated to version 3.3.0.5 v3.3.0.5 (2024-01-21) - -------------------- API modifications: * Bump 3.2 branch to 3.2.3 (#993) (Koichi ITO) v3.3.0.4 (2024-01-15) - -------------------- Features implemented: * Register a Ruby 3.4 parser (#991) (Jean byroot Boussier) v3.3.0.3 (2024-01-12) - -------------------- Bugs fixed: * lexer.rl: accept tabs before closing heredoc delimiter (#990) (Ilya Bylich) v3.3.0.2 (2024-01-07) - -------------------- Bugs fixed: * Fix an error when using heredoc with non-word delimiters (#987) (Koichi ITO) v3.3.0.1 (2024-01-06) - -------------------- Bugs fixed: * Supports Ruby 2.0+ runtime (#986) (Koichi ITO) v3.3.0.0 (2024-01-05) - -------------------- API modifications: * current.rb: mark 3.3 branch as stable (#984) (Ilya Bylich) * ruby33.y: extract string_dend (#969) (Ilya Bylich) * lexer.rl: treat numparams as locals (#968) (Ilya Bylich) * ruby33.y: extract words_sep (#967) (Ilya Bylich) * literal.rb: match heredoc identifier from end of line (#965) (Ilya Bylich) * ruby33.y: extract {endless_command,endless_arg} rules (#964) (Ilya Bylich) * Bump Racc to 1.7.3 (#954) (Koichi ITO) Features implemented: * ruby33.y: reject ambiguous anonymous arguments (#983) (Ilya Bylich) * ruby33.y: extract arg_splat rule. (#981) (Ilya Bylich) * builder.rb: warn `it` in a block with no ordinary params. (#980) (Ilya Bylich) * builder.rb: extract named captures only from static regexes. (#979) (Ilya Bylich) * ruby33.y: accept expr_value in sclass definition. (#978) (Ilya Bylich) * ruby33.y: extract p_in_kwarg (#977) (Ilya Bylich) * ruby33.y: extract p_assoc and p_in rules (#976) (Ilya Bylich) * ruby33.y: reject invalid gvar as symbol (#974) (Ilya Bylich) * ruby33.y: properly restore in_defined flag, extract begin_defined rule (#973) (Ilya Bylich) * builder.rb: reject multi-char gvar names starting with 0 (#972) (Ilya Bylich) * ruby33.y: allow semicolon in parenthesis at the first argument of command call (#971) (Ilya Bylich) * ruby33.y: parse qualified const with brace block as a method call (#970) (Ilya Bylich) ==== rubygem-rubocop ==== Version update (1.59.0 -> 1.60.2) Subpackages: ruby3.2-rubygem-rubocop ruby3.3-rubygem-rubocop - updated to version 1.60.2 [#]# 1.60.2 (2024-01-24) [#]## Bug fixes * [#12627](https://github.com/rubocop/rubocop/issues/12627): Fix a false positive for `Layout/RedundantLineBreak` when using index access call chained on multiple lines with backslash. ([@koic][]) * [#12626](https://github.com/rubocop/rubocop/pull/12626): Fix a false positive for `Style/ArgumentsForwarding` when naming a block argument `&`. ([@koic][]) * [#12635](https://github.com/rubocop/rubocop/pull/12635): Fix a false positive for `Style/HashEachMethods` when both arguments are unused. ([@earlopain][]) * [#12636](https://github.com/rubocop/rubocop/pull/12636): Fix an error for `Style/HashEachMethods` when a block with both parameters has no body. ([@earlopain][]) * [#12638](https://github.com/rubocop/rubocop/issues/12638): Fix an `Errno::ENOENT` error when using server mode. ([@koic][]) * [#12628](https://github.com/rubocop/rubocop/pull/12628): Fix a false positive for `Style/ArgumentsForwarding` when using block arg forwarding with positional arguments forwarding to within block. ([@koic][]) * [#12642](https://github.com/rubocop/rubocop/pull/12642): Fix false positives for `Style/HashEachMethods` when using array converter method. ([@koic][]) * [#12632](https://github.com/rubocop/rubocop/issues/12632): Fix an infinite loop error when `EnforcedStyle: explicit` of `Naming/BlockForwarding` with `Style/ArgumentsForwarding`. ([@koic][]) [#]# 1.60.1 (2024-01-17) [#]## Bug fixes * [#12625](https://github.com/rubocop/rubocop/pull/12625): Fix an error when server cache dir has read-only file system. ([@Strzesia][]) * [#12618](https://github.com/rubocop/rubocop/issues/12618): Fix false positives for `Style/ArgumentsForwarding` when using block argument forwarding with other arguments. ([@koic][]) * [#12614](https://github.com/rubocop/rubocop/issues/12614): Fix false positiveis for `Style/RedundantParentheses` when parentheses in control flow keyword with multiline style argument. ([@koic][]) [#]## Changes * [#12617](https://github.com/rubocop/rubocop/issues/12617): Make `Style/CollectionCompact` aware of `grep_v` with nil. ([@koic][]) [#]# 1.60.0 (2024-01-15) [#]## Bug fixes * [#12603](https://github.com/rubocop/rubocop/issues/12603): Fix an infinite loop error for `Style/MultilineTernaryOperator` when using a method call as a ternary operator condition with a line break between receiver and method. ([@koic][]) * [#12549](https://github.com/rubocop/rubocop/issues/12549): Fix a false positive for `Style/RedundantLineContinuation` when line continuations for multiline leading dot method chain with a blank line. ([@koic][]) * [#12610](https://github.com/rubocop/rubocop/pull/12610): Accept parentheses in argument calls with blocks for `Style/MethodCallWithArgsParentheses` `omit_parentheses` style. ([@gsamokovarov][]) * [#12580](https://github.com/rubocop/rubocop/pull/12580): Fix an infinite loop error for `Layout/EndAlignment` when misaligned in singleton class assignments with `EnforcedStyleAlignWith: variable`. ([@koic][]) * [#12548](https://github.com/rubocop/rubocop/issues/12548): Fix an infinite loop error for `Layout/FirstArgumentIndentation` when specifying `EnforcedStyle: with_fixed_indentation` of `Layout/ArrayAlignment`. ([@koic][]) * [#12236](https://github.com/rubocop/rubocop/issues/12236): Fix an error for `Lint/ShadowedArgument` when self assigning to a block argument in `for`. ([@koic][]) * [#12569](https://github.com/rubocop/rubocop/issues/12569): Fix an error for `Style/IdenticalConditionalBranches` when using `if`...`else` with identical leading lines that assign to `self.foo`. ([@koic][]) * [#12437](https://github.com/rubocop/rubocop/issues/12437): Fix an infinite loop error for `EnforcedStyle: omit_parentheses` of `Style/MethodCallWithArgsParentheses` with `Style/SuperWithArgsParentheses`. ([@koic][]) * [#12558](https://github.com/rubocop/rubocop/issues/12558): Fix an incorrect autocorrect for `Style/MapToHash` when using `map.to_h` without receiver. ([@koic][]) * [#12179](https://github.com/rubocop/rubocop/issues/12179): Let `--auto-gen-config` generate `Exclude` when `Max` is overridden. ([@jonas054][]) * [#12574](https://github.com/rubocop/rubocop/issues/12574): Fix bug for unrecognized style in --auto-gen-config. ([@jonas054][]) * [#12542](https://github.com/rubocop/rubocop/issues/12542): Fix false positive for `Lint/MixedRegexpCaptureTypes` when using look-ahead matcher. ([@marocchino][]) * [#12607](https://github.com/rubocop/rubocop/pull/12607): Fix a false positive for `Style/RedundantParentheses` when regexp literal attempts to match against a parenthesized condition. ([@koic][]) * [#12539](https://github.com/rubocop/rubocop/pull/12539): Fix false positives for `Lint/LiteralAssignmentInCondition` when a collection literal contains non-literal elements. ([@koic][]) * [#12571](https://github.com/rubocop/rubocop/issues/12571): Fix false positives for `Naming/BlockForwarding` when using explicit block forwarding in block method. ([@koic][]) * [#12537](https://github.com/rubocop/rubocop/issues/12537): Fix false positives for `Style/RedundantParentheses` when `AllowInMultilineConditions: true` of `Style/ParenthesesAroundCondition`. ([@koic][]) * [#12578](https://github.com/rubocop/rubocop/pull/12578): Fix false positives for `Style/ArgumentsForwarding` when rest arguments forwarding to a method in block. ([@koic][]) * [#12540](https://github.com/rubocop/rubocop/issues/12540): Fix false positives for `Style/HashEachMethods` when rest block argument of `Enumerable#each` method is used. ([@koic][]) * [#12529](https://github.com/rubocop/rubocop/issues/12529): Fix false positives for `Style/ParenthesesAroundCondition`. ([@koic][]) * [#12556](https://github.com/rubocop/rubocop/issues/12556): Fix false positives for `Style/RedundantParentheses` when parentheses are used around a semantic operator in expressions within assignments. ([@koic][]) * [#12541](https://github.com/rubocop/rubocop/pull/12541): Fix false negative in `Style/ArgumentsForwarding` when a block is forwarded but other args aren't. ([@dvandersluis][]) * [#12581](https://github.com/rubocop/rubocop/pull/12581): Handle trailing line continuation in `Layout/LineContinuationLeadingSpace`. ([@eugeneius][]) * [#12601](https://github.com/rubocop/rubocop/issues/12601): Make `Style/EachForSimpleLoop` accept block with no parameters. ([@koic][]) [#]## Changes * [#12535](https://github.com/rubocop/rubocop/pull/12535): Allow --autocorrect with --display-only-fail-level-offenses. ([@naveg][]) * [#12572](https://github.com/rubocop/rubocop/pull/12572): Follow a Ruby 3.3 warning for `Security/Open` when `open` with a literal string starting with a pipe. ([@koic][]) * [#12453](https://github.com/rubocop/rubocop/issues/12453): Make `Style/RedundantEach` aware of safe navigation operator. ([@koic][]) * [#12233](https://github.com/rubocop/rubocop/issues/12233): Make `Style/SlicingWithRange` aware of redundant and beginless range. ([@koic][]) * [#12388](https://github.com/rubocop/rubocop/pull/12388): Reject additional 'expanded' `EnforcedStyle` options when `--no-auto-gen-enforced-style` is given. ([@kpost][]) * [#12593](https://github.com/rubocop/rubocop/pull/12593): Require Parser 3.3.0.2 or higher. ([@koic][]) ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Provide user(salt)/group(salt) capabilities for RPM 4.19 - Prevent exceptions with fileserver.update when called via state (bsc#1218482) - Added: * allow-kwargs-for-fileserver-roots-update-bsc-1218482.patch - Improve pip target override condition with VENV_PIP_TARGET environment variable (bsc#1216850) - Fixed KeyError in logs when running a state that fails - Added: * improve-pip-target-override-condition-with-venv_pip_.patch * fixed-keyerror-in-logs-when-running-a-state-that-fai.patch - Ensure that pillar refresh loads beacons from pillar without restart - Fix the aptpkg.py unit test failure - Prefer unittest.mock to python-mock in test suite - Added: * update-__pillar__-during-pillar_refresh.patch * fix-the-aptpkg.py-unit-test-failure.patch * prefer-unittest.mock-for-python-versions-that-are-su.patch - Enable "KeepAlive" probes for Salt SSH executions (bsc#1211649) - Added: * enable-keepalive-probes-for-salt-ssh-executions-bsc-.patch - Revert changes to set Salt configured user early in the stack (bsc#1216284) - Added: * revert-make-sure-configured-user-is-properly-set-by-.patch - Align behavior of some modules when using salt-call via symlink (bsc#1215963) - Fix gitfs "__env__" and improve cache cleaning (bsc#1193948) - Added: * fix-gitfs-__env__-and-improve-cache-cleaning-bsc-119.patch * dereference-symlinks-to-set-proper-__cli-opt-bsc-121.patch - Randomize pre_flight_script path (CVE-2023-34049 bsc#1215157) - Added: * fix-cve-2023-34049-bsc-1215157.patch - Allow all primitive grain types for autosign_grains (bsc#1214477) - Added: * allow-all-primitive-grain-types-for-autosign_grains-.patch - Fix optimization_order opt to prevent testsuite fails - Improve salt.utils.json.find_json to avoid fails with transactional salt salt-ssh managed clients (bsc#1213293) - Use salt-call from salt bundle with transactional_update - Only call native_str on curl_debug message in tornado when needed - Implement the calling for batch async from the salt CLI - Added: * implement-the-calling-for-batch-async-from-the-salt-.patch * improve-salt.utils.json.find_json-bsc-1213293.patch * only-call-native_str-on-curl_debug-message-in-tornad.patch * use-salt-call-from-salt-bundle-with-transactional_up.patch * fix-optimization_order-opt-to-prevent-test-fails.patch - Fix calculation of SLS context vars when trailing dots on targetted sls/state (bsc#1213518) - Added: * fix-calculation-of-sls-context-vars-when-trailing-do.patch ==== strace ==== Version update (6.6 -> 6.7) - Update to strace 6.7 * Implemented -kk/--stack-traces=source option for libdw-based stack tracing. * Implemented decoding of futex_wake, futex_wait, and sys_futex_requeue syscalls. * Updated lists of BPF_*, BTRFS_*, IORING_*, KVM_*, LANDLOCK_*, PR_*, and TCP_* constants. * Updated lists of ioctl commands from Linux 6.7. * Fix strace -r during the first second after booting to show correct relative timestamps. * Fix strace -f entering deadlock on exit if there are tracee processes spawned using vfork semantics. ==== xdg-utils ==== Version update (1.2.0~beta1+20230929 -> 1.2.0+20240130) - Update to Version 1.2.0 (Lining up with the upstream release) * all: Add xdg-realpath to better handle Canonicalizing filenames (#66) * xdg-open: Use url.dll as url opener on wsl (#242) * tests: Fix quoting issues in t-xdg-open.sh * xdg-open: Added a reporting issues section to xdg-open in the hopes that more issues will be attributed correctly * xdg-mime: Added a secutity note on xdg-mime default to warn against confusing openers and runners * xdg-open: Added paragraph explaining the wiered return behaviour of xdg-open * xdg-email: shellcheck * xdg-mime: shellcheck * xdg-settings: Add support for deeping-desktop browser setting in xdg-settings. * all: Fix config.status warning about ignored --datarootdir setting * all: Shellchecked xdg-utils-common.in * xdg-open: shellcheck * xdg-mime: Create a generic implementation for KDE * all: Move to markdown for README's * xdg-mime: Improve Documentation around query file/default * xdg-open: Document not handling '-' at the start of filenames * xdg-open: Deduplicate URL recognition * xdg-open: remove unused open_generic_xdg_file_mime * xdg-open: use LC_ALL=C with URLs * xdg-open: Fix URI/URL handling * xdg-email: Remove default BROWSER logic, no longer needed * xdg-mime: Improve synopsis * xdg-settings: read KDE browser settings the right way around * xdg-open: Improve WSL support * xdg-mime: actually handle lists in mimeapps.list correctly ==== xf86-video-qxl ==== - Xspice-python3.patch * for python3 interpreter needs to be /usr/bin/python3 ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - no longer (build-)require obsolete Xprint/XprintUtil ==== xterm ==== Version update (388 -> 389) Subpackages: xterm-bin xterm-resize - update to 389: * interchange variables in subparameter parsing, fixing a bug where subparameters after the first parameter could be misidentified * correct popping of icon/window titles in a case where only one was pushed from patch #385 changes. * add XTQMODKEYS response in DECRQSS, as alternative for vim. * correct DECCIR encoded information on character set size, handle a VT525 quirk, and add DECST8C (Windows Terminal [#14984]). * improve DECRQCRA (prompted by discussion with James Holderness, Windows Terminal #14974). * add part of VT525 color controls: + DECAC, to update default foreground/background, respond to DECRQSS + DECATC, to respond with DECRQSS * prevent Unicode non-characters from being printed * modify send_SGR() to avoid modifying colors 16 to 255 in printed output (patch by Grady Martin). * minor cleanup of miscellaneous error-codes with ERROR_MISC. * remove legacy CSI 53 for locator status, corrected in patch * modify DECRQUPSS and DECAUPSS feature to support VT5xx character sets (report by Thomas Wolff). * improve EWMH handling (report/analysis by Edward Rosten) + reset _NET_WM_STATE_HIDDEN flag from _NET_WM_STATE before mapping the window to deiconify. + cache X properties to reduce latency (adapted from patch by Edward Rosten). ==== yast2 ==== Version update (5.0.4 -> 5.0.5) Subpackages: yast2-logs - Added s390 z/VM check to YaST::Arch (bsc#1210525). - 5.0.5 ==== yast2-installation ==== Version update (5.0.4 -> 5.0.5) - In zVM or KVM installations the cio_ignore kernel argument will be written only if given (bsc#1210525). - 5.0.5 ==== yast2-trans ==== Version update (84.87.20240120.54f4b9f06a -> 84.87.20240126.9c7185e3f6) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240126.9c7185e3f6: * New POT for text domain 'installation'. * New POT for text domain 'base'. * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * New POT for text domain 'sap-installation-wizard'. ==== zenity ==== Version update (4.0.0 -> 4.0.1) - Update to version 4.0.1 + Changes and fixes since 4.0.0: - Bump webkit2gtk requirement in README - about: The licence is LGPL2.1+, not GPL - entry: Calculate number of --entry-text's properly (#75) - test: Add entry test in response to issue #75 - question: fix option --default-cancel - calendar: Fix off-by-one in day - test: Add test for --calendar - Updated translations.

1 0

New Arm Tumbleweed snapshot 20240128 released!
by Guillaume Gardet 30 Jan '24

30 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 389-ds (2.4.0~git113.84a845c -> 2.4.0~git126.5936946) 7zip Mesa (23.3.3 -> 23.3.4) Mesa-drivers (23.3.3 -> 23.3.4) MozillaFirefox (121.0.1 -> 122.0) btrfsprogs (6.6.2 -> 6.7) ceph corosync gcc13 (13.2.1+git8205 -> 13.2.1+git8250) gpg2 (2.4.3 -> 2.4.4) grub2 gstreamer-plugins-bad inih (57 -> 58) kernel-source lftp libmaxminddb (1.8.0 -> 1.9.1) libqmi libsolv (0.7.27 -> 0.7.28) libstorage-ng (4.5.175 -> 4.5.176) libvirt man mozilla-nss (3.95 -> 3.96.1) mutter nvidia-open-driver-G06-signed openssl-1_1 perl-Bootloader (1.10 -> 1.11) postfix (3.8.4 -> 3.8.5) publicsuffix (20240107 -> 20240123) python-lxml raspberrypi-firmware-dt ruby (3.2 -> 3.3) ruby3.2 rubygem-gem2rpm spice-gtk thin-provisioning-tools (1.0.9 -> 1.0.10) tiff transactional-update virt-manager webkit2gtk3 webkit2gtk3-soup2 yast2 (5.0.3 -> 5.0.4) yast2-bootloader (5.0.2 -> 5.0.4) yast2-installation (5.0.3 -> 5.0.4) zbar === Details === ==== 389-ds ==== Version update (2.4.0~git113.84a845c -> 2.4.0~git126.5936946) Subpackages: lib389 libsvrcore0 - Update to version 2.4.0~git126.5936946: * Issue 6028 - vlv index keys inconsistencies (#6031) * Issue 5989 - RFE support of inChain Matching Rule (#5990) * Issue 6022 - lmdb inconsistency between vlv index and vlv cache names (#6026) * Issue 6015 - Fix typo remeber (#6014) * Issue 6016 - Pin upload/download artifacts action to v3 * Issue 5939 - During an update, if the target entry is reverted in the entry cache, the server should not retry to lock it (#6007) * Issue 4673 - Update Rust crates * Issue 6004 - idletimeout may be ignored (#6005) * Issue 5954 - Disable Transparent Huge Pages * Issue 5997 - test_inactivty_and_expiration CI testcase is wrong (#5999) * Issue 5993 - Fix several race condition around CI tests (#5996) * Issue 5944 - Reversion of the entry cache should be limited to BETXN plugin failures (#5994) * Bump openssl from 0.10.55 to 0.10.60 in /src (#5995) ==== 7zip ==== - Fix build on SLE-15-SP6 * fix-avx-sle.patch ==== Mesa ==== Version update (23.3.3 -> 23.3.4) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - Update to bugfix release 23.3.4 - -> https://docs.mesa3d.org/relnotes/23.3.4.html ==== Mesa-drivers ==== Version update (23.3.3 -> 23.3.4) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to bugfix release 23.3.4 - -> https://docs.mesa3d.org/relnotes/23.3.4.html ==== MozillaFirefox ==== Version update (121.0.1 -> 122.0) - Mozilla Firefox 122.0 https://www.mozilla.org/en-US/firefox/122.0/releasenotes/ MFSA 2024-01 (bsc#1218955) * CVE-2024-0741 (bmo#1864587) Out of bounds write in ANGLE * CVE-2024-0742 (bmo#1867152) Failure to update user input timestamp * CVE-2024-0743 (bmo#1867408) Crash in NSS TLS method * CVE-2024-0744 (bmo#1871089) Wild pointer dereference in JavaScript * CVE-2024-0745 (bmo#1871838) Stack buffer overflow in WebAudio * CVE-2024-0746 (bmo#1660223) Crash when listing printers on Linux * CVE-2024-0747 (bmo#1764343) Bypass of Content Security Policy when directive unsafe-inline was set * CVE-2024-0748 (bmo#1783504) Compromised content process could modify document URI * CVE-2024-0749 (bmo#1813463) Phishing site popup could show local origin in address bar * CVE-2024-0750 (bmo#1863083) Potential permissions request bypass via clickjacking * CVE-2024-0751 (bmo#1865689) Privilege escalation through devtools * CVE-2024-0752 (bmo#1866840) Use-after-free could occur when applying update on macOS * CVE-2024-0753 (bmo#1870262) HSTS policy on subdomain could bypass policy of upper domain * CVE-2024-0754 (bmo#1871605) Crash when using some WASM files in devtools * CVE-2024-0755 (bmo#1868456, bmo#1871445, bmo#1873701) Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7, and Thunderbird 115.7 - requires NSS 3.96.1 - rebased patches ==== btrfsprogs ==== Version update (6.6.2 -> 6.7) Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - update to 6.7 * mkfs: make 4k sectorsize default, recommended minimum kernel for that is 6.1 and requires subpage support on architectures with page size > 4k * subvolume create: return correct error code when a target already exists * tree-checker: dump tree block on error (btrfs-convert, ...) * scrub limit: fix reporting of a limit set while there's none * fi usage: fix reporting of unallocated data or raid56 profile without root privs due to lack of that information * convert: * align data block group lengths to 64K * fix conversion of a large filesystem when there are partial inode items present due to caching * other: * build fixes * updated documentation * new and updated tests - update to 6.6.3 * subvol create: accept multiple arguments * subvol delete: print the subvolume id in the output * subvol sync: check if the filesystems is still writeable so it does not wait indefinitely * device delete: add a timeout and warning when deleting multiple devices * scrub status: report limit if set in sysfs/../scrub_speed_max * scrub limit: new command to show or set the per-device scrub limits * scrub start: report the limit if set * build: * fix CPU feature detection on aarch64 * support Botan and OpenSSL (3.2+) as crypto backends * other: * documentation updates, RTD config update * new and updated tests * CI updates ==== ceph ==== Subpackages: librados2 librbd1 - Advertised user/groups that are generated by the pre scripts: * package cephadm generates user/group cephadm * package ceph-common generates user/group ceph ==== corosync ==== Subpackages: libcfg6 libcmap4 libcorosync_common4 libcpg4 libquorum5 - Provide user(coroqnetd) and group(coroqnetd) in the -qnetd package: user and group are generated by the pre script. ==== gcc13 ==== Version update (13.2.1+git8205 -> 13.2.1+git8250) Subpackages: cpp13 libasan8 libatomic1 libgcc_s1 libgccjit0 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-locale libstdc++6-pp libtsan2 libubsan1 - Update to gcc-13 branch head, fc7d87e0ffadca49bec29b2107, git8250 * Includes fix for building TVM. [boo#1218492] - Add cross-X-newlib-devel requires to newlib cross compilers. [boo#1219031] - Package m2rte.so plugin in the gcc13-m2 sub-package rather than in gcc13-devel. [boo#1210959] - Require libstdc++6-devel-gcc13 from gcc13-m2 as m2 programs are linked against libstdc++6. ==== gpg2 ==== Version update (2.4.3 -> 2.4.4) Subpackages: dirmngr - Update to 2.4.4: [bsc#1219191] * gpg: Do not keep an unprotected smartcard backup key on disk. See https://gnupg.org/blog/20240125-smartcard-backup-key.html for a security advisory. [T6944] * gpg: Allow to specify seconds since Epoch beyond 2038 on 32-bit platforms. [T6736] * gpg: Fix expiration time when Creation-Date is specified. [T5252] * gpg: Add support for Subkey-Expire-Date. [rG96b69c1866] * gpg: Add option --with-v5-fingerprint. [T6705] * gpg: Add sub-option ignore-attributes to --import-options. * gpg: Add --list-filter properties sig_expires/sig_expires_d. * gpg: Fix validity of re-imported keys. [T6399] * gpg: Report BEGIN_ status before examining the input. [T6481] * gpg: Don't try to compress a read-only keybox. [T6811] * gpg: Choose key from inserted card over a non-inserted card. [T6831] * gpg: Allow to create revocations even with non-compliant algos. [T6929] * gpg: Fix regression in the Revoker keyword of the parameter file. [T6923] * gpg: Improve error message for expired default keys. [T4704] * gpgsm: Add --always-trust feature. [T6559] * gpgsm: Support ECC certificates in de-vs mode. [T6802] * gpgsm: Major rewrite of the PKCS#12 parser. [T6536] * gpgsm: No not show the pkcs#12 passphrase in debug output. [T6654] * keyboxd: Timeout on failure to get the database lock. [T6838] * agent: Update the key stubs only if really modified. [T6829] * scd: Add support for certain Starcos 3.2 cards. [rG5304c9b080] * scd: Add support for CardOS 5.4 cards. [rG812f988059] * scd: Add support for D-Trust 4.1/4.4 cards. [rG0b85a9ac09] * scd: Add support for Smartcafe Expert 7.0 cards. [T6919] * scd: Add a length check for a new PIN. [T6843] * tpm: Fix keytotpm handling in the agent. [rG9909f622f6] * tpm: Fixes for the TPM test suite. [T6052] * dirmngr: New option --ignore-crl-extensions. [T6545] * dirmngr: Support config value "none" to disable the default keyserver. [T6708] * dirmngr: Fix handling of the HTTP Content-Length. [rGa5e33618f4] * gpgconf: Add commands --lock and --unlock. [rG93b5ba38dc] * gpgconf: Add keyword socketdir to gpgconf.ctl. [rG239c1fdc28] * gpgconf: Adjust the -X command for the new VERSION file format. [T6918] * wkd: Use export-clean for gpg-wks-client's --mirror and --create commands. [rG2c7f7a5a278c] * wkd: Make --add-revocs the default in gpg-wks-client. New option - -no-add-revocs. [rG10c937ee68] * Remove duplicated backslashes when setting the homedir. [T6833] * Ignore attempts to remove the /dev/null device. [T6556] * Improve advisory file lock retry strategy. [T3380] * Release-info: https://dev.gnupg.org/T6578 * Remove patch upstream: - gnupg-Report-BEGIN_-status-before-examining-the-input.patch ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Reinstate the verification for a non-zero total entry count to skip unmapped data blocks (bsc#1218864) * 0001-fs-xfs-always-verify-the-total-number-of-entries-is-.patch - Removed temporary fix as reverting it will cause a different XFS parser bug * 0001-Revert-fs-xfs-Fix-XFS-directory-extent-parsing.patch ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Disable zxing in Leap15 * Leap 15 can not provide zxing >= 1.4.0, zxing is inherited from SLE15 but SLE15 do provide zxing version 1.2.0 only, Factory do have zxing-cpp 2.0.0 however it's not an API compatible version. ==== inih ==== Version update (57 -> 58) - Update to version 58 * Add ini_ prefix even to static names so inih can be used as an [#]include. ==== kernel-source ==== - rpm/constraints.in: add static multibuild packages Commit 841012b049a5 (rpm/mkspec: use kernel-source: prefix for constraints on multibuild) added "kernel-source:" prefix to the dynamically generated kernels. But there are also static ones like kernel-docs. Those fail to build as the constraints are still not applied. So add the prefix also to the static ones. Note kernel-docs-rt is given kernel-source-rt prefix. I am not sure it will ever be multibuilt... - commit c2e0681 - Revert "Limit kernel-source build to architectures for which the kernel binary" This reverts commit 08a9e44c00758b5f3f3b641830ab6affff041132. The fix for bsc#1108281 directly causes bsc#1218768, revert. - commit 2943b8a - mkspec: Include constraints for both multibuild and plain package always There is no need to check for multibuild flag, the constraints can be always generated for both cases. - commit 308ea09 - rpm/mkspec: use kernel-source: prefix for constraints on multibuild Otherwise the constraints are not applied with multibuild enabled. - commit 841012b - rpm/kernel-source.rpmlintrc: add action-ebpf Upstream commit a79d8ba734bd (selftests: tc-testing: remove buildebpf plugin) added this precompiled binary blob. Adapt rpmlintrc for kernel-source. - commit b5ccb33 - scripts/tar-up.sh: don't add spurious entry from kernel-sources.changes.old The previous change added the manual entry from kernel-sources.change.old to old_changelog.txt unnecessarily. Let's fix it. - commit fb033e8 - rpm/kernel-docs.spec.in: fix build with 6.8 Since upstream commit f061c9f7d058 (Documentation: Document each netlink family), the build needs python yaml. - commit 6a7ece3 - futex: Prevent the reuse of stale pi_state (bsc#1218841). Update upstream status (Queued in subsystem maintainer repository). - commit a3ee207 - Refresh patches.rpmify/media-solo6x10-replace-max-a-min-b-c-by-clamp-b-a-c.patch. Update usptream status. - commit 589bdfa - Update config files, enable CONFIG_IMA_DISABLE_HTABLE in all archs for Tumbleweed as SLE15-SP6 kernel does (bsc#1218400). - commit 020caa6 ==== lftp ==== - Apply "0001-lftp_ssl-deinitialize-the-lftp_ssl_openssl_instance.patch" to fix a crash that ocurred when lftp is run on s390x with an IBM crypto card installed. The issue has been reported to upstream at https://github.com/lavv17/lftp/issues/716. [bsc#1213984] ==== libmaxminddb ==== Version update (1.8.0 -> 1.9.1) - libmaxminddb 1.9.1: * On very large databases, the calculation to determine the search tree size could overflow. This was fixed and several additional guards against overflows were added * build system tweaks ==== libqmi ==== Subpackages: libqmi-glib5 libqmi-tools - Add patch: * 0001-message-fix-16bit-service-on-big-endian.patch - Fixes 16-bit service indications on big endian architectures. Cherry-picked from upstream qmi-1-34 branch ==== libsolv ==== Version update (0.7.27 -> 0.7.28) Subpackages: libsolv-tools ruby-solv - build for multiple python versions [jsc#PED-6218] - bump version to 0.7.28 ==== libstorage-ng ==== Version update (4.5.175 -> 4.5.176) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Swedish) (bsc#1149754) - 4.5.176 ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Replace temporary build fix with upstream equivalent bsc#1218823 ==== man ==== - Skip posttrans dependency on systemd to support container without systemd (boo#1215538) - Use %(trans)filetriggerin and %(trans)filetriggerpostun to get an uptodate man database for installed manual pages ==== mozilla-nss ==== Version update (3.95 -> 3.96.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-tools - update to NSS 3.96.1 * bmo#1869408 - Use pypi dependencies for MacOS worker in ./build_gyp.sh * bmo#1830978 - p7sign: add -a hash and -u certusage (also p7verify cleanups) * bmo#1867408 - add a defensive check for large ssl_DefSend return values * bmo#1869378 - Add dependency to the taskcluster script for Darwin * bmo#1869378 - Upgrade version of the MacOS worker for the CI ==== mutter ==== - Rebase mutter-disable-cvt-s390x.patch for mutter 45.x. ==== nvidia-open-driver-G06-signed ==== - splitted up 61-nvidia-$flavor.conf to 59-nvidia-$flavor.conf and 61-nvidia-$flavor.conf, because 'install' line cannot be overwritten with higher config number ... - mistakenly moved dracut config file from 60-nvidia-%1.conf to 61-nvidia-%1.conf --> reverted! - switched from 60-nvidia-$flavor.conf to 61-nvidia-$flavor.conf in modprobe.d to resolve conflict with older package, which can be installed in parallel ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Because OpenSSL 1.1.1 is no longer default, let's rename engine directories to contain version of OpenSSL and let unversioned for the default OpenSSL. [bsc#1194187, bsc#1207472, bsc#1218933] * /etc/ssl/engines.d -> /etc/ssl/engines1_1.d * /etc/ssl/engdef.d -> /etc/ssl/engdef1_1.d * Update patches: - openssl-1_1-ossl-sli-002-ran-make-update.patch - openssl-1_1-use-include-directive.patch ==== perl-Bootloader ==== Version update (1.10 -> 1.11) - merge gh#openSUSE/perl-bootloader#162 - handle script exit codes properly (bsc#1218847) - 1.11 ==== postfix ==== Version update (3.8.4 -> 3.8.5) - update to 3.8.5 * Security: this release improves support to defend against an email spoofing attack (SMTP smuggling) on recipients at a Postfix server. For background, see https://www.postfix.org/smtp-smuggling.html. ==== publicsuffix ==== Version update (20240107 -> 20240123) - Update to version 20240123: * util: gTLD data autopull updates for 2024-01-23T15:14:10 UTC (#1921) ==== python-lxml ==== - Fix build error for Leap. Use build and test as descriped on upstream. ==== raspberrypi-firmware-dt ==== - Extend "ARM: dts: bcm27xx: Use better name for spidev" patch coverage. Change compatible "spidev" to "rohm,dh2228fv" in overlay files too. Fixes bsc#1219094. ==== ruby ==== Version update (3.2 -> 3.3) - switch the default ruby to 3.3 ==== ruby3.2 ==== Subpackages: libruby3_2-3_2 - Omit test_session_reuse_but_expire if OpenSSL 3.2.0 Add Omit-test_session_reuse_but_expire-if-OpenSSL-3.2.0.patch ==== rubygem-gem2rpm ==== - Update the ruby ABI version in the 3.3.0 paths to the final string. - enable building for ruby 3.3 ==== spice-gtk ==== Subpackages: libspice-client-glib-2_0-8 libspice-client-glib-helper libspice-client-gtk-3_0-5 typelib-1_0-SpiceClientGlib-2_0 typelib-1_0-SpiceClientGtk-3_0 - Use libphotodav-3.0 on SLE/Leap 15.6+ (boo#1219083). ==== thin-provisioning-tools ==== Version update (1.0.9 -> 1.0.10) - Update to version 1.0.10: * Bump version to 1.0.10 * [build] Update dependencies * [all] Fix clippy lints and typos * [space_map] Allow non-zero values in unused index block entries * [thin_repair] Fix child keys checking on the node with a zero key * [thin_check] Tweak the logs to avoid confusion with node errors * [thin_check] Support overriding the details tree root * [tests] Update expected help text for _pack and _unpack * [all] Fix clippy lints on optional targets * [build] Simplify the pre-commit hooks by checking all the targets at once * [thin_metadata_unpack] Allow long format for input and output * [space map] Fix incorrect index_entry.nr_free while expansion * thin_metadata_pack: Allow long format for input and output ==== tiff ==== - security update: * CVE-2023-52356 [bsc#1219213] Fix segfault in TIFFReadRGBATileExt() + tiff-CVE-2023-52356.patch ==== transactional-update ==== Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit tukitd - Use "up" instead of "dup" by default on ALP [bsc#1218861] ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Upstream bug fixes (bsc#1027942) (jsc#PED-6305) 058-uri-Mock-domcaps-returning-NO_SUPPORT.patch 059-tests-cli-Adjust-hotplug-test-for-latest-libvirt.patch 060-Fix-some-pylint.patch 061-tests-ui-make-newvm-test-start-less-flakey.patch 062-tests-ui-make-creatnet-test-start-less-flakey.patch - Cleanup now working or non-existant %check tests ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Add webkit2gtk3-CVE-2024-23222.patch: fix a type confusion issue (bsc#1219113 CVE-2024-23222). ==== webkit2gtk3-soup2 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Add webkit2gtk3-CVE-2024-23222.patch: fix a type confusion issue (bsc#1219113 CVE-2024-23222). ==== yast2 ==== Version update (5.0.3 -> 5.0.4) Subpackages: yast2-logs - Reading Kernel Params: Use kernel cmdline when install.inf is not available (bsc#1216408) - 5.0.4 ==== yast2-bootloader ==== Version update (5.0.2 -> 5.0.4) - Persist s390 cio_ignore kernel argument always when given (bsc#1210525). - 5.0.4 - Do not try finding undefined bootloader name to avoid error in logs (bsc#1218700) - 5.0.3 ==== yast2-installation ==== Version update (5.0.3 -> 5.0.4) - Keep cio_ignore kernel argument when present in the parmfile or use the cio_ignore -k output if not and write it always even in zVM and KVM (bsc#1210525). - 5.0.4 ==== zbar ==== - Fix building for Leap

1 0

Desktop in Raspberry Pi 3 B+
by Roger Oberholtzer 23 Jan '24

23 Jan '24

I have been trying the current Leap 15.5. aarch64 appliance on a Raspberry Pi 3 B+. Most things are working. But I have a problem with the GUI login / desktop. I started with the KDE variant. ssdm would not start. I saw that it complained that there was not enough memory for some texture, and it exited. So I switches to xddm. That would start. But when KDE should start, I get a functioning mouse cursor, but nothing else, Just a black background. With a mouse. I then tried xfce. Then the login part went fine with no changes. But the desktop was still a problem like with KDE. Except the screen background was white. I see that some processes related to the desktop are running. I don't know xfce well enough to know if some critical thing is not running. When installing Raspbian on the device, the desktop works. But perhaps its lxde that uses far less resources? Should I expect that all these desktops start on a Pi 3 B+? I now that there might be performance issues. But should they at least start. And int he case of KDE/sddm, should the login at least function? I'm confused where to look next. -- Roger Oberholtzer

3 8

New Arm Tumbleweed snapshot 20240118 released!
by Guillaume Gardet 19 Jan '24

19 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox (121.0 -> 121.0.1) PackageKit baobab bash (5.2.21 -> 5.2.26) dconf-editor desktop-file-utils elfutils (0.189 -> 0.190) elfutils-debuginfod (0.189 -> 0.190) eog evince ffmpeg-6 (6.0.1 -> 6.1.1) fwupd gnome-logs gnome-music gnutls (3.8.2 -> 3.8.3) grub2 gtksourceview iputils (20231222 -> 20240117) libcroco libgsf libjpeg-turbo libjxl-gtk (0.8.2 -> 0.9.0) libosinfo libstorage-ng (4.5.173 -> 4.5.174) libxkbcommon live555 (2023.05.10 -> 2023.11.30) llvm17 mosh ncurses (6.4.20240106 -> 6.4.20240113) nvidia-open-driver-G06-signed orca (45.1 -> 45.2) plocate (1.1.19 -> 1.1.22) polari python-flufl.i18n python-lxml (4.9.4 -> 5.1.0) python-numpy python-redis python-zope.component rdesktop readline (8.2 -> 8.2.10) selinux-policy (20240104 -> 20240116) shadow (4.14.2 -> 4.14.3) sushi telepathy-logger upower xfce4-whiskermenu-plugin (2.8.2 -> 2.8.3) xorg-x11-server (21.1.9 -> 21.1.11) xwayland (23.2.2 -> 23.2.4) === Details === ==== MozillaFirefox ==== Version update (121.0 -> 121.0.1) - Mozilla Firefox 121.0.1 * Fixed unexpected line wrapping in some CJK contexts caused by changes in ideographic space handling. bmo#1870973) * Fixed a hang when loading sites containing column-based layouts under some circumstances. bmo#1867784) * Fixed missing rounded corners for videos playing over another video. bmo#1869994) * Fixed Firefox not closing properly and other applications being unable to use a USB security key after being previously used during a Firefox session. bmo#1863135) ==== PackageKit ==== Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Add PackageKit-find-python-3-6.patch: Specify the Python version we need to build this package. ==== baobab ==== - Convert to source service for easier updating. ==== bash ==== Version update (5.2.21 -> 5.2.26) Subpackages: bash-doc bash-sh - Add upstream patches * bash52-022 It's possible for readline to try to zero out a line that's not null-terminated, leading to a memory fault. * bash52-023 Running `local -' multiple times in a shell function would overwrite the original saved set of options. * bash52-024 Fix bug where associative array compound assignment would not expand tildes in values. * bash52-025 Make sure a subshell checks for and handles any terminating signals before exiting (which might have arrived after the command completed) so the parent and any EXIT trap will see the correct value for $?. ==== dconf-editor ==== - Convert to source service for easier updating. ==== desktop-file-utils ==== - support non-SUSE distributions ==== elfutils ==== Version update (0.189 -> 0.190) Subpackages: libasm1 libdw1 libelf1 - Update to version 0.190: * libelf: Add RELR support. * libdw: Recognize .debug_[ct]u_index sections * readelf: - Support readelf -Ds, --use-dynamic --symbol. - Support .gdb_index version 9 * scrlines: New tool that compiles a list of source files associated with a specified dwarf/elf file. * backends: Various LoongArch updates. ==== elfutils-debuginfod ==== Version update (0.189 -> 0.190) Subpackages: debuginfod-client debuginfod-profile libdebuginfod1 - Update to version 0.190 * Schema change (reindexing required, sorry!) for a 60% compression in filename representation, which was a large part of the sqlite index; also, more deliberate sqlite - wal management during scanning using the - -scan-checkpoint option. ==== eog ==== - Convert to source service for easier updating. - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== evince ==== Subpackages: evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Convert to source service for easier updating. ==== ffmpeg-6 ==== Version update (6.0.1 -> 6.1.1) Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Update to version 6.1.1: * libaribcaption decoder * Playdate video decoder and demuxer * Extend VAAPI support for libva-win32 on Windows * afireqsrc audio source filter * arls filter * ffmpeg CLI new option: -readrate_initial_burst * zoneplate video source filter * command support in the setpts and asetpts filters * Vulkan decode hwaccel, supporting H264, HEVC and AV1 * color_vulkan filter * bwdif_vulkan filter * nlmeans_vulkan filter * RivaTuner video decoder * xfade_vulkan filter * vMix video decoder * Essential Video Coding parser, muxer and demuxer * Essential Video Coding frame merge bsf * bwdif_cuda filter * Microsoft RLE video encoder * Raw AC-4 muxer and demuxer * Raw VVC bitstream parser, muxer and demuxer * Bitstream filter for editing metadata in VVC streams * Bitstream filter for converting VVC from MP4 to Annex B * scale_vt filter for videotoolbox * transpose_vt filter for videotoolbox * support for the P_SKIP hinting to speed up libx264 encoding * Support HEVC,VP9,AV1 codec in enhanced flv format * apsnr and asisdr audio filters * OSQ demuxer and decoder * Support HEVC,VP9,AV1 codec fourcclist in enhanced rtmp protocol * CRI USM demuxer * ffmpeg CLI '-top' option deprecated in favor of the setfield filter * VAAPI AV1 encoder * ffprobe XML output schema changed to account for multiple variable-fields elements within the same parent element * ffprobe -output_format option added as an alias of -of - Remove patch6 0001-avfilter-vf_libplacebo-remove-deprecated-field.diff - Prefer libvpl to libmfx: the latter is deprecated - Delete ffmpeg-6-private-devel package as it is only needed to build libav-tools ==== fwupd ==== Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Fix build failure on s390x and ppc64le + This release modifies spec file - add s390x and ppc64le into default 'with efi_fw_update' so that old dbxtool version can be obsoleted. ==== gnome-logs ==== - Convert to source service for easier updating. ==== gnome-music ==== - Convert to source service for easier updating. ==== gnutls ==== Version update (3.8.2 -> 3.8.3) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.3: * libgnutls: Fix more timing side-channel inside RSA-PSK key exchange. [GNUTLS-SA-2024-01-14, CVSS: medium] [bsc#1218865, CVE-2024-0553] * libgnutls: Fix assertion failure when verifying a certificate chain with a cycle of cross signatures. [GNUTLS-SA-2024-01-09, CVSS: medium] [bsc#1218862, CVE-2024-0567] * libgnutls: Fix regression in handling Ed25519 keys stored in PKCS#11 token certtool was unable to handle Ed25519 keys generated on PKCS#11 with pkcs11-tool (OpenSC). This is a regression introduced in 3.8.2. * Rebase gnutls-FIPS-140-3-references.patch * Updated upstream gnutls.keyring ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Resolved XFS regression leading to the "not a correct XFS inode" error by temporarily reverting the problematic commit (bsc#1218864) * 0001-Revert-fs-xfs-Fix-XFS-directory-extent-parsing.patch ==== gtksourceview ==== Subpackages: libgtksourceview-3_0-1 typelib-1_0-GtkSource-3_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== iputils ==== Version update (20231222 -> 20240117) - Update to version 20240117 (ping bugfix release) https://github.com/iputils/iputils/releases/tag/20240117 ==== libcroco ==== - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libgsf ==== Subpackages: gsf-office-thumbnailer libgsf-1-114 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libjpeg-turbo ==== - Do not require SIMD support when it does not exist ==== libjxl-gtk ==== Version update (0.8.2 -> 0.9.0) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Remove cjxl/djxl manpages from gtk flavor installation, these are part of the tools subpackage from the main flavor. - Update to release 0.9 * Encoder API: * Add JxlEncoderSetExtraChannelDistance to adjust the quality of extra channels (like alpha) separately. * New API functions for streaming encoding. * New options for more fine-grained control over metadata preservation when using JxlEncoderAddJPEGFrame. * New function JxlEncoderSetUpsamplingMode to change the upsampling method, e.g. to use nearest-neighbor upsampling for pixel art. * New function JxlEncoderDistanceFromQuality for convenience to calculate a distance given a quality. * Decoder API: Implemented JxlDecoderSetOutputColorProfile and JxlDecoderSetCms to enable decoding to desired colorspace. * Deprecated functions removed from encoder and decoder APIs. * Command-line tools: * cjxl can now be used to explicitly add/update/strip Exif/XMP/JUMBF metadata using the decoder-hints syntax, e.g. cjxl input.ppm -x exif=input.exif output.jxl * djxl can now be used to extract Exif/XMP/JUMBF metadata. ==== libosinfo ==== Subpackages: libosinfo-1_0-0 typelib-1_0-Libosinfo-1_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== libstorage-ng ==== Version update (4.5.173 -> 4.5.174) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#979 - allow to get Arch object from SystemInfo - make testcase more robust - coding style - 4.5.174 ==== libxkbcommon ==== Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - Add libxkbcommon-tools-bash-completions. ==== live555 ==== Version update (2023.05.10 -> 2023.11.30) Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 - update up to 2023.11.30: * In the implementation of the "MPEGVideoStreamFramer" class, gave "TimeCode::operator==()" the "const" qualifier, to make some compilers happy. * Performed the annual update of the copyright years near the start of each file - update to 2023.11.08: * Changed the signature to the virtual function "getRTPSinkandRTCP()" (in "ServerMediaSubession", and its subclasses "OnDemandServerMediaSession" and "PassiveServerMediaSubsession") to make its 'result' arguments "rtpSink" and "rtcp" no longer "const *". There was no real reason to make those "const *". - update to 2023.11.07: * In the class "GenericMediaServer", made the variables "fServerMediaSessions", "fClientConnections", and "fClientSessions" 'protected' rather than 'private', to allow subclasses to access them if desired. - update to 2023.10.30: * Fixed a bug in "deleteEventTrigger()" that had accidentally been introduced during the change to 'event trigger' implementation back in June. - update to 2023.07.24: * Updated the event trigger implementation once again, to allow for the possibility of developers redefining MAX_NUM_EVENT_TRIGGERS (it must always be <= the number of bits in an "EventTriggerId", though. - update to 2023.06.20: * Updated the event trigger implementation again - in the case where "NO_STD_LIB" is defined. In this case, "fTriggersAwaitingHandling" is implemented as an array of "Boolean volatile"s, rather than as a 32-bit bitmap. This should make 'race conditions' less likely even if "NO_STD_LIB" is defined (though you should use the preferred, default implementation - that uses an array of "std::atomic_flag"s - if possible). - update to 2023.06.16: * Changed the (default) implementation of 'event triggers' in "BasicTaskScheduler" to implement "fTriggersAwaitingHandling" using "std:atomic_flag"s, rather than as a bitmap. This should overcome 'race conditions' that some users experienced when calling "triggerEvent()" from a non-LIVE555 thread. * Note that this is the first time the LIVE555 code has required the C++ standard library. (If you cannot use the C++ standard library, then you can compile the code - but getting the old behavior - by defining "NO_STD_LIB".) * Minor change to "RTSPCommon.cpp" to overcome a compilation error in XCode on Mac OS X. - update to 2023.06.14: * Fixed a bug in the Matroska file parsing code that could sometimes cause a 'use after free' error. (bsc#1218758, CVE-2023-20573) - update to 2023.06.10: * Minor change to "GroupsockHelper.cpp" to overcome a compilation error in XCode on Mac OS X. - update to 2023.06.08: * Updated the "dateHeader()" function in "RTSPCommon.cpp" to use "gmtime_r()" instead of the older, non-thread-safe "gmtime()". - Applied workarounds for the build error with atomic_flag test ==== llvm17 ==== - Use %_target_* for determining the compiler host triple (boo#1218701) ==== mosh ==== - Remove the deprecated perl-IO-Socket-INET6 dependency. * Remove the dependency on perl(IO::Socket::INET6) as it has been deprecated by upstream, is no longer suitable for use and its not being maintained. A compatible replacement for this package is perl(IO::Socket::IP) which is shipped by the perl-base package. * In the sources, the perl(IO::Socket::IP) is preferred over INET6. ==== ncurses ==== Version update (6.4.20240106 -> 6.4.20240113) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240113 + improve formatting/style of manpages (patches by Branden Robinson). + modify dist.mk to avoid passing developer's comments in manpages into the generated html documentation. + use ansi+local, ansi+local1, ansi+pp, ansi+rca, ansi+rca2, ansi+sgr to trim -TD + restore padding for wy520* and vt320-k311 (report by Sven Joachim). ==== nvidia-open-driver-G06-signed ==== - create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks also during modprobing the nvidia module; this changes the issue of not having access to /dev/nvidia${devid}, when gfxcard has been replaced by a different gfx card after installing the driver ==== orca ==== Version update (45.1 -> 45.2) - Update to version 45.2: + Web: Fix bug causing us to get stuck in menu bar during caret navigation. + General: Dump our cached information in response to children-changed events so that we do not present stale information. + Updated translations. ==== plocate ==== Version update (1.1.19 -> 1.1.22) - remove fallback for _fillupdir in spec file, should be supported everywhere now - update to version 1.1.22: * Revert the updatedb change in 1.1.21 that did not open pruned paths; it broke pruning of paths that were not at the root (e.g. /foo/bar, as opposed to /foo). Reported by David Caldwell - use systemd timer file provided by the project - update to version 1.1.21: * Improve interactions between pruning and bind mount detection logic * Pruned paths are now not opened, which can be useful in certain cases. Note that this does not (yet) apply to filesystems that are pruned due to type and not due to paths; they are still opened and then immediately closed again - update to version 1.1.20: * Fix updatedb writing incomplete .db files under Termux * Make the systemd timer run more consistently during the night * Add an (undocumented) flag --ignore-visibility to plocate, giving the equivalent of building the database with - -require-visibility no ==== polari ==== - Convert to source service for easier updating. ==== python-flufl.i18n ==== - Drop unneeded pdm dependency ==== python-lxml ==== Version update (4.9.4 -> 5.1.0) - update to version 5.1.0: Details on https://lxml.de/5.1/changes-5.1.0.html removed merged patches: - ISO-Schematron-schema-optional.patch - remove-ISO-Schematron-schema.patch - close_file_before_test.patch ==== python-numpy ==== - Update list of expected test failures on riscv64 - Fix gnu-hpc build error for Leap ==== python-redis ==== - add https://github.com/redis/redis-py/pull/3005 as Close-various-objects-created-during-asyncio-tests.patch to fix tests for python 3.12 ==== python-zope.component ==== - Rearrange requirements, run only basic testsuite in SLE-based projects ==== rdesktop ==== - add patch fix_C99_issue_in_configure.patch to fix detection of statvfs64 - add patch fix_dashes_in_manpage.patch to prevent dashes from being utf8 mangled - add patch fix_segfault_in_utils_cert_handle_exception.patch - add patch fix_wrong_string_null_terminated.patch to null-terminate the correct variable - adjust patch rdesktop-fix_pkgconfig_check.patch so it can be applied with "-p1" - minor spec cleanup ==== readline ==== Version update (8.2 -> 8.2.10) Subpackages: libreadline8 readline-doc - Add upstream patch readline82-008 * Add missing prototypes for several function declarations - Add upstream patch readline82-009 * Fix issue where the directory name portion of the word to be completed (the part that is passed to opendir()) requires both tilde expansion and dequoting. Readline only performed tilde expansion in this case, so filename completion would fail. - Add upstream patch readline82-010 * Fix the case where text to be completed from the line buffer (quoted) is compared to the common prefix of the possible matches (unquoted) and the quoting makes the former appear to be longer than the latter. Readline assumes the match doesn't add any characters to the word and doesn't display multiple matches. - Port patches * readline-5.2-conf.patch * readline-6.2-metamode.patch * readline-7.0-screen.patch * readline-8.2.dif ==== selinux-policy ==== Version update (20240104 -> 20240116) Subpackages: selinux-policy-targeted - Update to version 20240116: * Fix gitolite homedir paths (bsc#1218826) ==== shadow ==== Version update (4.14.2 -> 4.14.3) Subpackages: libsubid4 login_defs - Update to 4.14.3: * libshadow: + Avoid null pointer dereference (#904) ==== sushi ==== - Convert to source service for easier updating. ==== telepathy-logger ==== Subpackages: libtelepathy-logger3 telepathy-logger-schema typelib-1_0-TelepathyLogger-0_2 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Own /usr/share/gtk-doc: glib no longer uses gtk-doc and as a consequence cannot be held responsible to deliver that basic directory structure. ==== xfce4-whiskermenu-plugin ==== Version update (2.8.2 -> 2.8.3) Subpackages: xfce4-whiskermenu-plugin-lang - Update to version 2.8.3 * Fix adding launchers to desktop. (Issue #122) * Fix segfault in profile destructor. (Issue #123) * Translation updates ==== xorg-x11-server ==== Version update (21.1.9 -> 21.1.11) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Update to version 21.1.11 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the following patches * U_xephyr-Don-t-check-for-SeatId-anymore.patch * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch ==== xwayland ==== Version update (23.2.2 -> 23.2.4) - This release contains also the following patches mentioned in previous sle15 releases * bsc1218582-0001-dix-allocate-enough-space-for-logical-button-maps.patch * bsc1218583-0001-dix-Allocate-sufficient-xEvents-for-our-DeviceStateN.patch * bsc1218583-0002-dix-fix-DeviceStateNotify-event-calculation.patch * bsc1218583-0003-Xi-when-creating-a-new-ButtonClass-set-the-number-of.patch * bsc1218584-0001-Xi-flush-hierarchy-events-after-adding-removing-mast.patch * bsc1218585-0001-Xi-do-not-keep-linked-list-pointer-during-recursion.patch * bsc1218585-0002-dix-when-disabling-a-master-float-disabled-slaved-de.patch - This release contains also the missing fixes of initial U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch (bsc#1217765) - Update to version 23.2.4 * This release contains fixes for the issues reported in today's security advisory: https://lists.x.org/archives/xorg/2024-January/061525.html * CVE-2023-6816 (bsc#1218582) * CVE-2024-0229 (bsc#1218583) * CVE-2024-21885 (bsc#1218584) * CVE-2024-21886 (bsc#1218585) * CVE-2024-0408 * CVE-2024-0409 - supersedes the patches mentioned below: * U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch

1 0

New Arm Tumbleweed snapshot 20240115 released!
by Guillaume Gardet 18 Jan '24

18 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick (7.1.1.25 -> 7.1.1.26) at-spi2-core attica-qt5 (5.113.0 -> 5.114.0) baloo5 (5.113.0 -> 5.114.0) bluez-qt (5.113.0 -> 5.114.0) breeze5-icons (5.113.0 -> 5.114.0) container-selinux (2.222.0 -> 2.228.0) e2fsprogs frameworkintegration (5.113.0 -> 5.114.0) gcc13 (13.2.1+git8109 -> 13.2.1+git8205) health-checker (1.10 -> 1.10+git20240111.cb84209) jasper (4.1.1 -> 4.1.2) kactivities-stats (5.113.0 -> 5.114.0) kactivities5 (5.113.0 -> 5.114.0) karchive (5.113.0 -> 5.114.0) kauth (5.113.0 -> 5.114.0) kbd (2.6.3 -> 2.6.4) kbookmarks (5.113.0 -> 5.114.0) kcalendarcore (5.113.0 -> 5.114.0) kcmutils (5.113.0 -> 5.114.0) kcodecs (5.113.0 -> 5.114.0) kcompletion (5.113.0 -> 5.114.0) kconfig (5.113.0 -> 5.114.0) kconfigwidgets (5.113.0 -> 5.114.0) kcontacts (5.113.0 -> 5.114.0) kcoreaddons (5.113.0 -> 5.114.0) kcrash (5.113.0 -> 5.114.0) kdav (5.113.0 -> 5.114.0) kdbusaddons (5.113.0 -> 5.114.0) kdeclarative (5.113.0 -> 5.114.0) kded (5.113.0 -> 5.114.0) kdelibs4support (5.113.0 -> 5.114.0) kdesu (5.113.0 -> 5.114.0) kdnssd-framework (5.113.0 -> 5.114.0) kdoctools (5.113.0 -> 5.114.0) kernel-source (6.6.10 -> 6.6.11) kfilemetadata5 (5.113.0 -> 5.114.0) kglobalaccel (5.113.0 -> 5.114.0) kguiaddons (5.113.0 -> 5.114.0) kholidays (5.113.0 -> 5.114.0) khtml (5.113.0 -> 5.114.0) ki18n (5.113.0 -> 5.114.0) kiconthemes (5.113.0 -> 5.114.0) kidletime (5.113.0 -> 5.114.0) kimageformats (5.113.0 -> 5.114.0) kinit (5.113.0 -> 5.114.0) kio (5.113.0 -> 5.114.0) kirigami2 (5.113.0 -> 5.114.0) kitemmodels (5.113.0 -> 5.114.0) kitemviews (5.113.0 -> 5.114.0) kjobwidgets (5.113.0 -> 5.114.0) kjs (5.113.0 -> 5.114.0) knewstuff (5.113.0 -> 5.114.0) knotifications (5.113.0 -> 5.114.0) knotifyconfig (5.113.0 -> 5.114.0) kpackage (5.113.0 -> 5.114.0) kparts (5.113.0 -> 5.114.0) kpeople5 (5.113.0 -> 5.114.0) kplotting (5.113.0 -> 5.114.0) kpty (5.113.0 -> 5.114.0) kquickcharts (5.113.0 -> 5.114.0) kross (5.113.0 -> 5.114.0) krunner (5.113.0 -> 5.114.0) kservice (5.113.0 -> 5.114.0) ktexteditor (5.113.0 -> 5.114.0) ktextwidgets (5.113.0 -> 5.114.0) kunitconversion (5.113.0 -> 5.114.0) kwallet (5.113.0 -> 5.114.0) kwayland (5.113.0 -> 5.114.0) kwidgetsaddons (5.113.0 -> 5.114.0) kwindowsystem (5.113.0 -> 5.114.0) kxmlgui (5.113.0 -> 5.114.0) libKF5ModemManagerQt (5.113.0 -> 5.114.0) libKF5NetworkManagerQt (5.113.0 -> 5.114.0) libdrm (2.4.119 -> 2.4.120) libgedit-amtk libinput (1.24.0 -> 1.25.0) libjcat libstorage-ng (4.5.171 -> 4.5.173) libuv linux-glibc-devel (6.6 -> 6.7) man-pages microos-tools (2.21+git5 -> 2.21+git9) open-lldp (1.1+77.75e83b6fb98e -> 1.1+106.74c0600a8692) pcr-oracle pipewire (1.0.0 -> 1.0.1) plasma-framework (5.113.0 -> 5.114.0) prison-qt5 (5.113.0 -> 5.114.0) purpose (5.113.0 -> 5.114.0) python-Jinja2 (3.1.2 -> 3.1.3) python-authheaders (0.15.3 -> 0.16.0) python-greenlet (3.0.2 -> 3.0.3) python-tornado6 python-urllib3 qqc2-desktop-style (5.113.0 -> 5.114.0) samba (4.19.2+git.324.fa0b54b91b -> 4.19.4+git.339.acf1ccaa020) selinux-policy (20231124 -> 20240104) solid (5.113.0 -> 5.114.0) sonnet (5.113.0 -> 5.114.0) speech-dispatcher syndication (5.113.0 -> 5.114.0) syntax-highlighting (5.113.0 -> 5.114.0) systemd (254.5 -> 254.8) texlive threadweaver (5.113.0 -> 5.114.0) u-boot-rpiarm64 (2023.10 -> 2024.01) vte xdg-desktop-portal xfce4-docklike-plugin (0.4.1 -> 0.4.2) xfce4-notes-plugin (1.10.0 -> 1.11.0) yast2-trans (84.87.20240105.ae431f155e -> 84.87.20240112.f631673f01) zlib-ng-compat (2.1.5 -> 2.1.6) zstd === Details === ==== ImageMagick ==== Version update (7.1.1.25 -> 7.1.1.26) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.26 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md ==== at-spi2-core ==== Subpackages: libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0 - Provide and obsolete more packages from old atk and at-spi2-atk: atk-devel, at-spi2-atk-devel and at-spi2-atk-common. ==== attica-qt5 ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Attica5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== baloo5 ==== Version update (5.113.0 -> 5.114.0) Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * [IndexCleaner] Remove no-op recursion over includedFolders * [ExtractorProcess] Remove unused members * [TimeEstimator] Cleanup, remove QObject depency * Use forward declaration for Baloo::Database * Remove inacurate mimetype check in xattrindexer and indexcleaner ==== bluez-qt ==== Version update (5.113.0 -> 5.114.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== breeze5-icons ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== container-selinux ==== Version update (2.222.0 -> 2.228.0) - Update to version 2.228: * Allow container domains to watch fifo_files * container_engine_t: improve for podman in kubernetes case * Allow spc_t to transition to install_t domain * Default to allowing containers to use dri devices * Allow access to BPF Filesystems * Fix kubernetes transition rule * Label kubensenter as well as kubenswrapper * Allow container domains to execute container_runtime_tmpfs_t files * Allow container domains to ptrace themselves * Allow container domains to use container_runtime_tmpfs_t as an entrypoint * Add boolean to allow containers to use dri devices * Give containers access to pod resources endpoint * Label kubenswrapper kubelet_exec_t ==== e2fsprogs ==== Subpackages: e2fsprogs-scrub libcom_err2 libext2fs2 - e2fsck-Suppress-orphan-file-is-clean-message-in-preen.patch: e2fsck: Suppress "orphan file is clean" message in preen mode (bsc#1218747) ==== frameworkintegration ==== Version update (5.113.0 -> 5.114.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: ==== gcc13 ==== Version update (13.2.1+git8109 -> 13.2.1+git8205) Subpackages: cpp13 libasan8 libatomic1 libgcc_s1 libgccjit0 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-locale libstdc++6-pp libtsan2 libubsan1 - Update to gcc-13 branch head, 36ddb5230f56a30317630a928, git8205 ==== health-checker ==== Version update (1.10 -> 1.10+git20240111.cb84209) Subpackages: health-checker-plugins-MicroOS - Update to version 1.10+git20240111.cb84209: * Add missing rule for health-checker.service.8 * Don't generate html documentation * Fixing some typo's and improving the UX of the health-checker output * Fix a typo in README.md ==== jasper ==== Version update (4.1.1 -> 4.1.2) - Update to 4.1.2: * Fix invalid memory write bug (#367) bsc#1218802 (CVE-2023-51257). * Fix missing range check in the JPC encoder (#368). ==== kactivities-stats ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kactivities5 ==== Version update (5.113.0 -> 5.114.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * Drop unused KF5WindowSystem from cli ==== karchive ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kauth ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kbd ==== Version update (2.6.3 -> 2.6.4) Subpackages: kbd-legacy - Update to version 2.6.4: - Use AX_ADD_FORTIFY_SOURCE to avoid redefining _FORTIFY_SOURCE - Do not look up include files in the current working directory ==== kbookmarks ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kcalendarcore ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kcmutils ==== Version update (5.113.0 -> 5.114.0) Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kcodecs ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * KEmailAddress: Add autotests for improved whitespace trimming * KEmailAddress: Only trim surrounding whitespace between E-Mail addresses instead of also replacing all whitespace within E-Mail address names with a single ASCII space ==== kcompletion ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kconfig ==== Version update (5.113.0 -> 5.114.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kconfigwidgets ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kcontacts ==== Version update (5.113.0 -> 5.114.0) Subpackages: kcontacts-lang libKF5Contacts5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kcoreaddons ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5CoreAddons5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * Fix license text loading on Android ==== kcrash ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdav ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5DAV5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdbusaddons ==== Version update (5.113.0 -> 5.114.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdeclarative ==== Version update (5.113.0 -> 5.114.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kded ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdelibs4support ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdesu ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdnssd-framework ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kdoctools ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5DocTools5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kernel-source ==== Version update (6.6.10 -> 6.6.11) - keys, dns: Fix size check of V1 server-list header (git-fixes). - commit 05ae4ad - Linux 6.6.11 (bsc#1012628). - keys, dns: Fix missing size check of V1 server-list header (bsc#1012628). - ALSA: hda/tas2781: do not use regcache (bsc#1012628). - ALSA: hda/tas2781: move set_drv_data outside tasdevice_init (bsc#1012628). - ALSA: hda/tas2781: remove sound controls in unbind (bsc#1012628). - ALSA: hda/realtek: enable SND_PCI_QUIRK for hp pavilion 14-ec1xxx series (bsc#1012628). - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ZBook (bsc#1012628). - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6 (bsc#1012628). - drm/amd/display: pbn_div need be updated for hotplug event (bsc#1012628). - mptcp: prevent tcp diag from closing listener subflows (bsc#1012628). - Revert "PCI/ASPM: Remove pcie_aspm_pm_state_change()" (bsc#1012628). - drm/mgag200: Fix gamma lut not initialized for G200ER, G200EV, G200SE (bsc#1012628). - cifs: cifs_chan_is_iface_active should be called with chan_lock held (bsc#1012628). - cifs: do not depend on release_iface for maintaining iface_list (bsc#1012628). - KVM: x86/pmu: fix masking logic for MSR_CORE_PERF_GLOBAL_CTRL (bsc#1012628). - accel/qaic: Fix GEM import path code (bsc#1012628). - accel/qaic: Implement quirk for SOC_HW_VERSION (bsc#1012628). - wifi: iwlwifi: pcie: don't synchronize IRQs from IRQ (bsc#1012628). - drm/bridge: parade-ps8640: Never store more than msg->size bytes in AUX xfer (bsc#1012628). - drm/bridge: ti-sn65dsi86: Never store more than msg->size bytes in AUX xfer (bsc#1012628). - drm/bridge: ps8640: Fix size mismatch warning w/ len (bsc#1012628). - netfilter: nf_tables: set transport offset from mac header for netdev/egress (bsc#1012628). - nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to llcp_local (bsc#1012628). - octeontx2-af: Fix marking couple of structure as __packed (bsc#1012628). - drm/i915/dp: Fix passing the correct DPCD_REV for drm_dp_set_phy_test_pattern (bsc#1012628). - drm/i915/perf: Update handling of MMIO triggered reports (bsc#1012628). - ice: Fix link_down_on_close message (bsc#1012628). - ice: Shut down VSI with "link-down-on-close" enabled (bsc#1012628). - i40e: Fix filter input checks to prevent config with invalid values (bsc#1012628). - igc: Report VLAN EtherType matching back to user (bsc#1012628). - igc: Check VLAN TCI mask (bsc#1012628). - igc: Check VLAN EtherType mask (bsc#1012628). - ASoC: fsl_rpmsg: Fix error handler with pm_runtime_enable (bsc#1012628). - ASoC: mediatek: mt8186: fix AUD_PAD_TOP register and offset (bsc#1012628). - mlxbf_gige: fix receive packet race condition (bsc#1012628). - net: sched: em_text: fix possible memory leak in em_text_destroy() (bsc#1012628). - r8169: Fix PCI error on system resume (bsc#1012628). - net: Implement missing getsockopt(SO_TIMESTAMPING_NEW) (bsc#1012628). - selftests: bonding: do not set port down when adding to bond (bsc#1012628). - ARM: sun9i: smp: Fix array-index-out-of-bounds read in sunxi_mc_smp_init (bsc#1012628). - sfc: fix a double-free bug in efx_probe_filters (bsc#1012628). - net: bcmgenet: Fix FCS generation for fragmented skbuffs (bsc#1012628). - netfilter: nf_nat: fix action not being set for all ct states (bsc#1012628). - netfilter: nft_immediate: drop chain reference counter on error (bsc#1012628). - net: Save and restore msg_namelen in sock_sendmsg (bsc#1012628). - i40e: fix use-after-free in i40e_aqc_add_filters() (bsc#1012628). - ASoC: meson: g12a-toacodec: Validate written enum values (bsc#1012628). - ASoC: meson: g12a-tohdmitx: Validate written enum values (bsc#1012628). - ASoC: meson: g12a-toacodec: Fix event generation (bsc#1012628). - ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux (bsc#1012628). - i40e: Restore VF MSI-X state during PCI reset (bsc#1012628). - igc: Fix hicredit calculation (bsc#1012628). - apparmor: Fix move_mount mediation by detecting if source is detached (bsc#1012628). - virtio_net: avoid data-races on dev->stats fields (bsc#1012628). - virtio_net: fix missing dma unmap for resize (bsc#1012628). - net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues (bsc#1012628). - net/smc: fix invalid link access in dumping SMC-R connections (bsc#1012628). ... changelog too long, skipping 110 lines ... - commit f421cf4 ==== kfilemetadata5 ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kglobalaccel ==== Version update (5.113.0 -> 5.114.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kguiaddons ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5GuiAddons5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kholidays ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * Introduce holidays observed in Kenya. ==== khtml ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== ki18n ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kiconthemes ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kidletime ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kimageformats ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * avif: new quality settings * Update CI template * HEIF plug-in extended to support HEJ2 format ==== kinit ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kio ==== Version update (5.113.0 -> 5.114.0) Subpackages: kio-core - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * kpropertiesdialog: don't trip over malformed Exec (kde#465290) * WidgetsAskUserActionHandler: fix backport (kde#448532) * WidgetsAskUserActionHandler: Use QPointer to check the validity of parent widgets (kde#448532) ==== kirigami2 ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Kirigami2-5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * Make drawer actions accessible ==== kitemmodels ==== Version update (5.113.0 -> 5.114.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kitemviews ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kjobwidgets ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * KUiServerV2JobTracker: prevent potenial use-after-free ==== kjs ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== knewstuff ==== Version update (5.113.0 -> 5.114.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== knotifications ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== knotifyconfig ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kpackage ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kparts ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kpeople5 ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kplotting ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kpty ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kquickcharts ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kross ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== krunner ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * DBusRunner: Use /runner as default for X-Plasma-DBusRunner-Path property ==== kservice ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== ktexteditor ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== ktextwidgets ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kunitconversion ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kwallet ==== Version update (5.113.0 -> 5.114.0) Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kwayland ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kwidgetsaddons ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kwindowsystem ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== kxmlgui ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== libKF5ModemManagerQt ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== libKF5NetworkManagerQt ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== libdrm ==== Version update (2.4.119 -> 2.4.120) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - update to 2.4.120 * radeon: fix missing stencil_tile_mode initialisation in the linear/fallback case * amdgpu: fix use-after-free * Sync headers with drm-next - adjusted * n_libdrm-drop-valgrind-dep-generic.patch * n_libdrm-drop-valgrind-dep-intel.patch - adjusted n_libdrm-drop-valgrind-dep-generic.patch, n_libdrm-drop-valgrind-dep-intel.patch to fix build ==== libgedit-amtk ==== Subpackages: libgedit-amtk-5-0 typelib-1_0-Amtk-5 - Update spec file to conclicts the legacy amtk-devel, which shipped the same file Amtk-%{api_ver}.gir as libgedit-amtk does. ==== libinput ==== Version update (1.24.0 -> 1.25.0) Subpackages: libinput-udev libinput10 - Update to release 1.25 * Change how left-handed settings are handled for tablets: If libwacom does not contain a definition for a tablet yet, libinput defaults to enabling a left-handed setting. * Quirks for laptops from Dell, Google, Graviton, HP, HUAWEI, Lenovo and Razer, gadgets like the RollerMouse Pro3 and virtual machines like GNOME Boxes, VirtualBox or Virtual Machine Manager are included. ==== libjcat ==== - Do not install test files: pass -Dtest=false to meson instead of Dtest=true (aids with reproducible build, boo#1218715). - Add check section and run meson test. ==== libstorage-ng ==== Version update (4.5.171 -> 4.5.173) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - Translated using Weblate (Russian) (bsc#1149754) - 4.5.173 - merge gh#openSUSE/libstorage-ng#978 - added get_linux_partition_id() taking Arch parameter - make git ignore javascript in generated documentation - coding style - cleanup - 4.5.172 ==== libuv ==== - add ppc64-disable-liburing.patch (bsc#1218365) ==== linux-glibc-devel ==== Version update (6.6 -> 6.7) - Update to kernel headers 6.7 ==== man-pages ==== - Do not remove bpf-helpers.7, as this is not provided by the bpftool package any more. ==== microos-tools ==== Version update (2.21+git5 -> 2.21+git9) - Update to version 2.21+git9: * Add man-online command * Drop support for sle15 builds * Add OBS CI workflow ==== open-lldp ==== Version update (1.1+77.75e83b6fb98e -> 1.1+106.74c0600a8692) Subpackages: liblldp_clif1 - Update to version v1.1+106.74c0600a8692 (from upstream/branch-1.1): * lldpad: dcbx: prevent null dereference in dcbx_free_data * lldpad: ieee8023: reorder disabling pMAC and disabling MM TX * uapi: Provide a copy of const.h * dcbx: Fix use-after-free * dcbx: Fix NULL pointer dereference * ChangeLog: mention Additional Ethernet Capabilities TLV * lldptool: add man page for Additional Ethernet Capabilities TLV * lldptool: add CLI interface for Additional Ethernet Capabilities TLV * lldpad: ieee8023: allow changing the addFragSize advertisement * lldpad: ieee8023: add Additional Ethernet Capabilities TLV logic * lldpad: ieee8023: make ieee8023_data() return a pointer to ieee8023_user_data * lldpad: ethtool netlink accessors for MAC merge layer * lldpad: ieee8023: add basic rchange procedure * uapi: copy ethtool definitions for MAC Merge layer from Linux * uapi: update linux/netlink.h copy * uapi: import ethtool kernel headers from net-next * dcbx: Fix leak when receiving legacy TLVs with mismatched mode * lldp: Reject frames with duplicate TLVs * dcbx: Free manifest in rchange callback * dcbx: Avoid memory leak if ifup is called twice * ctrl_iface: Fix a memory leak in ctrl_iface_deinit * lldp: Avoid sending uninitialized data * lldptool: fix null pointer deference ==== pcr-oracle ==== - Add fix_efi_measure.patch to fix the measurement of EFI binaries ==== pipewire ==== Version update (1.0.0 -> 1.0.1) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.1: * Highlights - Work around the buggy ALSA backend in libcanberra by forcing the pulse backend in module-x11-bell. - Fix a race in the device info updates in pulse-server. - Fix timing and rate matching in ALSA sequencer. - Improve timing information in JACK and from the ALSA driver. - More small fixes and improvements. * PipeWire - Fix a build issue when examples where disabled. - Avoid some compiler warnings. - Avoid some bitfield data races. (#3706) * Modules - Bump the PTP driver priority. (#3217) - Support the previous "allowed" permission in the access module. - Fix filename leak in module-filter-chain. - Work around the buggy ALSA backend in libcanberra by forcing the pulse backend in module-x11-bell. (#3688) - Fix a race in the device info updates in pulse-server. - Fix compatibility in RAOP. (#3698) * SPA - Handle ALSA picth control errors correctly - Clamp buffer-frames correctly. (#3000) - Fix timing and rate matching in ALSA sequencer. (#3657) - Revert a commit that could result in current time in the future in the timing updates. - Improve adapter state checks. - Remove the timer from the ALSA pcm. - Fix timeout in freewheel driver. * Pulse-server - Also handle active ports for monitor sources. - Fix zeroconf-publish format properties. * JACK - Improve timing and transport calculations. - Handle -ENOENT from the core and don't error out. * GStreamer - Handle node port removal in the device provider. (#3708) - Improve error handling while connecting. - Fix dts_offset. ==== plasma-framework ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-desktoptheme - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * [CI] Fix pipeline include ==== prison-qt5 ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== purpose ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - Changes since 5.113.0: * Adapt to KAccounts API change ==== python-Jinja2 ==== Version update (3.1.2 -> 3.1.3) - update to 3.1.3 (bsc#1218722, CVE-2024-22195): * Fix compiler error when checking if required blocks in parent templates are xmlattr filter does not allow keys with spaces. * Make error messages stemming from invalid nesting of {% trans %} blocks more helpful. :pr:`1916` ==== python-authheaders ==== Version update (0.15.3 -> 0.16.0) - Update to version 0.16.0 * Switch from pkg_resources resource_filename to importlib_resources * Add initial doctests for dmarc_lookup.py * Correctly strip trailing backslash in parsed DMARC record components * Handle DMARC records containing empty quoted values (#26) * Add dmarc_lookup.DMARCException and raise it for missing tag/values (#27) * Catch DMARCException error and return DMARC permerror result (#27) * Set DMARC result to permerror if From domain cannot be extracted (#25) * Use dns.resolver.resolve instead of dns.resolver.query due to deprecation * Update PSL from upstream * Add new option for authenticate_message, dmarcbis to enable DMARC policy * discovery and alignment per draft-ietf-dmarc-dmarcbis (default is False) - Removed authheaders-importlib-resources.patch ==== python-greenlet ==== Version update (3.0.2 -> 3.0.3) - Update to 3.0.3 * Python 3.12: Restore the full ability to walk the stack of a suspended greenlet; previously only the innermost frame was exposed. See issue 388. Fix by Joshua Oreman in PR 393. - Disable building the docs: Now requires the furo theme, which is not available. ==== python-tornado6 ==== - Add patch openssl-3.2.patch gh#tornadoweb/tornado#3355 ==== python-urllib3 ==== - Add upstream patch openssl-3.2.patch, to fix tests with opennssl 3.2.0, gh#urllib3/urllib3#3271 ==== qqc2-desktop-style ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== samba ==== Version update (4.19.2+git.324.fa0b54b91b -> 4.19.4+git.339.acf1ccaa020) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs - Remove -x from bash shebang update-apparmor-samba-profile; (bsc#1218431). - Update to 4.19.4 * net changesecretpw cannot set the machine account password if secrets.tdb is empty; (bso#13577). * For generating doc, take, if defined, env XML_CATALOG_FILES; (bso#15540). * Trivial C typo in nsswitch/winbind_nss_netbsd.c; (bso#15541). * vfs_linux_xfs is incorrectly named; (bso#15542). * systemd stumbled over copyright-message at smbd startup; (bso#15377). * Following intermediate abolute share-local symlinks is broken; (bso#15505). * ctdb RELEASE_IP causes a crash in release_ip if a connection to a non-public address disconnects first; (bso#15523). * shadow_copy2 broken when current fileset's directories are removed; (bso#15544). * smbd does not detect ctdb public ipv6 addresses for multichannel exclusion; (bso#15534). * 'force user = localunixuser' doesn't work if 'allow trusted domains = no' is set; (bso#15469). * smbget debug logging doesn't work; (bso#15525). * smget: username in the smburl and interactive password entry doesn't work; (bso#15532). * smbget auth function doesn't set values for password prompt correctly; (bso#15538). * Unable to copy and write files from clients to Ceph cluster via SMB Linux gateway with Ceph VFS module; (bso#15440). * Multichannel refresh network information; (bso#15547). - Update to 4.19.3 * sid_strings test broken by unix epoch > 1700000000; (bso#15520). * smbd crashes if asked to return full information on close of a stream handle with delete on close disposition set; (bso#15487). * smbd: fix close order of base_fsp and stream_fsp in smb_fname_fsp_destructor(); (bso#15521). * Improve logging for failover scenarios; (bso#15499). * Files without "read attributes" NFS4 ACL permission are not listed in directories; (bso#15093). * CVE-2018-14628 [SECURITY] Deleted Object tombstones visible in AD LDAP to normal users; (bso#13595). * Kerberos TGS-REQ with User2User does not work for normal accounts; (bso#15492). * vfs_gpfs stat calls fail due to file system permissions; (bso#15507). * Samba doesn't build with Python 3.12; (bso#15513). ==== selinux-policy ==== Version update (20231124 -> 20240104) Subpackages: selinux-policy-targeted - Update to version 20240104: * Allow keepalived_t read+write kernel_t pipes (bsc#1216060) * allow rebootmgr to read the system state (bsc#1205931) ==== solid ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5Solid5 solid-imports solid-tools - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== sonnet ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== speech-dispatcher ==== Subpackages: libspeechd2 python3-speechd - Have speech-dispatcher-module espeak supplement libespeak-ng1, rather than espeak-ng. The latter provides a binary which is not used or needed and that might not be installed. ==== syndication ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== syntax-highlighting ==== Version update (5.113.0 -> 5.114.0) Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== systemd ==== Version update (254.5 -> 254.8) Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - Add 5001-Revert-udev-update-devlink-with-the-newer-device-nod.patch 5002-Revert-udev-revert-workarounds-for-issues-caused-by-.patch It seems that systemd upstream has a dubious way to fix broken code these days... let's revert these hacks until a final decision is taken to solve https://github.com/systemd/systemd/issues/28141. See also https://github.com/systemd/systemd/pull/30075. - Import commit 67a5ac1043417d900bf417a884372ae14a96ef69 (merge of v254.8) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/071ac409a0564863657d8f8a5a35e6a… - udev(-mini)?: ensure %_modulesloaddir exists and is owned properly. Allows other packages to install modules without worry of the parent directory. We do not ensure /etc/modules-load.d exists in the -mini flavor, as that directory is not meant to be used by packages. ==== texlive ==== Subpackages: libkpathsea6 libsynctex2 - Fix wrong sys link target name for context.lua (Jianhua Lu) - Use gzip -n9 for bit-reproducible man-pages (Bernhard Wiedemann) - Re-run spec file generator to include the changes above ==== threadweaver ==== Version update (5.113.0 -> 5.114.0) - Update to 5.114.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.114.0 - No code change since 5.113.0 ==== u-boot-rpiarm64 ==== Version update (2023.10 -> 2024.01) Subpackages: u-boot-rpiarm64-doc - Install u-boot-spl.bin.normal.out for StarFive Visionfive2 - Remove ls1012afrdmqspi flavor since it has been removed upstream with commit b60274e6900ed1b08ad41f6d7fdebb2726ded108 - Update to 2024.01: * Full changelog available at: https://source.denx.de/u-boot/u-boot/-/compare/v2023.10...v2024.01 - Add new platforms: * quartz64-a-rk3566 * quartz64-b-rk3566 * soquartz-blade-rk3566 * soquartz-cm4-rk3566 - Patch queue updated from https://github.com/openSUSE/u-boot.git tumbleweed-2024.01 * Patches dropped: 0017-bootstd-Scan-all-bootdevs-in-a-boot.patch 0018-Revert-bootstd-Scan-all-bootdevs-in.patch 0019-bootstd-Expand-boot-ordering-test-t.patch 0020-bootstd-Correct-logic-for-single-uc.patch 0021-bootstd-Scan-all-bootdevs-in-a-boot.patch * Patches added: 0017-rpi5-add-initial-memory-map-for-bcm.patch 0018-rpi5-Use-devicetree-as-alternative-.patch 0019-rpi5-Use-devicetree-to-retrieve-boa.patch 0020-bcm2835-brcm-bcm2708-fb-device-is-u.patch 0021-mmc-bcmstb-Add-support-for-bcm2712-.patch 0022-configs-rpi_arm64-enable-SDHCI-BCMS.patch 0023-pci-pcie-brcmstb-Add-bcm2712-PCIe-c.patch ==== vte ==== Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Provide and Obsolete old typelib-1_0-Vte-2.91 package whose %{_binver} used the same exact value as %{_apiver}. ==== xdg-desktop-portal ==== - Also own the packaging directory used by portals themselves ==== xfce4-docklike-plugin ==== Version update (0.4.1 -> 0.4.2) Subpackages: xfce4-docklike-plugin-lang - Update to version 0.4.2 * Wnck: Add missing sanity check * Settings: Use different colors for active and inactive indicators * Use FDO compliant icon name * Fix blurry icons/thumbnails when UI scale > 1 * GroupMenu: Make sure the window is the right size for each popup * Group: Stop timeouts in destructor * Fix pending source when GroupMenu is destroyed * Settings: Bound icon sizes * SettingsDialog: Fix deprecated icon names * Remove unused project files * Remove contrib directory * GroupMenu: Re-popup if windows are added/removed when shown * Update preview widgets on "showPreviews" setting change * Helpers: Always stop timeout before starting a new one * Wnck: Always update unactivated window state * Group: Do not filter out skip-tasklist windows when activated * Group: Do not manually mark window as activated when activating group * Group: Update active state when adding windows * Group: Remove useless class member states * AppInfos: Use also app names for matching * Use g_debug for debug logs * Replace FALSE with false * Replace NULL with nullptr * Release data as much as possible on XfcePanelPlugin::free-data signal * Wnck: Do not check for active window in init * Fix remaining raw pointers not released * Manage group button lifetime in Group * Revert "Reset pointer when group button is destroyed" * Wnck: Use std::shared_ptr to manage memory allocation of GroupWindows * Dock: Use std::shared_ptr to manage memory allocation of Groups * AppInfos: Use std::shared_ptr to manage memory allocation * AppInfos: Wrap raw pointers into std::unique_ptr * GroupMenuItem: Fix crash when closing window with preview enabled * Revert "group: Fix crash when middle-clicking an item with preview enabled" * Store pinned apps as ids instead of paths * Wnck: Fix memory leaks * Theme: Fix memory leaks * SettingsDialog: Fix memory leaks * Settings: Fix memory leaks * Helpers: Fix memory leaks * GroupMenuItem: Fix memory leaks * Group: Fix memory leaks * Dock: Fix memory leaks * Fix previous commit * Appinfos: Fix some memory leaks * Update TODO * AppInfos: Honor XDG_DATA_HOME also when editing item * AppInfos: Properly honor XDG base dir spec * group: Detach menu from button and destroy when hidden (Fixes #20) * Fix cplusplus.StringChecker warning from scan-build 16.0.6 * Use glib functions for memory allocation * build: Fix -Wunused-function warnings * build: Fix -Wdangling-else warnings * build: Fix -Wsequence-point warnings * build: Fix -Wsign-compare warnings * build: Fix -Wmaybe-uninitialized warnings * build: Fix -Wshadow warnings * build: Fix -Wmissing-declarations warnings * group-menu-item: Refresh preview less often * group: Fix missing dnd icon * group: Fix crash when middle-clicking an item with preview enabled * Reset pointer when group button is destroyed * helpers: Reset source id when removed * app-infos: Get translated app name (Fixes #67) * Fix help button icon to be same as other plugins * Added middle mouse button do nothing option * Added closedir call to prevent too many open files error (Fixes #54) * Fix previous commit * Fix copyright info * Translation Updates ==== xfce4-notes-plugin ==== Version update (1.10.0 -> 1.11.0) Subpackages: xfce4-notes-plugin-lang - Update to version 1.11.0 * Update copyright year * Make default notes names in singular form * Start numbering the notes with 1 * Rework Xnp.Window.insert_note() * Use separate icon for logo * Make menu icon themed * Notes path change: handle case when both apps are running * Rework Xnp.Application.update_notes_path() * Don't ask when deleting a group with one blank note * Fix notebook tab prelight * Focus previous notes window when hiding a window * Rework Xnp.Application.show_hide_notes() * Avoid focus loss when removing a group * Avoid focus loss for note windows * Store "skip-taskbar-hint" property in Xnp.Application * Rewrite links processing code * Switch to previous page after deleting current note * Merge delete_note with delete_current_note * Use separate icon names for panel, tray and application * Switch to rDNS icon naming scheme * Fix segfault when pressing Ctrl+W on empty group * Use default values for externally created groups * Rework notes window switching processing * Handle empty group window titles * Add notes path setting * Slightly change the design of settings dialog * Fix Xfconf "notes-path" property handling * Fix background color of title bar when renaming a group * Reduce frequency of saving windows configuration * Undo/redo: make cursor position behavior natural * Fix the logic of "move-cursor" signal detection * Remember windows focus order * Rework access to Xnp.Application.window_list from Xnp.Window * Escape window title for markup parser * Save windows configuration before group reloading * Make transition to new version seemless * Update tags immediately after loading a note * Slightly improve undo/redo processing * Simplify code * Allow note tabs to be moved between groups * New method: Xnp.Window.get_tab_evbox() * New method: Xnp.Window.get_note() * New property: Xnp.Window.current_note * Rework Xnp.Window.n_pages * Save windows configuration when in system tray mode * Rework application termination sequence * Simplify save_windows_configuration() * Prevent possible data loss when saving notes * Fix mouse cursor behavior after clicking on a link * Refuse to create/delete notes on file system errors * Handle errors when renaming a note * Report errors when creating/deleting notes * Select note before deletion request * Delete note with middle mouse click on tab * Handle errors when creating a group * Handle errors when deleting a group * Handle errors when renaming a group * Add error popup if note could not be saved * Save notes only when changed * Overwrite windows configuration only when changed * Save current note on page switching or focus loss * Don't overwrite notes on program start up * Add titles to dialog windows * Make title text color independent of gtk theme * Make title bar arrows respond to mouse scroll events * Replace mouse button numbers with constants * Set default icon name for application * Use pure gtk style when selecting "GTK+" color * Separate color css to a separate Gtk.CssProvider * Make titlebar customized * Simplify access to notebook pages * Rename note with double click on tab * Cleanup * Add icons to dialog windows * Fix notebook tab names for new notes * Don't change the title label sensitivity * Add a note about possibility of css customization * Allow resizing notes window from the top border * Change accelerators hexa values to symbolic names * Reset timeout_background when timer reaches end * Make 'GTK+' background color work * Bring back the choice of background color * Add support for ~/.config/gtk-3.0/gtk.css * Fix background color of disabled arrow * Get rid of ~/.config/xfce4/notes/xfce4-notes.css * Rename gtk-main.css -> gtk.css * Add support for system wide css customizations * Unite update_css() and update_style_context() * Move data files to $(datadir)/xfce4/notes * Derive hypertext link color from theme * Redraw main menu icon on mouse enter/leave events * Allow user to customize main menu icon * Add support for custom css * Replace 'Remove' with 'Quit' in application menu * Don't overwrite xfce4-notes.css without a need * Reload css instead of adding it over and over again * Move resource files to xfce4/notes subdirectory * Auto create config directory ... changelog too long, skipping 6 lines ... * Translation Updates ==== yast2-trans ==== Version update (84.87.20240105.ae431f155e -> 84.87.20240112.f631673f01) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240112.f631673f01: * Translated using Weblate (Russian) * New POT for text domain 'packager'. * New POT for text domain 'users'. * New POT for text domain 'proxy'. * New POT for text domain 'nis'. * New POT for text domain 'network'. * New POT for text domain 'installation'. * New POT for text domain 'firewall'. ==== zlib-ng-compat ==== Version update (2.1.5 -> 2.1.6) - update to 2.1.6: * This release also improves on the functable implementation, and also moves its initialization to happen in deflateInit() and inflateInit(). We also have some optimizations for RVV and ARM. * Fix inflateCopy corruption caused by change in 2.1.4 #1628 * This is a regression caused by a change introduced in 2.1.4 * Initialize functable without TLS, using atomics #1609 * Initialize functable early, during DeflateInit and InflateInit #1613 * Add FAR macro to zlib-compat headers to improve compatibility * Improve performance of crc32_acle on 32-bit ARM #1397 * Add support for __attribute__((__target__(...))) to overcome limitations of -march=native #1620 * Remove tab character in ACLE uqsub16 assembly #1627 * Optimize adler32_fold_copy using RVV #1597 * Simplify AVX2 and AVX512 adler32_fold_copy by removing templates #1599 * Don't attempt ARMv6 detection on AARCH64 #1617 * Prevent tests writing into source directory #1604 * CMake: Fix clang-cl warnings #1591 * CMake: Export cmake target #1601 #1611 * CMake: Remove duplicate enable tests option #1610 * CMake: Fix reading version information from zlib.h.in #1614 * CMake: Check whether compiler supports -march=native or - mcpu=native #1618 * CMake: Always run compiler feature tests without LTO #1622 * CMake: Make sure uqsub16 check doesn't get optimized away with LTO #1619 * CMake: Update to GoogleTest 1.12.1 #1623 * Don't disable GoogleTest because of old CMake version #1623 [#1638] - update filelists ==== zstd ==== Subpackages: libzstd1 - Disable build of gzip for Leap 15.x to fix build error.

1 0

New Arm Tumbleweed snapshot 20240109 released!
by Guillaume Gardet 10 Jan '24

10 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: alsa-utils argyllcms (3.0.2 -> 3.1.0) curl firewalld (2.0.2 -> 2.1.0) git gnome-software kernel-source (6.6.9 -> 6.6.10) python-attrs (23.1.0 -> 23.2.0) python-greenlet python-gunicorn (20.1.0 -> 21.2.0) python-typing_extensions (4.8.0 -> 4.9.0) restorecond (3.5 -> 3.6) rubygem-addressable (2.8.5 -> 2.8.6) sg3_utils (1.48+3.b642f6a -> 1.48+6.7f43e14) vulkan-loader wtmpdb (0.10.0 -> 0.11.0) yast2-trans (84.87.20231230.7bdda36766 -> 84.87.20240105.ae431f155e) === Details === ==== alsa-utils ==== - Backport upstream fixes: buffer overflow fixes in aplay, segfault in aplaymidi, etc: 0008-topology-include-locale.h.patch 0009-nhlt-dmic-info.c-include-sys-types.h.patch 0010-topology-pre-processor-Add-support-for-enum-controls.patch 0011-configure.ac-fix-UMP-support-detection.patch 0012-bat-really-skip-analysis-of-the-first-period-and-upd.patch 0013-topology-add-include-for-ENABLE_NLS-on-musl.patch 0014-nhlt-use-stdint.h-types.patch 0015-Revert-nhlt-dmic-info.c-include-sys-types.h.patch 0016-aplay-use-stdint.h-types-instead-u_int-u_short-u_cha.patch 0017-alsa-restore.rules-use-devnode-instead-number-atribu.patch 0018-nhlt-Revert-SSP_ANALOG-device_type-field.patch 0019-alsactl-fix-potential-buffer-overwrite.patch 0020-aplay-fix-buffer-overflow-and-tainted-format-string.patch 0021-misc-fix-incorrect-usages-of-strerror.patch 0022-aplay-Add-option-for-specifying-subformat.patch 0023-aplay-allow-to-compile-with-older-alsa-lib-subformat.patch 0024-aplay-log-pcm-status-before-reporting-a-fatal-error.patch 0025-aplay-enable-timestamps-by-default.patch 0026-aplay-status-dumps-are-called-only-in-verbose-mode.patch 0027-aplaymidi-Set-event-completely-for-tempo-event.patch ==== argyllcms ==== Version update (3.0.2 -> 3.1.0) - update to 3.1.0: * Fixed bug in CMYK profile B2A table creation that sometimes resulted in bumpy black generation. (Only occurred when compiled using recent gcc with code optimization.) * Changed ICC profile serialization of pure ASCII text tags emit a warning rather than error if they are fed non-ASCII utf8 input. * Made ICC code a little more robust against bad profiles. (Thanks to David Hoyt). * Fixed latent bug in X11 plot code that caused window not to be created or updated when dowait == 0. This shows up on Linux as failure of spotread -S to show spectral plot. * Fixed problem with colorhug not noticing errors from the instrument. * Updated scanin/it8Wolf.cht to improve accuracy of grey wedge patch recognition. * Merged some Debian patches, including spelling fixes. ==== curl ==== Subpackages: libcurl4 - Added curl-adjust-pollset-fix.patch to fix broken MPD http streaming: https://github.com/curl/curl/issues/12632 ==== firewalld ==== Version update (2.0.2 -> 2.1.0) Subpackages: firewalld-bash-completion python3-firewall - update to 2.1.0: * eat(service): add DNS over QUIC (DoQ) Service (5130430) * feat(icmp): add ICMPv6 Multicast Listener Discovery (MLD) types (dd88bbf) * feat(fw): add ReloadPolicy option in firewalld.conf (0019371) * feat(service): add submission service (tcp 587) (d6a9561) * feat(service): Add alvr (3a92358) * feat(service): add vrrp (d62fc8d) [* Renamed patch 0002-Disable-FlushAllOnReload-option.patch to 0001-Disable-FlushAllOnReload-option.patch [* Renamed patch firewalld-runstatedir.patch to 0002-firewalld-runstatedir.patch] ==== git ==== Subpackages: git-core git-email git-web perl-Git - git moved to /usr/libexec/git/git, update AppArmor profile accordingly (boo#1218588) ==== gnome-software ==== Subpackages: gnome-software-plugin-packagekit - Do not use _distconfdir on SLE/Leap less than version 16. ==== kernel-source ==== Version update (6.6.9 -> 6.6.10) - Refresh patches.suse/firewire-ohci-suppress-unexpected-system-reboot-in-A.patch. Update upstream status and move to sorted section. - commit 7d3b8d0 - Linux 6.6.10 (bsc#1012628). - Revert "platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe" (bsc#1012628). - netfilter: nf_tables: skip set commit for deleted/destroyed sets (bsc#1012628). - wifi: nl80211: fix deadlock in nl80211_set_cqm_rssi (6.6.x) (bsc#1012628). - wifi: cfg80211: fix CQM for non-range use (bsc#1012628). - tracing: Fix blocked reader of snapshot buffer (bsc#1012628). - ftrace: Fix modification of direct_function hash while in use (bsc#1012628). - ring-buffer: Fix wake ups when buffer_percent is set to 100 (bsc#1012628). - Revert "nvme-fc: fix race between error recovery and creating association" (bsc#1012628). - mm/memory-failure: check the mapcount of the precise page (bsc#1012628). - mm/memory-failure: cast index to loff_t before shifting it (bsc#1012628). - mm: migrate high-order folios in swap cache correctly (bsc#1012628). - mm/filemap: avoid buffered read/write race to read inconsistent data (bsc#1012628). - selftests: secretmem: floor the memory size to the multiple of page_size (bsc#1012628). - maple_tree: do not preallocate nodes for slot stores (bsc#1012628). - platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe (bsc#1012628). - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (bsc#1012628). - platform/x86/intel/pmc: Move GBE LTR ignore to suspend callback (bsc#1012628). - platform/x86/intel/pmc: Allow reenabling LTRs (bsc#1012628). - platform/x86/intel/pmc: Add suspend callback (bsc#1012628). - block: renumber QUEUE_FLAG_HW_WC (bsc#1012628). - mptcp: fix inconsistent state on fastopen race (bsc#1012628). - mptcp: fix possible NULL pointer dereference on close (bsc#1012628). - mptcp: refactor sndbuf auto-tuning (bsc#1012628). - linux/export: Ensure natural alignment of kcrctab array (bsc#1012628). - linux/export: Fix alignment for 64-bit ksymtab entries (bsc#1012628). - kexec: select CRYPTO from KEXEC_FILE instead of depending on it (bsc#1012628). - kexec: fix KEXEC_FILE dependencies (bsc#1012628). - Update config files. The defaults for s390 taken from the master branch. - virtio_ring: fix syncs DMA memory with different direction (bsc#1012628). - fs: cifs: Fix atime update check (bsc#1012628). - client: convert to new timestamp accessors (bsc#1012628). - fs: new accessor methods for atime and mtime (bsc#1012628). - ksmbd: avoid duplicate opinfo_put() call on error of smb21_lease_break_ack() (bsc#1012628). - ksmbd: lazy v2 lease break on smb2_write() (bsc#1012628). - ksmbd: send v2 lease break notification for directory (bsc#1012628). - ksmbd: downgrade RWH lease caching state to RH for directory (bsc#1012628). - ksmbd: set v2 lease capability (bsc#1012628). - ksmbd: set epoch in create context v2 lease (bsc#1012628). - ksmbd: don't update ->op_state as OPLOCK_STATE_NONE on error (bsc#1012628). - ksmbd: move setting SMB2_FLAGS_ASYNC_COMMAND and AsyncId (bsc#1012628). - ksmbd: release interim response after sending status pending response (bsc#1012628). - ksmbd: move oplock handling after unlock parent dir (bsc#1012628). - ksmbd: separately allocate ci per dentry (bsc#1012628). - ksmbd: prevent memory leak on error return (bsc#1012628). - ksmbd: fix kernel-doc comment of ksmbd_vfs_kern_path_locked() (bsc#1012628). - ksmbd: no need to wait for binded connection termination at logoff (bsc#1012628). - ksmbd: add support for surrogate pair conversion (bsc#1012628). - ksmbd: fix missing RDMA-capable flag for IPoIB device in ksmbd_rdma_capable_netdev() (bsc#1012628). - ksmbd: fix kernel-doc comment of ksmbd_vfs_setxattr() (bsc#1012628). - ksmbd: reorganize ksmbd_iov_pin_rsp() (bsc#1012628). - ksmbd: Remove unused field in ksmbd_user struct (bsc#1012628). - commit b5b393f - Delete doc/config-options.changes (jsc#PED-5021) Following on adedbd2a5c6 ("kernel-source: Remove config-options.changes (jsc#PED-5021)"), remove the now unused file from the tree. - commit e04388e - Refresh patches.suse/firewire-ohci-suppress-unexpected-system-reboot-in-A.patch. Update upstream status. - commit 6da42fc - Update config files. Only run oldconfig to keep up with the lost configs. ... changelog too long, skipping 19 lines ... - commit aa5424d ==== python-attrs ==== Version update (23.1.0 -> 23.2.0) - update to 23.2.0: * The type annotation for `attrs.resolve_types()` is now correct. * Type stubs now use `typing.dataclass_transform` to decorate dataclass-like decorators, instead of the non-standard `__dataclass_transform__` special form, which is only supported by Pyright. * Fixed serialization of namedtuple fields using `attrs.asdict/astuple()` with `retain_collection_types=True`. * `attrs.AttrsInstance` is now a `typing.Protocol` in both type hints and code. * This allows you to subclass it along with another `Protocol`. * If *attrs* detects that `__attrs_pre_init__` accepts more than just `self`, it will call it with the same arguments as `__init__` was called. * This allows you to, for example, pass arguments to `super().__init__()`. * Slotted classes now transform `functools.cached_property` decorated methods to support equivalent semantics. * Added *class_body* argument to `attrs.make_class()` to provide additional attributes for newly created classes. * It is, for example, now possible to attach methods. ==== python-greenlet ==== - require setuptools ==== python-gunicorn ==== Version update (20.1.0 -> 21.2.0) - Clean up the SPEC file - Update to version 21.2.0 * See https://github.com/benoitc/gunicorn/blob/21.2.0/docs/source/news.rst or the packaged news.rst - Removed support-eventlet-30-3.patch ==== python-typing_extensions ==== Version update (4.8.0 -> 4.9.0) - update to 4.9.0: * This feature release adds `typing_extensions.ReadOnly`, as specified by PEP 705, and makes various other improvements, especially to `(a)typing_extensions.deprecated()`. * Add support for PEP 705, adding `typing_extensions.ReadOnly`. * All parameters on `NewType.__call__` are now positional-only. This means that the signature of `typing_extensions.NewType.__call__` now exactly matches the * signature of `typing.NewType.__call__`. * Fix bug with using `@deprecated` on a mixin class. * Exclude `__match_args__` from `Protocol` members. * When creating a `typing_extensions.NamedTuple` class, ensure `__set_name__` is called on all objects that define `__set_name__` and exist in the values of the `NamedTuple` class's class dictionary. ==== restorecond ==== Version update (3.5 -> 3.6) - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== rubygem-addressable ==== Version update (2.8.5 -> 2.8.6) - Updated to 2.8.6 * Memoize regexps for common character classes. ==== sg3_utils ==== Version update (1.48+3.b642f6a -> 1.48+6.7f43e14) Subpackages: libsgutils2-1_48-2 - Upstream bug fixes for sg3_utils 1.48 (bsc#1218591) * sg_turs: fix missing CDB on several codepaths * sg_dd: fix bug that identified all block devices as NVME * rescan-scsi-bus.sh: avoid root FS going read-only with "rescan-scsi-bus.sh -r" (gh#doug-gilbert/sg3_utils#46) ==== vulkan-loader ==== - Align the fallback XDG config dirs with SUSE spec in-case it can't read it from the environment ==== wtmpdb ==== Version update (0.10.0 -> 0.11.0) Subpackages: libwtmpdb0 - Update to version 0.11.0 - last: add support for time-format option ==== yast2-trans ==== Version update (84.87.20231230.7bdda36766 -> 84.87.20240105.ae431f155e) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240105.ae431f155e: * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Romanian)

1 0

New Arm Tumbleweed snapshot 20240108 released!
by Guillaume Gardet 09 Jan '24

09 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: checkpolicy (3.5 -> 3.6) cronie glibc libselinux (3.5 -> 3.6) libselinux-bindings (3.5 -> 3.6) libsemanage (3.5 -> 3.6) libsepol (3.5 -> 3.6) netcfg perl-Net-DNS (1.410.0 -> 1.420.0) policycoreutils (3.5 -> 3.6) python-authheaders python-netaddr (0.9.0 -> 0.10.1) python-semanage (3.5 -> 3.6) python311 (3.11.6 -> 3.11.7) python311-core (3.11.6 -> 3.11.7) update-alternatives (1.22.1 -> 1.22.2) === Details === ==== checkpolicy ==== Version update (3.5 -> 3.6) - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * checkpolicy: Add the command line argument -N, --disable-neverallow * dispol: add option to display users, drop duplicate option to display booleans, show number of entries before listing them * dispol: Add the ability to show booleans, classes, roles, types and type attributes of policies * dispol: add options: --actions ACTIONS, --help * dismod: add options: --actions ACTIONS, --help * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== cronie ==== Subpackages: cron - Update to 1.7.0: * anacron: Add support for NO_MAIL_OUTPUT environment variable * anacron: Support enabling anacron jobs on battery power * crond: Support -n crontab entry option to disable mailing the output * crontab: Make a backup of the crontab file on edition and deletion - Add patch cronie-pam_config-nonlogin.diff - Refreshed patches: * cronie-crond_pid.diff * cronie-pam_config.diff * cronie-nheader_lines.diff * fix-manpage-replace-anacrontab-with-crontab.patch - PAM: Use common-session-nonlogin for >15 codestreams More info in https://github.com/SUSE/pam-config/pull/16 ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - sem-open-o-creat.patch: sem_open: Clear O_CREAT when semaphore file is expected to exist (BZ #30789) - ldconfig-process-elf-file.patch: elf: Fix wrong break removal from 8ee878592c - tls-modid-reuse.patch: elf: Fix TLS modid reuse generation assignment (BZ #29039) - getaddrinfo-eai-memory.patch: getaddrinfo: translate ENOMEM to EAI_MEMORY (bsc#1217589, BZ #31163) - libio-wdo-write.patch: libio: Check remaining buffer size in _IO_wdo_write (BZ #31183) ==== libselinux ==== Version update (3.5 -> 3.6) Subpackages: libselinux1 selinux-tools - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * libselinux: performance optimization for duplicate detection * Introduce getpolicyload - a helper binary to print the number of policy reloads on the running system * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== libselinux-bindings ==== Version update (3.5 -> 3.6) - The PEP517 python build requires setuptools - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * libselinux: performance optimization for duplicate detection * Introduce getpolicyload - a helper binary to print the number of policy reloads on the running system * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== libsemanage ==== Version update (3.5 -> 3.6) Subpackages: libsemanage-conf libsemanage-migrate-store libsemanage2 - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== libsepol ==== Version update (3.5 -> 3.6) - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * struct cond_expr_t bool renamed to boolean The change is indicated by COND_EXPR_T_RENAME_BOOL_BOOLEAN macro * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== netcfg ==== - Add krb-prop entry, fix for bsc#1211886. ==== perl-Net-DNS ==== Version update (1.410.0 -> 1.420.0) - updated to 1.42 see /usr/share/doc/packages/perl-Net-DNS/Changes ==== policycoreutils ==== Version update (3.5 -> 3.6) Subpackages: policycoreutils-python-utils python3-policycoreutils - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> - Remove reproducible-build.patch since it is upstream now - Fix issues in get_os_version.patch ==== python-authheaders ==== - Fix importing resources * Added authheaders-importlib-resources.patch ==== python-netaddr ==== Version update (0.9.0 -> 0.10.1) - update to 0.10.1: * Get rid of some warnings * Add an :data:`INET_ATON` flag to explicitly request ``inet_aton()`` IPv4 parsing semantics from :class:`IPAddress`. * Add an :meth:`IPAddress.is_ipv4_private_use` convenience method. * Add an :meth:`IPAddress.is_global` convenience method to allow determining if an address is considered globally reachable. * Add an :meth:`IPAddress.is_ipv6_unique_local` convenience method. * Improve Python 3.13 compatibility, thank you John Eckersberg. * Deprecate Python 3.7 support. * Deprecate abbreviated CIDR format support in :class:`IPNetwork` * Deprecate accepting leading zeros when parsing IPv4 addresses in :data:`INET_PTON` mode (it's been allowed on some platforms). If you need to allow and discard leading zeros use the :data:`ZEROFILL` flag. * Raise an exception if invalid flags are passed to ``IPAddress``, ``IPNetwork`` or ``IPRange``. * Improve the documentation substantially. * Update the DB files to the latest versions (2023-12-23). ==== python-semanage ==== Version update (3.5 -> 3.6) - Update to version 3.6 https://github.com/SELinuxProject/selinux/releases/tag/3.6 * Add notself support for neverallow rules * Improve man pages * man pages: Remove the Russian translations * Add notself and other support to CIL * Add support for deny rules * Translations updated from https://translate.fedoraproject.org/projects/selinux/ * Bug fixes - Remove keys from keyring since they expired: - E853C1848B0185CF42864DF363A8AD4B982C4373 Petr Lautrbach <plautrba(a)redhat.com> - 63191CE94183098689CAB8DB7EF137EC935B0EAF Jason Zaman <jasonzaman(a)gmail.com> - Add key to keyring: - B8682847764DF60DF52D992CBC3905F235179CF1 Petr Lautrbach <lautrbach(a)redhat.com> ==== python311 ==== Version update (3.11.6 -> 3.11.7) Subpackages: python311-curses python311-dbm - Update patch fix_configure_rst.patch - Update to 3.11.7: - Core and Builtins - gh-112625: Fixes a bug where a bytearray object could be cleared while iterating over an argument in the bytearray.join() method that could result in reading memory after it was freed. - gh-112388: Fix an error that was causing the parser to try to overwrite tokenizer errors. Patch by pablo Galindo - gh-112387: Fix error positions for decoded strings with backwards tokenize errors. Patch by Pablo Galindo - gh-112266: Change docstrings of __dict__ and __weakref__. - gh-109181: Speed up Traceback object creation by lazily compute the line number. Patch by Pablo Galindo - gh-102388: Fix a bug where iso2022_jp_3 and iso2022_jp_2004 codecs read out of bounds - gh-111366: Fix an issue in the codeop that was causing SyntaxError exceptions raised in the presence of invalid syntax to not contain precise error messages. Patch by Pablo Galindo - gh-111380: Fix a bug that was causing SyntaxWarning to appear twice when parsing if invalid syntax is encountered later. Patch by Pablo galindo - gh-88116: Traceback location ranges involving wide unicode characters (like emoji and asian characters) now are properly highlighted. Patch by Batuhan Taskaya and Pablo Galindo. - gh-94438: Fix a regression that prevented jumping across is None and is not None when debugging. Patch by Savannah Ostrowski. - gh-110696: Fix incorrect error message for invalid argument unpacking. Patch by Pablo Galindo - gh-110237: Fix missing error checks for calls to PyList_Append in _PyEval_MatchClass. - gh-109216: Fix possible memory leak in BUILD_MAP. - Library - gh-112618: Fix a caching bug relating to typing.Annotated. Annotated[str, True] is no longer identical to Annotated[str, 1]. - gh-112509: Fix edge cases that could cause a key to be present in both the __required_keys__ and __optional_keys__ attributes of a typing.TypedDict. Patch by Jelle Zijlstra. - gh-94722: Fix bug where comparison between instances of DocTest fails if one of them has None as its lineno. - gh-112105: Make readline.set_completer_delims() work with libedit - gh-111942: Fix SystemError in the TextIOWrapper constructor with non-encodable âerrorsâ argument in non-debug mode. - gh-109538: Issue warning message instead of having RuntimeError be displayed when event loop has already been closed at StreamWriter.__del__(). - gh-111942: Fix crashes in io.TextIOWrapper.reconfigure() when pass invalid arguments, e.g. non-string encoding. - gh-111804: Remove posix.fallocate() under WASI as the underlying posix_fallocate() is not available in WASI preview2. - gh-111841: Fix truncating arguments on an embedded null character in os.putenv() and os.unsetenv() on Windows. - gh-111541: Fix doctest for SyntaxError not-builtin subclasses. - gh-110894: Call loop exception handler for exceptions in client_connected_cb of asyncio.start_server() so that applications can handle it. Patch by Kumar Aditya. - gh-111531: Fix reference leaks in bind_class() and bind_all() methods of tkinter widgets. - gh-111356: Added io.text_encoding(), io.DEFAULT_BUFFER_SIZE, and io.IncrementalNewlineDecoder to io.__all__. - gh-68166: Remove mention of not supported âvsapiâ element type in tkinter.ttk.Style.element_create(). Add tests for element_create() and other ttk.Style methods. Add examples for element_create() in the documentation. - gh-111251: Fix _blake2 not checking for errors when initializing. - gh-111174: Fix crash in io.BytesIO.getbuffer() called repeatedly for empty BytesIO. - gh-111187: Postpone removal version for locale.getdefaultlocale() to Python 3.15. - gh-111159: Fix doctest output comparison for exceptions with notes. - gh-110910: Fix invalid state handling in asyncio.TaskGroup and asyncio.Timeout. They now raise proper RuntimeError if they are improperly used and are left in consistent state after this. - gh-111092: Make turtledemo run without default root enabled. - gh-110590: Fix a bug in _sre.compile() where TypeError would be overwritten by OverflowError when the code argument was a list of non-ints. - gh-65052: Prevent pdb from crashing when trying to display undisplayable objects - gh-110519: Deprecation warning about non-integer number in gettext now alwais refers to the line in the user code where gettext function or method is used. Previously it could refer to a line in gettext code. - gh-110378: contextmanager() and asynccontextmanager() context managers now close an invalid underlying generator object that yields more then one value. - gh-110365: Fix termios.tcsetattr() bug that was overwritting existing errors during parsing integers from term list. - gh-110196: Add __reduce__ method to IPv6Address in order to keep scope_id - gh-109747: Improve errors for unsupported look-behind patterns. Now re.error is raised instead of OverflowError or RuntimeError for too large width of look-behind pattern. - gh-109786: Fix possible reference leaks and crash when re-enter the __next__() method of itertools.pairwise. - gh-108791: Improved error handling in pdb command line ... changelog too long, skipping 87 lines ... raise SystemError if these attributes have wrong type. ==== python311-core ==== Version update (3.11.6 -> 3.11.7) Subpackages: libpython3_11-1_0 python311-base - Update patch fix_configure_rst.patch - Update to 3.11.7: - Core and Builtins - gh-112625: Fixes a bug where a bytearray object could be cleared while iterating over an argument in the bytearray.join() method that could result in reading memory after it was freed. - gh-112388: Fix an error that was causing the parser to try to overwrite tokenizer errors. Patch by pablo Galindo - gh-112387: Fix error positions for decoded strings with backwards tokenize errors. Patch by Pablo Galindo - gh-112266: Change docstrings of __dict__ and __weakref__. - gh-109181: Speed up Traceback object creation by lazily compute the line number. Patch by Pablo Galindo - gh-102388: Fix a bug where iso2022_jp_3 and iso2022_jp_2004 codecs read out of bounds - gh-111366: Fix an issue in the codeop that was causing SyntaxError exceptions raised in the presence of invalid syntax to not contain precise error messages. Patch by Pablo Galindo - gh-111380: Fix a bug that was causing SyntaxWarning to appear twice when parsing if invalid syntax is encountered later. Patch by Pablo galindo - gh-88116: Traceback location ranges involving wide unicode characters (like emoji and asian characters) now are properly highlighted. Patch by Batuhan Taskaya and Pablo Galindo. - gh-94438: Fix a regression that prevented jumping across is None and is not None when debugging. Patch by Savannah Ostrowski. - gh-110696: Fix incorrect error message for invalid argument unpacking. Patch by Pablo Galindo - gh-110237: Fix missing error checks for calls to PyList_Append in _PyEval_MatchClass. - gh-109216: Fix possible memory leak in BUILD_MAP. - Library - gh-112618: Fix a caching bug relating to typing.Annotated. Annotated[str, True] is no longer identical to Annotated[str, 1]. - gh-112509: Fix edge cases that could cause a key to be present in both the __required_keys__ and __optional_keys__ attributes of a typing.TypedDict. Patch by Jelle Zijlstra. - gh-94722: Fix bug where comparison between instances of DocTest fails if one of them has None as its lineno. - gh-112105: Make readline.set_completer_delims() work with libedit - gh-111942: Fix SystemError in the TextIOWrapper constructor with non-encodable âerrorsâ argument in non-debug mode. - gh-109538: Issue warning message instead of having RuntimeError be displayed when event loop has already been closed at StreamWriter.__del__(). - gh-111942: Fix crashes in io.TextIOWrapper.reconfigure() when pass invalid arguments, e.g. non-string encoding. - gh-111804: Remove posix.fallocate() under WASI as the underlying posix_fallocate() is not available in WASI preview2. - gh-111841: Fix truncating arguments on an embedded null character in os.putenv() and os.unsetenv() on Windows. - gh-111541: Fix doctest for SyntaxError not-builtin subclasses. - gh-110894: Call loop exception handler for exceptions in client_connected_cb of asyncio.start_server() so that applications can handle it. Patch by Kumar Aditya. - gh-111531: Fix reference leaks in bind_class() and bind_all() methods of tkinter widgets. - gh-111356: Added io.text_encoding(), io.DEFAULT_BUFFER_SIZE, and io.IncrementalNewlineDecoder to io.__all__. - gh-68166: Remove mention of not supported âvsapiâ element type in tkinter.ttk.Style.element_create(). Add tests for element_create() and other ttk.Style methods. Add examples for element_create() in the documentation. - gh-111251: Fix _blake2 not checking for errors when initializing. - gh-111174: Fix crash in io.BytesIO.getbuffer() called repeatedly for empty BytesIO. - gh-111187: Postpone removal version for locale.getdefaultlocale() to Python 3.15. - gh-111159: Fix doctest output comparison for exceptions with notes. - gh-110910: Fix invalid state handling in asyncio.TaskGroup and asyncio.Timeout. They now raise proper RuntimeError if they are improperly used and are left in consistent state after this. - gh-111092: Make turtledemo run without default root enabled. - gh-110590: Fix a bug in _sre.compile() where TypeError would be overwritten by OverflowError when the code argument was a list of non-ints. - gh-65052: Prevent pdb from crashing when trying to display undisplayable objects - gh-110519: Deprecation warning about non-integer number in gettext now alwais refers to the line in the user code where gettext function or method is used. Previously it could refer to a line in gettext code. - gh-110378: contextmanager() and asynccontextmanager() context managers now close an invalid underlying generator object that yields more then one value. - gh-110365: Fix termios.tcsetattr() bug that was overwritting existing errors during parsing integers from term list. - gh-110196: Add __reduce__ method to IPv6Address in order to keep scope_id - gh-109747: Improve errors for unsupported look-behind patterns. Now re.error is raised instead of OverflowError or RuntimeError for too large width of look-behind pattern. - gh-109786: Fix possible reference leaks and crash when re-enter the __next__() method of itertools.pairwise. - gh-108791: Improved error handling in pdb command line ... changelog too long, skipping 87 lines ... raise SystemError if these attributes have wrong type. ==== update-alternatives ==== Version update (1.22.1 -> 1.22.2) - Update to version 1.22.2. The full changelog is very large. Please check it here: https://git.dpkg.org/cgit/dpkg/dpkg.git/tree/debian/changelog?h=1.22.2

1 0

No SLE update for ARM
by Axel Braun 09 Jan '24

09 Jan '24

Hi, I'm updating a Leap 15.4 on a Raspi 4 with the following error during repo refresh: Error building the cache: [repo-sle-update|http://download.opensuse.org/update/leap/15.5/sle/] Failed to cache repo (1). History: - 'repo2solv' '-o' '/var/cache/zypp/solv/repo-sle-update/solv' '-X' '/var/cache/zypp/raw/repo-sle-update' /var/cache/zypp/raw/repo-sle-update/repodata/2701a21e67a974e420df84702cfda4f671e7a19754fdba543d76a864d9f51796-primary.xml.gz: repo_rpmmd: Couldn't find end of Start Tag rpm:entry at line 2954840:37 Command exited with status 1. Following the above URL, the repo is empty. I guess it is safe to remove it? Cheers Axel

4 4

New Arm Tumbleweed snapshot 20240107 released!
by Guillaume Gardet 08 Jan '24

08 Jan '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 7zip ImageMagick (7.1.1.21 -> 7.1.1.25) Mesa-demo MozillaFirefox (120.0.1 -> 121.0) apache2-mod_php8 (8.2.13 -> 8.2.14) bind (9.18.20 -> 9.18.21) bluez (5.70 -> 5.71) cfitsio (4.3.0 -> 4.3.1) ell (0.60 -> 0.61) emacs evolution (3.50.2 -> 3.50.3) evolution-data-server (3.50.2 -> 3.50.3) evolution-ews (3.50.2 -> 3.50.3) ffmpeg-4 fltk (1.3.8 -> 1.3.9) frameworkintegration fwupd (1.9.10 -> 1.9.11) ghostscript gnome-control-center gnome-settings-daemon (45.0 -> 45.1) gnustep-base gpgme gpgmeqt grub2 gstreamer (1.22.7 -> 1.22.8) gstreamer-plugins-bad (1.22.7 -> 1.22.8) gstreamer-plugins-base (1.22.7 -> 1.22.8) gstreamer-plugins-good (1.22.7 -> 1.22.8) gstreamer-plugins-libav (1.22.7 -> 1.22.8) gstreamer-plugins-rs (0.11.2 -> 0.11.3) gstreamer-plugins-ugly (1.22.7 -> 1.22.8) gtk-layer-shell (0.8.1 -> 0.8.2) gucharmap (15.1.1 -> 15.1.2) guestfs-tools (1.51.6 -> 1.52.0) hplip (3.23.8 -> 3.23.12) hxtools (20231101 -> 20231224) icewm (3.4.4 -> 3.4.5) inotify-tools (3.22.6.0 -> 4.23.9.0) iputils (20221126 -> 20231222) iw (5.19 -> 6.7) kernel-firmware (20231214 -> 20240102) kernel-source (6.6.6 -> 6.6.9) kmozillahelper libHX (4.19 -> 4.21) libarchive (3.7.0 -> 3.7.2) libavif (1.0.2 -> 1.0.3) libdrm (2.4.118 -> 2.4.119) libebml (1.4.4 -> 1.4.5) libguestfs (1.51.9 -> 1.52.0) libheif (1.17.5 -> 1.17.6) libical (3.0.16 -> 3.0.17) libical-glib (3.0.16 -> 3.0.17) libjcat (0.1.14 -> 0.2.0) libjpeg-turbo (8.2.2 -> 8.3.2) libntlm (1.6 -> 1.7) libportal libqt5-qtbase (5.15.11+kde138 -> 5.15.12+kde147) libqt5-qtconnectivity (5.15.11+kde6 -> 5.15.12+kde6) libqt5-qtdeclarative (5.15.11+kde30 -> 5.15.12+kde31) libqt5-qtgraphicaleffects (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtimageformats (5.15.11+kde12 -> 5.15.12+kde10) libqt5-qtlocation (5.15.11+kde4 -> 5.15.12+kde6) libqt5-qtmultimedia (5.15.11+kde2 -> 5.15.12+kde2) libqt5-qtnetworkauth (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtquickcontrols (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtquickcontrols2 (5.15.11+kde5 -> 5.15.12+kde5) libqt5-qtscript (5.15.15 -> 5.15.16) libqt5-qtsensors (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtserialport (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtspeech (5.15.11+kde1 -> 5.15.12+kde1) libqt5-qtsvg (5.15.11+kde6 -> 5.15.12+kde6) libqt5-qttools (5.15.11+kde3 -> 5.15.12+kde4) libqt5-qttranslations (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtvirtualkeyboard (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtwayland (5.15.11+kde59 -> 5.15.12+kde60) libqt5-qtwebchannel (5.15.11+kde3 -> 5.15.12+kde3) libqt5-qtwebsockets (5.15.11+kde2 -> 5.15.12+kde2) libqt5-qtwebview (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtx11extras (5.15.11+kde0 -> 5.15.12+kde0) libqt5-qtxmlpatterns (5.15.11+kde0 -> 5.15.12+kde0) libraw (0.21.1 -> 0.21.2) librsvg (2.57.0 -> 2.57.1) libstorage-ng (4.5.163 -> 4.5.170) libxmlb (0.3.14 -> 0.3.15) libzypp (17.31.25 -> 17.31.27) lsof (4.99.0 -> 4.99.3) lttng-ust (2.13.5 -> 2.13.6) mozilla-nss multipath-tools (0.9.7+76+suse.5f857af -> 0.9.7+93+suse.e2f2272) newt (0.52.23 -> 0.52.24) nftables nodejs21 open-iscsi openblas_openmp openblas_pthreads osinfo-db (20231027 -> 20231215) perl-HTTP-Cookies (6.10 -> 6.110.0) perl-IO-Socket-SSL perl-IO-Tty (1.180.0 -> 1.200.0) perl-MIME-tools (5.510 -> 5.511.0) perl-XML-Parser (2.46 -> 2.470.0) perl-ldap php8 (8.2.13 -> 8.2.14) plasma5-workspace poppler (23.11.0 -> 23.12.0) poppler-qt5 (23.11.0 -> 23.12.0) postfix (3.8.3 -> 3.8.4) protobuf protobuf-c (1.4.1 -> 1.5.0) pulseaudio python-Babel (2.13.1 -> 2.14.0) python-M2Crypto python-Pillow (10.0.1 -> 10.1.0) python-SQLAlchemy (2.0.23 -> 2.0.24) python-alembic (1.13.0 -> 1.13.1) python-argcomplete (3.1.6 -> 3.2.1) python-atpublic python-configobj python-distro (1.8.0 -> 1.9.0) python-dkimpy (1.0.5 -> 1.1.5) python-falcon python-flufl.i18n (4.1.1 -> 5.0.2) python-flufl.lock (7.1.1 -> 8.0.2) python-hiredis python-httpx (0.25.2 -> 0.26.0) python-importlib-metadata (7.0.0 -> 7.0.1) python-numpy python-psutil (5.9.6 -> 5.9.7) python-psycopg2 python-pycryptodome (3.19.0 -> 3.19.1) python-pycups python-pygit2 (1.12.2 -> 1.13.3) python-python-slugify (5.0.2 -> 8.0.1) python-pyzmq (25.1.1 -> 25.1.2) python-redis python-setuptools (68.1.2 -> 69.0.2) python-six python-tornado6 (6.3.3 -> 6.4) python-unicodedata2 (15.0.0 -> 15.1.0) python-zope.configuration (4.4.1 -> 5.0) python-zope.hookable (5.4 -> 6.0) python-zope.i18nmessageid (6.0.1 -> 6.1.0) python-zope.interface (6.0 -> 6.1) qca-qt5 (2.3.7 -> 2.3.7+git12) qpdf (11.6.4 -> 11.7.0) qt6-base rubygem-agama (6 -> 7) sdbootutil (1+git20231214.b186b2d -> 1+git20231221.42797ab) sendmail spamassassin sudo (1.9.15p4 -> 1.9.15p5) supermin (5.2.2 -> 5.3.3) suse-module-tools (16.0.39 -> 16.0.42) thunar (4.18.8 -> 4.18.10) timezone (2023c -> 2023d) traceroute (2.1.3 -> 2.1.5) tracker-miners unbound (1.18.0 -> 1.19.0) vim (9.0.2181 -> 9.1.0000) virt-v2v (2.2.0 -> 2.4.0) wireless-regdb (20230901 -> 20231201) wireplumber (0.4.16 -> 0.4.17) xerces-c (3.2.4 -> 3.2.5) xmlsec1 (1.2.37 -> 1.2.38) xorg-x11-server yast2-firstboot (5.0.0 -> 5.0.1) yast2-installation (5.0.2 -> 5.0.3) yast2-journal (5.0.0 -> 5.0.1) yast2-trans (84.87.20231216.c47de7a4bf -> 84.87.20231230.7bdda36766) === Details === ==== 7zip ==== - Add missing man pages for 7z / 7za / 7zr / 7zz. This solves bsc#1204856. ==== ImageMagick ==== Version update (7.1.1.21 -> 7.1.1.25) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - drop update-alternatives for config; use exactly one of configuration package provided - version update to 7.1.1.25 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - update to 7.1.1.24: * Added extra check for rare case when ImageMagick is build without any delegates. * Corrected order to fix invalid matches. * only fill the alpha channel for alpha floodfill * Make sure we use the lt_ methods like we do elsewhere. * support dng:max-raw-memory define (ImageMagick/ImageMagick#6922) * properly export YUV JP2 images (ImageMagick/ImageMagick#6943) * use : specifier * correct display program name * check for corrupt DJVU images * support UTF-8 comments (ImageMagick/ImageMagick#6949) * do not prefix iTxt key with 'png:' * enhance sampling factor parser (ImageMagick/ImageMagick#6943) * Switch to ubuntu 20.04 in the app-image build. * Corrected packages that need to be install due to ubuntu upgrade. * improve accuracy of image statistics * fx calculations of skewness and kurtosis * Only write comments as itxt when the string contains non ansi chars. * check if the string contains non-Latin1 characters * Corrected patch to check for non-Latin1 characters. * invalid JSON with -ping (ImageMagick/ImageMagick#6966) * throw exception if # of meta channels exceed max https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-hx5j-px… * multiplication result converted to larger type * invalid HTTPS certificates are no longer ignored https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-3r24-6m… * multiplication result converted to larger type * eliminate compiler warning * don't include the index channel in the overall image statistics * multiplication result converted to larger type - version update to 7.1.1.23 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - modified patches % ImageMagick-library-installable-in-parallel.patch (refreshed) - deleted patches - ImageMagick-infinite-resource-time-limit.patch (upstreamed) ==== Mesa-demo ==== Subpackages: Mesa-demo-egl Mesa-demo-es Mesa-demo-x - Remove old rpm constructs that are long defaulted. - Remove legalese from descriptions as per our wiki guidelines. ==== MozillaFirefox ==== Version update (120.0.1 -> 121.0) - Mozilla Firefox 121.0 https://www.mozilla.org/en-US/firefox/121.0/releasenotes MFSA 2023-56 (bsc#1217974) * CVE-2023-6856 (bmo#1843782) Heap-buffer-overflow affecting WebGL DrawElementsInstanced method with Mesa VM driver * CVE-2023-6135 (bmo#1853908) NSS susceptible to "Minerva" attack * CVE-2023-6865 (bmo#1864123) Potential exposure of uninitialized data in EncryptingOutputStream * CVE-2023-6857 (bmo#1796023) Symlinks may resolve to smaller than expected buffers * CVE-2023-6858 (bmo#1826791) Heap buffer overflow in nsTextFragment * CVE-2023-6859 (bmo#1840144) Use-after-free in PR_GetIdentitiesLayer * CVE-2023-6866 (bmo#1849037) TypedArrays lack sufficient exception handling * CVE-2023-6860 (bmo#1854669) Potential sandbox escape due to VideoBridge lack of texture validation * CVE-2023-6867 (bmo#1863863) Clickjacking permission prompts using the popup transition * CVE-2023-6861 (bmo#1864118) Heap buffer overflow affected nsWindow::PickerOpen(void) in headless mode * CVE-2023-6868 (bmo#1865488) WebPush requests on Firefox for Android did not require VAPID key * CVE-2023-6869 (bmo#1799036) Content can paint outside of sandboxed iframe * CVE-2023-6870 (bmo#1823316) Android Toast notifications may obscure fullscreen event notifications * CVE-2023-6871 (bmo#1828334) Lack of protocol handler warning in some instances * CVE-2023-6872 (bmo#1849186) Browsing history leaked to syslogs via GNOME * CVE-2023-6863 (bmo#1868901) Undefined behavior in ShutdownObserver() * CVE-2023-6864 (bmo#1736385, bmo#1810805, bmo#1846328, bmo#1856090, bmo#1858033, bmo#1858509, bmo#1862777, bmo#1864015) Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6, and Thunderbird 115.6 * CVE-2023-6873 (bmo#1855327, bmo#1862089, bmo#1862723) Memory safety bugs fixed in Firefox 121 - requires NSS 3.95 ==== apache2-mod_php8 ==== Version update (8.2.13 -> 8.2.14) - version update to 8.2.14 * This is a bug fix release. https://www.php.net/ChangeLog-8.php#8.2.14 ==== bind ==== Version update (9.18.20 -> 9.18.21) Subpackages: bind-doc bind-utils - Update to release 9.18.21 Removed Features: * Support for using AES as the DNS COOKIE algorithm (cookie-algorithm aes;) has been deprecated and will be removed in a future release. Please use the current default, SipHash-2-4, instead. * The resolver-nonbackoff-tries and resolver-retry-interval statements have been deprecated. Using them now causes a warning to be logged. ==== bluez ==== Version update (5.70 -> 5.71) Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3 - add fix-link-key-address-type.patch - thanks to pallaswept for identifying the right patch for the pairing regression - update to 5.71: * Fix issue with not registering CSIS service. * Fix issue with registering pairing callbacks. * Fix issue with corruption during discovery filter parsing. - drop CVE-2023-45866.patch, Fix-.device_probe-failing-if-SDP-record-is-not.patch: upstream - update bluez-disable-broken-tests.diff: disable failing vcp test ==== cfitsio ==== Version update (4.3.0 -> 4.3.1) - Update to version 4.3.1: * Improve longstring keyword functions ==== ell ==== Version update (0.60 -> 0.61) - Update to release 0.61 * netconfig: Always set DHCP MAC address on start * netlink: Add workaround for missing NLM_F_ACK_TLVS and NLM_F_CAPPED ==== emacs ==== Subpackages: emacs-el emacs-eln emacs-info emacs-nox emacs-x11 etags - fix typo in %{ext_info} macro usage ==== evolution ==== Version update (3.50.2 -> 3.50.3) Subpackages: evolution-plugin-spamassassin - Update to version 3.50.3: + rss: Ensure feed icon size to not be too large. + Bug Fixes: - Calendar: Improve print of the Month view - rss: Better parse itunes feeds - Drag and drop images in HTML composer from Chrome - EMFolderTree: Do not expand to-be-selected folder + Updated translations. ==== evolution-data-server ==== Version update (3.50.2 -> 3.50.3) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.50.3: + Camel: Ignore errors about missing messages during filtering. + Bug Fixes: - sqlite3_enable_shared_cache is deprecated - Camel: Hide errors from for-offline download - IMAP: Copy/move messages in smaller batches + Updated translations. ==== evolution-ews ==== Version update (3.50.2 -> 3.50.3) - Update to version 3.50.3: + Bug Fixes: - Mail: Calendar attachments can be broken by the server. - Workaround Outlook 2019 ORGANIZER and ATTENDEE addition into plain events. + Updated translations. ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Update ffmpeg-glslang-cxx17.patch to build with glslang 14 - Disable vmaf integration as ffmpeg-4 cannot handle vmaf>=3 - Delete vmaf-trim-usr-local.patch ==== fltk ==== Version update (1.3.8 -> 1.3.9) - update to 1.3.9: * Support macOS up to macOS 14 "Sonoma". * Update bundled libraries to current versions (see below). * Introduce bundled image library "prefixing" to avoid conflicts with system libraries. * Bundled library versions (see also README.bundled-libs.txt): * Library Version Release date * jpeg jpeg-9e 2022-01-16 * png libpng-1.6.40 2023-06-21 * zlib zlib-1.3 2023-08-18 * Backport X11 INCR protocol fixes from 1.4.0 (issue #451) * X11: Suppress compiler warnings when using gcc or clang * Fix crash if a program exits before it opens a window * Fix compilation error with current Visual Studio 2022 * Backport warning fixes from 1.4.0 in src/fl_draw.cxx * Fix compiler warning as pointed out in PR #693 * Fix another compiler warning (#693) * Remove unused variable, fix "type issue" (#445, part 2) * Fix stack buffer overflow found by address sanitizer * Fix "gtk+ rendering" (GitHub Issue #443) * Fix doxygen warnings * Bump version numbers, prepare release 1.3.9 * Fix several compiler warnings * Update bundled image libraries and zlib to current versions * Update README, README.CMake.txt, and some support files * Fix compiler warnings: backported from 1.4 (git 'master') * CMake/MSVC: remove confusing recommendation to rerun * Documentation: remove dark color on title page * Raise CMake minimum required version to 3.15 and more * macOS platform: Issue #325 "Disabling IM disables Greek and Cyrillic layouts" * Fix fullscreen window level corner cases on macOS * Fix issue #373 apparent with macOS platform and SDK â¤ * Issue #452: Fl::get_font_name failure on OS-X. * Issue #454: crash in Fl::get_font_name(). * Issue #469: Fl_Sys_Menu_Bar menu item shortcuts using Esc Tab don't work on Mac * Fix "Focus is lost leaving full screen on macOS 13" * Add support of macOS Ventura 13.0 and macOS Sonoma 14.0 * macOS: remove configure option --enable-x11 and CMake OPTION_APPLE_X11; this functionality remains in FLTK 1.4. * configure.ac: make sure local-png and local-zlib always run together * Remove the -mwindows argument from CFLAGS and CXXFLAGS ==== frameworkintegration ==== Subpackages: frameworkintegration-plugin libKF5Style5 - Update appstream build requirement for compatibility with 1.0.0 ==== fwupd ==== Version update (1.9.10 -> 1.9.11) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.11: + This release adds the following features: - Allow exporting 'offline' reports for manual upload + This release fixes the following bugs: - Add some recovery partition names to ignore for ESP selection - Check for CET and SMAP on non-Intel x86 processors too - Correctly mark the CPU as supported in the HSI tests - Do not fail on probing downstream Synaptics MST ports - Do not offer to change BIOS settings that are already set - Do not prefer msftdata when choosing the default ESP - Do not show spurious device request flags - Fix a missing build dependency to fwupdplugin-self-test - Fix a segfault when using zlib-ng instead of zlib - Fix updating Jabra 410, 510, 710 and 810 devices - Match more community-supported branches - Remove the Intel SPIBAR proxy support as the mtd module works - Show a better error when the ESP is missing - Show an error if the post-update version does not match exactly - Speed up Synaptics MST device enumeration + This release adds support for the following hardware: - Algoltek USB devices - Luxshare Quad USB4 Dock ==== ghostscript ==== Subpackages: ghostscript-x11 - CVE-2023-46751.patch is https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=dcdbc595c13 adapted for Ghostscript-9.56.1 that fixes https://bugs.ghostscript.com/show_bug.cgi?id=707264 which includes a fix for CVE-2023-46751 "dangling pointer in gdev_prn_open_printer_seekable()" (bsc#1217871) ==== gnome-control-center ==== Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Add gnome-control-center-fix-region-preview-crash.patch: nl_langinfo's returned pointer could be invalid after switching locale, so we have to save the result before switch locale to prevent the crash (bsc#1218528, glgo#GNOME/gnome-control-center!2122). ==== gnome-settings-daemon ==== Version update (45.0 -> 45.1) - Update to version 45.1: + Power: Compiler warning fixes. + Smartcard: Error handling fix. + USB Protection: Comment clean up. + Updated translations. - Drop upstream fixed patches: + 41d0dc1db4d75c37ba67fe903105b4e162d42f1a.patch + 538816ff42f682fc4b541810ca107486abab9976.patch + a059909d62da0c11774f1089d02937699fabf150.patch ==== gnustep-base ==== - Add 295.patch: Fix build with libxml2 2.11.0+. ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Python 3.12 has dropped distutils * Build require python-setuptools instead * Drop old gpgme-D545-python310.patch * Replace with gpgme-D545-obsolete-distutils.patch ==== gpgmeqt ==== - Python 3.12 has dropped distutils * Build require python-setuptools instead * Drop old gpgme-D545-python310.patch * Replace with gpgme-D545-obsolete-distutils.patch ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - grub2.spec: Add ofnet to signed grub.elf to support powerpc net boot installation when secure boot is enabled (bsc#1217761) - Improved check for disk device when looking for PReP partition * 0004-Introduce-prep_load_env-command.patch ==== gstreamer ==== Version update (1.22.7 -> 1.22.8) Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.22.8: + Highlighted bugfixes in 1.22.8 - Security fixes for the AV1 video codec parser - avdec video decoder: fix another possible deadlock with FFmpeg 6.1 - qtdemux: reverse playback and seeking fixes for files with raw audio streams - v4l2: fix "newly allocated buffer ... is not free" warning log flood - GstPlay + GstPlayer library fixes - dtls: Fix build failure on Windows when compiling against OpenSSL 3.2.0 - d3d11screencapturesrc: Fix wrong color with HDR enabled - Cerbero build tool: More python 3.12 string escape warning fixes; make sure to bundle build tools as well - various bug fixes, build fixes, memory leak fixes, and other stability and reliability improvements + gstreamer - buffer: Unref memories before metas - pad: Recheck pads when linking after temporary unlock - baseparse: Fixes to buffers extracted from adapter - Rebase reduce-required-meson.patch ==== gstreamer-plugins-bad ==== Version update (1.22.7 -> 1.22.8) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.22.8: + aesenc: Fix IV length addition to output buffer length + av1parser: Fix array sizes in scalability structure (ZDI-CAN-22300 bsc#1218534) + camerabin: Fix source updates with user filters + codecparsers: av1: Clip max tile rows and cols values + dtlscertificate: Define WINSOCKAPI before including windows.h + d3d11: fix building with address sanitizer + d3d11screencapturesrc: Fix wrong color with HDR enabled + h264decoder: Fix GstVideoCodecFrame leak + ladspa: Make RDF parsing truly optional + rtponviftimestamp: Fix drop-out-of-segment=false mode + qsvdecoder: Fix stream format detection + webrtcsdp: Remove fingerprint validation that doesn't make sense + GstPlay: Automatically flush the bus when disposing the signal adapter + GstPlayer: Without dispatcher emit signals directly instead of via the default main context - Rebase reduce-required-meson.patch ==== gstreamer-plugins-base ==== Version update (1.22.7 -> 1.22.8) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.22.8: + appsrc: Fix flow return when buffer is dropped + audioringbuffer: Don't try to map MONO channel + encoding-target: Properly free when missing type field in parse_encoding_profile + pbutils: Don't include default vp9 parameters in resulting codec mime string + videorate: Don't forget last_ts on caps changes - Rebase reduce-required-meson.patch ==== gstreamer-plugins-good ==== Version update (1.22.7 -> 1.22.8) Subpackages: gstreamer-plugins-good-extra gstreamer-plugins-good-gtk gstreamer-plugins-good-jack gstreamer-plugins-good-qtqml - Update to version 1.22.8: + dcaparse: keep upstream buffer meta + rtpklvdepay: Recover after invalid fragmented KLV unit + matroska-demux: fix accumulated base offset in segment seeks + qtdemux: fix bug report URL + qtdemux: Don't overflow sample index + qtdemux: Fix reverse playback for pcm audio stream + qtdemux: Ignore raw audio streams when adjusting seek + qtdemux: Under-seeking to a key unit in certain (encoded by Adobe products) ProRes movies (macOS x86_64 & arm64, Windows x86_64, ...) + rtpac3depay: should output audio/x-ac3 not audio/ac3 + rtp: Fix incorrect RTP channel order lookup by name + v4l2bufferpool: add lock as atomic operation for seek - Rebase reduce-required-meson.patch ==== gstreamer-plugins-libav ==== Version update (1.22.7 -> 1.22.8) - Update to version 1.22.8: + avviddec: Unlock stream lock while waiting for decoded frame. Fixes potential deadlock + avviddec: Calculate latency only for fixed framerate - Rebase reduce-required-meson.patch. ==== gstreamer-plugins-rs ==== Version update (0.11.2 -> 0.11.3) - Update to version 0.11.3: + Fixed - ndi: Mark a private type as such and remove a wrong `Clone` impl of internal types. - uriplaylistbin: Fix a minor clippy warning. - fallbacksrc: Fix error during badly timed timeout scheduling. - webrtcsink: Fail gracefully if webrtcbin pads can't be requested instead of panicking. - threadshare: Fix deadlock in `ts-udpsrc` `notify::used-socket` signal emission. + Changed - Update to AWS SDK 1.0. - Update to windows-sys 0.52. - Update to async-tungstenite 0.24. - Update to bitstream-io 2.0. - tttocea608: De-duplicate some functions. - gtk4: Use async-channel instead of deprecated GLib main context channel. - Update BuildRequires on cargo-c >= 0.9.21. ==== gstreamer-plugins-ugly ==== Version update (1.22.7 -> 1.22.8) - Update to version 1.22.8: + No changes, stable bump only. - Rebase reduce-required-meson.patch. ==== gtk-layer-shell ==== Version update (0.8.1 -> 0.8.2) - Update to 0.8.2: * Compat: bump supported GTK to v3.24.39 * Compat: NOTE: GTK v3.24.40 may break previous version and work with this one, but we won't know for sure until it's released ==== gucharmap ==== Version update (15.1.1 -> 15.1.2) Subpackages: libgucharmap_2_90-7 - Update to version 15.1.2: + Updated translations. ==== guestfs-tools ==== Version update (1.51.6 -> 1.52.0) - Update to version 1.52.0 * mltools/libosinfo-c.c: Fix off-by-one error * Documentation fixes * Fix bugs-in-changelog.sh: Use grep -E instead of egrep ==== hplip ==== Version update (3.23.8 -> 3.23.12) Subpackages: hplip-hpijs hplip-sane hplip-udev-rules - Update to hplip 3.23.12 * del fix-printer-attributes-parsing.patch (merged upstream) * del hppsfilter-booklet-printing-change-insecure-fixed-tm.patch (merged upstream) - Added support for new printers: * HP OfficeJet Pro 9130b series * HP OfficeJet Pro 9120b series * HP OfficeJet Pro 9110b series * HP Color LaserJet Enterprise Flow MFP X58045z * HP Color LaserJet Enterprise Flow MFP X58045zs * HP Color LaserJet Enterprise MFP X58045dnâ * HP Color LaserJet Enterprise MFP X58045 * HP LaserJet Pro P1106 plus * HP LaserJet Pro P1108 plus ==== hxtools ==== Version update (20231101 -> 20231224) Subpackages: fd0ssh ofl - Update to release 20231224 * Add gh-trim-workflowruns script * git-forest: port to Perl 5.38 ==== icewm ==== Version update (3.4.4 -> 3.4.5) Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite - Update to 3.4.5: * Fix for centering the clock LED digits vertically * Fix the KeyWinTile commands for multi-mon setups * Fix the workspace buttons for right-to-left languages ==== inotify-tools ==== Version update (3.22.6.0 -> 4.23.9.0) Subpackages: libinotifytools0 - update to 4.23.9.0: * support cross compile for Android * libinotifytools: Rename init variable to fix conflict with entry point * Add CodeQL workflow for GitHub code scanning * Fix build with musl and add Alpine buildnode to CI * Update Cirrus CI FreeBSD images * Fix enabling of fanotify/fsnotify. * Fix fanotify_supported() * Combine to one build machine, reduce test iteration to 64 * Add -fanalyzer to build * Enable CentOS Stream 9 build * Add debian 12 * Ensure C++ libraries are not linked in ==== iputils ==== Version update (20221126 -> 20231222) - Update to version 20231222 https://github.com/iputils/iputils/releases/tag/20231222 - Use tar.xz instead of tar.gz - Update source URL ==== iw ==== Version update (5.19 -> 6.7) - Update to version 6.7: * update nl80211.h * bump version to 6.7 * update nl80211.h * iw: allow extra cflags * iw: S1G: add 802.11ah support for link command display * update nl80211.h * iw: connect: Fix segfault during open authentication * iw: fix attribute size mismatch * iw: add more extended capa bits * iw: Fix EHT rates printing. * iw: S1G: add list command support for 802.11ah * iw: S1G: add parsing for 802.11ah scan IE's * iw: S1G: add frequency set in kHz and offset options * util: don't print EHT info if not present * interface: print links * link: update for MLO * link: fix some formatting * iw: scan: set NL80211_SCAN_FLAG_COLOCATED_6GHZ in case of full sched scan * util: add support for 320MHz bandwidth without cf1 * util: add support for 320Mhz bandwidth * update nl80211.h * iw: event: fix printf format error * iw: add support for retrieving keys * iw: info: fix bug reading preambles and bandwidths * iw: add cac background command * iw: info: print PMSR capabilities ==== kernel-firmware ==== Version update (20231214 -> 20240102) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240102 (git commit b83108216200): * linux-firmware: add firmware for mediatek bluetooth chip (MT7925) * linux-firmware: add firmware for MT7925 * ASoC: tas2563: Add dsp firmware for laptops or other mobile devices * QCA: Add bluetooth firmware nvm files for QCA2066 * QCA: Update Bluetooth QCA2066 firmware to 2.1.0-00629 - Update aliases - Update to version 20231226 (git commit abfcad8b1405): * rtl_bt: Add firmware and config files for RTL8852BT/RTL8852BE-VT * ASoC: tas2781: Add dsp firmware for different laptops * ath11k: WCN6855 hw2.0: update to WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.36 * ath11k: WCN6855 hw2.0: update board-2.bin * ath11k: WCN6750 hw1.0: update board-2.bin * ath11k: IPQ8074 hw2.0: update board-2.bin * ath10k: WCN3990 hw1.0: update board-2.bin * ath10k: QCA9888 hw2.0: update board-2.bin * ath10k: QCA4019 hw1.0: update board-2.bin * ath10k: QCA6174 hw3.0: update firmware-6.bin to WLAN.RM.4.4.1-00309- * ath12k: add new driver and firmware for WCN7850 * iwlwifi: update gl FW for core80-165 release * intel: vsc: Add firmware for Visual Sensing Controller * cirrus: Add CS35L41 firmware and tunings for ASUS Zenbook 2023 Models * cirrus: Add CS35L41 firmware and tunings for ASUS Zenbook 2022 Models * amdgpu: DMCUB updates for various AMDGPU ASICs - New subpackag kernel-firmware-ath12k - Update aliases ==== kernel-source ==== Version update (6.6.6 -> 6.6.9) - Linux 6.6.9 (bsc#1012628). - bpf: Fix prog_array_map_poke_run map poke update (bsc#1012628). - mm/damon/core: use number of passed access sampling as a timer (bsc#1012628). - mm/damon/core: make damon_start() waits until kdamond_fn() starts (bsc#1012628). - btrfs: qgroup: iterate qgroups without memory allocation for qgroup_reserve() (bsc#1012628). - btrfs: qgroup: use qgroup_iterator in qgroup_convert_meta() (bsc#1012628). - btrfs: free qgroup pertrans reserve on transaction abort (bsc#1012628). - drm/amd/display: fix hw rotated modes when PSR-SU is enabled (bsc#1012628). - drm/i915: Fix FEC state dump (bsc#1012628). - drm/i915: Introduce crtc_state->enhanced_framing (bsc#1012628). - drm/i915/edp: don't write to DP_LINK_BW_SET when using rate select (bsc#1012628). - drm: Update file owner during use (bsc#1012628). - drm: Fix FD ownership check in drm_master_check_perm() (bsc#1012628). - spi: spi-imx: correctly configure burst length when using dma (bsc#1012628). - arm64: dts: allwinner: h616: update emac for Orange Pi Zero 3 (bsc#1012628). - ARM: dts: dra7: Fix DRA7 L3 NoC node register size (bsc#1012628). - ARM: OMAP2+: Fix null pointer dereference and memory leak in omap_soc_device_init (bsc#1012628). - reset: Fix crash when freeing non-existent optional resets (bsc#1012628). - s390/vx: fix save/restore of fpu kernel context (bsc#1012628). - platform/x86/intel/pmc: Fix hang in pmc_core_send_ltr_ignore() (bsc#1012628). - SUNRPC: Revert 5f7fc5d69f6e92ec0b38774c387f5cf7812c5806 (bsc#1012628). - wifi: ieee80211: don't require protected vendor action frames (bsc#1012628). - wifi: iwlwifi: pcie: add another missing bh-disable for rxq->lock (bsc#1012628). - wifi: mac80211: check if the existing link config remains unchanged (bsc#1012628). - wifi: mac80211: don't re-add debugfs during reconfig (bsc#1012628). - wifi: mac80211: check defragmentation succeeded (bsc#1012628). - wifi: mac80211: mesh: check element parsing succeeded (bsc#1012628). - wifi: mac80211: mesh_plink: fix matches_local logic (bsc#1012628). - ice: fix theoretical out-of-bounds access in ethtool link modes (bsc#1012628). - bpf: syzkaller found null ptr deref in unix_bpf proto add (bsc#1012628). - Revert "net/mlx5e: fix double free of encap_header in update funcs" (bsc#1012628). - Revert "net/mlx5e: fix double free of encap_header" (bsc#1012628). - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list() (bsc#1012628). - net/mlx5e: Fix a race in command alloc flow (bsc#1012628). - net/mlx5e: fix a potential double-free in fs_udp_create_groups (bsc#1012628). - net/mlx5e: Fix overrun reported by coverity (bsc#1012628). - net/mlx5e: Decrease num_block_tc when unblock tc offload (bsc#1012628). - net/mlx5e: XDP, Drop fragmented packets larger than MTU size (bsc#1012628). - net/mlx5: Fix fw tracer first block check (bsc#1012628). - net/mlx5: Refactor mlx5_flow_destination->rep pointer to vport num (bsc#1012628). - net/mlx5e: Fix error code in mlx5e_tc_action_miss_mapping_get() (bsc#1012628). - net/mlx5e: Fix error codes in alloc_branch_attr() (bsc#1012628). - net/mlx5e: Correct snprintf truncation handling for fw_version buffer (bsc#1012628). - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used by representors (bsc#1012628). - net: mscc: ocelot: fix eMAC TX RMON stats for bucket 256-511 and above (bsc#1012628). - net: mscc: ocelot: fix pMAC TX RMON stats for bucket 256-511 and above (bsc#1012628). - octeontx2-pf: Fix graceful exit during PFC configuration failure (bsc#1012628). - net: Return error from sk_stream_wait_connect() if sk_wait_event() fails (bsc#1012628). - net: sched: ife: fix potential use-after-free (bsc#1012628). - ethernet: atheros: fix a memleak in atl1e_setup_ring_resources (bsc#1012628). - net/rose: fix races in rose_kill_by_device() (bsc#1012628). - Bluetooth: Fix not notifying when connection encryption changes (bsc#1012628). - Bluetooth: Fix deadlock in vhci_send_frame (bsc#1012628). - Bluetooth: hci_event: shut up a false-positive warning (bsc#1012628). - Bluetooth: hci_core: Fix hci_conn_hash_lookup_cis (bsc#1012628). - bnxt_en: do not map packet buffers twice (bsc#1012628). - net: phy: skip LED triggers on PHYs on SFP modules (bsc#1012628). - ice: stop trashing VF VSI aggregator node ID information ... changelog too long, skipping 898 lines ... - commit 59f1683 ==== kmozillahelper ==== - BuildRequire rpm_macro(cmake_kf5): we call cmake_kf5 to build and thus need to ensure the macro to be known. - Add extra-cmake-modules BuildRequires: fix build after recent KDE Frameworks update. ==== libHX ==== Version update (4.19 -> 4.21) - Update to release 4.21 * Resolve compile error when signed_cast macro is used. ==== libarchive ==== Version update (3.7.0 -> 3.7.2) - skip write tests on 32bit, they OOM - update to 3.7.2: * Multiple vulnerabilities have been fixed in the PAX writer * bsdunzip(1) now correctly handles arguments following an - x after the zipfile * zstd filter now supports the "long" write option * SEGV and stack buffer overflow in verbose mode of cpio * bsdunzip updated to match latest upstream code * miscellaneous functional bugfixes ==== libavif ==== Version update (1.0.2 -> 1.0.3) - update to 1.0.3: * Rewrite the fix for memory errors fixed in 1.0.2 * CVE-2023-6704: Fix use-after-free errors (boo#1218303) * src/reformat.c: Allocate the threadData array directly ==== libdrm ==== Version update (2.4.118 -> 2.4.119) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - update to 2.4.119: * add amdgpu_va_get_start_addr ==== libebml ==== Version update (1.4.4 -> 1.4.5) - update to 1.4.5 (bsc#1218432): * Fix invalid memory access (reading beyond allocated memory) due to missing integer overflow check. ==== libguestfs ==== Version update (1.51.9 -> 1.52.0) Subpackages: libguestfs-appliance libguestfs-xfs libguestfs0 - Update to version 1.52.0 * The Python bindings now use bytes (instead of str) for the event callback message, since it may contain arbitrary 8 bit data Fix a rare crash, and avoid memory leaks in event callbacks * Support for OCaml 5, and OCaml â¥ 4.07 is now the minimum * The OCaml bindings now release the runtime lock around calls to guestfs_close, since that call might be long-running (for example it might have to shut down the appliance and synch disks). * Support OpencloudOS * SELinux relabelling now runs in parallel, meaning it's a lot quicker * Add support for lzma and zstd compression methods in tar APIs (like guestfs_tar_in) * guestfs_pvs_full previously didn't always return the correct device names. This has now been fixed. * guestfs_btrfs_filesystem_balance fixed so it now works with more modern btrfs tools (JÃ¼rgen HÃ¶tzel). * The guestfish(1) --key option now recognizes LVM names like /dev/mapper/rhel_bootp--73--75--123-root * guestfish --key option also supports a new --key all:... selector to try the same key on all devices. * In guestmount(1) avoid calling fclose(NULL) on error paths, which might have caused a crash on some platforms. ==== libheif ==== Version update (1.17.5 -> 1.17.6) Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif1 - update to 1.17.6: * A couple of build fixes and bug fixes detected by fuzzing. * Corrects these issues: * CVE-2023-49462 - #1043 * CVE-2023-49463 - #1042 - drop libheif-CVE-2023-49462.patch, libheif-CVE-2023-49464.patch, libheif-CVE-2023-49460.patch: upstream - security update - added patches fix CVE-2023-49460 [bsc#1217902], segmentation violation in decode_uncompressed_image() + libheif-CVE-2023-49460.patch - sync ExclusiveArch with SVT-AV1 - move HEIF plugins from examples to separate package - make sure all subpackages use the same libheif1 ABI ==== libical ==== Version update (3.0.16 -> 3.0.17) - update to 3.0.17: * Escape commas in x-property TEXT values * Built-in timezones updated to tzdata2023c * icalparser_ctrl setting defines how to handle invalid CONTROL characters during parsing * New publicly available functions: + get_zone_directory() + icalparser_get_ctrl + icalparser_set_ctrl ==== libical-glib ==== Version update (3.0.16 -> 3.0.17) - update to 3.0.17: * Escape commas in x-property TEXT values * Built-in timezones updated to tzdata2023c * icalparser_ctrl setting defines how to handle invalid CONTROL characters during parsing * New publicly available functions: + get_zone_directory() + icalparser_get_ctrl + icalparser_set_ctrl ==== libjcat ==== Version update (0.1.14 -> 0.2.0) - Update to version 0.2.0: + New Features: - Add support for verifying firmware transparency checkpoints - Add various bitcounting functions for future use - Allow creating and validating SHA512 checksums - Allow verifying the checksum of a payload + Bugfixes: - Sprinkle attribute((nonnull)) to give a little more compile-time safety ==== libjpeg-turbo ==== Version update (8.2.2 -> 8.3.2) - update to 3.0.1 (bsc#1211542, CVE-2023-2804): * The x86-64 SIMD functions now use a standard stack frame, prologue, and epilogue so that debuggers and profilers can reliably capture backtraces from within the functions. * Fixed two minor issues in the interblock smoothing algorithm that caused mathematical (but not necessarily perceptible) edge block errors when decompressing progressive JPEG images exactly two MCU blocks in width or that use vertical chrominance subsampling. * The TurboJPEG API now supports 4:4:1 (transposed 4:1:1) chrominance subsampling, which allows losslessly transposed or rotated 4:1:1 JPEG images to be losslessly cropped, partially decompressed, or decompressed to planar YUV images. * Fixed various segfaults and buffer overruns (CVE-2023-2804) * that occurred when attempting to decompress various specially-crafted malformed 12-bit-per-component and 16-bit-per-component lossless JPEG images using color quantization or merged chroma upsampling/color conversion. The underlying cause of these issues was that the color quantization and merged chroma upsampling/color conversion algorithms were not designed with lossless decompression in mind. Since libjpeg-turbo explicitly does not support color conversion when compressing or decompressing lossless JPEG images, merged chroma upsampling/color conversion never should have been enabled for such images. Color quantization is a legacy feature that serves little or no purpose with lossless JPEG images, so it is also now disabled when decompressing such images. (As a result, djpeg can no longer decompress a lossless JPEG image into a GIF image.) * Fixed an oversight in 1.4 beta1[8] that caused various segfaults and buffer overruns when attempting to decompress various specially-crafted malformed 12-bit-per-component JPEG images using djpeg with both color quantization and RGB565 color conversion enabled. * Fixed an issue whereby `jpeg_crop_scanline()` sometimes miscalculated the downsampled width for components with 4x2 or 2x4 subsampling factors if decompression scaling was enabled. This caused the components to be upsampled incompletely, which caused the color converter to read from uninitialized memory. With 12-bit data precision, this caused a buffer overrun or underrun and subsequent segfault if the sample value read from uninitialized memory was outside of the valid sample range. * Fixed a long-standing issue whereby the `tj3Transform()` function, when used with the `TJXOP_TRANSPOSE`, `TJXOP_TRANSVERSE`, `TJXOP_ROT90`, or `TJXOP_ROT270` transform operation and without automatic JPEG destination buffer (re)allocation or lossless cropping, computed the worst-case transformed JPEG image size based on the source image dimensions rather than the transformed image dimensions. If a calling program allocated the JPEG destination buffer based on the transformed image dimensions, as the API documentation instructs, and attempted to transform a specially-crafted 4:2:2, 4:4:0, 4:1:1, or 4:4:1 JPEG source image containing a large amount of metadata, the issue caused `tj3Transform()` to overflow the JPEG destination buffer rather than fail gracefully. The issue could be worked around by setting `TJXOPT_COPYNONE`. Note that, irrespective of this issue, `tj3Transform()` cannot reliably transform JPEG source images that contain a large amount of metadata unless automatic JPEG destination buffer (re)allocation is used or `TJXOPT_COPYNONE` is set. * Significantly sped up the computation of optimal Huffman tables. This speeds up the compression of tiny images by as much as 2x and provides a noticeable speedup for images as large as 256x256 when using optimal Huffman tables. * All deprecated fields, constructors, and methods in the TurboJPEG Java API have been removed. * Arithmetic entropy coding is now supported with 12-bit-per-component JPEG images. * Overhauled the TurboJPEG API to address long-standing limitations and to make the API more extensible and intuitive. ==== libntlm ==== Version update (1.6 -> 1.7) - update to 1.7: * Moved GitLab URL to <https://gitlab.com/gsasl/libntlm>. * Use gnulib ./bootstrap for building from version controlled sources. * API and ABI modifications: + No changes since last version. ==== libportal ==== Subpackages: libportal-gtk3-1 libportal-gtk4-1 libportal1 typelib-1_0-Xdp-1_0 - Replace copypasted summaries by something more concrete ==== libqt5-qtbase ==== Version update (5.15.11+kde138 -> 5.15.12+kde147) Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-mysql libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.12+kde147: * Http2: fix potential overflow in assemble_hpack_block() (bsc#1218413, CVE-2023-51714) * HPack: fix incorrect integer overflow check * HPack: fix a Yoda Condition - Update to version 5.15.12+kde144, rebased upstream: * QMimeDatabase: handle buggy type definitions with circular inheritance * xcb: only set base size when it's valid * QPixmapCache: fix leaking of QStrings and Keys on clear() * OpenFile portal: do not use O_PATH fds * QSystemTrayIcon: properly disconnect old menu in setContextMenu() * Guard QTabBar against nested event processing during moving tabs * QDial: don't crash when min==max and setting a value != min & max * QStandardItemModel: don't leak in mimeData() * SQL/MySQL: properly initialize variable * QWidgetTextControl: ignore invalid input method event * Update the LGPL license header * SQL/MySQL: fix handling of json column * Remove QMAKE_RANLIB and QMAKE_LINK_SHLIB from android/default_pre.prf * macOS: Fix less common writing systems on Catalina and later * Blacklist 1 tests in tst_QFtp on ubuntu-20.04 * Update bundled libpng to version 1.6.39 * Android: Fix signing of APKs that are generated when an AAB is also built * Update bundled zlib to version 1.2.13 * doc: update the limitation of QSystemTrayIcon on X11 * Blacklist 1 tests in tst_QTimer on ubuntu-20.04 * Add benchmarks for QLocale number parsing * Add benchmarks for QString number parsing * Android: Fix incorrect fullscreen dimensions * Gtk3Theme: set XCURSOR_SIZE and XCURSOR_THEME for wayland sessions * xcb: Flush Display when processing xcb events * xcb: Add xlib wrapper for XFlush() * QHostAddress: Fix incorrect comparison against 'Any' * QSsl[OpenSSL/Android]: Fix hardcoded 1_1 suffix * BLACKLIST: tst_QApplication::sendEventsOnProcessEvents for RHEL 9.0 * QMacStyle: do not set white color for grayed out button * Work round macOS's omission of en_DE from its own uiLanguages() * Suppress a deprecation warning in tst_QDateTime::toString_enumformat() * QJsonValue: fix incorrect to{Array,Object} when the value is empty * QGtk3Dialog: remove the #include for empty moc * Remove unneeded QWindow from QGtk3Dialog * tst_QSslSocket: Delete sslOptions * tst_QSslServer: Make the in-process server use TLS1.2 * Android: fix Gradle warning about using enableUncompressedNativeLibs * Mention limitation of QDir::drives() on Windows * QFileSystemEngine/Win: fix incorrect buffer size in currentPath() * Android: properly retrieve mime type of uri to for openUrl() * Android: Fix clipboard issue with urls * Android: Add a way to disable accessibility via an environment var * Update bundled libpng to version 1.6.38 * QIOSMessageDialog::exec - work around 'windowsless' exec * QIosScreen: retain the right window * tst_Q{BitArray,ContiguousCache}: check not only count(), but size(), too * QIosTextResponder: stop using deprecated constants and type * qcompilerdetection.h: detect Coverity * Android: Fix Display.getRealMetrics deprecation * Fix broken Text rendering when noantialiased NativeRendering is used * forkfd: fix Clang 15 ATOMIC_VAR_INIT deprecation warning * eglfs: Add env.var. to disable the dedicated drmHandleEvent thread * doc: Don't put strings into QVector<double> * Remove focusProxyAndInputMethods from tst_QWidget * Bump version to 5.15.12 * Update documentation of qWaitForWindowActive / qWaitForWindowExposed * QtHttp: Lower the severity of some log output * StyleSheetStyle: Fix color of placeholder texts in text edits * Android: Fix flickering on split screen mode * Update url to IAccessible2 Specification ==== libqt5-qtconnectivity ==== Version update (5.15.11+kde6 -> 5.15.12+kde6) Subpackages: libQt5Bluetooth5 libQt5Bluetooth5-imports libQt5Nfc5 libQt5Nfc5-imports libqt5-qtconnectivity-tools - Update to version 5.15.12+kde6, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtdeclarative ==== Version update (5.15.11+kde30 -> 5.15.12+kde31) - Update to version 5.15.12+kde31, rebased upstream: * QML: Fortify qmlExecuteDeferred some more * QV4: Avoid memory corruption in Reflect.apply * Blacklist 1 tests in tst_qquickanimations on macos * doc: Add note to PinchHandler.translation property about macOS trackpad * Revert "masm: Treat Android as generic Posix regarding mmap and friends" * QML: Check for stack overflows when creating objects * Fix wrong item-sizeHint-cache when StackLayout children were reordered * Doc: Add missing QQuickWindow constructor * Handle missing stops gracefully in Shape gradients * Do not crash if madvise() fails on MADV_WILLNEED * Blacklist 1 tests in tst_qquickbehaviors on macos * Avoid double applyDelegateChange in QQIV::setDelegate * QSGGeometry: add Q_DISABLE_COPY_MOVE * Qml: Don't crash on bad grouped properties * Fix TypeError in dynamicview1 example * Fix broken Text rendering when noantialiased NativeRendering is used * Trim file names before adding them to qml components and scripts * masm: Treat Android as generic Posix regarding mmap and friends * Bump version to 5.15.12 * Move StackLayout tests from qtquickcontrols.git (5.15) ==== libqt5-qtgraphicaleffects ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtimageformats ==== Version update (5.15.11+kde12 -> 5.15.12+kde10) - Update to version 5.15.12+kde10, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtlocation ==== Version update (5.15.11+kde4 -> 5.15.12+kde6) Subpackages: libQt5Location5 libQt5Positioning5 libQt5PositioningQuick5 - Update to version 5.15.12+kde6, rebased upstream: * Fix HereMap plugin not supporting authentication via apiKey * Fix build of Qt.labs.location QML plugin * PositionSource: fix lastKnownPosition request at startup * Bump version to 5.15.12 - Drop patches, now upstream: * 0001-Fix-build-of-Qt.labs.location-QML-plugin.patch ==== libqt5-qtmultimedia ==== Version update (5.15.11+kde2 -> 5.15.12+kde2) - Update to version 5.15.12+kde2, rebased upstream: * Fix crash on macos13 with iphone camera * VideoOutput: Always update geometry when video surface format changes * VideoOutput: fix resize of a finished video * Bump version to 5.15.12 * Windows: Fix cropping for HEVC-encoded videos ==== libqt5-qtnetworkauth ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtquickcontrols ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 * Remove tests for StackLayout ==== libqt5-qtquickcontrols2 ==== Version update (5.15.11+kde5 -> 5.15.12+kde5) Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5 - Update to version 5.15.12+kde5, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtscript ==== Version update (5.15.15 -> 5.15.16) - Update to version 5.15.16: * Bump version to 5.15.16 - Update to version 5.15.15+kde0, rebased upstream: * No code changes - Commits dropped by the rebase: * Bump version to 5.15.15 * Bump version to 5.15.14 * BumpÂ versionÂ toÂ 5.15.13 * Bump version to 5.15.12 * Bump version to 5.15.11 * Bump version to 5.15.10 ==== libqt5-qtsensors ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) Subpackages: libQt5Sensors5 libQt5Sensors5-imports - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtserialport ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtspeech ==== Version update (5.15.11+kde1 -> 5.15.12+kde1) Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd - Update to version 5.15.12+kde1, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtsvg ==== Version update (5.15.11+kde6 -> 5.15.12+kde6) - Update to version 5.15.12+kde6, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qttools ==== Version update (5.15.11+kde3 -> 5.15.12+kde4) Subpackages: libQt5Designer5 libQt5Help5 libqt5-qdbus libqt5-qtpaths - Update to version 5.15.12+kde4, rebased upstream: * qdoc: Ensure the generated temporary header file is closed properly * Bump version to 5.15.12 ==== libqt5-qttranslations ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtvirtualkeyboard ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell - Update to version 5.15.12+kde0, rebased upstream: * Doc: Improve locale section of technical guide * Fix visible area in the basic example * Bump version to 5.15.12 ==== libqt5-qtwayland ==== Version update (5.15.11+kde59 -> 5.15.12+kde60) Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5 - Update to version 5.15.12+kde60, rebased upstream: * Client: Always populate mimedata in drags * Client: Honor QGuiApplication::overrideCursor() * Always use blocking write for data_source.send * client: Mark return values as unused to suppress compiler warnings * tests: fix tst_seatv4 to use 24 as default cursor size * Bump version to 5.15.12 ==== libqt5-qtwebchannel ==== Version update (5.15.11+kde3 -> 5.15.12+kde3) Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports - Update to version 5.15.12+kde3, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtwebsockets ==== Version update (5.15.11+kde2 -> 5.15.12+kde2) Subpackages: libQt5WebSockets5 libQt5WebSockets5-imports - Update to version 5.15.12+kde2, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtwebview ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) Subpackages: libQt5WebView5 libQt5WebView5-imports - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtx11extras ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libqt5-qtxmlpatterns ==== Version update (5.15.11+kde0 -> 5.15.12+kde0) Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports - Update to version 5.15.12+kde0, rebased upstream: * Bump version to 5.15.12 ==== libraw ==== Version update (0.21.1 -> 0.21.2) - update to 0.21.2: * New compile-defined limit LIBRAW_MAX_PROFILE_SIZE_MB: limits allocation/read size for embedded color profile Embedded color profile allocation/read size: limited by input file size. * Multiple fixes (mostly inspired by oss-fuzz) to improve library stability and/or input checks. * raw-identify: use fallback if PATH_MAX not available * Disabled color conversion for Canon 16-bit thumbnails * docs/changelog: explained the case when no thumbnail is found in specific file * swapXX renamed to libraw_swapXX to avoid name conflict * better striped thumbnails handling - drop libraw-CVE-2023-1729.patch (upstream) ==== librsvg ==== Version update (2.57.0 -> 2.57.1) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.57.1: + Fix small-caps and bump the version of Pango required to 1.50.0. + Fix panic when using negative scaling transforms on the toplevel. + Support "var(--foo, #aabbcc)" just for colors. This is the minimum required to render color SVG emoji fonts that provide color fallbacks, but it is not yet full support for CSS var(). + Fix the VS2017 build. + Update cairo-rs. + Update the project metadata files. ==== libstorage-ng ==== Version update (4.5.163 -> 4.5.170) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#976 - make more use of new SystemCmd interface - use in-class member initialization - inhibit colored output from udevadm - fixed typos - 4.5.170 - merge gh#openSUSE/libstorage-ng#975 - reduce number of udevadm settle calls during probing - use in-class member initialization - proved probe function taking SystemInfo as an additional argument - fixed typos - moved code - 4.5.169 - Translated using Weblate (Slovak) (bsc#1149754) - 4.5.168 - Translated using Weblate (Dutch) (bsc#1149754) - Translated using Weblate (Japanese) (bsc#1149754) - Translated using Weblate (Czech) (bsc#1149754) - Translated using Weblate (Catalan) (bsc#1149754) - merge gh#openSUSE/libstorage-ng#974 - updated pot and po files - 4.5.167 - merge gh#openSUSE/libstorage-ng#973 - fixed typos - 4.5.166 - merge gh#openSUSE/libstorage-ng#972 - added note about nvme json output - 4.5.165 - merge gh#openSUSE/libstorage-ng#971 - adapted to changed nvme json output (bsc#1218306) - 4.5.164 ==== libxmlb ==== Version update (0.3.14 -> 0.3.15) - update to 0.3.15: * Sprinkle __attribute__((nonnull)) to give a little more compile-time safety * Accept text/xml as an alternative to application/xml * Do not inline shared code * Fix compiling with Visual Studio * Fix the exported api test on Windows * Generate and use .def file for clang-cl builds Fan) * Release source file handles early ==== libzypp ==== Version update (17.31.25 -> 17.31.27) - CheckAccessDeleted: fix 'running in container' filter (bsc#1218291) - version 17.31.27 (22) - Call zypp commit plugins during transactional update (fixes #506) - Add support for loongarch64 (fixes #504) - Teach MediaMultiCurl to download HTTP Multibyte ranges. - Teach zsync downloads to MultiCurl. - Expand RepoVars in URLs downloading a .repo file (bsc#1212160) Convenient and helps documentation as it may refer to a single command for a bunch of distributions. Like e.g. "zypper ar 'https://server.my/$releasever/my.repo'". - version 17.31.26 (22) ==== lsof ==== Version update (4.99.0 -> 4.99.3) - lsof 4.99.3: * Fix compilation error when HASIPv6 is not defined * Add configure option --disable-liblsof to disable installation of liblsof - add lsof-4.99.3-fix-version-in-configure-ac.patch ==== lttng-ust ==== Version update (2.13.5 -> 2.13.6) - update to 2.13.6: * Fix: segmentation fault on filter interpretation in "switch" mode * Fix: `ip` context is expressed as a base-10 field * Fix: c99: use __asm__ __volatile__ * Fix: c99: static assert: clang build fails due to multiple typedef * Fix: Reevaluate LTTNG_UST_TRACEPOINT_DEFINE each time tracepoint.h is included * Fix: trace events in C++ constructors/destructors * Fix: trace events in C constructors/destructors * Fix: use unaligned pointer accesses for lttng_inline_memcpy ==== mozilla-nss ==== Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-tools - add nss-allow-slow-tests-s390x.patch: "certutil dump keys with explicit default trust flags" test needs longer than the allowed 6 seconds on s390x ==== multipath-tools ==== Version update (0.9.7+76+suse.5f857af -> 0.9.7+93+suse.e2f2272) Subpackages: kpartx libmpath0 - Update to version 0.9.7+93+suse.e2f2272: * fix ANA prioritizer enablement logic (bsc#1218326) * avoid setting queue_if_no_path on multipath maps for which the no_path_retry timeout has expired * the interactive commands "restorequeueing map X" and "restorequeing maps" now only affect maps that had queueing manually disabled using "disablequeuing maps" or "disablequeuing map X" beforehand * Spelling fixes ==== newt ==== Version update (0.52.23 -> 0.52.24) - update to 0.52.24: * add support for python3.13 * fix compiler warnings ==== nftables ==== Subpackages: libnftables1 python311-nftables - buildrequire setuptools explicitly as pip drops the dependency - Fix the python bindings subpackages * The PEP517 python build requires setuptools * Actually use the rpm subpackage definition * The version is actually python3dist(nftables) = 0.1 * is noarch and requires libnftables1 through dlopen, tell rpmlint * remove unused shebang ==== nodejs21 ==== Subpackages: npm21 - c-ares-fixes.patch: fixes unit tests for new c-ares ==== open-iscsi ==== Subpackages: libopeniscsiusr0 - Updated to latest upstream: two small changes, with no known functional changes: * Incorrect documentation for `iscsiadm -m session` print level (upstream issue #432) * Stop using deprecated inet_aton and inet_ntoa (upstream issue [#435]) - Also, stopped using pre-prepared tarballs for the build, instead now using a service file to get latest SUSE srouces directly. This removed these two files: * open-iscsi-2.1.9-suse.tar.bz2, and * open-iscsi-SUSE-latest.diff.bz2 whcih were both created by a shell script, and added a service- file-generated file of the form: * open-iscsi-2.1.9.suse+TAG_OFFSET.tar.xz where TAG_OFFSET is of the form "COMMIT_COUNT.HASH", where COMMIT_COUNT is the count of commits since 2.1.9-suse (in this case), and HASH is the git commit hash being used. ==== openblas_openmp ==== - add Requires(pre/post): coreutils to the sub-packages that use commands like: ln, dirname, mktemp, etc in the pre/post scriptlets ==== openblas_pthreads ==== - add Requires(pre/post): coreutils to the sub-packages that use commands like: ln, dirname, mktemp, etc in the pre/post scriptlets ==== osinfo-db ==== Version update (20231027 -> 20231215) - Update to database version 20231215 (jsc#PED-6305) osinfo-db-20231215.tar.xz ==== perl-HTTP-Cookies ==== Version update (6.10 -> 6.110.0) - updated to 6.11 see /usr/share/doc/packages/perl-HTTP-Cookies/Changes 6.11 2023-12-07 16:36:52Z - Replace "Test" with "Test::More" (GH#70) (James Raspass) ==== perl-IO-Socket-SSL ==== - Fix the test t/core.t to build with OpenSSL 3.2.0. [bsc#1218342] * https://github.com/noxxi/p5-io-socket-ssl/issues/147 * Add perl-IO-Socket-SSL-Openssl32.patch ==== perl-IO-Tty ==== Version update (1.180.0 -> 1.200.0) - updated to 1.20 see /usr/share/doc/packages/perl-IO-Tty/ChangeLog 1.20 2023-12-28 Todd Rinaldo <toddr(a)cpan.org> * #32 - Skip t/pty_get_winsize.t tests on AIX * #27 - Fix patchlevel check for util.h 1.19 2023-12-28 Todd Rinaldo <toddr(a)cpan.org> * #37 - Remove --no-undefined from compiler test which is not compatible with all platforms. ==== perl-MIME-tools ==== Version update (5.510 -> 5.511.0) - updated to 5.511 see /usr/share/doc/packages/perl-MIME-tools/ChangeLog 5.511 2024-01-02 Dianne Skoll <dianne(a)skoll.ca> * VERSION 5.511 RELEASED * Silence a warning if used with a development version of MIME::QuotedPrint https://rt.cpan.org/Ticket/Display.html?id=150118 https://rt.cpan.org/Ticket/Display.html?id=149225 ==== perl-XML-Parser ==== Version update (2.46 -> 2.470.0) - updated to 2.47 see /usr/share/doc/packages/perl-XML-Parser/Changes 2.47 2023-12-28 (by Todd Rinaldo) - #84 use $fh instead of $foo - #85 Fix typo in documentation - #89 Devel::CheckLib to from 0.99 -> 1.14 - Devel::CheckLibn 1.16 - #91 POD fix for verbatim text - #97 Add a LICENSE file - #94 Don't ship Expat/Makefile - Various github workflow improvements. Windows is still not working. ==== perl-ldap ==== - Remove the dependency on perl(IO::Socket::INET6) as it has been deprecated by upstream, is no longer suitable for use and its not being maintained. A compatible replacement for this package is perl(IO::Socket::IP) which is shipped by the perl-base package. ==== php8 ==== Version update (8.2.13 -> 8.2.14) Subpackages: php8-cli php8-ctype php8-dom php8-gd php8-gettext php8-iconv php8-mbstring php8-mysql php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.2.14 * This is a bug fix release. https://www.php.net/ChangeLog-8.php#8.2.14 ==== plasma5-workspace ==== Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Update appstream build requirement for compatibility with 1.0.0 ==== poppler ==== Version update (23.11.0 -> 23.12.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler133 poppler-tools - version update to 23.12.0 core: * Rewrite FoFiType1::parse to be more flexible * Small internal code refactoring ==== poppler-qt5 ==== Version update (23.11.0 -> 23.12.0) - version update to 23.12.0 core: * Rewrite FoFiType1::parse to be more flexible * Small internal code refactoring ==== postfix ==== Version update (3.8.3 -> 3.8.4) - update default configuration to enable the long-term fix for bsc#1218304, CVE-2023-51764, SMTP smuggling attack: * smtpd_forbid_bare_newline = yes * smtpd_forbid_bare_newline_exclusions = $mynetworks - update to 3.8.4 (bsc#1218304, CVE-2023-51764): * Security: this release adds support to defend against an email spoofing attack (SMTP smuggling) on recipients at a Postfix server. For background, see https://www.postfix.org/smtp-smuggling.html ==== protobuf ==== Subpackages: libprotobuf-lite23_4_0 libprotobuf23_4_0 - build against modern python on sle15 ==== protobuf-c ==== Version update (1.4.1 -> 1.5.0) - update to 1.5.0: * Use CMAKE_CURRENT_BINARY_DIR instead of CMAKE_BINARY_DIR * remove deprecated functionality * Avoid "unused variable" compiler warning * Update autotools * Support for new Google protobuf 22.x, 23.x releases * Remove protobuf 2.x support ==== pulseaudio ==== Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse - minor fixes for setup-pulseaudio * be sure /etc/profile.d/pulseaudio.sh exists before using grep ==== python-Babel ==== Version update (2.13.1 -> 2.14.0) - update to 2.14.0: * ``Locale.number_symbols`` will now have first-level keys for each numbering system. * Babel no longer directly depends on either ``distutils`` or ``setuptools``; if you had been using the Babel setuptools command extensions, you would need explicitly depend on ``setuptools`` * CLDR/Numbers: Add support of local numbering systems for number symbols * CLDR: Upgrade to CLDR 43 * Frontend: Allow last_translator to be passed as an option to extract_message * Frontend: Decouple `pybabel` CLI frontend from distutils/setuptools * Numbers: Improve parsing of malformed decimals ==== python-M2Crypto ==== - require setuptools ==== python-Pillow ==== Version update (10.0.1 -> 10.1.0) - update to 10.1.0: * Added TrueType default font to allow for different sizes * Fixed invalid argument warning #7442 * Added ImageOps cover method #7412 * Catch struct.error from truncated EXIF when reading JPEG DPI * Consider default image when selecting mode for PNG save_all * Support BGR;15, BGR;16 and BGR;24 access, unpacking and putdata #7303 * Added CMYK to RGB unpacker #7310 * Improved flexibility of XMP parsing #7274 * Support reading 8-bit YCbCr TIFF images #7415 * Allow saving I;16B images as PNG #7302 * Corrected drawing I;16 points and writing I;16 text #7257 * Set blue channel to 128 for BC5S #7413 * Increase flexibility when reading IPTC fields #7319 * Set C palette to be empty by default #7289 * Added gs_binary to control Ghostscript use on all platforms * Read bounding box information from the trailer of EPS files if specified #7382 * Added reading 8-bit color DDS images #7426 * Added has_transparency_data #7420 * Fixed bug when reading BC5S DDS images #7401 * Prevent TIFF orientation from being applied more than once * Use previous pixel alpha for QOI_OP_RGB #7357 * Added BC5U reading #7358 * Allow getpixel() to accept a list #7355 * Allow GaussianBlur and BoxBlur to accept a sequence of x and y radii #7336 * Expand JPEG buffer size when saving optimized or progressive * Added session type check for Linux in ImageGrab.grabclipboard() #7332 * Allow "loop=None" when saving GIF images #7329 * Fixed transparency when saving P mode images to PDF #7323 * Added saving LA images as PDFs #7299 * Set SMaskInData to 1 for PDFs with alpha #7316, #7317 * Changed Image mode property to be read-only by default #7307 * Silence exceptions in _repr_jpeg_ and _repr_png_ #7266 * Do not use transparency when saving GIF if it has been removed when normalizing mode #7284 * Fix missing symbols when libtiff depends on libjpeg #7270 ==== python-SQLAlchemy ==== Version update (2.0.23 -> 2.0.24) - update to 2.0.24: * https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.24 ==== python-alembic ==== Version update (1.13.0 -> 1.13.1) - update to 1.13.1: * Fixed :class:`.Rewriter` so that more than two instances could be chained together correctly, also allowing multiple ``process_revision_directives`` callables to be chained. * Fixed issue where the method :meth:`.EnvironmentContext.get_x_argument` using the :paramref:`.EnvironmentContext.get_x_argument.as_dictionary` parameter would fail if an argument key were passed on the command line as a name alone, that is, without an equal sign ``=`` or a value. Behavior is repaired where this condition is detected and will return a blank string for the given key, consistent with the behavior where the ``=`` sign is present and no value. * Fixed issue where the "unique" flag of an ``Index`` would not be maintained when generating downgrade migrations. * Fixed bug in versioning model where a downgrade across a revision with two down revisions with one down revision depending on the other, would produce an erroneous state in the alembic_version table, making upgrades impossible without manually repairing the table. * Updated pep-484 typing to pass mypy "strict" mode, however including per-module qualifications for specific typing elements not yet complete. * This allows us to catch specific typing issues that have been ongoing such as import symbols not properly exported. ==== python-argcomplete ==== Version update (3.1.6 -> 3.2.1) - Remove coverage check - Fix zsh test failures: avoid coloring terminal - update to 3.2.1: * Allow explicit zsh global completion activation (#467) * Fix and test global completion in zsh (#463, #466) * Add âyes option to activate-global-python-argcomplete (#461) * Test suite improvements - drop without_zsh.patch: obsolete ==== python-atpublic ==== - remove obsolete pdm-pep517 dependency ==== python-configobj ==== - Remove six from the rpm requirements. Why would we have remove_six.patch in the first place if we still require it? - Enable unit tests - require setuptools - remove python2 logic, this makes no sense after "remove_six.patch" ==== python-distro ==== Version update (1.8.0 -> 1.9.0) - update to 1.9.0: * Refactor distro.info() method to return an InfoDict [#360] * Ignore the file '/etc/board-release' [#353] * Ignore the file '/etc/ec2_version' [#359] * Test on modern versions of CPython and PyPy and macOS [#362] * Add support for ALT Linux Server 10.1 distribution [#354] * Add Debian Testing to the tests [#356] * Update archlinux resource for tests [#352] ==== python-dkimpy ==== Version update (1.0.5 -> 1.1.5) - update to 1.1.5: * Use dns.resolver.resolve instead of dns.resolver.query due to deprecation * Treat dns.resolver.NoNameservers like NXDOMAIN (not an error) * Confine errors from dnspython to dnsplug and use dkim errors, since dkim.__init__.py doesn't import dns and needs dkim errors * Catch nacl.exceptions.ValueError and raise KeyFormatError, similar to how RSA key errors are treated * Create ed25519 key files with secure permissions to avoid risk of insecure chmode call/race condition * Properly cleanup temporary directories in tests * Verify correct AMS header is used for ARC seal verification (AndrÃ© Cruz) * Document dropping of Python 2 support * Fix traceback when attempting to verify an unsigned message using async verify * Add domain validity check for ascii domains (no specials) * Add option to specify index number of signature to verify to dkimverify * Correct signature indexing error introduced in 1.0.0 that prevents verification of multiple signatures in a single message * Correct dkim.verify processing to avoid errors when verifying messages with no DKIM signatures * Update dnsplug for DNS Python (dns) 2.0 compatibility * Provide more specific error message when ed25519 private key is invalid * Add support for PKCS#8 for private keys, openssl 3 default * Add limitations section to README to document current IDN status * Add USE_ASYNC flag to allow async to be disabled when aiodns is installed (LP: #1954331) * Add new dkim.DnsTimeoutError class to report queried domain and selector along with timeout error from dnspython * Invalid Authentication-Results header fields are ignored for ARC signing ==== python-falcon ==== Subpackages: python-falcon-doc python311-falcon - removed unneeded build dependency on python3-pygments-style-railscasts ==== python-flufl.i18n ==== Version update (4.1.1 -> 5.0.2) - update to 5.0.2: * Fix the build backend. * Drop Python 3.7 support. * Bump dependencies. ==== python-flufl.lock ==== Version update (7.1.1 -> 8.0.2) - update to 8.0.2: * Update dependencies. * Other minor improvements and cleanups. * Minor documentation fix. * Drop Python 3.7 support (GL#34) * Added a claimfile property to Lock objects * Switch to pdm- ackend (GL#33) * Use ruff for linting, since its much faster. ==== python-hiredis ==== - require setuptools ==== python-httpx ==== Version update (0.25.2 -> 0.26.0) - update to 0.26.0: * The `proxy` argument was added. You should use the `proxy` argument instead of the deprecated `proxies`, or use `mounts=` for more complex configurations. * The `proxies` argument is now deprecated. It will still continue to work, but it will be removed in the future. * Fix cases of double escaping of URL path components. Allow / as a safe character in the query portion. * Handle `NO_PROXY` envvar cases when a fully qualified URL is supplied as the value. * Allow URLs where username or password contains unescaped '@'. * Ensure ASGI `raw_path` does not include URL query component. * Ensure `Response.iter_text()` cannot yield empty strings. ==== python-importlib-metadata ==== Version update (7.0.0 -> 7.0.1) - update to 7.0.1: * Corrected the interface for SimplePath to encompass the expectations of locate_file and PackagePath. * Fixed type annotations to allow strings. ==== python-numpy ==== - Fix build error for Leap. Need gcc >= 8.5 ==== python-psutil ==== Version update (5.9.6 -> 5.9.7) - update to 5.9.7: * 2324_: enforce Ruff rule `raw-string-in-exception`, which helps providing clearer tracebacks when exceptions are raised by psutil. * 2325_, [PyPy]: psutil did not compile on PyPy due to missing `PyErr_SetExcFromWindowsErrWithFilenameObject` cPython API. - drop logind_y2038.patch (upstream) ==== python-psycopg2 ==== - require setuptools ==== python-pycryptodome ==== Version update (3.19.0 -> 3.19.1) - update to 3.19.1: * Fixed a side-channel leakage with OAEP decryption that could be exploited to carry out a Manger attack ==== python-pycups ==== - require setuptools ==== python-pygit2 ==== Version update (1.12.2 -> 1.13.3) - update to 1.13.3: * New API for filters in Python #1237 #1244 * Shallow repositories: New depth optional argument for clone_repository(...) and Remote.fetch(...) #1245 #1246 * New submodule init(...), update(...) and reload(...) functions #1248 * Release GIL in Walker.__next__ #1249 * Type hints for submodule functions in Repository #1247 * Support Python 3.12 * Documentation updates #1242 * Fix crash in reference rename #1233 * Upgrade to libgit2 v1.7.1 * Don't distribute wheels for pypy, only universal wheels for macOS * New Repository.remotes.create_anonymous(url) #1229 * docs: update links to pypi, pygit2.org #1228 * Prep work for Python 3.12 (not yet supported) #1223 - drop support-libgit2-1.7.patch (upstream) ==== python-python-slugify ==== Version update (5.0.2 -> 8.0.1) - Update to version v8.0.1: * Legal Notice / Readme * Add note on licensing (#130) * By default, prefer unidecode if installed * Update import order for unidecode vs text_unidecode (#126) * Support Matrix * SemVer Table * merge sandbox * github action revert * cmdline options * update dev deps * Up Version * Add missing cmdLine options ==== python-pyzmq ==== Version update (25.1.1 -> 25.1.2) - update to 25.1.2: * Fix builds with some recent compilers and bundled libzmq * Fix builds with upcoming Cython 3.1 ==== python-redis ==== - Add patch to increase timeouts in s390x where tests take longer to run: * increase-test-timeout.patch ==== python-setuptools ==== Version update (68.1.2 -> 69.0.2) - Add patch allow-only-direct-compilation.patch: * Allow forcing direct compilation. - update to 69.0.2: * Added missing estimated date for removing ``setuptools.dep_util`` (deprecated in v69.0.0). * Fixed imports of ``setuptools.dep_util.newer_group``. * A deprecation warning is issued instead of a hard failure. * Include type information (``py.typed``, ``*.pyi``) by default (#3136) -- by :user:`Danie-1`, * Exported ``distutils.dep_util`` and ``setuptools.dep_util`` through ``setuptools.modified`` * Merged with pypa/distutils@7a04cbda0fc714. * Replaced hardcoded numeric values with :obj:`dis.opmap`, fixing problem with 3.13.0a1. (#4094) * Configuring project ``version`` and ``egg_info.tag_*`` in such a way that results in invalid version strings (according to :pep:`440`) is no longer permitted. (#4066) * Removed deprecated ``egg_base`` option from ``dist_info``. * The parsing of the deprecated ``metadata.license_file`` and ``metadata.requires`` fields in ``setup.cfg`` is no longer supported. * Users are expected to move to ``metadata.license_files`` and ``options.install_requires`` (respectively). (#4066) * Passing ``config_settings`` to ``setuptools.build_meta`` with deprecated values for ``--global-option`` is no longer allowed. (#4066) * Removed deprecated ``namespace-packages`` from ``pyproject.toml``. * Added strict enforcement for ``project.dynamic`` in ``pyproject.toml``. This removes the transitional ability of users configuring certain parameters via ``setup.py`` without making the necessary changes to ``pyproject.toml`` * Removed handling of ``--config-settings["--build-option"]`` in ``setuptools.build_meta`` from build-backend API hooks * other than* ``build_wheel``. * Improve backwards compatibility with deprecated CLI practices. (#4048) * Avoid using caching attributes in ``Distribution.metadata`` for requirements. This is done for backwards compatibility with customizations that attempt to modify ``install_requires`` or ``extras_require`` at a late point (still not recommended). * Rework how ``setuptools`` internally handles ``dependencies/install_requires`` and ``optional-dependencies/extras_require``. (#3903) * Improve the generated ``PKG-INFO`` files, by adding ``Requires-Dist`` fields. * Previously, these fields would be omitted in favour of a non- standard ``*.egg-info/requires.txt`` file (which is still generated for the time being). (#3904) * Improve atomicity when writing ``PKG-INFO`` files to avoid race conditions with ``importlib.metadata``. (#3904) * Fix the name given to the ``*-nspkg.pth`` files in editable installs, ensuring they are unique per distribution. (#4041) * Workaround some limitations on ``pkg_resources``-style legacy namespaces in the meta path finder for editable installations. - drop sphinx72.patch (upstream) ==== python-six ==== - require setuptools ==== python-tornado6 ==== Version update (6.3.3 -> 6.4) - update to 6.4: * https://www.tornadoweb.org/en/stable/releases/v6.4.0.html * Python 3.12 is now supported. - drop py312-datetime.patch (upstream) ==== python-unicodedata2 ==== Version update (15.0.0 -> 15.1.0) - Add %{?sle15_python_module_pythons} - update to 15.1.0: * Updated to Unicode 15.1 and added support for Python 3.12 ==== python-zope.configuration ==== Version update (4.4.1 -> 5.0) - update to 5.0: * Drop support for Python 2.7, 3.5, 3.6. * Add support for Python 3.11. ==== python-zope.hookable ==== Version update (5.4 -> 6.0) - update to 6.0: * Drop support for Python 2.7, 3.5, 3.6. * Add support for Python 3.12. ==== python-zope.i18nmessageid ==== Version update (6.0.1 -> 6.1.0) - update to 6.1.0: * Add support for Python 3.12. ==== python-zope.interface ==== Version update (6.0 -> 6.1) - remove python2 specific codepaths - update to 6.1: * Add support for Python 3.12. * Fix building of the docs for non-final versions. ==== qca-qt5 ==== Version update (2.3.7 -> 2.3.7+git12) Subpackages: libqca-qt5-2 qca-qt5-plugins - Update to version 2.3.7+git12: * Increase version number * Update rootcerts.pem * test: add test for EME_PKCS1_OAEP and fix openssl >= 3.2 does not failing anymore when decrypting with the wrong key * plugins/qca-ossl: Announce tripledes unconditionally again - Add a _service to pick up fixes from git - Update to version 2.3.7+git8: * CI: Also verify that presence of the ossl legacy provider impacts qca * plugins/qca-ossl: Actually try loading the legacy provider * plugins/qca-ossl: Neither PKCS12 nor 3DES are legacy (boo#1218254) * unittest/keybundle: Regenerate keys and certificates * CI: Use clang-format-16 * GIT_SILENT: Port to new gitlab ci template * Replace sys/termios.h include for just termios.h * Sign self-signed certs with SHA256 ==== qpdf ==== Version update (11.6.4 -> 11.7.0) - update to 11.7.0: * Add QPDFAcroFormDocumentHelper::disableDigitalSignatures, which disables any digital signature fields, leaving their visual representations intact. The --remove-restrictions command-line argument now calls this. * Generate a more complete qpdf "man page" from the same source as qpdf --help. Fixes #1064. * Allow the syntax "--encrypt --user-password=user-password - -owner-password=owner-password --bits={40,128,256}" when encrypting PDF files. This is an alternative to the syntax "--encrypt user-password owner-password {40,128,256}", which will continue to be supported. The new syntax works better with shell completion and allows creation of passwords that start with "-". * When setting a check box value, allow any value other than /Off to mean checked. This is permitted by the spec. * Fix to QPDF JSON: a floating point number that appears in scientific notation will be converted to fixed-point notation, rounded to six digits after the decimal point. * Fix to QPDF JSON: the syntax "n:/pdf-syntax" is now accepted as an alternative way to represent names. This can be used for any name (e.g. "n:/text#2fplain"), but it is necessary when the name contains binary characters. * Update code and tests so that qpdf's test suite no longer depends on the output of any specific zlib implementation. This makes it possible to get a fully passing test suite with any API-compatible zlib library. CI tests with the default zlib as well as zlib-ng (including verifying that zlib-ng is not the default), but any zlib implementation should work. Fixes [#774]. * Bug fix: with --compress-streams=n, don't compress object, XRef, or linearization hint streams. * Add new C++ functions "qpdf_c_get_qpdf" and "qpdf_c_wrap" to qpdf-c.h that make it possible to write your own extern "C" functions in C++ that interoperate with the C API. See examples/extend-c-api for more information. ==== qt6-base ==== Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 - Add upstream patches to fix an incorrect integer overflow check (boo#1218413, CVE-2023-51714): * 0001-HPack-fix-a-Yoda-Condition.patch * 0002-HPack-fix-incorrect-integer-overflow-check.patch - Add upstream patch to fix a potential overflow in assemble_hpack_block(): * 0001-Http2-fix-potential-overflow-in-assemble_hpack_block.patch - Add upstream patch for a bug in QMimeDatabase which makes impossible to save JPEG files in Qt6 applications: * 0001-QMimeDatabase-collect-glob-patterns-from.patch * https://code.qt.io/cgit/qt/qtbase.git/commit/?id=4e9944e6c8a456353d243ab268… ==== rubygem-agama ==== Version update (6 -> 7) - Version 7 - Update software issues after calling to solver (gh#openSUSE/agama#945). - Set snapshots as not configurable by default (gh#openSUSE/agama#926). - Explicitly add dependencies instead of relying on the live ISO to provide the required packages (gh#openSUSE/agama/911). - Redefine the InstFunctions module to avoid calling code that causes unwanted side effects, like resetting the timezone (gh#openSUSE/agama#903). - Version 6 ==== sdbootutil ==== Version update (1+git20231214.b186b2d -> 1+git20231221.42797ab) Subpackages: sdbootutil-rpm-scriptlets sdbootutil-snapper - Update to version 1+git20231221.42797ab: * Do not fail if LUKS2 section is empty ==== sendmail ==== Subpackages: libmilter1_0 - There is no such beast called var-run.mount anymore ==== spamassassin ==== Subpackages: perl-Mail-SpamAssassin spamassassin-spamc - Remove the dependency on perl(IO::Socket::INET6) as it has been deprecated by upstream, is no longer suitable for use and its not being maintained. A compatible replacement for this package is perl(IO::Socket::IP) which is shipped by the perl-base package. ==== sudo ==== Version update (1.9.15p4 -> 1.9.15p5) Subpackages: sudo-plugin-python - Update to 1.9.15p5: * Fixed evaluation of the lecture, listpw, verifypw, and fdexec sudoers Defaults settings when used without an explicit value. Previously, if specified without a value they were evaluated as boolean false, even when the negation operator ('!') was not present. * Fixed a bug introduced in sudo 1.9.14 that prevented LDAP netgroup queries using the NETGROUP_BASE setting from being performed. * Sudo will now transparently rename a user's lecture file from the older name-based path to the newer user-ID-based path. GitHub issue #342. * Fixed a bug introduced in sudo 1.9.15 that could cause a memory allocation failure if sysconf(_SC_LOGIN_NAME_MAX) fails. Bug #1066. ==== supermin ==== Version update (5.2.2 -> 5.3.3) - Update to version 5.3.3 * initrd: Support ztd-compressed modules * pacman: Recognise Artix, an Arch derivative * Add a separate variable to store link flags, and use that to supply * Add appropriate globs for arm based kernels. The file names end in -arm64 but the architecture is named aarch64. * Add support for OCaml 5.0 * Add LFS support for fts functions * Numerous bug fixes - Upstream bug fixes and features 001-Improved-debugging-of-the-supermin-if-newer-calculation.patch 002-Fix-if-newer-copy-kernel.patch 003-Fix-kernel-filtering-for-aarch64-architecture.patch 004-Use-output-complete-exe-instead-of-custom.patch 005-Only-supply-output-complete-exe-to-final-link.patch 006-Rename-function-file-kernel.patch 007-Uncompress-kernel-on-RISC-V.patch 008-Fix-link-to-renamed-kernel-documentation.patch 009-New-mailing-list-email-address.patch - Dropped initrd_support_ztd-compressed_modules.patch ==== suse-module-tools ==== Version update (16.0.39 -> 16.0.42) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.42: * 60-io-scheduler.rules: test for "scheduler" sysfs attribute (boo#1216717) - Update to version 16.0.41: * rpm-script: fix issue during installation (bsc#1217775) * rpm-script: preun: remove stale .vmlinuz.hmac file * add blacklist entry for reiserfs (jsc#PED-6167) * rpm-script: add symlink /boot/.vmlinuz.hmac (bsc#1217775) * Remove kmp-install (boo#1214360) ==== thunar ==== Version update (4.18.8 -> 4.18.10) Subpackages: libthunarx-3-0 thunar-lang - Update to 4.18.10: * Prevent infinite reload loop for symlinks (#1270) - Update to 4.18.9: * g_file_get_basename over realpath (#1030) * Fix and simplify symlink resolver (#1260) * Fix thumbnailer symlink support (#1260) * Prevent GLib GIO CRITICAL (#1204) * Translation Updates ==== timezone ==== Version update (2023c -> 2023d) - update to 2023d: * Ittoqqortoormiit, Greenland changes time zones on 2024-03-31. * Vostok, Antarctica changed time zones on 2023-12-18. * Casey, Antarctica changed time zones five times since 2020. * Code and data fixes for Palestine timestamps starting in 2072. * A new data file zonenow.tab for timestamps starting now. * Fix predictions for DST transitions in Palestine in 2072-2075, correcting a typo introduced in 2023a. * Vostok, Antarctica changed to +05 on 2023-12-18. It had been at +07 (not +06) for years. * Change data for Casey, Antarctica to agree with timeanddate.com, by adding five time zone changes since 2020. Casey is now at +08 instead of +11. * Much of Greenland, represented by America/Nuuk, changed its standard time from -03 to -02 on 2023-03-25, not on 2023-10-28. * localtime.c no longer mishandles TZif files that contain a single transition into a DST regime. Previously, it incorrectly assumed DST was in effect before the transition too. * tzselect no longer creates temporary files. * tzselect no longer mishandles the following: * Spaces and most other special characters in BUGEMAIL, PACKAGE, TZDIR, and VERSION. * TZ strings when using mawk 1.4.3, which mishandles regular expressions of the form /X{2,}/. * ISO 6709 coordinates when using an awk that lacks the GNU extension of newlines in -v option-arguments. * Non UTF-8 locales when using an iconv command that lacks the GNU //TRANSLIT extension. * zic no longer mishandles data for Palestine after the year 2075. ==== traceroute ==== Version update (2.1.3 -> 2.1.5) - update to 2.1.5: * Parse interface information (rfc5837) for ICMP extensions * Add `fastopen' tcp module option (cookie negotiation only) * Complete tcp module option `mss' to discover possible mss clamping along the path being traced. * Complete tcp module option `info' to print returned tcp header options too (all those that can be set or altered by `-O' for tcp module). ==== tracker-miners ==== Subpackages: tracker-miner-files - Rebase tracker-miners-drop-syscalls-in-seccomp.patch ==== unbound ==== Version update (1.18.0 -> 1.19.0) Subpackages: libunbound8 unbound-anchor - Update to 1.19.0: * Features: - Fix #850: [FR] Ability to use specific database in Redis, with new redis-logical-db configuration option. - Merge #944: Disable EDNS DO. Disable the EDNS DO flag in upstream requests. This can be helpful for devices that cannot handle DNSSEC information. But it should not be enabled otherwise, because that would stop DNSSEC validation. The DNSSEC validation would not work for Unbound itself, and also not for downstream users. Default is no. The option is disable-edns-do: no - Expose the script filename in the Python module environment 'mod_env' instead of the config_file structure which includes the linked list of scripts in a multi Python module setup; fixes #79. - Expose the configured listening and outgoing interfaces, if any, as a list of strings in the Python 'config_file' class instead of the current Swig object proxy; fixes #79. - Mailing list patches from Daniel GrÃ¶ber for DNS64 fallback to plain AAAA when no A record exists for synthesis, and minor DNS64 code refactoring for better readability. - Merge #951: Cachedb no store. The cachedb-no-store: yes option is used to stop cachedb from writing messages to the backend storage. It reads messages when data is available from the backend. The default is no. * Bug Fixes: - Fix for version generation race condition that ignored changes. - Fix #942: 1.18.0 libunbound DNS regression when built without OpenSSL. - Fix for WKS call to getservbyname that creates allocation on exit in unit test by testing numbers first and testing from the services list later. - Fix autoconf 2.69 warnings in configure. - Fix #927: unbound 1.18.0 make test error. Fix make test without SHA1. - Merge #931: Prevent warnings from -Wmissing-prototypes. - Fix to scrub resource records of type A and AAAA that have an inappropriate size. They are removed from responses. - Fix to move msgparse_rrset_remove_rr code to util/msgparse.c. - Fix to add EDE text when RRs have been removed due to length. - Fix to set ede match in unit test for rr length removal. - Fix to print EDE text in readable form in output logs. - Fix send of udp retries when ENOBUFS is returned. It stops looping and also waits for the condition to go away. Reported by Florian Obser. - Fix authority zone answers for obscured DNAMEs and delegations. - Merge #936: Check for c99 with autoconf versions prior to 2.70. - Fix to remove two c99 notations. - Fix rpz tcp-only action with rpz triggers nsdname and nsip. - Fix misplaced comment. - Merge #881: Generalise the proxy protocol code. - Fix #946: Forwarder returns servfail on upstream response noerror no data. - Fix edns subnet so that queries with a source prefix of zero cause the recursor send no edns subnet option to the upstream. - Fix that printout of EDNS options shows the EDNS cookie option by name. - Fix infinite loop when reading multiple lines of input on a broken remote control socket. Addesses #947 and #948. - Fix #949: "could not create control compt". - Fix that cachedb does not warn when serve-expired is disabled about use of serve-expired-reply-ttl and serve-expired-client-timeout. - Fix for #949: Fix pythonmod/ubmodule-tst.py for Python 3.x. - Better fix for infinite loop when reading multiple lines of input on a broken remote control socket, by treating a zero byte line the same as transmission end. Addesses #947 and #948. - For multi Python module setups, clean previously parsed module functions in __main__'s dictionary, if any, so that only current module functions are registered. - Fix #954: Inconsistent RPZ handling for A record returned along with CNAME. - Fixes for the DNS64 patches. - Update the dns64_lookup.rpl test for the DNS64 fallback patch. - Merge #955 from buevsan: fix ipset wrong behavior. - Update testdata/ipset.tdir test for ipset fix. - Fix to print detailed errors when an SSL IO routine fails via SSL_get_error. - Clearer configure text for missing protobuf-c development libraries. - autoconf. - Merge #930 from Stuart Henderson: add void to log_ident_revert_to_default declaration. - Fix #941: dnscrypt doesn't work after upgrade to 1.18 with suggestion by dukeartem to also fix the udp_ancil with dnscrypt. - Fix SSL compile failure for definition in log_crypto_err_io_code_arg. - Fix SSL compile failure for other missing definitions in log_crypto_err_io_code_arg. - Fix compilation without openssl, remove unused function warning. - Mention flex and bison in README.md when building from repository source. ==== vim ==== Version update (9.0.2181 -> 9.1.0000) Subpackages: vim-data vim-data-common xxd - update to 9.1.0000 add missing help tags regenerate synmenu proto files need update improve filetype detection for *.v (V/Verilog/Coq) Update sh syntax and add local keyword for bash Update ftplugin and omni-complete Update Version9.txt for release 9.1 Add help tags to items in version9.txt Updated German translation Improve Turkish documentation update syntax and documentation Wrong display with 'briopt=sbr' and 'nobreakindent' Updates to indent and syntax Fix folding of code blocks Provide sass_recommended_style option Updates to ftplugin and syntax Make diffs foldable Add small ftplugin add Hungarian translation Updated Russian translation remove coveralls, move runtime/lang/Make_mvc.mak correct the :public example adjust tutor/README.ru.utf-8.txt Update Italian translations missing undo_ftplugin for indentkeys cursor wrong after { in single line buffer Visual not drawn with 'breakindent' when line doesn't fit add help tag multiple-constructors. fix indentation Syntax fix LTCG compile error ARM64 for write_chars clarify behaviour of ]m and ]M motions Update default links update ConTeXt keywords and other minor fixes Add variable categories and null related documentation Update R runtime files and docs Update Ukrainian translation Coverity complains about not checking return value Clarify that new() is not static list of new/changed features in version9.txt updates to indent, syntax and ftplugin Add loong64 arch add some error codes to `:help vim9class` Vim9: inconsistent :type/:class messages add support for matchit plugin add variants of opcodes Include Vim9 class features in version9.txt Maximum callback depth is not configurable Update Serbian messages translation reformat and align :h ft-c-syntax Update syntax file Vim9: need a way to reserve future extension Add TODO support to syntax script Vim9: missing error messages update helptags POSIX function name in exarg causes issues no filetype detection for execline scripts reg_executing() wrong for :normal with range Wrong cursor position when dragging out of window Update Serbian messages translation prevent E11 on FocusGained autocommand Update Japanese translation updated 8th syntax change dependabot prefix to "CI" Update change.txt Compile error with Motif UI + mouse support Create Changelog until v9.0.2175 Update Italian translations Update tmux syntax rules Update Turkish translations Compiler warning for uninitialized var update fortran syntax rules and doc notes Vim9: segfault when assigning to type remove deprecation warning for gdefault Vim9: crash when compiling for statement and non-existing type Vim9: compiling :defer may fail Updated Irish translation Update Logtalk runtime files for the latest language spec update Racket runtime files Update colorschemes The options[] array is still not sorted alphabetically Vim9: no support for const/final class/objects vars Vim9: builtin funcs may accept a non-value Moving tabpages on :drop may cause an endless loop sync runtime files with upstream grammar & typo fixes add Tbreak command Vim9: not consistently using :var for declarations Memory leak in Configure Script when checking GTK Vim9: can simplify arg type checking code Vim9: can use type a func arg/return value escape curdir in BrowseUpDir Vim9: type can be assigned to list/dict Vim9: type documentation out-dated Vim9: not able to use imported interfaces and classes Fix i386 build instanceof() should use varargs as second arg Update syntax file, fix missing for highlight ... changelog too long, skipping 30 lines ... Type check tests fail without the channel feature ==== virt-v2v ==== Version update (2.2.0 -> 2.4.0) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.4.0 * New --block-driver option which can be used to choose to install either virtio-blk or virtio-scsi drivers * The virt-v2v --key option now recognizes LVM names like /dev/mapper/rhel_bootp--73--75--123-root * The --key option also supports a new --key all:... selector to try the same key on all devices. * Conversions now set the host-model CPU in the output metadata, except where the source hypervisor overrides this. The exception is -o qemu mode which uses -cpu host. * virt-v2v will now look for bootloader configuration in /boot/grub/grub.cfg for UEFI guests * Invoke pnputil (if available) to install drivers, fixing some Windows conversions * Skip SELinux relabelling if the guest has disabled SELinux * Several output modes now generate metadata to indicate whether the guest requires the RTC to be set to UTC (Linux) or localtime (most Windows). For example with -o libvirt this generates <clock offset="utc|localtime"/>. * -i ova mode is now less strict about parsing the manifest file, which helps when converting some non-conforming OVA files. * Input modes using -it ssh now use the correct quoting * -i vmx mode now rejects VMDK files explicitly, reducing a source of user confusion * Multiple fixes to -o kubevirt mode. Also implement -oo compressed for this mode. * -o libvirt mode now supports Rocky Linux * -o openstack documentation for cloud configurations fixed * -o rhv-upload mode has an improved error when the -os parameter is invalid or missing * Remove support for RHEL 3 * Various language translation updates - Drop patches fix-compiler-error-Stdlib.stderr.patch fix-linker-error.patch ==== wireless-regdb ==== Version update (20230901 -> 20231201) - Update to version 20231201: * wireless-regdb: Update keys and maintainer information ==== wireplumber ==== Version update (0.4.16 -> 0.4.17) Subpackages: libwireplumber-0_4-0 wireplumber-audio - Update to version 0.4.17: * Fixes: - Fix a reference counting issue in the object managers that could cause crashes due to memory corruption. - Fix an issue with filters linking to wrong targets, often with two sets of links. - Fix a crash in the endpoints policy that would show up when log messages were enabled at level 3 or higher. ==== xerces-c ==== Version update (3.2.4 -> 3.2.5) - update to 3.2.5 (bsc#1159552, CVE-2018-1311): * [XERCESC-2163] - XercesMessages_en_US.cat is installed to wrong directory * [XERCESC-2188] - Use-after-free on external DTD scan ==== xmlsec1 ==== Version update (1.2.37 -> 1.2.38) Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Update to 1.2.38 * Have a look at the changelog for the list of changes ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - n_xserver-optimus-autoconfig-hack.patch u_randr-Do-not-crash-if-slave-screen-does-not-have-pro.patch u_xfree86-activate-GPU-screens-on-autobind.patch * check dixPrivateKeyRegistered(rrPrivKey) before calling rrGetScrPriv() to avoid xserver crash when Xinerama is enabled (boo#1218240) - ------------------------------------------------------------------ ==== yast2-firstboot ==== Version update (5.0.0 -> 5.0.1) - Allow selecting WSL systemd pattern (jsc#PED-5644, jsc#PED-5099) - 5.0.1 ==== yast2-installation ==== Version update (5.0.2 -> 5.0.3) - Enclose IPv6 addresses within square brackets when calling the mount command (bsc#1217637). - 5.0.3 ==== yast2-journal ==== Version update (5.0.0 -> 5.0.1) - Make sure not to get escape sequences (for colors) into the output of the 'journalctl --output json' command, even if $SYSTEMD_COLORS is set in the environment (bsc#1218106) - 5.0.1 ==== yast2-trans ==== Version update (84.87.20231216.c47de7a4bf -> 84.87.20231230.7bdda36766) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20231230.7bdda36766: * New POT for text domain 'security'. * New POT for text domain 'pam'. * New POT for text domain 'ntp-client'. * New POT for text domain 'add-on'. * Translated using Weblate (Georgian) * New POT for text domain 'installation'. * New POT for text domain 'autoinst'. * Translated using Weblate (Czech) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) - Update to version 84.87.20231224.d98b72cc24: * Translated using Weblate (Japanese) * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Catalan) * New POT for text domain 'update'. * New POT for text domain 'firstboot'. * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * New POT for text domain 'installation'. * Translated using Weblate (Slovak) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian) * Translated using Weblate (Macedonian)

1 0

New Arm Tumbleweed snapshot 20231221 released!
by Guillaume Gardet 22 Dec '23

22 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: apr ceph discover dracut (059+suse.530.gba7b6a35 -> 059+suse.533.g5a7cf9fa) fwupd jbigkit jq (1.7 -> 1.7.1) kdump krb5 (1.21.1 -> 1.21.2) libpwquality libssh2_org libstorage-ng (4.5.162 -> 4.5.163) libvirt metamail mozilla-nss (3.94 -> 3.95) mutter open-vm-tools perl-Bootloader (1.9 -> 1.10) ppp (2.4.9 -> 2.5.0) python-hiredis (2.2.2 -> 2.3.2) python-lxml (4.9.3 -> 4.9.4) python311 python311-core rsync sudo (1.9.15p2 -> 1.9.15p4) systemd vim (9.0.2146 -> 9.0.2181) vinagre vte (0.74.1 -> 0.74.2) wtmpdb (0.9.3 -> 0.10.0) zbar === Details === ==== apr ==== - Add reproducible.patch to drop build host name (boo#1084909) ==== ceph ==== Subpackages: librados2 librbd1 - Add ceph-cmake-3.28.patch: Fix build with cmake 3.28 and no git command found (https://github.com/ceph/ceph/pull/54963, boo#1218111). ==== discover ==== Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang - Update appstream build requirement for compatibility with 1.0.0 (boo#1217047) - Remove obsolete version checks ==== dracut ==== Version update (059+suse.530.gba7b6a35 -> 059+suse.533.g5a7cf9fa) - Update to version 059+suse.533.g5a7cf9fa: * feat(dracut.sh): protect `push_host_devs` function * fix(dracut.sh): do not add device if `find_block_device` returns an error ==== fwupd ==== Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Own %{_modulesloaddir}: used to be present via udev-mini -> kmod - > suse-module-tools dependency before. ==== jbigkit ==== - security update - added patches fix CVE-2022-1210 [bsc#1198146], Malicious file leads to a denial of service in TIFF File Handler + jbigkit-CVE-2022-1210.patch ==== jq ==== Version update (1.7 -> 1.7.1) Subpackages: libjq1 - Update to version 1.7.1 Security * Fix CVE-2023-50246 (boo#1218034) + Fix heap buffer overflow in jvp_literal_number_literal. * Fix CVE-2023-50268 (boo#1218038) fix stack-buffer-overflow if comparing nan with payload. CLI changes * Make the default background color more suitable for bright backgrounds. * Allow passing the inline jq script after --. * Fix possible uninitialised value dereference if jq_init() fails Language changes * Simplify paths/0 and paths/1. * Reject U+001F in string literals. * Remove unused nref accumulator in block_bind_library. * Remove a bunch of unused variables, and useless assignments. * main.c: Remove unused EXIT_STATUS_EXACT option. * Actually use the number correctly casted from double to int as index. * src/builtin.c: remove unnecessary jv_copy-s in type_error/type_error2. * Remove undefined behavior caught by LLVM 10 UBSAN. * Convert decnum to binary64 (double) instead of decimal64. This makes jq behave like the JSON specification suggests and more similar to other languages. * Fix memory leaks on invalid input for ltrimstr/1 and rtrimstr/1. * Fix memory leak on failed get for setpath/2. * Fix nan from json parsing also for nans with payload that start with 'n'. * Allow carriage return characters in comments. Documentation changes * Generate links in the man page. libjq * Add extern C for C++. ==== kdump ==== - Update calibrate values for riscv64 ==== krb5 ==== Version update (1.21.1 -> 1.21.2) Subpackages: krb5-client - update to 1.21.2 (bsc#1218211, CVE-2023-39975): * Fix double-free in KDC TGS processing [CVE-2023-39975]. ==== libpwquality ==== Subpackages: libpwquality1 pam_pwquality - add: prereq "pam-config" in baselibs.conf * post scriptlet in pam_pwquality-32bit runs: pam-config ==== libssh2_org ==== - Security fix: [bsc#1218127, CVE-2023-48795] * Add 'strict KEX' to fix CVE-2023-48795 "Terrapin Attack" * Add libssh2_org-CVE-2023-48795.patch ==== libstorage-ng ==== Version update (4.5.162 -> 4.5.163) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#970 - consistent (and original) naming of bcache operations - coding style - improved logging - updated integration tests - fixed typo - 4.5.163 ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - apparmor: Add capabilities for PCI passthrough to virtxend profile bsc#1216656 ==== metamail ==== - Have fixed date in mgrep.1 (boo#1047218) ==== mozilla-nss ==== Version update (3.94 -> 3.95) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-tools - update to NSS 3.95 * bmo#1842932 - Bump builtins version number. * bmo#1851044 - Remove Email trust bit from Autoridad de Certificacion Firmaprofesional CIF A62634068 root cert. * bmo#1855318 - Remove 4 DigiCert (Symantec/Verisign) Root Certificates * bmo#1851049 - Remove 3 TrustCor Root Certificates from NSS. * bmo#1850982 - Remove Camerfirma root certificates from NSS. * bmo#1842935 - Remove old Autoridad de Certificacion Firmaprofesional Certificate. * bmo#1860670 - Add four Commscope root certificates to NSS. * bmo#1850598 - Add TrustAsia Global Root CA G3 and G4 root certificates. * bmo#1863605 - Include P-384 and P-521 Scalar Validation from HACL* * bmo#1861728 - Include P-256 Scalar Validation from HACL*. * bmo#1861265 - After the HACL 256 ECC patch, NSS incorrectly encodes 256 ECC without DER wrapping at the softoken level * bmo#1837987 - Add means to provide library parameters to C_Initialize * bmo#1573097 - clang format * bmo#1854795 - add OSXSAVE and XCR0 tests to AVX2 detection. * bmo#1858241 - Typo in ssl3_AppendHandshakeNumber * bmo#1858241 - Introducing input check of ssl3_AppendHandshakeNumber * bmo#1573097 - Fix Invalid casts in instance.c ==== mutter ==== - Add mutter-fix-text-input-delete-surrounding.patch: text-input-v3 requrires byte based offset but Clutter uses char based offset for delete_surrounding_text, fix it by converting before passing arguments (glgo#GNOME/mutter#2146, glgo#GNOME/mutter!2712). ==== open-vm-tools ==== Subpackages: libvmtools0 open-vm-tools-desktop - Own %{_modulesloaddir}: used to be present via udev-mini -> kmod - > suse-module-tools dependency before. ==== perl-Bootloader ==== Version update (1.9 -> 1.10) - merge gh#openSUSE/perl-bootloader#160 - fix 'pbl --version' to show correct version number - 1.10 ==== ppp ==== Version update (2.4.9 -> 2.5.0) - Update to version 2.5.0. This release is a major release of pppd which contains breaking changes for third-party plugins, a complete revamp of the build-system and that allows for flexibility of configuring features as needed. * CVE-2022-4603, bsc#1218251: improper validation of array index of the component pppdump * Support for PEAP authentication * Support for loading PKCS12 certificate envelopes * Adoption of GNU Autoconf / Automake build environment * Support for pkgconfig * Bunch of fixes and cleanup to PPPoE and IPv6 support * Major revision to PPPD's Plugin API * Lots of internal fixes and cleanups for Radius and PPPoE * Dropped IPX support, as Linux has dropped it in version 5.15 * Pppd is no longer installed setuid-root * New pppd options: - ipv6cp-noremote, ipv6cp-nosend, ipv6cp-use-remotenumber, ipv6-up-script, ipv6-down-script - -v, show-options - usepeerwins, ipcp-no-address, ipcp-no-addresses, nosendip * On Linux, any baud rate can be set on a serial port provided the kernel serial driver supports that. - Obsoleted patches: * ppp-lib64.patch * ppp-compiling-with-clang-encounters-an-error-in-eap-tls..patch * ppp-pie.patch - Source file pppoe-discovery.8.gz is now part of the tarball. - Enable support for systemd notification. ==== python-hiredis ==== Version update (2.2.2 -> 2.3.2) - update to 2.3.2: * Added Python 3.12 to test matrix and classifiers (#174) * Linking to Redis learning resources (#173) * Updating client license to clear, MIT (#170) * Integrating spellcheck into CI (#169) * hiredis 1.2.0 support, versioning as 2.3.0 (#168) * Fix including tests in sdist (#166) * Use absolute imports and remove __init__.py from tests. * Implement garbage collection support in Reader (#162) (#163) ==== python-lxml ==== Version update (4.9.3 -> 4.9.4) - update to 4.9.4: * LP#2046398: Inserting/replacing an ancestor into a node's children could loop indefinitely. * LP#1980767, GH#379: ``TreeBuilder.close()`` could fail with a ``TypeError`` after parsing incorrect input. * LP#1522052: A file-system specific test is now optional and should no longer fail on systems that don't support it. * Built with Cython 0.29.37. - drop libxml2212-tests.patch (upstream) ==== python311 ==== Subpackages: python311-curses python311-dbm - Refresh CVE-2023-27043-email-parsing-errors.patch to gh#python/cpython!111116, fixing bsc#1210638 (CVE-2023-27043). - Thus we can remove Revert-gh105127-left-tests.patch, which is now useless. ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Refresh CVE-2023-27043-email-parsing-errors.patch to gh#python/cpython!111116, fixing bsc#1210638 (CVE-2023-27043). - Thus we can remove Revert-gh105127-left-tests.patch, which is now useless. ==== rsync ==== - Moved rsyncd.conf and rsyncd.secrets to /usr/etc. * Add rsync-usr-etc.patch ==== sudo ==== Version update (1.9.15p2 -> 1.9.15p4) Subpackages: sudo-plugin-python - For existing products (SLE15-SP* and older) keep using /etc and don't switch to /usr/etc. So only SLES16/ALP, Tumbleweed and newer products will use both /etc and /usr/etc locations. - Update to 1.9.15p4: * Fixed a bug introduced in sudo 1.9.15 that could prevent a userâs privileges from being listed by sudo -l if the sudoers entry in /etc/nsswitch.conf contains [SUCCESS=return]. This did not affect the ability to run commands via sudo. Bug #1063. - Update to 1.9.15p3: * Always disable core dumps when sudo sends itself a fatal signal. Fixes a problem where sudo could potentially dump core dump when it re-sends the fatal signal to itself. This is only an issue if the command * received a signal that would normally result in a core dump but the command did not actually dump core. * Fixed a bug matching a command with a relative path name when the sudoers rule uses shell globbing rules for the path name. Bug #1062. * Permit visudo to be run even if the local host name is not set. GitHub issue #332. * Fixed an editing error introduced in sudo 1.9.15 that could prevent sudoreplay from replaying sessions correctly. GitHub issue #334. * Fixed a bug introduced in sudo 1.9.15 where sudo -l > /dev/null could hang on Linux systems. GitHub issue #335. * Fixed a bug introduced in sudo 1.9.15 where Solaris privileges specified in sudoers were not applied to the command being run. ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - udev: only require kmod in the full flavor. udev-mini is only used inside OBS in a strictly defined setup and udev will never have to load device drivers there. - Import commit 071ac409a0564863657d8f8a5a35e6a4f914695f 071ac409a0 rules: set up tty permissions and group for /dev/hvc* nodes f693b3ed8a vconsole-setup: remember the correct error value when open_terminal() fails 963d838bad vconsole-setup: handle the case where the vc is in KD_GRAPHICS mode more gracefully (bsc#1215282) 6f53f71d2d vconsole-setup: simplify error handling ==== vim ==== Version update (9.0.2146 -> 9.0.2181) Subpackages: vim-data vim-data-common xxd - update to 9.0.2181: * Vim9: missing error messages * update helptags * POSIX function name in exarg causes issues * no filetype detection for execline scripts * reg_executing() wrong for :normal with range * Wrong cursor position when dragging out of window * Update Serbian messages translation * runtime(netrw): prevent E11 on FocusGained autocommand * Update Japanese translation * runtime(8th): updated 8th syntax * change dependabot prefix to "CI" * Update change.txt * Compile error with Motif UI + mouse support * Create Changelog until v9.0.2175 * Update Italian translations * Update tmux syntax rules * Update Turkish translations * Compiler warning for uninitialized var * update fortran syntax rules and doc notes * Vim9: segfault when assigning to type * remove deprecation warning for gdefault * Vim9: crash when compiling for statement and non-existing type * Vim9: compiling :defer may fail * Updated Irish translation * Update Logtalk runtime files for the latest language spec * update Racket runtime files * Update colorschemes * The options[] array is still not sorted alphabetically * Vim9: no support for const/final class/objects vars * Vim9: builtin funcs may accept a non-value * Moving tabpages on :drop may cause an endless loop * sync runtime files with upstream * grammar & typo fixes * add Tbreak command * Vim9: not consistently using :var for declarations * Memory leak in Configure Script when checking GTK * Vim9: can simplify arg type checking code * Vim9: can use type a func arg/return value * escape curdir in BrowseUpDir * Vim9: type can be assigned to list/dict * Vim9: type documentation out-dated * Vim9: not able to use imported interfaces and classes * instanceof() should use varargs as second arg * Update syntax file, fix missing for highlight * screenpos() may crash with neg. column * [security]: use-after-free in check_argument_type * Vim9: incorrectly parses :def func definitions * Vim9: can use typealias in assignment * ft detection maybe wrong if 'fic' set for *.[CH] * re-generate helptags * do not set b:did_ftplugin before sourcing scala ftplugin(#13657) * Fix `w:netrw_bannercnt` ref error with `netrw_fastbrowse=2` * fix examples in comments for JSON formatting * Add json formating plugin (Issue #11426) * Update syntax file * link cmdline completion to to |wildcards| and fix typos * Update eval.txt * Vim9: type not kept when assigning vars * The option[] array is not sorted * unlet b:filetype_in_cpp_family for cpp & squirrel * fix typo in change.txt * update syntax and ftplugins * Update syntax file and syntax test * Sort options.txt alphabetically * update todo items * sort option-list alphabetically * no support to build on OpenVMS * Using type unknown for List/Dict containers * 'breakindent' is not drawn after diff filler lines * remove non-existent parameter in shift-command * Using int for errbuflen in option funcs * [security]: use-after-free in exec_instructions() * Vim does not detect pacman.log file * reference 'go-!' inside os_win32.txt for !start * Type check tests fail without the channel feature ==== vinagre ==== - Disable RDP support for the time being: vinagre has been archived upstream and does not support freerdp 3.0. If you rely on RDP connections, please switch to GNOME Connections. ==== vte ==== Version update (0.74.1 -> 0.74.2) Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Update to version 0.74.2: * lib,bidi: Work on the heap rather than the stack * stream: Fix a rare corruption when advancing the tail * widget: Fix initial cursor blink state * build: Post release version bump ==== wtmpdb ==== Version update (0.9.3 -> 0.10.0) Subpackages: libwtmpdb0 - Update to version 0.10.0 - last: support matching for username and/or tty ==== zbar ==== - security update: * CVE-2023-40889 [bsc#1214770] Fix heap based buffer overflow in qr_reader_match_centers() + zbar-CVE-2023-40889.patch * CVE-2023-40890 [bsc#1214771] Fix stack based buffer overflow in lookup_sequence() + zbar-CVE-2023-40890.patch

1 0

New Arm Tumbleweed snapshot 20231219 released!
by Guillaume Gardet 20 Dec '23

20 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: gdb ghostscript openssh publicsuffix (20231108 -> 20231213) python-pip (23.3.1 -> 23.3.2) thin-provisioning-tools (1.0.7 -> 1.0.9) === Details === ==== gdb ==== - Patches added (backport from gdb-patches, swo#30728): * gdb-symtab-refactor-condition-in-scan_attributes.patch * gdb-symtab-factor-out-m_die_range_map-usage.patch * gdb-symtab-handle-nullptr-parent-in-parent_map-set_p.patch * gdb-symtab-factor-out-m_deferred_entries-usage.patch * gdb-symtab-resolve-deferred-entries-inter-shard-case.patch * gdb-symtab-keep-track-of-processed-dies-in-shard.patch * gdb-symtab-resolve-deferred-entries-intra-shard-case.patch * gdb-symtab-don-t-defer-backward-refs-inter-cu-intra-.patch * gdb-symtab-recurse-into-c-dw_tag_subprogram-dies-for.patch * gdb-symtab-keep-track-of-all-parents-for-cooked-inde.patch * gdb-symtab-fix-dw_tag_inlined_subroutine-entries-in-.patch ==== ghostscript ==== Subpackages: ghostscript-x11 - Recommend cups-filters only when cups is present. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Added openssh-cve-2023-48795.patch (bsc#1217950, CVE-2023-48795). This mitigates a prefix truncation attack that could be used to undermine channel security. ==== publicsuffix ==== Version update (20231108 -> 20231213) - Update to version 20231213: * util: gTLD data autopull updates for 2023-12-12T15:13:54 UTC (#1910) * util: gTLD data autopull updates for 2023-12-06T15:14:08 UTC (#1908) * Place -v after -C in github actions workflows (#1906) * Introduce Go Modules to tooling (#1901) * util: gTLD data autopull updates for 2023-11-21T15:13:46 UTC (#1902) * Handle EBEROs: Use DelegationDate alongside ContractTerminated (#1894) * util: gTLD data autopull updates for 2023-11-18T15:11:52 UTC (#1898) ==== python-pip ==== Version update (23.3.1 -> 23.3.2) - update to 23.3.2: * Fix a bug in extras handling for link requirements (`#12372 * Fix mercurial revision "parse error": use ``--rev={ref}`` instead of ``-r={ref}`` (`#12373 ==== thin-provisioning-tools ==== Version update (1.0.7 -> 1.0.9) - Update to version 1.0.9: * Update Cargo.lock * [build] Check Cargo.lock while it is updated * Bump version to 1.0.9 * [build] Sync dependencies versions between Cargo.lock and Cargo.toml * [thin_check] Extend the --clear-needs-check-flag option to have auto-repair caps * [build] Require that Cargo.lock is up to date * [all] Fix clippy lints for Rust 1.74.0 * Update cargo.lock * bump version nr to 1.0.8 * [sync io engine] Stop reusing the same gap buffer. * [tests] Fix extra arguments for IO tests

1 0

New Arm Tumbleweed snapshot 20231218 released!
by Guillaume Gardet 19 Dec '23

19 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: libsecret (0.21.1 -> 0.21.2) libxkbcommon mokutil mutter parole (4.18.0 -> 4.18.1) perl-Net-SSLeay tumbler (4.18.1 -> 4.18.2) webkit2gtk3 (2.42.3 -> 2.42.4) webkit2gtk3-soup2 (2.42.3 -> 2.42.4) xfce4-cpugraph-plugin (1.2.8 -> 1.2.10) xfce4-power-manager (4.18.2 -> 4.18.3) xfce4-settings (4.18.3 -> 4.18.4) yast2-trans (84.87.20231121.7869d671a6 -> 84.87.20231216.c47de7a4bf) === Details === ==== libsecret ==== Version update (0.21.1 -> 0.21.2) Subpackages: libsecret-1-0 typelib-1_0-Secret-1 - Update to version 0.21.2: + Support GnuTLS as an alternative crypto backend. + Fix LeakSanitizer issues. + secret-tool: Verify that the parsed stdin password is vaild UTF-8. + Fix markup syntax for SecretSchema. + Public secret_attributes_validate method. + Updated translations. ==== libxkbcommon ==== Subpackages: libxkbcommon-x11-0 libxkbcommon0 libxkbregistry0 - dxvk need libxkbregistry0 for building -32bit variants, provide them. ==== mokutil ==== - Sync change log to prepare for sending mokutil 0.6.0 to SLE15-SP6 (jsc#PED-6528) - Removed the following backported patches because they are merged to 0.6.0: - mokutil-fix-missing-header.patch b15e7c4d7 util: add the missing stdio.h - mokutil-enable-setting-fallback-verbosity-and-norebo.patch (bsc#1198458) 57bc38582 mokutil: enable setting fallback verbosity and noreboot mode - mokutil-SBAT-revocation-update-support.patch (bsc#1198458) 6c9890730 SBAT revocation update support ==== mutter ==== - Add mutter-fix-x11-restart.patch: glgo#GNOME/mutter!2445 breaks restarting under x11 accidentally because it redirects subwindows after redirecting windows, this patch fix it by redirecting subwindows first (glgo#GNOME/gnome-shell#7050, glgo#GNOME/mutter!3329). ==== parole ==== Version update (4.18.0 -> 4.18.1) Subpackages: parole-lang - Update to version 4.18.1 * Add missing chain-up to parent in constructed() * Add runtime guard for XfceSMClient * build: Restrict XfceSMClient to X11 * build: Use XDT_CHECK_OPTIONAL_FEATURE * Small UI Improvements * parole-conf: Fix critical warning and memory leak * build: Define our own windowing macro instead of extending GDK's * plugins: Disable systray icon outside X11 * Guard X11 code paths * Fix invisible mouse (Issue #125) * Add middle click actions to tray icon (Fixes #88) * docs: Remove useless check * mpris2: Properly disconnect signal handlers * powermanager: Add missing sanity check * Only use header bar if gtk-dialogs-use-header (Fixes #117) * build: Add -export-dynamic to LDFLAGS * Add icons at missing sizes, clean up SVG metadata * Translation Updates ==== perl-Net-SSLeay ==== - Use constants X509_VERSION_3 and X509_REQ_VERSION_1 when available (#GH-449) * Add Use-constants-X509_VERSION_3-and-X509_REQ_VERSION_1-when-available.patch ==== tumbler ==== Version update (4.18.1 -> 4.18.2) Subpackages: libtumbler-1-0 tumbler-folder-thumbnailer tumbler-lang tumbler-webp-thumbnailer - Update to version 4.18.2 * Disambiguate thumbnailer signals * scheduler: Fix ready/error signal forwarding * desktop-thumbnailer: Use empty path to build cmdline if it is null * Update spec link in README * xdg-cache: Fix temporary file management when saving thumbnail * Add icon at 64px, clean up SVG metadata ==== webkit2gtk3 ==== Version update (2.42.3 -> 2.42.4) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.42.4 (boo#1218032): + Fix incorrect random images incorrectly displayed as backgrounds of <div> elements. + Fix videos displayed aliased after being resized e.g. in YouTube. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42883. ==== webkit2gtk3-soup2 ==== Version update (2.42.3 -> 2.42.4) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.42.4 (boo#1218032): + Fix incorrect random images incorrectly displayed as backgrounds of <div> elements. + Fix videos displayed aliased after being resized e.g. in YouTube. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42883. ==== xfce4-cpugraph-plugin ==== Version update (1.2.8 -> 1.2.10) Subpackages: xfce4-cpugraph-plugin-lang - Update to version 1.2.10 * Add xfce4cpp to EXTRA_DIST - Use a newer gcc/g++ version on Leap or SLE. - Update to version 1.2.9 * Don't update tooltip string when tooltip is not visible * Improve CPU hotplugging on Linux * Use "xfce_spawn_command_line()" * Code refactor * Update source code for the new xfce4cpp library * Rework of xfce4cpp library * Reduce the minimum width from 10 to 1 * Add missing include * Translation Updates ==== xfce4-power-manager ==== Version update (4.18.2 -> 4.18.3) Subpackages: xfce4-power-manager-lang xfce4-power-manager-plugin - Update to version 4.18.3 * power: Fix inhibition management * settings: Present window to the user when already opened * settings: Remove useless g_application_hold/release() * A review of signal handlers disconnection * Remove #ifdefs DEBUG * brightness: Rework min level management * Refactor XfpmBrightness * Remove useless logs * backlight: Adjust some spacing for consistency / readability * backlight: Return earlier when brightness key event should not be handled * backlight: fix "handle display brightness keys" setting * Simplify brightness level management (Fixes #139) * Add missing properties for panel plugin settings * Use same debug function everywhere (V2) * brightness: Silence more warnings * Fix previous commit (again) * Fix previous commit * Fix g_spawn*_sync() wait status management * brightness: Fix g_spawn() wait status management * Silence some more warnings * Update docs url * power: Fix memory leak * settings: Fix hidden widgets when !has_lcd_brightness * backlight: Fix xfconf warning about cancelled operation * Lower some warning levels * Use same debug function everywhere * Fix upower object management * plugin: Fix non unreffed objects on finalize * systray-icon: Fix "floating object" warning on finalize * systray-icon: Fix "invalid property" warnings * Suspend system if lock screen fails on lid close (Fixes #209) * Add energy rate into device details * power: Fix use of g_hash_table_get_values() * Fix light locker integration (Fixes #201) * Add app icon at 64px, 96px, clean up SVG metadata * Fix description for pending states. * Translation Updates ==== xfce4-settings ==== Version update (4.18.3 -> 4.18.4) Subpackages: xfce4-settings-color xfce4-settings-lang - Update to version 4.18.4 * display-settings: Fix memory management of confirmation dialog * xfsettingsd: displays: Always do some actions on RRScreenChangeNotify * xfsettingsd: displays: Fix memory leak * settings-manager: Support absolute path as icon name * Replace deprecated xfce_spawn(_command_line)?_on_screen * appearance: Match more dark themes (fixes #495) * appearance: Check for presence of color-scheme key * Apply matching xfwm4 when the switch is clicked * displays: Lower warning level * Translation Updates ==== yast2-trans ==== Version update (84.87.20231121.7869d671a6 -> 84.87.20231216.c47de7a4bf) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20231216.c47de7a4bf: * Translated using Weblate (Slovak) * Translated using Weblate (Dutch) * Translated using Weblate (Japanese) * Translated using Weblate (Czech) * Translated using Weblate (Catalan) * New POT for text domain 'pam'. * New POT for text domain 'control'. * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Indonesian) * Translated using Weblate (Czech) * Translated using Weblate (Japanese) * Translated using Weblate (Catalan) * Translated using Weblate (Japanese) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish) * Translated using Weblate (Swedish)

1 0

Raspberry Pi 5 and opensuse
by Bill Merriam 19 Dec '23

19 Dec '23

What do I need to do to install opensuse on a Raspberry Pi 5? Is there already in image in the build system? Bill

6 11

New Arm Tumbleweed snapshot 20231217 released!
by Guillaume Gardet 18 Dec '23

18 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: attica-qt5 (5.112.0 -> 5.113.0) baloo5 (5.112.0 -> 5.113.0) bluez-qt (5.112.0 -> 5.113.0) breeze5-icons (5.112.0 -> 5.113.0) curl (8.4.0 -> 8.5.0) frameworkintegration (5.112.0 -> 5.113.0) gnome-software gupnp gupnp-av kactivities-stats (5.112.0 -> 5.113.0) kactivities5 (5.112.0 -> 5.113.0) kaddressbook karchive (5.112.0 -> 5.113.0) kate kauth (5.112.0 -> 5.113.0) kbookmarks (5.112.0 -> 5.113.0) kcalc kcalendarcore (5.112.0 -> 5.113.0) kcmutils (5.112.0 -> 5.113.0) kcodecs (5.112.0 -> 5.113.0) kcompletion (5.112.0 -> 5.113.0) kconfig (5.112.0 -> 5.113.0) kconfigwidgets (5.112.0 -> 5.113.0) kcontacts (5.112.0 -> 5.113.0) kcoreaddons (5.112.0 -> 5.113.0) kcrash (5.112.0 -> 5.113.0) kdav (5.112.0 -> 5.113.0) kdbusaddons (5.112.0 -> 5.113.0) kdeclarative (5.112.0 -> 5.113.0) kded (5.112.0 -> 5.113.0) kdelibs4support (5.112.0 -> 5.113.0) kdesu (5.112.0 -> 5.113.0) kdnssd-framework (5.112.0 -> 5.113.0) kdoctools (5.112.0 -> 5.113.0) kernel-firmware (20231128 -> 20231214) kfilemetadata5 (5.112.0 -> 5.113.0) kglobalaccel (5.112.0 -> 5.113.0) kguiaddons (5.112.0 -> 5.113.0) khangman kholidays (5.112.0 -> 5.113.0) khtml (5.112.0 -> 5.113.0) ki18n (5.112.0 -> 5.113.0) kiconthemes (5.112.0 -> 5.113.0) kidletime (5.112.0 -> 5.113.0) kig kimageformats (5.112.0 -> 5.113.0) kinit (5.112.0 -> 5.113.0) kio (5.112.0 -> 5.113.0) kio-extras5 kirigami2 (5.112.0 -> 5.113.0) kitemmodels (5.112.0 -> 5.113.0) kitemviews (5.112.0 -> 5.113.0) kjobwidgets (5.112.0 -> 5.113.0) kjs (5.112.0 -> 5.113.0) knewstuff (5.112.0 -> 5.113.0) knotifications (5.112.0 -> 5.113.0) knotifyconfig (5.112.0 -> 5.113.0) konsole kpackage (5.112.0 -> 5.113.0) kparts (5.112.0 -> 5.113.0) kpeople5 (5.112.0 -> 5.113.0) kplotting (5.112.0 -> 5.113.0) kpty (5.112.0 -> 5.113.0) kquickcharts (5.112.0 -> 5.113.0) kross (5.112.0 -> 5.113.0) krunner (5.112.0 -> 5.113.0) kservice (5.112.0 -> 5.113.0) ktextaddons ktexteditor (5.112.0 -> 5.113.0) ktextwidgets (5.112.0 -> 5.113.0) ktouch kunitconversion (5.112.0 -> 5.113.0) kwallet (5.112.0 -> 5.113.0) kwalletmanager5 kwayland (5.112.0 -> 5.113.0) kwidgetsaddons (5.112.0 -> 5.113.0) kwindowsystem (5.112.0 -> 5.113.0) kxmlgui (5.112.0 -> 5.113.0) libKF5ModemManagerQt (5.112.0 -> 5.113.0) libKF5NetworkManagerQt (5.112.0 -> 5.113.0) libheif libkmahjongg libnbd libsoup2 libstorage-ng (4.5.161 -> 4.5.162) libzypp (17.31.23 -> 17.31.25) luit (20221028 -> 20230201) nodejs21 (21.2.0 -> 21.4.0) perl-Bootloader (1.8 -> 1.9) plasma-framework (5.112.0 -> 5.113.0) prison-qt5 (5.112.0 -> 5.113.0) procps procps4 purpose (5.112.0 -> 5.113.0) python-Babel (2.12.1 -> 2.13.1) python-alembic (1.12.1 -> 1.13.0) python-argon2-cffi (21.3.0 -> 23.1.0) python-greenlet (3.0.1 -> 3.0.2) python-ldap (3.4.3 -> 3.4.4) python-mysqlclient (2.2.0 -> 2.2.1) python-pycurl python-pysmbc (1.0.23 -> 1.0.25.1) python-setproctitle qpdf (11.6.3 -> 11.6.4) qqc2-desktop-style (5.112.0 -> 5.113.0) sdbootutil (1+git20231114.6bcf1d3 -> 1+git20231214.b186b2d) signon-kwallet-extension skanlite solid (5.112.0 -> 5.113.0) sonnet (5.112.0 -> 5.113.0) sqlite3 (3.44.1 -> 3.44.2) suse-module-tools (16.0.38 -> 16.0.39) syndication (5.112.0 -> 5.113.0) syntax-highlighting (5.112.0 -> 5.113.0) threadweaver (5.112.0 -> 5.113.0) yast2-network (5.0.0 -> 5.0.1) zypper (1.14.67 -> 1.14.68) === Details === ==== attica-qt5 ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Attica5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== baloo5 ==== Version update (5.112.0 -> 5.113.0) Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Remove two obsolete benchmark tests * [ExtractorProcess] Handle signal mangling by DrKonqi * [ExtractorProcess] Test the various processing states * [ExtractorProcess] Make the extractor process path a constructor argument * [BasicIndexingBenchmark] Allow to keep temporary DB * [QueryTest] Add test case for terms folded to empty strings * [DocumentUrlDb] Reduce allocations during path reconstruction * Shortcut non-matching phrase queries * [EngineQuery] Remove AND/OR operations * [QueryTest] Move AND/OR queries to searchstring tests * [QueryParser] Remove it, as it is no longer used * [SearchStore] Always use TermGenerator instead of QueryParser * [Extractor] Do not emit startedIndexingFile for skipped documents * Remove dead registerBalooWatcher DBus method * [FileWatchTest] Check attr changed signal when XAttr is not available * [FileWatchTest] Clean up and enhance result checks * [FileWatchTest] Replace common boilerplate with RAII * [KInotify] Fix _k_addWatches helper when hitting descriptor limit * [KInotify] Simplify dirIter logic, use unique_ptr * [KInotify] Always add all watches in the event loop * [KInotifyTest] Extend renaming tests * [KInotifyTest] Move common boilerplate to init * [KInotify] Silence EventMoveSelf warning when not relevant * [KInotify] Removed unused and obsolete `available()` method ==== bluez-qt ==== Version update (5.112.0 -> 5.113.0) Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== breeze5-icons ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== curl ==== Version update (8.4.0 -> 8.5.0) Subpackages: libcurl4 - Update to 8.5.0: * Security fixes: - [bsc#1217573, CVE-2023-46218] cookie mixed case PSL bypass - [bsc#1217574, CVE-2023-46219] HSTS long file name clears contents * Changes: - gnutls: support CURLSSLOPT_NATIVE_CA - HTTP3: ngtcp2 builds are no longer experimental * Bugfixes: - asyn-thread: use pipe instead of socketpair for IPC when available - cmake: fix OpenSSL quic detection in quiche builds - conncache: use the closure handle when disconnecting surplus connections - content_encoding: make Curl_all_content_encodings allocless - cookie: lowercase the domain names before PSL checks - Curl_http_body: cleanup properly when Curl_getformdata errors - CURLMOPT_MAX_CONCURRENT_STREAMS: make sure the set value is within range - doh: provide better return code for responses w/o addresses - doh: use PIPEWAIT when HTTP/2 is attempted - duphandle: also free 'outcurl->cookies' in error path - duphandle: make dupset() not return with pointers to old alloced data - duphandle: use strdup to clone *COPYPOSTFIELDS if size is not set - easy: in duphandle, init the cookies for the new handle - easy_lock: add a pthread_mutex_t fallback - fopen: create new file using old file's mode - fopen: create short(er) temporary file name - getenv: PlayStation doesn't have getenv() - hostip: show the list of IPs when resolving is done - hsts: skip single-dot hostname - HTTP/2, HTTP/3: handle detach of onoing transfers - http: allow longer HTTP/2 request method names - hyper: temporarily remove HTTP/2 support - IPFS: fix IPFS_PATH and file parsing - multi: during ratelimit multi_getsock should return no sockets - multi: use pipe instead of socketpair to *wakeup() - ngtcp2: fix races in stream handling - ntlm_wb: use pipe instead of socketpair when possible - openssl: avoid BN_num_bits() NULL pointer derefs - openssl: fix building with v3 `no-deprecated` + add CI test - openssl: fix infof() to avoid compiler warning for %s with null - openssl: identify the "quictls" backend correctly - openssl: include SIG and KEM algorithms in verbose - openssl: two multi pointer checks should probably rather be asserts - openssl: when a session-ID is reused, skip OCSP stapling - quic: make eyeballers connect retries stop at weird replies - quic: manage connection idle timeouts - setopt: check CURLOPT_TFTP_BLKSIZE range on set - socks: better buffer size checks for socks4a user and hostname - socks: make SOCKS5 use the CURLOPT_IPRESOLVE choice - tool: fix --capath when proxy support is disabled - tool_getparam: limit --rate to be smaller than number of ms - transfer: abort pause send when connection is marked for closing - transfer: avoid calling the read callback again after EOF - transfer: only reset the FTP wildcard engine in CLEAR state - url: don't touch the multi handle when closing internal handles - urlapi: avoid null deref if setting blank host to url encode - urlapi: skip appending NULL pointer query - urlapi: when URL encoding the fragment, pass in the right length - vtls: cleanup SSL config management - vtls: consistently use typedef names for OpenSSL structs - vtls: late clone of connection ssl config - vtls: use ALPN "http/1.1" for HTTP/1.x, including HTTP/1.0 * Rebase curl-secure-getenv.patch * Add curl-tests-errorcodes.patch ==== frameworkintegration ==== Version update (5.112.0 -> 5.113.0) Subpackages: frameworkintegration-plugin libKF5Style5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== gnome-software ==== Subpackages: gnome-software-plugin-packagekit - Add gnome-software-support-appstream-1_0.patch to support building with appstream 1.0 (boo#1217047) ==== gupnp ==== - Add 00514fb6.patch: Fix compatibility with libxml2 2.12.x. ==== gupnp-av ==== Subpackages: libgupnp-av-1_0-3 - Add 1e10a41f.patch: Fix compatibility with libxml2 2.12.x. ==== kactivities-stats ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kactivities5 ==== Version update (5.112.0 -> 5.113.0) Subpackages: kactivities5-imports libKF5Activities5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kaddressbook ==== Subpackages: kaddressbook-doc libKPim5AddressbookImportExport5 - Require extra-cmake-modules at build time ==== karchive ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * karchivetest: QVERIFY KArchiveFile* before dereferencing it * Fix broken bzip2 with new shared-mime-info ==== kate ==== Subpackages: kate-plugins - Require extra-cmake-modules at build time ==== kauth ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kbookmarks ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kcalc ==== - Require extra-cmake-modules at build time ==== kcalendarcore ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kcmutils ==== Version update (5.112.0 -> 5.113.0) Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kcodecs ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kcompletion ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kconfig ==== Version update (5.112.0 -> 5.113.0) Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Make KConfigWatcher noop for in-memory configs ==== kconfigwidgets ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * KRecentFileActions: Fix use after free (kde#476312) ==== kcontacts ==== Version update (5.112.0 -> 5.113.0) Subpackages: kcontacts-lang libKF5Contacts5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kcoreaddons ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5CoreAddons5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Make testLoadHints pass with the PatchCollection * KAboutLicense::byKeyword: handle SPDX ids with -or-later * kdirwatch: find fam as part of the tests now that we include _p.h * kdirwatch: don't crash after moving threads * kdirwatch: don't leave relative entries dangling * kdirwatch: expand ref counting system to keep account of public instances * kdirwatch: always unref d, and unset d from inside d ==== kcrash ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdav ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5DAV5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdbusaddons ==== Version update (5.112.0 -> 5.113.0) Subpackages: kdbusaddons-tools libKF5DBusAddons5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdeclarative ==== Version update (5.112.0 -> 5.113.0) Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kded ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdelibs4support ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5KDELibs4Support5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdesu ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdnssd-framework ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kdoctools ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5DocTools5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Fix build with libxml2 v2.12 ==== kernel-firmware ==== Version update (20231128 -> 20231214) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20231214 (git commit b80907ec3a81): * qcom: Add Audio firmware for SM8650 QRD * qcom: Add Audio firmware for SM8550 QRD * Add rdfind for deb/rpm build jobs * wfx: update to firmware 3.17 * wfx: fix broken firmware - Update to version 20231205 (git commit bfc33c1e308e): * linux-firmware: Update AMD cpu microcode * cxgb4: Update firmware to revision 1.27.5.0 * linux-firmware: add firmware for en8811h 2.5G ethernet phy * s5p-mfc: Add MFC v12 Firmware * qcom: update qrb4210 firmware * qcom: update qcm2290 firmware * qcom: update qcm2290/qrb4210 WiFi firmware file * qcom: update Venus firmware file for v6.0 ==== kfilemetadata5 ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Run dump utility as a test case * Output generic file types from dump utility * Check if file path passed to dump utility is a readable file * [FFmpegExtractor] Bail out on first missing component during find_package * Bump minimum Exiv2 version to 0.26 * [TaglibExtractor] Add support for Ogg stream with FLAC (audio/x-flac+ogg) * Generate fromName hash table programmatically from PropertyInfo table * Use proxy class for lowercase property name lookup * Reduce PropertyInfo::fromName overhead * [FFMpegExtractor] Support and check video/vnd.avi * [TaglibExtractor] Adapt code to SMI changes for audio/x-wav -> /vnd.wave ==== kglobalaccel ==== Version update (5.112.0 -> 5.113.0) Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kguiaddons ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5GuiAddons5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== khangman ==== - Require extra-cmake-modules at build time ==== kholidays ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== khtml ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== ki18n ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kiconthemes ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kidletime ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kig ==== - Require extra-cmake-modules at build time ==== kimageformats ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kinit ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kio ==== Version update (5.112.0 -> 5.113.0) Subpackages: kio-core - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Add KF5 include for KPropertiesDialogPlugin * Add build option for KF6 coinstallability * Adaptations for shared-mime-info >= 2.3 ==== kio-extras5 ==== Subpackages: libkioarchive5 - Require extra-cmake-modules at build time ==== kirigami2 ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Kirigami2-5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kitemmodels ==== Version update (5.112.0 -> 5.113.0) Subpackages: kitemmodels-imports libKF5ItemModels5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kitemviews ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kjobwidgets ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kjs ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== knewstuff ==== Version update (5.112.0 -> 5.113.0) Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== knotifications ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== knotifyconfig ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== konsole ==== Subpackages: konsole-part konsole-part-lang - Require extra-cmake-modules at build time ==== kpackage ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kparts ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kpeople5 ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kplotting ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kpty ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kquickcharts ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kross ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== krunner ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Deprecate old QueryMatch::setType which will be removed in KF6 * Backport KF6 API to set categoryRelevance for QueryMatch ==== kservice ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Remove warning about empty Exec field from KService::exec() (kde#430157) ==== ktextaddons ==== Subpackages: libKF5TextAddonsWidgets1 libKF5TextAutoCorrectionCore1 libKF5TextAutoCorrectionWidgets1 libKF5TextEditTextToSpeech1 libKF5TextEmoticonsCore1 libKF5TextEmoticonsWidgets1 libKF5TextGrammarCheck1 libKF5TextTranslator1 - Require extra-cmake-modules at build time ==== ktexteditor ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== ktextwidgets ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== ktouch ==== - Require extra-cmake-modules at build time ==== kunitconversion ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kwallet ==== Version update (5.112.0 -> 5.113.0) Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kwalletmanager5 ==== - Require extra-cmake-modules at build time ==== kwayland ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kwidgetsaddons ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kwindowsystem ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== kxmlgui ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== libKF5ModemManagerQt ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== libKF5NetworkManagerQt ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== libheif ==== Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif1 - remove usage of presets to allow any cmake - remove plugin conditional, to provide plugins on Leap as well - remove rav1e conditional, because it is always available ==== libkmahjongg ==== Subpackages: libKF5KMahjongglib5 - Require extra-cmake-modules at build time ==== libnbd ==== - Use ocaml-rpm-macros to track OCaml ABI ==== libsoup2 ==== - Add ced3c5d8.patch: Fix build with libxml2-2.12.0 and clang-17. ==== libstorage-ng ==== Version update (4.5.161 -> 4.5.162) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#969 - factor out common code - 4.5.162 ==== libzypp ==== Version update (17.31.23 -> 17.31.25) - Fix build issue with zchunk build flags (fixes #500) - version 17.31.25 (22) - Open rpmdb just once during execution of %posttrans scripts (bsc#1216412) - Avoid using select() since it does not support fd numbers > 1024 (fixes #447) - tools/DownloadFiles: use standard zypp progress bar (fixes #489) - Revert "Color download progress bar" (fixes #475) Cyan is already used for the output of RPM scriptlets. Avoid this colorific collision between download progress bar and scriptlet output. - Fix ProgressBar's calculation of the printed tag position (fixes #494) - Switch zypp::Digest to Openssl 3.0 Provider API (fixes #144) - Fix usage of deprecated CURL features (fixes #486) - version 17.31.24 (22) ==== luit ==== Version update (20221028 -> 20230201) - fixed upstream tarball URL - Update to version 2.0.20230201 * correct conversion to/from codes past BMP (patch by Ben Wong, Debian #1027414) * fix a few compiler-warnings in configure-checks ==== nodejs21 ==== Version update (21.2.0 -> 21.4.0) Subpackages: npm21 - Update to 21.4.0: * fs: introduce dirent.parentPath * fs: use default w flag for writeFileSync with utf8 encoding - Changes in 21.3.0: * New --disable-warning flag * Fast fs.writeFileSync with UTF-8 Strings For details, see https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V21.md#21… - fix_ci_tests.patch: added workaround for missing deps - node-gyp-addon-gypi.patch: fix misapplied patch (bsc#1217424) ==== perl-Bootloader ==== Version update (1.8 -> 1.9) - merge gh#openSUSE/perl-bootloader#159 - rewrite pbl in sh (bsc#1214361) - adjust Makefile - add tests - Makefile cleanup - 1.9 ==== plasma-framework ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-desktoptheme - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== prison-qt5 ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Prison5 prison-qt5-imports - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== procps ==== Subpackages: libprocps8 - procps-3.3.17-ignore-sysctl_conf.patch: ignore dangling symlink to missing /etc/sysctl.conf file [bsc#1217990] ==== procps4 ==== Subpackages: libproc2-0 - Add patch procps-ng-4.0.4-ignore-sysctl_conf.patch * ignore dangling symlink to missing /etc/sysctl.conf file [bsc#1217990] (Backport of the patch of Thorsten Kukuk) ==== purpose ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== python-Babel ==== Version update (2.12.1 -> 2.13.1) - deleted patches - fix-tests.patch (upstreamed) - update to 2.13.1: * Fix a typo in ``_locales_to_names`` * Fix ``setuptools`` dependency for Python 3.12 * This version, Babel 2.13, is the last version of Babel to support Python 3.7. * Add flag to ignore POT-Creation-Date for updates * Support 't' specifier in keywords * Add f-string parsing for Python 3.12 (PEP 701) * Various typing-related fixes * babel.messages.catalog: deduplicate _to_fuzzy_match_key logic * Freeze format_time() tests to a specific date to fix test failures * Spelling and grammar fixes * Renovate lint tools * Use SPDX license identifier * Use aware UTC datetimes internally ==== python-alembic ==== Version update (1.12.1 -> 1.13.0) - update to 1.13.0: * Fixed issue where the ``alembic check`` command did not function correctly with upgrade structures that have multiple, top-level elements, as are generated from the "multi-env" environment template. * Updated logic introduced in :ticket:`151` to allow ``if_exists`` and ``if_not_exists`` on index operations also on SQLAlchemy 1.4 series. Previously this feature was mistakenly requiring the 2.0 series. * Replaced ``python-dateutil`` with the standard library module zoneinfo. * Alembic 1.13 now supports Python 3.8 and above. * Fixed autogenerate issue where ``create_table_comment()`` and ``drop_table_comment()`` rendering in a batch table modify would include the "table" and "schema" arguments, which are not accepted in batch as these are already part of the top level block. * Additional fixes to PostgreSQL expression index compare feature. The compare now correctly accommodates casts and differences in spacing. * Added detection logic for operation clauses inside the expression, skipping the compare of these expressions. * To accommodate these changes the logic for the comparison of the indexes and unique constraints was moved to the dialect implementation, allowing greater flexibility. ==== python-argon2-cffi ==== Version update (21.3.0 -> 23.1.0) - update to 23.1.0: * The only new feature is the possibility to pass an own salt to `argon2.PasswordHasher.hash()`, however a lot has changed around documentation and packaging to make *argon2-cffi* maintainable in the future. * Python 3.6 is not supported anymore. * The `InvalidHash` exception is deprecated in favor of `InvalidHashError`. No plans for removal currently exist and the names can (but shouldn't) be used interchangeably. * `argon2.hash_password()`, `argon2.hash_password_raw()`, and `argon2.verify_password()` that have been soft-deprecated since 2016 are now hard-deprecated. They now raise `DeprecationWarning`s and will be removed in 2024. * Official support for Python 3.11 and 3.12. No code changes were necessary. * `argon2.exceptions.InvalidHashError` as a replacement for `InvalidHash`. * *salt* parameter to `argon2.PasswordHasher.hash()` to allow for custom salts. This is only useful for specialized use- cases -- leave it on None unless you know exactly what you are doing. \#153 ==== python-greenlet ==== Version update (3.0.1 -> 3.0.2) - update to 3.0.2: * Packaging: Add a minimal ``pyproject.toml`` to sdists. * Packaging: Various updates to macOS wheels. * Fix a test case on Arm32. Note that this is not a supported platform (there is no CI for it) and support is best effort; ==== python-ldap ==== Version update (3.4.3 -> 3.4.4) - update to 3.4.4: * Reconnect race condition in ReconnectLDAPObject is now fixed * Socket ownership is now claimed once we've passed it to libldap LDAP_set_option string formats are now compatible with Python 3.12 ==== python-mysqlclient ==== Version update (2.2.0 -> 2.2.1) - update to 2.2.1: * ``Connection.ping()`` avoid using ``MYSQL_OPT_RECONNECT`` option until ``reconnect=True`` is specified. MySQL 8.0.33 start showing warning when the option is used. ==== python-pycurl ==== - Add patch pause-unpause-xfail.patch: * XFAIL a test due to gh#pycurl/pycurl#729 (bsc#1218062) ==== python-pysmbc ==== Version update (1.0.23 -> 1.0.25.1) - update to 1.0.25.1: * Introduced use_kerberos keyword to allow Kerberos authentication * Added new test cases to verify setxattr() input and getxattr() output * smbc/context.c: Fix PY_MAJOR_VERSION define ==== python-setproctitle ==== - Skip testsuite under qemu emulation ==== qpdf ==== Version update (11.6.3 -> 11.6.4) - update to 11.6.4: * Install fix: include cmake files with the dev component. * Build AppImage with an older Linux distribution to support AWS Lambda. Fixes #1086. ==== qqc2-desktop-style ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== sdbootutil ==== Version update (1+git20231114.6bcf1d3 -> 1+git20231214.b186b2d) Subpackages: sdbootutil-rpm-scriptlets sdbootutil-snapper - Update to version 1+git20231214.b186b2d: * Fix exit code * Revert "Add pcr predictions to initrd for now" - Update to version 1+git20231213.2a07af6: * Add update-predictions command * Predict all the entries - Update to version 1+git20231211.01c6a76: * Add ExclusiveArch for 64-bit EFI architectures - Update to version 1+git20231129.d7f3909: * Add pcr predictions to initrd for now * Generate new TPM2 predictions with pcr-oracle * Update file triggers * Fix exit code of update command * Add a %transfiletriggerin to update EFI binaries * Update help text ==== signon-kwallet-extension ==== - Require extra-cmake-modules at build time ==== skanlite ==== - Require extra-cmake-modules at build time ==== solid ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5Solid5 solid-imports solid-tools - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== sonnet ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - Changes since 5.112.0: * Use the cmake variables rather than if(TARGET) ==== sqlite3 ==== Version update (3.44.1 -> 3.44.2) Subpackages: libsqlite3-0 sqlite3-tcl - Fix Version to advertise as 3.44.2, matching the tarball version. ==== suse-module-tools ==== Version update (16.0.38 -> 16.0.39) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.39: * Add more modules to file system blacklist (jsc#PED-6167) Blacklisted filesystem modules that aren't officially supported by SUSE: f2fs, hfsplus, jfss2, kafs, ntfs3, orangefs, pstore, romfs, zonefs. As usual, the blacklist entries can be removed by running an explicit "modrobe $FS_MODULE" command. ==== syndication ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== syntax-highlighting ==== Version update (5.112.0 -> 5.113.0) Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== threadweaver ==== Version update (5.112.0 -> 5.113.0) - Update to 5.113.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/5/5.113.0 - No code change since 5.112.0 ==== yast2-network ==== Version update (5.0.0 -> 5.0.1) - Read all the driver modules from hwinfo instead of just the first driver ones (bsc#1217652). - 5.0.1 ==== zypper ==== Version update (1.14.67 -> 1.14.68) Subpackages: zypper-log zypper-needs-restarting - Fix search/info commands ignoring --ignore-unknown (bsc#1217593) The switch makes search commands return 0 rather than 104 for empty search results. - version 1.14.68

1 0

New Arm Tumbleweed snapshot 20231214 released!
by Guillaume Gardet 15 Dec '23

15 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox (120.0 -> 120.0.1) bluez brltty kdump (1.9.8 -> 2.0.0) kio-fuse (5.0.1 -> 5.1.0) libslirp (4.7.0+44 -> 4.7.0+60) netdata (1.44.0 -> 1.44.1) patterns-server polkit-default-privs (1550+20231129.269abcd -> 1550+20231213.09963a4) python-numpy python-pexpect python-ply rubygem-rubocop (1.58.0 -> 1.59.0) susepaste xorg-x11-server xwayland yast2-python-bindings (5.0.1 -> 5.0.2) === Details === ==== MozillaFirefox ==== Version update (120.0 -> 120.0.1) - Mozilla Firefox 120.0.1 (boo#1217910) * Fixed a bug that was causing persistent startup slowdowns (bmo#1867095) * Fixed an issue that was causing 100% CPU usage on sites such as Google Maps. (bmo#1866409) * Fixed an issue that was causing YouTube videos to show a green screen when hardware acceleration was enabled. (bmo#1865928) * Fixed an issue where the status bar was still visible when viewing fullscreen video. (bmo#1853896) * Fixed a startup crash affecting Linux users on some aarch64 systems with page sizes other than 4KB. (bmo#1866025) ==== bluez ==== Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3 - add CVE-2023-45866.patch (CVE-2023-45866, bsc#1217877) ==== brltty ==== Subpackages: brltty-driver-at-spi2 brltty-driver-brlapi brltty-driver-speech-dispatcher brltty-driver-xwindow libbrlapi0_8 python3-brlapi system-user-brltty xbrlapi - README.SUSE: add documentation about the state of security of the brltty daemon (bsc#1214158). - Use ocaml-rpm-macros to track OCaml ABI - Reduce amount of rpmlint warnings with brltty.rpmlintrc ==== kdump ==== Version update (1.9.8 -> 2.0.0) - upgrade to version 2.0.0 * add support for riscv64 (bsc#1204214) * mkdumprd: fix the check for updated SSH keys * prefer by-path and device-mapper aliases (bsc#1217617) * udev: don't reload kdump if kernel handles hotplug (jsc#PED-5077) ==== kio-fuse ==== Version update (5.0.1 -> 5.1.0) - Update to version 5.1.0: * Support for building against Qt 6 and KF6 * Minimum versions of dependencies got raised: CMake 3.16, Qt 5.15, KIO 5.96.0 * Minor bug fixes and optimizations * Don't include the password in the generated VFS path * Mounting admin: is blocked now - Drop patch, now upstream: * 0001-Initialize-m_lastChildrenRefresh-to-be-really-in-the.patch ==== libslirp ==== Version update (4.7.0+44 -> 4.7.0+60) - Update to version 4.7.0+60: * Avoid including <sys/param.h> on windows * Document functions * icmp: Handle ICMP packets as IPPROTO_IP on BSD * ip: Enforce strict aliasing * Fix including BaseTsd.h on mingw * Use SSIZE_T from BaseTsd.h on windows * Detach UDP socket if errno is ENOTCONN (Socket is not connected) * slirp: use localhost as dns when /etc/resolv.conf empty * missing semicolon * Drop unused UDP_UDPDATALEN macro * Reject domain-search when any entry ends with ".." * Use target address from Neighbor Advertisement - removed libslirp-semicolon.patch, now included ==== netdata ==== Version update (1.44.0 -> 1.44.1) Subpackages: netdata-plugin-cups netdata-plugin-go - Update to 1.44.1 See https://github.com/netdata/netdata/tree/v1.44.1 ==== patterns-server ==== Subpackages: patterns-server-dhcp_dns_server patterns-server-directory_server patterns-server-file_server patterns-server-kvm_server patterns-server-kvm_tools patterns-server-lamp_server patterns-server-mail_server patterns-server-printing - kvm_server pattern: - require the basic libvirt modules and packages for a minimal (but properly working) KVM host - remove the direct dependency for qemu, as that now comes from libvirt-daemon-driver-qemu This makes the kvm_server pattern a lot more useful, in contexts where recommended packages are not installed by default. On the other hand, everyone using it with recommended packages installation enabled, will see no difference at all. ==== polkit-default-privs ==== Version update (1550+20231129.269abcd -> 1550+20231213.09963a4) - Update to version 1550+20231213.09963a4: * profiles: add and adjust polkit actions for gamemode (bsc#1217915) ==== python-numpy ==== - Do not attempt to ship numpy.distutils C code in the Python 3.12 -devel package, it is not installed. ==== python-pexpect ==== - disable randomly failing tests [bsc#1209560] ==== python-ply ==== - Add patch fix-assert-methods.patch: * Support Python 3.12 by not using removed assertion methods. - Switch to autosetup and pyproject macros. - Stop using greedy globs in %files. ==== rubygem-rubocop ==== Version update (1.58.0 -> 1.59.0) - updated to version 1.59.0 [#]# 1.59.0 (2023-12-11) [#]## New features * [#12518](https://github.com/rubocop/rubocop/pull/12518): Add new `Lint/ItWithoutArgumentsInBlock` cop. ([@koic][]) [#]## Bug fixes * [#12434](https://github.com/rubocop/rubocop/issues/12434): Fix a false positive for `Lint/LiteralAssignmentInCondition` when using interpolated string or xstring literals. ([@koic][]) * [#12435](https://github.com/rubocop/rubocop/issues/12435): Fix a false positive for `Lint/SelfAssignment` when using attribute assignment with method call with arguments. ([@koic][]) * [#12444](https://github.com/rubocop/rubocop/issues/12444): Fix false positive for `Style/HashEachMethods` when receiver literal is not a hash literal. ([@koic][]) * [#12524](https://github.com/rubocop/rubocop/issues/12524): Fix a false positive for `Style/MethodCallWithArgsParentheses` when `EnforcedStyle: omit_parentheses` and parens in `when` clause is used to pass an argument. ([@koic][]) * [#12505](https://github.com/rubocop/rubocop/pull/12505): Fix a false positive for `Style/RedundantParentheses` when using parenthesized `lambda` or `proc` with `do`...`end` block. ([@koic][]) * [#12442](https://github.com/rubocop/rubocop/issues/12442): Fix an incorrect autocorrect for `Style/CombinableLoops` when looping over the same data as previous loop in `do`...`end` and `{`...`}` blocks. ([@koic][]) * [#12432](https://github.com/rubocop/rubocop/pull/12432): Fix a false positive for `Lint/LiteralAssignmentInCondition` when using parallel assignment with splat operator in block of guard condition. ([@koic][]) * [#12441](https://github.com/rubocop/rubocop/issues/12441): Fix false positives for `Style/HashEachMethods` when using destructed block arguments. ([@koic][]) * [#12436](https://github.com/rubocop/rubocop/issues/12436): Fix false positives for `Style/RedundantParentheses` when a part of range is a parenthesized condition. ([@koic][]) * [#12429](https://github.com/rubocop/rubocop/issues/12429): Fix incorrect autocorrect for `Style/MapToHash` when using dot method calls for `to_h`. ([@koic][]) * [#12488](https://github.com/rubocop/rubocop/issues/12488): Make `Lint/HashCompareByIdentity` aware of safe navigation operator. ([@koic][]) * [#12489](https://github.com/rubocop/rubocop/issues/12489): Make `Lint/NextWithoutAccumulator` aware of safe navigation operator. ([@koic][]) * [#12490](https://github.com/rubocop/rubocop/issues/12490): Make `Lint/NumberConversion` aware of safe navigation operator. ([@koic][]) * [#12491](https://github.com/rubocop/rubocop/issues/12491): Make `Lint/RedundantWithIndex` aware of safe navigation operator. ([@koic][]) * [#12492](https://github.com/rubocop/rubocop/issues/12492): Make `Lint/RedundantWithObject` aware of safe navigation operator. ([@koic][]) * [#12493](https://github.com/rubocop/rubocop/issues/12493): Make `Lint/UnmodifiedReduceAccumulator` aware of safe navigation operator. ([@koic][]) * [#12473](https://github.com/rubocop/rubocop/issues/12473): Make `Style/ClassCheck` aware of safe navigation operator. ([@koic][]) * [#12445](https://github.com/rubocop/rubocop/issues/12445): Make `Style/CollectionCompact` aware of safe navigation operator. ([@koic][]) * [#12474](https://github.com/rubocop/rubocop/issues/12474): Make `Style/ConcatArrayLiterals` aware of safe navigation operator. ([@koic][]) * [#12476](https://github.com/rubocop/rubocop/issues/12476): Make `Style/DateTime` aware of safe navigation operator. ([@koic][]) * [#12479](https://github.com/rubocop/rubocop/issues/12479): Make `Style/EachWithObject` aware of safe navigation operator. ([@koic][]) * [#12446](https://github.com/rubocop/rubocop/issues/12446): Make `Style/HashExcept` aware of safe navigation operator. ([@koic][]) * [#12447](https://github.com/rubocop/rubocop/issues/12447): Make `Style/MapCompactWithConditionalBlock` aware of safe navigation operator. ([@koic][]) * [#12484](https://github.com/rubocop/rubocop/issues/12484): Make `Style/Next` aware of safe navigation operator. ([@koic][]) * [#12486](https://github.com/rubocop/rubocop/issues/12486): Make `Style/RedundantArgument` aware of safe navigation operator. ([@koic][]) * [#12454](https://github.com/rubocop/rubocop/issues/12454): Make `Style/RedundantFetchBlock` aware of safe navigation operator. ([@koic][]) * [#12495](https://github.com/rubocop/rubocop/issues/12495): Make `Layout/RedundantLineBreak` aware of safe navigation operator. ([@koic][]) * [#12455](https://github.com/rubocop/rubocop/issues/12455): Make `Style/RedundantSortBy` aware of safe navigation operator. ([@koic][]) * [#12456](https://github.com/rubocop/rubocop/issues/12456): Make `Style/RedundantSortBy` aware of safe navigation operator. ([@koic][]) * [#12480](https://github.com/rubocop/rubocop/issues/12480): Make `Style/ExactRegexpMatch` aware of safe navigation operator. ([@koic][]) * [#12457](https://github.com/rubocop/rubocop/issues/12457): Make `Style/Sample` aware of safe navigation operator. ([@koic][]) * [#12458](https://github.com/rubocop/rubocop/issues/12458): Make `Style/SelectByRegexp` cops aware of safe navigation operator. ([@koic][]) * [#12494](https://github.com/rubocop/rubocop/issues/12494): Make `Layout/SingleLineBlockChain` aware of safe navigation operator. ([@koic][]) * [#12461](https://github.com/rubocop/rubocop/issues/12461): Make `Style/StringChars` aware of safe navigation operator. ([@koic][]) * [#12468](https://github.com/rubocop/rubocop/issues/12468): Make `Style/Strip` aware of safe navigation operator. ([@koic][]) * [#12469](https://github.com/rubocop/rubocop/issues/12469): Make `Style/UnpackFirst` aware of safe navigation operator. ([@koic][]) [#]## Changes * [#12522](https://github.com/rubocop/rubocop/pull/12522): Make `Style/MethodCallWithoutArgsParentheses` allow the parenthesized `it` method in a block. ([@koic][]) * [#12523](https://github.com/rubocop/rubocop/pull/12523): Make `Style/RedundantSelf` allow the `self.it` method in a block. ([@koic][]) ==== susepaste ==== Subpackages: susepaste-screenshot - Fix homepage URL - Add _service file (use on next release) ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765) - U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch * Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766) ==== xwayland ==== - U_bsc1217765-Xi-allocate-enough-XkbActions-for-our-buttons.patch * Out-of-bounds memory write in XKB button actions (CVE-2023-6377, ZDI-CAN-22412, ZDI-CAN-22413, bsc#1217765) - U_bsc1217766-randr-avoid-integer-truncation-in-length-check-of-Pr.patch * Out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478, ZDI-CAN-22561, bsc#1217766) ==== yast2-python-bindings ==== Version update (5.0.1 -> 5.0.2) - Fix leak when passing Term objects; (bsc#1217075) - 5.0.2

1 0

New Arm Tumbleweed snapshot 20231213 released!
by Guillaume Gardet 14 Dec '23

14 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 389-ds (2.4.0~git74.4297d88 -> 2.4.0~git113.84a845c) gnu-unifont-fonts google-noto-coloremoji-fonts opensc (0.23.0 -> 0.24.0) python-outcome (1.2.0 -> 1.3.0.post0) === Details === ==== 389-ds ==== Version update (2.4.0~git74.4297d88 -> 2.4.0~git113.84a845c) Subpackages: lib389 libsvrcore0 - Update to support newer obs-service-cargo-vendor - Update to version 2.4.0~git113.84a845c: * Issue 5980 - Improve instance startup failure handling (#5991) * Issue 5976 - Fix freeipa install regression with lmdb (#5977) * Issue 5984 - Crash when paged result search are abandoned - fix2 (#5987) * Issue 5984 - Crash when paged result search are abandoned (#5985) * Issue 5947 - CI test_vlv_recreation_reindex fails on LMDB (#5979) * Bump version to 2.5.0 * Issue 5971 - CLI - Fix password prompt for repl status (#5972) * Issue 5973 - Fix fedora cop RawHide builds (#5974) * Revert "Issue 5761 - Worker thread dynamic management (#5796)" (#5970) * Issue 5966 - CLI - Custom schema object is removed on a failed edit (#5967) * Issue 5786 - Update permissions for Release workflow * Issue 5960 - Subpackages should have more strict interdependencies * Issue 3555 - UI - Fix audit issue with npm - babel/traverse (#5959) * Issue 4843 - Fix dscreate create-template issue (#5950) * bugfix for --passwd-file not working on latest version (#5934) * Issue 5843 - dsconf / dscreate should be able to handle lmdb parameters (#5943) * Bump postcss from 8.4.24 to 8.4.31 in /src/cockpit/389-console (#5945) * Issue 5938 - Attribute Names changed to lowercase after adding the Attributes (#5940) * issue 5924 - ASAN server build crash when looping opening/closing connections (#5926) * Issue 1925 - Add a CI test (#5936) * Issue 5732 - Localizing Cockpit's 389ds Plugin using CockpitPoPlugin (#5764) * Issue 1870 - Add a CI test (#5929) * Issue 843 - Add a warning to slapi_valueset_add_value_ext (#5925) * Issue 5761 - Worker thread dynamic management (#5796) * Issue 1802 - Improve ldclt man page (#5928) * Issue 1456 - Add a CI test that verifies there is no issue (#5927) * Issue 1317 - Add a CI test (#5923) * Issue 1081 - CI - Add more tests for overwriting x-origin issue (#5815) * Issue 1115 - Add a CI test (#5913) * Issue 5848 - Fix condition and add a CI test (#5916) * Issue 5848 - Fix condition and add a CI test (#5916) * Issue 5914 - UI - server settings page validation improvements and db index fixes * Issue 5909 - Multi listener hang with 20k connections (#5917) * Issue 5902 - Fix previous commit regression (#5919) * pass instance correctly to ds_is_older (#5903) * Issue 5909 - Multi listener hang with 20k connections (#5910) * Issue 5722 - improve testcase (#5904) * Issue 5203 - outdated version in provided metadata for lib389 * Bug Description: ==== gnu-unifont-fonts ==== - add %reconfigure_fonts_prereq to the subpackages * required by the presence of the macro: %reconfigure_fonts_scriptlets -n <subpackage-name> ==== google-noto-coloremoji-fonts ==== - add %reconfigure_fonts_prereq * required by the presence of the macro: %reconfigure_fonts_scriptlets ==== opensc ==== Version update (0.23.0 -> 0.24.0) - Update to OpenSC 0.24.0: * Security - CVE-2023-40660: Fix Potential PIN bypass (#2806, frankmorgner/OpenSCToken#50, #2807) - CVE-2023-40661: Important dynamic analyzers reports - CVE-2023-4535: Out-of-bounds read in MyEID driver handling encryption using symmetric keys (f1993dc) * General improvements - Fix compatibility of EAC with OpenSSL 3.0 (#2674) - Enable use_file_cache by default (#2501) - Use custom libctx with OpenSSL >= 3.0 (#2712, #2715) - Fix record-based files (#2604) - Fix several race conditions (#2735) - Run tests under Valgrind (#2756) - Test signing of data bigger than 512 bytes (#2789) - Update to OpenPACE 1.1.3 (#2796) - Implement logout for some of the card drivers (#2807) - Fix wrong popup position of opensc-notify (#2901) - Fixed various issues reported by OSS-Fuzz and Coverity regarding card drivers, PKCS#11 and PKCS#15 init * PKCS#11 - Check card presence state in C_GetSessionInfo (#2740) - Remove onepin-opensc-pkcs11 module (#2681) - Do not use colons in the token info label (#2760) - Present profile objects in all slots with the CKA_TOKEN attribute to resolve issues with NSS (#2928, #2924) - Use secure memory for PUK (#2906) - Don't logout to preserve concurrent access from different processes (#2907) - Add more examples to manual page (#2936) - Present profile objects in all virtual slots (#2928) - Provide CKA_TOKEN attribute for profile objects (#2924) - Improve --slot parameter documentation (#2951) * PKCS#15 - Honor cache offsets when writing file cache (#2858) - Prevent needless amount of PIN prompts from pkcs15init layer (#2916) - Propagate CKA_EXTRACTABLE and SC_PKCS15_PRKEY_ACCESS_SENSITIVE from and back to PKCS#11 (#2936) * Minidriver - Fix for private keys that do not need a PIN (#2722) - Unbreak decipher when the first null byte of PKCS#1.5 padding is missing (#2939* * pkcs11-tool - Fix RSA key import with OpenSSL 3.0 (#2656) - Add support for attribute filtering when listing objects (#2687) - Add support for --private flag when writing certificates (#2768) - Add support for non-AEAD ciphers to the test mode (#2780) - Show CKA_SIGN attribute for secret keys (#2862) - Do not attempt to read CKA_ALWAYS_AUTHENTICATE on secret keys (#2864, #2913) - Show Sign/VerifyRecover attributes (#2888) - Add option to import generic keys (#2955) * westcos-tool - Generate 2k RSA keys by default (b53fc5c) * pkcs11-register - Disable autostart on Linux by default (#2680) * IDPrime - Add support for IDPrime MD 830, 930 and 940 (#2666) - Add support for SafeNet eToken 5110 token (#2812) - Process index even without keyrefmap and use correct label for second PIN (#2878) - Add support for Gemalto IDPrime 940C (#2941) * EPass2003 - Change of PIN requires verification of the PIN (#2759) - Fix incorrect CMAC computation for subkeys (#2759, issue #2734) - Use true random number for mutual authentication for SM (#2766) - Add verification of data coming from the token in the secure messaging mode (#2772) - Avoid success when using unsupported digest and fix data length for RAW ECDSA signatures (#2845) * OpenPGP - Fix select data command (#2753, issue #2752) - Unbreak ed/curve25519 support (#2892) * eOI - Add support for Slovenian eID card (eOI) (#2646) * Italian CNS - Add support for IDEMIA (Oberthur) tokens (#2483) * PIV - Add support for Swissbit iShield FIDO2 Authenticator (#2671) - Implement PIV secure messaging (#2053) * SkeID - Add support for Slovak eID cards (#2672) * isoApplet - Support ECDSA with off-card hashing (#2642) * MyEID - Fix WRAP operation when using T0 (#2695) - Identify changes on the card and enable use_file_cache (#2798) - Workaround for unwrapping using 2K RSA key (#2921) * SC-HSM - Add support for opensc-tool --serial (#2675) - Fix unwrapping of 4096 keys with handling reader limits (#2682) - Indicate supported hashes and MGF1s (#2827) - Remove patches: * opensc-CVE-2023-40660-1of2.patch * opensc-CVE-2023-40660-2of2.patch * opensc-CVE-2023-40661-1of12.patch * opensc-CVE-2023-40661-2of12.patch * opensc-CVE-2023-40661-3of12.patch * opensc-CVE-2023-40661-4of12.patch ... changelog too long, skipping 10 lines ... * opensc-NULL_pointer_fix.patch ==== python-outcome ==== Version update (1.2.0 -> 1.3.0.post0) - update to 1.3.0.post0: * Added type hints to the package. :py:class:`Value` and :py:class:`Outcome` are now generic. A type alias was also added (:py:data:`Maybe`) for the union of :py:class:`Value` and :py:class:`Error`. (#36)

1 0

New Arm Tumbleweed snapshot 20231212 released!
by Guillaume Gardet 13 Dec '23

13 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: guestfs-tools (1.51.5 -> 1.51.6) irqbalance (1.9.3.8.git+c963f48 -> 1.9.3.10.git+1a7d461) kernel-source (6.6.3 -> 6.6.6) libguestfs (1.51.8 -> 1.51.9) ncurses nvidia-open-driver-G06-signed (545.29.06_k6.6.3_1 -> 545.29.06_k6.6.6_1) open-vm-tools polkit systemd systemd-presets-common-SUSE === Details === ==== guestfs-tools ==== Version update (1.51.5 -> 1.51.6) - Update to version 1.51.6 * Include <libxml/parser.h> for xmlReadMemory * Test new --key all:SELECTOR option ==== irqbalance ==== Version update (1.9.3.8.git+c963f48 -> 1.9.3.10.git+1a7d461) Subpackages: irqbalance-ui - Update to version 1.9.3.10.git+1a7d461: * filter console only output when using journal mode - build with libsystemd for logging (bsc#1217754) ==== kernel-source ==== Version update (6.6.3 -> 6.6.6) - Linux 6.6.6 (bsc#1012628). - Revert "wifi: cfg80211: fix CQM for non-range use" (bsc#1012628). - commit a946a9f - parisc: Fix asm operand number out of range build error in bug table (git-fixes). - commit 7675861 - Linux 6.6.5 (bsc#1012628). - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved (bsc#1012628). - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved (bsc#1012628). - smb: client: fix missing mode bits for SMB symlinks (bsc#1012628). - smb: client: report correct st_size for SMB and NFS symlinks (bsc#1012628). - ksmbd: fix possible deadlock in smb2_open (bsc#1012628). - pinctrl: avoid reload of p state in list iteration (bsc#1012628). - firewire: core: fix possible memory leak in create_units() (bsc#1012628). - mmc: sdhci-pci-gli: Disable LPM during initialization (bsc#1012628). - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled (bsc#1012628). - mmc: cqhci: Increase recovery halt timeout (bsc#1012628). - mmc: cqhci: Warn of halt or task clear failure (bsc#1012628). - mmc: cqhci: Fix task clearing in CQE error recovery (bsc#1012628). - mmc: block: Retry commands in CQE error recovery (bsc#1012628). - mmc: block: Do not lose cache flush during CQE error recovery (bsc#1012628). - mmc: block: Be sure to wait while busy in CQE error recovery (bsc#1012628). - ALSA: hda: Disable power-save on KONTRON SinglePC (bsc#1012628). - ALSA: hda/realtek: Headset Mic VREF to 100% (bsc#1012628). - ALSA: hda/realtek: Add supported ALC257 for ChromeOS (bsc#1012628). - net: libwx: fix memory leak on msix entry (bsc#1012628). - dm-verity: align struct dm_verity_fec_io properly (bsc#1012628). - scsi: Change SCSI device boolean fields to single bit flags (bsc#1012628). - scsi: sd: Fix system start for ATA devices (bsc#1012628). - scsi: ufs: core: Clear cmd if abort succeeds in MCQ mode (bsc#1012628). - drm/amd: Enable PCIe PME from D3 (bsc#1012628). - drm/amdgpu: correct the amdgpu runtime dereference usage count (bsc#1012628). - drm/amdgpu: Force order between a read and write to the same address (bsc#1012628). - drm/amdgpu: fix memory overflow in the IB test (bsc#1012628). - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0 (bsc#1012628). - drm/amd/display: Include udelay when waiting for INBOX0 ACK (bsc#1012628). - drm/amd/display: Remove min_dst_y_next_start check for Z8 (bsc#1012628). - drm/amd/display: Use DRAM speed from validation for dummy p-state (bsc#1012628). - drm/amd/display: Update min Z8 residency time to 2100 for DCN314 (bsc#1012628). - drm/amd/display: fix ABM disablement (bsc#1012628). - drm/amd/display: force toggle rate wa for first link training for a retimer (bsc#1012628). - dm verity: initialize fec io before freeing it (bsc#1012628). - dm verity: don't perform FEC for failed readahead IO (bsc#1012628). - nvme: check for valid nvme_identify_ns() before using it (bsc#1012628). - r8169: fix deadlock on RTL8125 in jumbo mtu mode (bsc#1012628). - ACPI: video: Use acpi_video_device for cooling-dev driver data (bsc#1012628). - io_uring: don't allow discontig pages for IORING_SETUP_NO_MMAP (bsc#1012628). - iommu/vt-d: Fix incorrect cache invalidation for mm notification (bsc#1012628). - io_uring: free io_buffer_list entries via RCU (bsc#1012628). - nouveau: find the smallest page allocation to cover a buffer alloc (bsc#1012628). - powercap: DTPM: Fix unneeded conversions to micro-Watts (bsc#1012628). - cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch() (bsc#1012628). - dma-buf: fix check in dma_resv_add_fence (bsc#1012628). - io_uring: don't guard IORING_OFF_PBUF_RING with SETUP_NO_MMAP (bsc#1012628). - iommu: Avoid more races around device probe (bsc#1012628). - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR (bsc#1012628). - ext2: Fix ki_pos update for DIO buffered-io fallback case (bsc#1012628). - iommu/vt-d: Add MTL to quirk list to skip TE disabling (bsc#1012628). - KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user registers (bsc#1012628). - powerpc: Don't clobber f0/vs0 during fp|altivec register save (bsc#1012628). - parisc: Mark ex_table entries 32-bit aligned in assembly.h (bsc#1012628). ... changelog too long, skipping 345 lines ... - commit cb8969c ==== libguestfs ==== Version update (1.51.8 -> 1.51.9) Subpackages: libguestfs-appliance libguestfs-xfs libguestfs0 - Update to version 1.51.9 * Include <libxml/parser.h> for xmlReadMemory * Language translations ==== ncurses ==== Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20231209 + modify infocmp "-u" option to not report cancels in use'd chunks which are not mentioned in the top-level terminal description. + remove xterm+sm+1006 from tmux (Debian #1057688). + used "infocmp -u" to help trim redundant capabilities -TD + updated man/edit_man.sh to allow for "\%" markers embedded after bold font escapes in manpage cross-references (Debian #1057541). + reduce compiler-warnings in configure checks ==== nvidia-open-driver-G06-signed ==== Version update (545.29.06_k6.6.3_1 -> 545.29.06_k6.6.6_1) - fix typo in changelog: * NVreg_OpenRMEnableSupporteGpus -> NVreg_OpenRmEnableUnsupportedGpus (boo#1215981, comment#33) ==== open-vm-tools ==== Subpackages: libvmtools0 open-vm-tools-desktop - Fix (bsc#1217796) - Fix outdated libxmlsec1 dependency version. Updates to open-vm-tools for SLES 12 SP4 and SP5 are now being built againt against libxmlsec1-1-1.2.37. Update the spec file to now require libxmlsec1-openssl1 >= 1.2.37. ==== polkit ==== Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0 - Add 'dbus-service' as Requires instead of /usr/bin/dbus-daemon This allow to use other dbus implementations such as dbus-broker with this package again. (bsc#1217863) ==== systemd ==== Subpackages: libsystemd0 libudev1 systemd-boot systemd-container systemd-coredump udev - Explicitely provide 'group(systemd-journal)' from the main package (bsc#1217852) - Import commit ce08cd5f66e1a661c2b9ed764ad7036decd76503 ce08cd5f66 man/standard-conf: directory paths should end with '/' 8324cbfde7 config files: update their header to reflect that they can be installed in /usr bc36846ad2 Reflect the fact that main config files can be installed in /usr e304a11f33 config files: more recommendations of `systemd-analyze cat-config` c45cecf279 meson: add build option for install path of main config files cc61b052c6 vconsole-setup: use a consistent log level when setfont fails with EX_OSERR (bsc#1212970) 4fe3653dab tmpfiles: ignore EINVAL with --graceful (bsc#1216628) ==== systemd-presets-common-SUSE ==== - nvme-cli: enable nvmf-autoconnect.service for improved user experience (bsc#1216369).

1 0

New Arm Tumbleweed snapshot 20231211 released!
by Guillaume Gardet 12 Dec '23

12 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream cpupower (6.5.9 -> 6.6.3) fonts-config (20230604+git0.630c8206607c -> 20231210+git0.f7216ba) gnome-control-center (45.1+22 -> 45.2) jitterentropy libheif lsof mailx netdata (1.43.2 -> 1.44.0) openblas_openmp (0.3.21 -> 0.3.25) openblas_pthreads (0.3.21 -> 0.3.25) python-pycares (4.3.0 -> 4.4.0) raspberrypi-firmware-dt selinux-policy setools (4.4.3 -> 4.4.4) zenity (3.99.91 -> 4.0.0) === Details === ==== AppStream ==== Subpackages: libAppStreamQt2 libappstream4 - Bump BuildRequires on pkgconfig(xmlb) to 0.3.14. ==== cpupower ==== Version update (6.5.9 -> 6.6.3) Subpackages: cpupower-bash-completion - Fix library file version: libcpupower.so.0.0.1 -> libcpupower.so.1.0.1 A cpupower_fix_library_so_name.patch - Rename libcpupower0 to libcpupower1 following changes in SONAME. - Use ldconfig_scriptlets macro for post(un) handling. ==== fonts-config ==== Version update (20230604+git0.630c8206607c -> 20231210+git0.f7216ba) - version update to 20231210+git0.f7216ba * Fix typos in 32-emoji-reject.conf and 59-family-prefer-lang-specific * remove SEARCH_METRIC_COMPATIBLE sysconfig variable and infra around [bsc#1216356] - deleted patches - 0001-Fix-typos-in-32-emoji-reject.conf-and-59-family-pref.patch (upstreamed) ==== gnome-control-center ==== Version update (45.1+22 -> 45.2) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 45.2: + Apps: - Fix status page glitch on initialization - Fix "File and Link Association" interface not reflecting changes + Background: Improve background preview and chooser performance + Default Apps: Fix undesired resetting of default apps during startup + Mouse: Fix interference issue with scroll event in Mouse Test window + Network: - Close network editor when using non-native nm-connection-editor - Show decoration buttons on empty-state (no network device found page) - Share WPA3 (SAE) networks with QR Code - Hide QR Code icon when connection is not successful - Remove deprecated 'wpa-none' - Fix route label alignments + Privacy: - Fix crash from free bug in the Camera page - Fix potential crash on Bolt page visibility + Region: Show preview measurement format in current locale + Sound: Update mute state when setting mixer control for a stream + Users: Show tooltip information for the Avatar widget - Drop gnome-control-center-network-fix-nmce-popup.patch: Fixed upstream. ==== jitterentropy ==== - Make use of distro flags with %set_build_flags ==== libheif ==== Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif1 - security update - added patches fix CVE-2023-49462 [bsc#1217898], read16 segv + libheif-CVE-2023-49462.patch fix CVE-2023-49464 [bsc#1217900], UAF + libheif-CVE-2023-49464.patch ==== lsof ==== - Skip tests that are difficult to emulate by qemu ==== mailx ==== - Moving /etc/mailrc to /usr/etc/mail.rc * Add patch mailx-usr-etc.patch ==== netdata ==== Version update (1.43.2 -> 1.44.0) Subpackages: netdata-plugin-cups netdata-plugin-go - Update to v1.44.0 (go.d.plugin 0.57.2) See https://github.com/netdata/netdata/tree/v1.44.0 and https://github.com/netdata/go.d.plugin/tree/v0.57.2 https://github.com/netdata/go.d.plugin/tree/v0.57.1 https://github.com/netdata/go.d.plugin/tree/v0.57.0 - Fix some forgotten code to use python311 in Leap. ==== openblas_openmp ==== Version update (0.3.21 -> 0.3.25) - Update to version 0.3.25: * General: - improved the error message shown on exceeding the maximum thread count - improved the code to add supplementary thread buffers in case of overflow - fixed a potential division by zero in ?ROTG - improved the ?MATCOPY functions to accept zero-sized rows or columns - corrected empty prototypes in function declarations - cleaned up unused declarations in the f2c-converted versions of the LAPACK sources - fixed compilation with the Cray CCE Compiler suite - improved link line rewriting to avoid mixed libgomp/libomp builds with clang&gfortran - worked around OPENMP builds with LLVM14's libomp hanging on FreeBSD - improved the Makefiles to require less option duplication on "make install" - imported the following changes from the upcoming release 3.12 of Reference-LAPACK: LAPACK PR 900, LAPACK PR 904, LAPACK PR 907, LAPACK PR 909, LAPACK PR 926, LAPACK PR 927, LAPACK PR 928 & 930 * x86-64: - fixed compile-time autodetection of AMD Ryzen3 and Ryzen4 cpus - fixed capability-based fallback selection for unknown cpus in DYNAMIC_ARCH - added AVX512 optimizations for ?ASUM on Sapphire Rapids and Cooper Lake * ARM64: - fixed building on Apple with homebrew gcc - fixed building with XCODE 15 - fixed building on A64FX and Cortex A710/X1/X2 - increased the default buffer size for recent ARM server cpus * POWER: - fixed building with the IBM xlf 16.1.1 compiler - fixed building with IBM XL C - added support for DYNAMIC_ARCH builds with clang - fixed union declaration in the BFLOAT16 test case - enable optimizations for the AIX assembler on POWER10 * LOONGARCH64: - added an optimized SGEMV kernel - added an optimized DTRSM kernel - Minor rebase of openblas-ppc64be_up2_p8.patch to apply cleanly. - Drop upstreamed patches: * Use-blasint-for-INTERFACE64-compatibility.patch * remove-spurious-loops.patch ==== openblas_pthreads ==== Version update (0.3.21 -> 0.3.25) - Update to version 0.3.25: * General: - improved the error message shown on exceeding the maximum thread count - improved the code to add supplementary thread buffers in case of overflow - fixed a potential division by zero in ?ROTG - improved the ?MATCOPY functions to accept zero-sized rows or columns - corrected empty prototypes in function declarations - cleaned up unused declarations in the f2c-converted versions of the LAPACK sources - fixed compilation with the Cray CCE Compiler suite - improved link line rewriting to avoid mixed libgomp/libomp builds with clang&gfortran - worked around OPENMP builds with LLVM14's libomp hanging on FreeBSD - improved the Makefiles to require less option duplication on "make install" - imported the following changes from the upcoming release 3.12 of Reference-LAPACK: LAPACK PR 900, LAPACK PR 904, LAPACK PR 907, LAPACK PR 909, LAPACK PR 926, LAPACK PR 927, LAPACK PR 928 & 930 * x86-64: - fixed compile-time autodetection of AMD Ryzen3 and Ryzen4 cpus - fixed capability-based fallback selection for unknown cpus in DYNAMIC_ARCH - added AVX512 optimizations for ?ASUM on Sapphire Rapids and Cooper Lake * ARM64: - fixed building on Apple with homebrew gcc - fixed building with XCODE 15 - fixed building on A64FX and Cortex A710/X1/X2 - increased the default buffer size for recent ARM server cpus * POWER: - fixed building with the IBM xlf 16.1.1 compiler - fixed building with IBM XL C - added support for DYNAMIC_ARCH builds with clang - fixed union declaration in the BFLOAT16 test case - enable optimizations for the AIX assembler on POWER10 * LOONGARCH64: - added an optimized SGEMV kernel - added an optimized DTRSM kernel - Minor rebase of openblas-ppc64be_up2_p8.patch to apply cleanly. - Drop upstreamed patches: * Use-blasint-for-INTERFACE64-compatibility.patch * remove-spurious-loops.patch ==== python-pycares ==== Version update (4.3.0 -> 4.4.0) - update to 4.4.0: * Add support for 3.12, drop EOL 3.7 ==== raspberrypi-firmware-dt ==== - They are vendor changes in bcm2835-dma driver around new RPi5 which makes new device trees unusable without corresponding changes in DMA driver. Lets revert offending commit. Fixes bsc#1217512. - Add patch: * 0001-Revert-bcm2711-rpi-ds-Switch-to-dma40-channel-for-hd.patch ==== selinux-policy ==== Subpackages: selinux-policy-targeted - Trigger rebuild of the policy when pcre2 gets updated to avoid regex version mismatch errors (bsc#1216747). ==== setools ==== Version update (4.4.3 -> 4.4.4) Subpackages: python311-setools setools-console - Update to version 4.4.4: * Update for compiling with libsepol 3.6. ==== zenity ==== Version update (3.99.91 -> 4.0.0) - Update to version 4.0.0: + 1st stable release of Zenity based on libadwaita/gtk4. + Several command-line options have been deprecated since 3.x. These deprecations will either activate an alternate action, or do nothing. In either case, a deprecation warning will be printed to STDERR. This is to ensure as smooth a transition from scripts targeting Zenity 3.x as possible. + Changes and bugfixes since 3.99.91: - Add rudimentary test suite - progress: --auto-close and --percentage=100 don't co-mingle - about: Port to libadwaita; update copyright info - forms: . Remove unused variable . Port GtkComboBox to GtkDropDown - tree/colview: Implement missing --hide-header option - progress: OK should be clickable if --percentage=100 at the outset - NEWS: fix typo - Updated translations.

1 0

New Arm Tumbleweed snapshot 20231210 released!
by Guillaume Gardet 11 Dec '23

11 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: akonadi-calendar (23.08.3 -> 23.08.4) akonadi-calendar-tools (23.08.3 -> 23.08.4) akonadi-contact (23.08.3 -> 23.08.4) akonadi-import-wizard (23.08.3 -> 23.08.4) akonadi-mime (23.08.3 -> 23.08.4) akonadi-notes (23.08.3 -> 23.08.4) akonadi-search (23.08.3 -> 23.08.4) akonadi-server (23.08.3 -> 23.08.4) akregator (23.08.3 -> 23.08.4) analitza (23.08.3 -> 23.08.4) ark (23.08.3 -> 23.08.4) baloo5-widgets (23.08.3 -> 23.08.4) blinken (23.08.3 -> 23.08.4) busybox busybox-links calendarsupport (23.08.3 -> 23.08.4) dhcp dolphin (23.08.3 -> 23.08.4) eventviews (23.08.3 -> 23.08.4) ffmpegthumbs (23.08.3 -> 23.08.4) filelight (23.08.3 -> 23.08.4) filesystem gdbm glib2 (2.78.1 -> 2.78.3) grantleetheme (23.08.3 -> 23.08.4) gtk3 (3.24.38 -> 3.24.38+111) gwenview5 (23.08.3 -> 23.08.4) incidenceeditor (23.08.3 -> 23.08.4) kaccounts-integration (23.08.3 -> 23.08.4) kaccounts-providers (23.08.3 -> 23.08.4) kaddressbook (23.08.3 -> 23.08.4) kalgebra (23.08.3 -> 23.08.4) kamera (23.08.3 -> 23.08.4) kanagram (23.08.3 -> 23.08.4) kapptemplate (23.08.3 -> 23.08.4) kate (23.08.3 -> 23.08.4) kbruch (23.08.3 -> 23.08.4) kcachegrind (23.08.3 -> 23.08.4) kcalc (23.08.3 -> 23.08.4) kcalutils (23.08.3 -> 23.08.4) kcharselect (23.08.3 -> 23.08.4) kcolorchooser (23.08.3 -> 23.08.4) kde-print-manager (23.08.3 -> 23.08.4) kdeconnect-kde (23.08.3 -> 23.08.4) kdeedu-data (23.08.3 -> 23.08.4) kdegraphics-thumbnailers (23.08.3 -> 23.08.4) kdenetwork-filesharing (23.08.3 -> 23.08.4) kdepim-addons (23.08.3 -> 23.08.4) kdepim-runtime (23.08.3 -> 23.08.4) kdialog (23.08.3 -> 23.08.4) kgeography (23.08.3 -> 23.08.4) khangman (23.08.3 -> 23.08.4) khelpcenter5 (23.08.3 -> 23.08.4) kidentitymanagement (23.08.3 -> 23.08.4) kig (23.08.3 -> 23.08.4) kimap (23.08.3 -> 23.08.4) kio-extras5 (23.08.3 -> 23.08.4) kio_audiocd (23.08.3 -> 23.08.4) kipi-plugins (23.08.3 -> 23.08.4) kiten (23.08.3 -> 23.08.4) kitinerary (23.08.3 -> 23.08.4) kldap (23.08.3 -> 23.08.4) kleopatra (23.08.3 -> 23.08.4) kmag (23.08.3 -> 23.08.4) kmahjongg (23.08.3 -> 23.08.4) kmail (23.08.3 -> 23.08.4) kmail-account-wizard (23.08.3 -> 23.08.4) kmailtransport (23.08.3 -> 23.08.4) kmbox (23.08.3 -> 23.08.4) kmime (23.08.3 -> 23.08.4) kmines (23.08.3 -> 23.08.4) kmod kmousetool (23.08.3 -> 23.08.4) kmplot (23.08.3 -> 23.08.4) knotes (23.08.3 -> 23.08.4) kompare (23.08.3 -> 23.08.4) konsole (23.08.3 -> 23.08.4) kontact (23.08.3 -> 23.08.4) kontactinterface (23.08.3 -> 23.08.4) konversation (23.08.3 -> 23.08.4) korganizer (23.08.3 -> 23.08.4) kpat (23.08.3 -> 23.08.4) kpimtextedit (23.08.3 -> 23.08.4) kpkpass (23.08.3 -> 23.08.4) kqtquickcharts (23.08.3 -> 23.08.4) kreversi (23.08.3 -> 23.08.4) ksanecore (23.08.3 -> 23.08.4) ksmtp (23.08.3 -> 23.08.4) ksudoku (23.08.3 -> 23.08.4) ktnef (23.08.3 -> 23.08.4) ktouch (23.08.3 -> 23.08.4) kwalletmanager5 (23.08.3 -> 23.08.4) kwordquiz (23.08.3 -> 23.08.4) libffi libgravatar (23.08.3 -> 23.08.4) libkcddb (23.08.3 -> 23.08.4) libkcompactdisc (23.08.3 -> 23.08.4) libkdcraw (23.08.3 -> 23.08.4) libkdegames (23.08.3 -> 23.08.4) libkdepim (23.08.3 -> 23.08.4) libkeduvocdocument (23.08.3 -> 23.08.4) libkexiv2 (23.08.3 -> 23.08.4) libkgapi (23.08.3 -> 23.08.4) libkipi (23.08.3 -> 23.08.4) libkleo (23.08.3 -> 23.08.4) libkmahjongg (23.08.3 -> 23.08.4) libkomparediff2 (23.08.3 -> 23.08.4) libksane (23.08.3 -> 23.08.4) libksieve (23.08.3 -> 23.08.4) libreoffice (7.6.3.1 -> 7.6.4.1) libseccomp (2.5.4 -> 2.5.5) libstorage-ng (4.5.158 -> 4.5.161) libvirt (9.9.0 -> 9.10.0) lokalize (23.08.3 -> 23.08.4) lua54 mailcommon (23.08.3 -> 23.08.4) mailimporter (23.08.3 -> 23.08.4) mbox-importer (23.08.3 -> 23.08.4) messagelib (23.08.3 -> 23.08.4) mobipocket (23.08.3 -> 23.08.4) mutter (45.1 -> 45.2) okular (23.08.3 -> 23.08.4) parley (23.08.3 -> 23.08.4) perl-IO-Tty (1.17 -> 1.180.0) pigz pim-data-exporter (23.08.3 -> 23.08.4) pim-sieve-editor (23.08.3 -> 23.08.4) pimcommon (23.08.3 -> 23.08.4) python-Mako (1.2.4 -> 1.3.0) python-atpublic (3.1.1 -> 4.0) python-httpcore (0.18.0 -> 1.0.2) python-importlib-metadata (6.8.0 -> 7.0.0) python-libvirt-python (9.9.0 -> 9.10.0) python-looseversion (1.1.2 -> 1.3.0) signon-kwallet-extension (23.08.3 -> 23.08.4) skanlite (23.08.3 -> 23.08.4) spectacle (23.08.3 -> 23.08.4) step (23.08.3 -> 23.08.4) tar (1.34 -> 1.35) umbrello (23.08.3 -> 23.08.4) util-linux (2.39.2 -> 2.39.3) util-linux-systemd (2.39.2 -> 2.39.3) vim (9.0.2136 -> 9.0.2146) virt-viewer webkit2gtk3 (2.42.2 -> 2.42.3) webkit2gtk3-soup2 (2.42.2 -> 2.42.3) xfsprogs (6.4.0 -> 6.5.0) zypper (1.14.66 -> 1.14.67) === Details === ==== akonadi-calendar ==== Version update (23.08.3 -> 23.08.4) Subpackages: akonadi-plugin-calendar kalendarac libKPim5AkonadiCalendar5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-calendar-tools ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-contact ==== Version update (23.08.3 -> 23.08.4) Subpackages: akonadi-plugin-contacts libKPim5AkonadiContact5 libKPim5ContactEditor5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-import-wizard ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5ImportWizard5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-mime ==== Version update (23.08.3 -> 23.08.4) Subpackages: akonadi-plugin-mime libKPim5AkonadiMime5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-notes ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-search ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5AkonadiSearch5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akonadi-server ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5AkonadiAgentBase5 libKPim5AkonadiCore5 libKPim5AkonadiPrivate5 libKPim5AkonadiWidgets5 libKPim5AkonadiXml5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== akregator ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== analitza ==== Version update (23.08.3 -> 23.08.4) Subpackages: libAnalitza8 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ark ==== Version update (23.08.3 -> 23.08.4) Subpackages: libkerfuffle23 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== baloo5-widgets ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== blinken ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== busybox ==== Subpackages: busybox-static - Install udhcpc and udhcpc6 into the same directory (udhcp6-install-path.patch) - Fully enable udhcpc and document that this tool needs special configuration and does not work out of the box [bsc#1217883] ==== busybox-links ==== Subpackages: busybox-bzip2 busybox-coreutils busybox-diffutils busybox-ed busybox-findutils busybox-gawk busybox-grep busybox-gzip busybox-misc busybox-psmisc busybox-sed busybox-sendmail busybox-tar busybox-which busybox-xz - Add new sub-package for udhcpc - zgrep: don't set the label option as only the real grep supports it (bsc#1215943) ==== calendarsupport ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5CalendarSupport5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== dhcp ==== Subpackages: dhcp-relay dhcp-server - Revert dhclient-script removal and instead change usleep to sleep (boo#1216822) - Add new Kea migration assistant subpackage - Switch doc subpackage to noarch ==== dolphin ==== Version update (23.08.3 -> 23.08.4) Subpackages: dolphin-part libdolphinvcs5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Adapt to renamed activities library repo ==== eventviews ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5EventViews5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ffmpegthumbs ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== filelight ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== filesystem ==== - Create systemd-tmpfile for /run (/run/lock missing bug report) ==== gdbm ==== Subpackages: libgdbm6 libgdbm_compat4 - libgdbm_compat4: Fix libgdbm version of Conflicts [bsc#1217727] ==== glib2 ==== Version update (2.78.1 -> 2.78.3) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 - Update to version 2.78.3: + Fix a crash-causing regression in xdgmime + Bugs fixed: - Crash in __gio_xdg_cache_mime_type_subclass - Backport âxdgmime: Update to upstream commit c2c814d4051f232â to glib-2-78 - Update to version 2.78.2: + Bugs fixed: - check for #ifdef PTRACE_O_EXITKILL will always fail since it isn't a macro - gsubprocess build-time test intermittently timing out since 2.78.1 - âmeson: Improve PTRACE_O_EXITKILL presence checkâ - âMake GQuark register intentional leaksâ - âgsignalgroup: Avoid function call with side effect in g_return_* macroâ - âtests: Don't assume that sh optimizes simple commands into execâ - âxdgmime: Handle buggy type definitions with circular inheritanceâ - âcollate: Don't segfault on bad inputâ ==== grantleetheme ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5GrantleeTheme5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== gtk3 ==== Version update (3.24.38 -> 3.24.38+111) Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.38+111: + [gtk3] Support tiled windows from xdg-shell. + Fix a minor issue in the file portal test. + wayland: Be more careful when loading cursors. + gdk/wayland: Use g_warning_once for cursor scale mismatches. + gdk/wayland: Don't fall back directly to 1 for mismatched cursor sizes. + Updated translations. - Drop upstream applied patch gtk3-gtkmountoperation-avoid-SEGV-after-bad-password-inpu.patch ==== gwenview5 ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== incidenceeditor ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5IncidenceEditor5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kaccounts-integration ==== Version update (23.08.3 -> 23.08.4) Subpackages: libkaccounts2 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kaccounts-providers ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kaddressbook ==== Version update (23.08.3 -> 23.08.4) Subpackages: kaddressbook-doc libKPim5AddressbookImportExport5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kalgebra ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kamera ==== Version update (23.08.3 -> 23.08.4) Subpackages: kamera-lang kio_kamera - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kanagram ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kapptemplate ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kate ==== Version update (23.08.3 -> 23.08.4) Subpackages: kate-plugins - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kbruch ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kcachegrind ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kcalc ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kcalutils ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5CalendarUtils5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kcharselect ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kcolorchooser ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kde-print-manager ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Adapt to plasma-framework being renamed to libplasma * Adjust to plasma-framework moving to Plasma ==== kdeconnect-kde ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kdeedu-data ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kdegraphics-thumbnailers ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kdenetwork-filesharing ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * packagekit: allow interactive auth dialogs (kde#472145) ==== kdepim-addons ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kdepim-runtime ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Add default ews base url * Correctly reload configuration (kde#473897) * Don't destroy save password job before closing the save dialog * Do not read google password from wallet when account is not configured ==== kdialog ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kgeography ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Update flag of Myanmar (kde#477172) ==== khangman ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== khelpcenter5 ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kidentitymanagement ==== Version update (23.08.3 -> 23.08.4) Subpackages: kidentitymanagement-lang libKPim5IdentityManagement5 libKPim5IdentityManagementWidgets5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kig ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kimap ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kio-extras5 ==== Version update (23.08.3 -> 23.08.4) Subpackages: libkioarchive5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Fix build with MinGW (kde#430312) ==== kio_audiocd ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kipi-plugins ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kiten ==== Version update (23.08.3 -> 23.08.4) Subpackages: fonts-KanjiStrokeOrders - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kitinerary ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Fix Motel One checkin time when running in a different timezone * Add Motel One pkpass extractor script * Add stand-alone filter condition for SAS itinerary PDFs * Handle another Flixbus Unicode station icon variant * Ignore ERA FCB UIC station codes in Germany * Use the entire UIC 918.3 station object, not just the identifier * Fix ERA FCB arrival time parsing * Support Dutch-language Eurostar (Thalys) tickets * Increase the maximum document size thresholds * Add basic support for 12go.asia PDFs ==== kldap ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5Ldap5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kleopatra ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmag ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmahjongg ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmail ==== Version update (23.08.3 -> 23.08.4) Subpackages: kmail-application-icons ktnef - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmail-account-wizard ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmailtransport ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5MailTransport5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmbox ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmime ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmines ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Fix initial logging errors from KGameRenderer due to too large pixmaps ==== kmod ==== Subpackages: kmod-bash-completion libkmod2 - Add upstream fixes since v31 * tools-depmod-fix-Walloc-size.patch * libkmod-remove-pkcs7-obj_to_hash_algo.patch * configure-Check-that-provided-paths-are-absolute.patch - Refresh usrmerge patches to upstream version (cosmetic change only) ==== kmousetool ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kmplot ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== knotes ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kompare ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== konsole ==== Version update (23.08.3 -> 23.08.4) Subpackages: konsole-part konsole-part-lang - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Apply split view icons to the session context menu too. ==== kontact ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kontactinterface ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== konversation ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== korganizer ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * Fix infinite loop in mEventViewer->setIncidence due to invalid date ==== kpat ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kpimtextedit ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5TextEdit5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kpkpass ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kqtquickcharts ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kreversi ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ksanecore ==== Version update (23.08.3 -> 23.08.4) Subpackages: ksanecore-lang libKSaneCore1 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ksmtp ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ksudoku ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ktnef ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== ktouch ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * "Pisteen jÃ¤lkeen on aina vÃ¤lilyÃ¶nti." -> added space after "." ==== kwalletmanager5 ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== kwordquiz ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libffi ==== - Add upstream patches to fix BTI on aarch64: * 808.patch * 810.patch ==== libgravatar ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5Gravatar5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkcddb ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKF5Cddb5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkcompactdisc ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKF5CompactDisc5 libkcompactdisc-lang - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkdcraw ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkdegames ==== Version update (23.08.3 -> 23.08.4) Subpackages: kdegames-carddecks-default libKF5KDEGames7 libkdegames-qt5-imports - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - Changes since 23.08.3: * KGameRenderer: handle requests for images with too large or invalid sizes ==== libkdepim ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5Libkdepim5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkeduvocdocument ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKEduVocDocument5 libkeduvocdocument-lang - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkexiv2 ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkgapi ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5GAPICalendar5 libKPim5GAPICore5 libKPim5GAPIPeople5 libKPim5GAPITasks5 libkgapi-lang sasl2-kdexoauth2 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkipi ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKF5Kipi32_0_0 libkipi-data - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkleo ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5libkleo5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkmahjongg ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKF5KMahjongglib5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libkomparediff2 ==== Version update (23.08.3 -> 23.08.4) Subpackages: libkomparediff2-5 libkomparediff2-lang - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libksane ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKF5Sane5 libksane-lang - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libksieve ==== Version update (23.08.3 -> 23.08.4) Subpackages: libksieve5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== libreoffice ==== Version update (7.6.3.1 -> 7.6.4.1) Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-en libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Update to 7.6.4.1 https://wiki.documentfoundation.org/Releases/7.6.4/RC1 - Update bundled dependencies: curl-8.2.1.tar.xz -> curl-8.4.0.tar.xz harfbuzz-8.0.0.tar.xz -> harfbuzz-8.2.2.tar.xz - Build using OpenSSL instead of NSS, since the bundled curl does not support the NSS backend any more - Update to 7.6.3.2: https://wiki.documentfoundation.org/Releases/7.6.3/RC2 - Update bundled dependencies: libcmis-0.6.0.tar.xz -> libcmis-0.6.1.tar.xz ==== libseccomp ==== Version update (2.5.4 -> 2.5.5) - Update to release 2.5.5 * Update the syscall table for Linux v6.7-rc3 ==== libstorage-ng ==== Version update (4.5.158 -> 4.5.161) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#968 - make more use of new SystemCmd interface - 4.5.161 - merge gh#openSUSE/libstorage-ng#967 - block more udev by-id links (bsc#1217459) - adapted testsuite - 4.5.160 - Translated using Weblate (Portuguese (Brazil)) (bsc#1149754) - 4.5.159 ==== libvirt ==== Version update (9.9.0 -> 9.10.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Add upstream commit 1a2f33cb59 to fix memory corruption in the remote driver - Update to libvirt 9.10.0 - jsc#PED-3226, jsc#PED-3279, jsc#PED-4931, jsc#PED-5432, jsc#PED-6851 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v9-10-0-2023-12-01 - spec: Drop 'Requires: libvirt-daemon-proxy' from the libvirt-daemon-{qemu,xen,lxc,vbox} subpackages ==== lokalize ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== lua54 ==== - execresult.patch: Inspect errno only after failure ==== mailcommon ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5MailCommon5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== mailimporter ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5MailImporter5 libKPim5MailImporterAkonadi5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== mbox-importer ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== messagelib ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== mobipocket ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== mutter ==== Version update (45.1 -> 45.2) - Update to version 45.2: + Disable HW cursor when inhibited by backend. + Fix disabling check-alive timeout. + Propagate focus appearance to all ancestors. + Fix tablets on X11 having the wrong device. + Fixed crash. + Updated translations. ==== okular ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== parley ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== perl-IO-Tty ==== Version update (1.17 -> 1.180.0) - updated to 1.18 see /usr/share/doc/packages/perl-IO-Tty/ChangeLog 1.18 2023-11-27 Todd Rinaldo <toddr(a)cpan.org> * #35 - Address Freebsd build issue: Make function checks more robust within shared lib ==== pigz ==== - Compile with openSUSE flags ==== pim-data-exporter ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== pim-sieve-editor ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== pimcommon ==== Version update (23.08.3 -> 23.08.4) Subpackages: libKPim5PimCommon5 libKPim5PimCommonAkonadi5 - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== python-Mako ==== Version update (1.2.4 -> 1.3.0) - update to 1.3.0: * Mako 1.3.0 bumps the minimum Python version to 3.8 * Python 3.12 is now supported explicitly. ==== python-atpublic ==== Version update (3.1.1 -> 4.0) - update to 4.0: * Drop Python 3.7 support (GL#16) * Remove ``public.install()`` which was used to inject the ``public`` and ``private`` functions into the ``builtins`` namespace. This isn't very helpful and could be actively harmful. Explicit is better than implicit. (GL#14) * The functional form of ``public()`` now returns the argument * values* in the order they are given. This allows you to explicitly bind those values to names in the global namespace. * Switch from ``flake8`` and ``isort`` to ``ruff`` for code quality. (GL#32) * Switch to ``pdm-backend`` (GL#15) * More GitLab CI integration improvements. ==== python-httpcore ==== Version update (0.18.0 -> 1.0.2) - update to 1.0.2: * Fix `float("inf")` timeouts in `Event.wait` function. (#846) * Fix pool timeout to account for the total time spent retrying. (#823) * Raise a neater RuntimeError when the correct async deps are not installed. (#826) * Add support for synchronous TLS-in-TLS streams. (#840) * From version 1.0 our async support is now optional, as the package has minimal dependencies by default. * For async support use either `pip install 'httpcore[asyncio]'` or `pip install 'httpcore[trio]'`. * The project versioning policy is now explicitly governed by SEMVER. See https://semver.org/. * Async support becomes fully optional. (#809) * Add support for Python 3.12. (#807) ==== python-importlib-metadata ==== Version update (6.8.0 -> 7.0.0) - update to 7.0.0: * Removed EntryPoint access by numeric index (tuple behavior). * Added ``Distribution.origin`` supplying the ``direct_url.json`` in a ``SimpleNamespace``. (#404) * Added diagnose script. (#461) * Added EntryPoints.__repr__ (#473) ==== python-libvirt-python ==== Version update (9.9.0 -> 9.10.0) - Update to 9.10.0 - Add all new APIs and constants in libvirt 9.10.0 - jsc#PED-3226, jsc#PED-3279, jsc#PED-4931, jsc#PED-5432, jsc#PED-6851 ==== python-looseversion ==== Version update (1.1.2 -> 1.3.0) - update to 1.3.0: * Restore Python 3 semantics for `LooseVersion`, creating `LooseVersion2` to restore Python 2 semantics. * Test on Python 3.12 * Enable installation on Python 2+ * Ensure consistent semantics between Python 2 and 3 ==== signon-kwallet-extension ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== skanlite ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== spectacle ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== step ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== tar ==== Version update (1.34 -> 1.35) Subpackages: tar-rmt - GNU tar 1.34: * Fail when building GNU tar if the platform supports 64-bit time_t but the build only uses 32-bit time_t. * Leave the devmajor and devminor fields empty (rather than zero) for non-special files, as this is more compatible with traditional tar. Fixes: * Fix interaction of --update with --wildcards. * When extracting archives into an empty directory, do not create hard links to files outside that directory. * Handle partial reads from regular files. * Warn file changed as we read it less often. Formerly, tar warned if the file's size or ctime changed. However, this generated a false positive if tar read a file while another process hard-linked to it, changing its ctime. Now, tar warns if the file's size, mtime, user ID, group ID, or mode changes. Although neither heuristic is perfect, the new one should work better in practice. * Fix --ignore-failed-read to ignore file-changed read errors as far as exit status is concerned. You can now suppress file-changed issues entirely with --ignore-failed-read - -warning=no-file-changed. * Fix --remove-files to not remove a file that changed while we read it. * Fix --atime-preserve=replace to not fail if there was no need to replace, either because we did not read the file, or the atime did not change. * Fix race when creating a parent directory while another process is also doing so. * Fix handling of prefix keywords not followed by "." in pax headers. * Fix handling of out-of-range sparse entries in pax headers. * Fix handling of --transform='s/s/@/2'. * Fix treatment of options ending in slash in files-from list. * Fix crash on tar --checkpoint-action exec=\". * Fix low-memory crash when reading incremental dumps. * Fix --exclude-vcs-ignores memory allocation misuse. - Added patch: * add_forgotten-tests.patch: added 2 tests that upstream forgot in the release. - Update patch: * tar-backup-spec-fix-paths.patch: upstream fixed 2/3rd of paths * tar-fix-extract-unlink.patch some of this is overwritten by bsc1202436-1 and some was fixed upstream * add_readme-tests.patch as Makefile.in no longer exists - Removed: * tar-fix-race-condition.patch * tar-avoid-overflow-in-symlinks-tests.patch * bsc1200657.patch * bsc1202436-2.patch * bsc1202436-1.patch ==== umbrello ==== Version update (23.08.3 -> 23.08.4) - Update to 23.08.4 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/23.08.4/ - No code change since 23.08.3 ==== util-linux ==== Version update (2.39.2 -> 2.39.3) Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Increase delay in waitpid test (bsc#1217651), add tests-increase-delay-for-waitpid-test.patch - Update to release 2.29.3 * libblkid: add support for bcachefs sub-device labels * libblkid: detect large bcachefs superblocks * libblkid: validate that NTFS sector_size is a power of two * libblkid: report endianness for VXFS * libmount: Fix regression when mounting with atime * libmount: accept '\' as escape for options separator * libmount: gracefully handle NULL path in mnt_resolve_target() * libmount: report statx in features list * libsmartcols: handle nameless tables in export format * libuuid: avoid truncation of clocks.txt to improve performance * lscpu: fix caches separator for --parse=<list> * lscpu: Add Phytium FTC862 cpu model * lsfd: fix the form for the optional argument of --inet option in manpage * lsfd: avoid a case of undefined behavior * lsfd: fix a memory leak * lslogins: fix -y option formatting in manpage * more: avoid an out-of-bound access * setpriv: fix some group argument completion * setterm: avoid restoring flags from uninitialized memory * umount: handle bindmounts during --recursive - Remove upstreamed patches: libuuid-avoid-truncate-clocks.txt-to-improve-performance.patch, setterm-resize-uninit-flags.patch ==== util-linux-systemd ==== Version update (2.39.2 -> 2.39.3) - Increase delay in waitpid test (bsc#1217651), add tests-increase-delay-for-waitpid-test.patch - Update to release 2.29.3 * libblkid: add support for bcachefs sub-device labels * libblkid: detect large bcachefs superblocks * libblkid: validate that NTFS sector_size is a power of two * libblkid: report endianness for VXFS * libmount: Fix regression when mounting with atime * libmount: accept '\' as escape for options separator * libmount: gracefully handle NULL path in mnt_resolve_target() * libmount: report statx in features list * libsmartcols: handle nameless tables in export format * libuuid: avoid truncation of clocks.txt to improve performance * lscpu: fix caches separator for --parse=<list> * lscpu: Add Phytium FTC862 cpu model * lsfd: fix the form for the optional argument of --inet option in manpage * lsfd: avoid a case of undefined behavior * lsfd: fix a memory leak * lslogins: fix -y option formatting in manpage * more: avoid an out-of-bound access * setpriv: fix some group argument completion * setterm: avoid restoring flags from uninitialized memory * umount: handle bindmounts during --recursive - Remove upstreamed patches: libuuid-avoid-truncate-clocks.txt-to-improve-performance.patch, setterm-resize-uninit-flags.patch ==== vim ==== Version update (9.0.2136 -> 9.0.2146) Subpackages: vim-data vim-data-common xxd - update to 9.0.2146 * text-property without type errors when joining * wrong scrolling in insert mode with smoothscroll * Text properties causes wrong line wrapping * disable the test_terminal_resize2() test for GH CI in gui mode * [security]: buffer-overflow in ex_substitute * [security]: stack-buffer-overflow in option callback functions * [security]: buffer-overflow in suggest_trie_walk * [security]: use-after-free in win-enter * check that all files are listed in Filelist * html.angular ft is problematic * disable the test_terminal_resize() test for GH CI in GUI * Overflow logic requires long long * include several missing files * Can't detect angular & mustache filetypes ==== virt-viewer ==== - Upstream bug fixes (bsc#1166289) (jsc#PED-6305) 001-Update-src-virt-viewer-app.c.patch 002-Use-less-memory.patch 003-Fix-ssh-tunnel-with-non-POSIX-remote-shells.patch 004-Add-support-for-usb-redirect-on-connect-in-vv-files.patch 005-session-vnc-Plug-leak-in-error-path.patch ==== webkit2gtk3 ==== Version update (2.42.2 -> 2.42.3) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.42.3 (boo#1217844): + Fix flickering while playing videos with DMA-BUF sink. + Fix color picker being triggered in the inspector when typing "tan". + Do not special case the "sans" font family name. + Fix build failure with libxml2 version 2.12.0 due to an API change. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42916, CVE-2023-42917. ==== webkit2gtk3-soup2 ==== Version update (2.42.2 -> 2.42.3) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.42.3 (boo#1217844): + Fix flickering while playing videos with DMA-BUF sink. + Fix color picker being triggered in the inspector when typing "tan". + Do not special case the "sans" font family name. + Fix build failure with libxml2 version 2.12.0 due to an API change. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42916, CVE-2023-42917. ==== xfsprogs ==== Version update (6.4.0 -> 6.5.0) Subpackages: libhandle1 - update to 6.5.0 - libxfs: fix atomic64_t detection on x86_32 - libxfs: use XFS_IGET_CREATE when creating new files - libfrog: fix overly sleep workqueues - xfs_db: use directio for device access - libxfs: make platform_set_blocksize optional with directio - mkfs: add a config file for 6.6 LTS kernels - mkfs: enable reverse mapping by default - mkfs: enable large extent counts by default - xfs_db: create unlinked inodes - xfs_db: dump unlinked buckets - xfsprogs: don't allow udisks to automount XFS filesystems with no prompt - xfs_repair: fix repair failure caused by dirty flag being abnormally set on buffer - drop 0001-repair-shift-inode-back-into-place-if-corrupted-by-b.patch This was a fix for a regression that occurred in SLE12 SP1. We can safely drop this, as upgrading to SLE15 (and later) is only supported from SLE12-SP4. ==== zypper ==== Version update (1.14.66 -> 1.14.67) Subpackages: zypper-log zypper-needs-restarting - patch: Make sure reboot-needed is remembered until next boot (bsc#1217873) - version 1.14.67

1 0

New Arm Tumbleweed snapshot 20231207 released!
by Guillaume Gardet 08 Dec '23

08 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream atkmm1_6 bluedevil5 (5.27.9 -> 5.27.10) breeze (5.27.9 -> 5.27.10) breeze-gtk (5.27.9 -> 5.27.10) discover (5.27.9 -> 5.27.10) drkonqi5 (5.27.9 -> 5.27.10) ffmpeg-4 ffmpeg-6 gnome-control-center gpgme gpgmeqt grub2 json-c kactivitymanagerd (5.27.9 -> 5.27.10) kcm_flatpak (5.27.9 -> 5.27.10) kcm_sddm (5.27.9 -> 5.27.10) kde-cli-tools5 (5.27.9 -> 5.27.10) kde-gtk-config5 (5.27.9 -> 5.27.10) kgamma5 (5.27.9 -> 5.27.10) khotkeys5 (5.27.9 -> 5.27.10) kinfocenter5 (5.27.9 -> 5.27.10) kmenuedit5 (5.27.9 -> 5.27.10) kpipewire (5.27.9 -> 5.27.10) kscreen5 (5.27.9 -> 5.27.10) kscreenlocker (5.27.9 -> 5.27.10) ksshaskpass5 (5.27.9 -> 5.27.10) ksystemstats5 (5.27.9 -> 5.27.10) kwayland-integration (5.27.9 -> 5.27.10) kwin5 (5.27.9 -> 5.27.10) kwrited5 (5.27.9 -> 5.27.10) layer-shell-qt (5.27.9 -> 5.27.10) lcms2 (2.15 -> 2.16) libaom (3.7.0 -> 3.7.1) libei (1.1.0 -> 1.2.0) libkdecoration2 (5.27.9 -> 5.27.10) libkscreen2 (5.27.9 -> 5.27.10) libksysguard5 (5.27.9 -> 5.27.10) libpaper (2.1.1 -> 2.1.2) liburing libvirt-glib (4.0.0 -> 5.0.0) milou5 (5.27.9 -> 5.27.10) mozjs115 nautilus (45.2 -> 45.2.1) oxygen5-sounds (5.27.9 -> 5.27.10) pam_kwallet (5.27.9 -> 5.27.10) patterns-kde (20230801 -> 20231206) plasma-browser-integration (5.27.9 -> 5.27.10) plasma-nm5 (5.27.9 -> 5.27.10) plasma5-addons (5.27.9 -> 5.27.10) plasma5-desktop (5.27.9 -> 5.27.10) plasma5-disks (5.27.9 -> 5.27.10) plasma5-integration (5.27.9 -> 5.27.10) plasma5-openSUSE plasma5-pa (5.27.9 -> 5.27.10) plasma5-systemmonitor (5.27.9 -> 5.27.10) plasma5-thunderbolt (5.27.9 -> 5.27.10) plasma5-workspace (5.27.9 -> 5.27.10) polkit-kde-agent-5 (5.27.9 -> 5.27.10) powerdevil5 (5.27.9 -> 5.27.10) python-importlib-resources (6.0.1 -> 6.1.1) raptor systemsettings5 (5.27.9 -> 5.27.10) xdg-desktop-portal-kde (5.27.9 -> 5.27.10) === Details === ==== AppStream ==== Subpackages: libAppStreamQt2 libappstream4 - Make AppStream-compose-devel require the same version of libappstream-compose0. ==== atkmm1_6 ==== - Add atkmm1_6-remove-unnecessary-executable-flag-from-file.patch: cancel executable permission for file /usr/share/doc/packages/libatkmm-1_6-1/NEWS (bsc#1209094, bsc#1209139). ==== bluedevil5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: bluedevil5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma ==== breeze ==== Version update (5.27.9 -> 5.27.10) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang libbreezecommon5-5 - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== breeze-gtk ==== Version update (5.27.9 -> 5.27.10) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze gtk4-metatheme-breeze metatheme-breeze-common - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== discover ==== Version update (5.27.9 -> 5.27.10) Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * AppStream 1.0: Use #ifdef to support both stable and 0.x versions * CMake: Remove obsolete AppStream version check * Refactor roughCount into an atomic QGadget, fix usage of i18np (kde#476148) * Update to reflect move of KUserFeedback to Frameworks ==== drkonqi5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: drkonqi5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Update to reflect move of KUserFeedback to Frameworks ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Copy codec list from ffmpeg-6 ==== ffmpeg-6 ==== Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Enable more decoders and encoders explicitly: * amrwb via bcond_without for TW only (and in enable_decoder/encoder) * opencore via bcond_without for TW only (and in enable_decoder/encoder) * xvid via bcond_without for TW only (and in enable_decoder/encoder) * h.263 via enable_decoder/encoder and no longer explicitly disabling in call to configure * MPEG4 Visual via enable_decoder/encoder and no longer explicitly disabling in call to configure * MPEG2 Hardware decoders via enable_decoder/encoder * And many many more via enable_decoder/encoder. ==== gnome-control-center ==== Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Mark gnome-control-center-info-fix-distro-logo.patch as rebase needed. The patch needs a deeper review because its base is too old and SLE/Leap specific. ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 - Make libgpgmepp-devel provide its CMake target file ==== gpgmeqt ==== - Make libgpgmepp-devel provide its CMake target file ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix reproducible build for grub.xen (bsc#1217619) * 0001-mkstandalone-ensure-stable-timestamps-for-generated-.patch * 0002-mkstandalone-ensure-deterministic-tar-file-creation-.patch ==== json-c ==== - Drop unneeded -DCMAKE_C_FLAGS=-std=gnu99 to use distro CFLAGS ==== kactivitymanagerd ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kcm_flatpak ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kcm_sddm ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kde-cli-tools5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to renamed activities library repo * Reflect move of KActivities out of Frameworks to Plasma ==== kde-gtk-config5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: kde-gtk-config5-gtk3 - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kgamma5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== khotkeys5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kinfocenter5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: kinfocenter5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kmenuedit5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kpipewire ==== Version update (5.27.9 -> 5.27.10) Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireDmaBuf5 libKPipeWireRecord5 - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adjust to KWayland moving to Plasma ==== kscreen5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: kscreen5-plasmoid - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma ==== kscreenlocker ==== Version update (5.27.9 -> 5.27.10) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adjust to KWayland moving to Plasma ==== ksshaskpass5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: ksshaskpass5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== ksystemstats5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== kwayland-integration ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adjust to KWayland moving to Plasma ==== kwin5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * plugins/magnifier: Add missing "Zoom In" alt. shortcut * plugins/zoom: Add missing "Zoom In" default alt. shortcut * Adapt CI to renamed plasma-framework and kactivities * Preserve relative order of transient siblings (kde#477262) * Allow running kwin5 windowed in kwin6 * layershellv1window: Check isDeleted before activating it * effects: Fix type of X-KDE-Ordering * screencast: Make nvidia use the GLES path * screencast: Fix GLES path * xdgshellwindow: enforce a minimum size for clients (kde#469237) * Actually adjust to KWayland moving to Plasma * Adjust to KWayland moving to Plasma * Adapt to plasma-framework moving to Plasma * Reflect move of KActivities out of Frameworks to Plasma ==== kwrited5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== layer-shell-qt ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== lcms2 ==== Version update (2.15 -> 2.16) - update to 2.16: * New: import .CUBE files as RGB device links * New: Read/Write MHC2 tags for Windows GPU access * New: Support for UTF8 on multi-localized Unicode functions * New: Support for OkLab color space, built-in and formatter. * Improved: floating point transforms float -> integer are now honored as float * Improved: MSYS2, mingw is now supported * Improved: preferred CMM, platform and creator now survives profile edition. * Fixed: tificc now can deal with Lab TIFF * Fixed: code can now be compiled by a C++17 compiler, "register" keyword use detected at compile time. * Fixed: Reverted PostScript creation that corrupted some interpreters. * Bug fixing ==== libaom ==== Version update (3.7.0 -> 3.7.1) - Update to version 3.7.1: * Bug Fixes: - aomedia:3349: heap overflow when increasing resolution - aomedia:3478: GCC 12.2.0 emits a -Wstringop-overflow warning on aom/av1/encoder/motion_search_facade.c - aomedia:3489: Detect encoder and image high bit depth mismatch - aomedia:3491: heap-buffer-overflow on frame size change - b/303023614: Segfault at encoding time for high bit depth images - Switch buildtime compression to zst. ==== libei ==== Version update (1.1.0 -> 1.2.0) - Update to release 1.2 * if the write buffer is full, outgoing messages are now cached instead of returning EAGAIN. * if a message send fails, stop trying to send more messages which will do nothing but spam the log with more errors * if we get disconnected by the server, stop trying to send things to the server (and spam the log on error) * use EINTR checks instead of blocking SIGALRM * keep a cache of defunct objects to avoid spamming the log when there are in-flight messages arriving after destroy ==== libkdecoration2 ==== Version update (5.27.9 -> 5.27.10) Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private10 - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== libkscreen2 ==== Version update (5.27.9 -> 5.27.10) Subpackages: libKF5Screen8 libKF5ScreenDpms8 libkscreen2-plugin - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adjust to KWayland moving to Plasma ==== libksysguard5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-plugins - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Add missing Solid dependency * Drop unused KCompletion ==== libpaper ==== Version update (2.1.1 -> 2.1.2) Subpackages: libpaper-tools libpaper2 - Update to 2.1.2: * This release contains a change only to the tests, which improves the detection of glibc. ==== liburing ==== - Fix build on 32-bit x86 - Make use of openSUSE build flags ==== libvirt-glib ==== Version update (4.0.0 -> 5.0.0) Subpackages: libvirt-glib-1_0-0 typelib-1_0-LibvirtGLib-1_0 - Update to version 5.0.0: + Fix compatiblity with libxml2 >= 2.12.0 + Bump min libvirt version to 2.3.0 + Bump min meson to 0.56.0 + Require use of GCC >= 4.8 / CLang > 3.4 / XCode CLang > 5.1 + Mark USB disks as removable by default + Add support for audio device backend config + Add support for DBus graphics backend config + Add support for controlling firmware feature flags + Improve compiler flag handling in meson + Extend library version script handling to FreeBSD + Fix pointer sign issue in capabilities config API + Fix compat with gnome.mkenums() in Meson 0.60.0 + Avoid compiler warnings from gi-ir-scanner generated code by not setting glib version constraints + Be more robust about NULL GError parameters + Disable unimportant cast alignment compiler warnings + Use âpragma onceâ in all header files + Updated translations. ==== milou5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: milou5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma ==== mozjs115 ==== - mozjs115 requires gcc >= 8.1, icu >= 73.1. Specify them in spec. - Update icu data file name in spec to build in big endian machine. ==== nautilus ==== Version update (45.2 -> 45.2.1) Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 - Update to version 45.2.1: + Fix a crash in sidebar code + Fix build without optional cloudproviders dependency. ==== oxygen5-sounds ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== pam_kwallet ==== Version update (5.27.9 -> 5.27.10) Subpackages: pam_kwallet-common - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== patterns-kde ==== Version update (20230801 -> 20231206) Subpackages: patterns-kde-kde patterns-kde-kde_edutainment patterns-kde-kde_games patterns-kde-kde_ide patterns-kde-kde_imaging patterns-kde-kde_internet patterns-kde-kde_multimedia patterns-kde-kde_office patterns-kde-kde_pim patterns-kde-kde_plasma patterns-kde-kde_utilities patterns-kde-kde_utilities_opt patterns-kde-kde_yast - Add qt6-graph and qt6-webchannelquick development packages to the devel_qt6 pattern ==== plasma-browser-integration ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Fix KDEConnect property lookup in D-Bus response (kde#475004) * Adapt to renamed activities library repo * Reflect move of KActivities out of Frameworks to Plasma ==== plasma-nm5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: plasma-nm5-openconnect plasma-nm5-openvpn plasma-nm5-pptp plasma-nm5-vpnc - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma ==== plasma5-addons ==== Version update (5.27.9 -> 5.27.10) Subpackages: plasma5-addons-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma * katesessions/konsoleprofiles: do not hold profilesmodel on the stack (kde#472862) ==== plasma5-desktop ==== Version update (5.27.9 -> 5.27.10) Subpackages: plasma5-desktop-emojier - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt CI to renamed plasma-framework and kactivities * foldermodel: lift screen add/remove handling out of screenmapper (kde#467951) * Fix plasma-framework dependency * Adapt to plasma-framework moving to Plasma * Reflect move of KActivities out of Frameworks to Plasma ==== plasma5-disks ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== plasma5-integration ==== Version update (5.27.9 -> 5.27.10) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adjust to KWayland moving to Plasma ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to 5.27.10 ==== plasma5-pa ==== Version update (5.27.9 -> 5.27.10) Subpackages: plasma5-pa-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adapt to plasma-framework moving to Plasma ==== plasma5-systemmonitor ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== plasma5-thunderbolt ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== plasma5-workspace ==== Version update (5.27.9 -> 5.27.10) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-libs xembedsniproxy - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * kcm_regionandlang: support glibc style 'utf8' variant (kde#477283) * Adapt CI to renamed plasma-framework and kactivities * Unbreak Region&Lang KCM on !Linux (again) * Fixup! The variable has a different name on 5.27 * kcms/region_lanuage: Also enable GLIBC when UBUNTU_LOCALE is set * kcms/nightcolor: Fix nighcolor typos and warnings * kcms/nightcolor: Fix nightcolor with automatic location (kde#469730) * Adapt to plasma-framework moving to Plasma * Reflect move of KActivities out of Frameworks to Plasma * Update to reflect move of KUserFeedback to Frameworks * Reset KSMClient state even when logout is cancelled * kcms/region_language: Fix check for GLIBC_LOCALE. * applets/lock_logout: use PlasmaCore.IconItem * appiumtests: add lock_logouttest * appiumtests: adapt to Appium 3.0 - Drop patches, now upstream: * 0001-applets-lock_logout-use-PlasmaCore.IconItem.patch ==== polkit-kde-agent-5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - No code changes since 5.27.9 ==== powerdevil5 ==== Version update (5.27.9 -> 5.27.10) Subpackages: powerdevil5-lang - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to renamed activities library repo * backlighthelper: Implement support for the FreeBSD backlight(8) interface * Reflect move of KActivities out of Frameworks to Plasma ==== python-importlib-resources ==== Version update (6.0.1 -> 6.1.1) - update to 6.1.1: * Added missed stream argument in simple.ResourceHandle. Ref python/cpython#111775. * MultiplexedPath now expects Traversable paths. String arguments to MultiplexedPath are now deprecated. * Enabled support for resources in namespace packages in zip files. (#287) ==== raptor ==== - switch icu to use pkgconfig(icu-uc) to pick up current ICU. (jsc#PED-6193) ==== systemsettings5 ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to renamed activities library repo * ModuleView: Set default message box icon for confirmation prompt * Reflect move of KActivities out of Frameworks to Plasma ==== xdg-desktop-portal-kde ==== Version update (5.27.9 -> 5.27.10) - Update to 5.27.10 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.27.10 - Changes since 5.27.9: * Adapt to plasma-framework being renamed to libplasma * Adjust to KWayland moving to Plasma * Fix plasma-framework dependency

1 0

Only one CPU on RockPi 5B
by Felix Niederwanger 08 Dec '23

08 Dec '23

Hello! I have an interesting problem on my Radxa RockPi 5B (Rockchip RK3588) SOC: I have Leap Micro 5.5 running (Kernel 5.14.21-150500.55.36-default) and VMs cannot have more than one vCPU. When I boot a VM (here: Leap 15.5) with e.g. 2 vCPUs, I get the following error message: [ 0.003395][ T1] psci: failed to boot CPU1 (-22) [ 0.003409][ T1] CPU1: failed to boot: -22 And then after some time the system boots, but only with one CPU: # cat /proc/cpuinfo processor : 0 BogoMIPS : 48.00 Features : fp asimd evtstrm aes pmull sha1 sha2 crc32 atomics fphp asimdh p cpuid asimdrdm lrcpc dcpop asimddp CPU implementer : 0x41 CPU architecture: 8 CPU variant : 0x4 CPU part : 0xd0b CPU revision : 0 I also observe that one full core is constantly busy on the hypervisor, or more specifically by the qemu-system-aarch64 process therein. Anyone an idea what's going on here? Best, phoenix

2 5

New Arm Tumbleweed snapshot 20231206 released!
by Guillaume Gardet 07 Dec '23

07 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: glibc patterns-base permissions rubygem-rubocop (1.57.2 -> 1.58.0) === Details === ==== glibc ==== Subpackages: glibc-devel glibc-extra glibc-locale glibc-locale-base nscd - aarch64-rawmemchr-unwind.patch: aarch64: correct CFI in rawmemchr (bsc#1217445, BZ #31113) - Remove systemd from shadow and gshadow lookups (bsc#1217220) ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Remove scout: the cnf handler has been rewritten in rust and no longer relies on scout/python. ==== permissions ==== Subpackages: chkstat permissions-config - Remove dependency on /usr/bin/python3, making scripts to depends on the real python3 binary, not the link. bsc#1212476 ==== rubygem-rubocop ==== Version update (1.57.2 -> 1.58.0) - updated to version 1.58.0 [#]# 1.58.0 (2023-12-01) [#]## New features * [#12420](https://github.com/rubocop/rubocop/pull/12420): Add new `Lint/LiteralAssignmentInCondition` cop. ([@koic][]) * [#12353](https://github.com/rubocop/rubocop/issues/12353): Add new `Style/SuperWithArgsParentheses` cop. ([@koic][]) * [#12406](https://github.com/rubocop/rubocop/issues/12406): Add new `Style/ArrayFirstLast` cop. ([@fatkodima][]) [#]## Bug fixes * [#12372](https://github.com/rubocop/rubocop/issues/12372): Fix a false negative for `Lint/Debugger` when used within method arguments a `begin`...`end` block. ([@koic][]) * [#12378](https://github.com/rubocop/rubocop/pull/12378): Fix a false negative for `Style/Semicolon` when a semicolon at the beginning of a lambda block. ([@koic][]) * [#12146](https://github.com/rubocop/rubocop/issues/12146): Fix a false positive for `Lint/FloatComparison` when comparing against zero. ([@earlopain][]) * [#12404](https://github.com/rubocop/rubocop/issues/12404): Fix a false positive for `Layout/RescueEnsureAlignment` when aligned `rescue` in `do`-`end` numbered block in a method. ([@koic][]) * [#12374](https://github.com/rubocop/rubocop/issues/12374): Fix a false positive for `Layout/SpaceBeforeSemicolon` when a space between an opening lambda brace and a semicolon. ([@koic][]) * [#12326](https://github.com/rubocop/rubocop/pull/12326): Fix an error for `Style/RedundantDoubleSplatHashBraces` when method call for parenthesized no hash double double splat. ([@koic][]) * [#12361](https://github.com/rubocop/rubocop/issues/12361): Fix an incorrect autocorrect for `Naming/BlockForwarding` and `Style/ArgumentsForwarding` when autocorrection conflicts for anonymous arguments. ([@koic][]) * [#12324](https://github.com/rubocop/rubocop/issues/12324): Fix an error for `Layout/RescueEnsureAlignment` when using `rescue` in `do`...`end` block assigned to object attribute. ([@koic][]) * [#12322](https://github.com/rubocop/rubocop/issues/12322): Fix an error for `Style/CombinableLoops` when looping over the same data for the third consecutive time or more. ([@koic][]) * [#12366](https://github.com/rubocop/rubocop/pull/12366): Fix a false negative for `Layout/ExtraSpacing` when a file has exactly two comments. ([@eugeneius][]) * [#12373](https://github.com/rubocop/rubocop/issues/12373): Fix a false negative for `Lint/SymbolConversion` when using string interpolation. ([@earlopain][]) * [#12402](https://github.com/rubocop/rubocop/issues/12402): Fix false negatives for `Style/RedundantLineContinuation` when redundant line continuations for a block are used, especially without parentheses around first argument. ([@koic][]) * [#12311](https://github.com/rubocop/rubocop/issues/12311): Fix false negatives for `Style/RedundantParentheses` when parentheses around logical operator keywords in method definition. ([@koic][]) * [#12394](https://github.com/rubocop/rubocop/issues/12394): Fix false negatives for `Style/RedundantReturn` when `lambda` (`->`) ending with `return`. ([@koic][]) * [#12377](https://github.com/rubocop/rubocop/issues/12377): Fix false positives for `Lint/Void` when a collection literal that includes non-literal elements in a method definition. ([@koic][]) * [#12407](https://github.com/rubocop/rubocop/pull/12407): Fix an incorrect autocorrect for `Style/MapToHash` with `Layout/SingleLineBlockChain`. ([@koic][]) * [#12409](https://github.com/rubocop/rubocop/issues/12409): Fix an incorrect autocorrect for `Lint/SafeNavigationChain` when ordinary method chain exists after safe navigation leading dot method call. ([@koic][]) * [#12363](https://github.com/rubocop/rubocop/issues/12363): Fix incorrect rendering of HTML character entities in `HTMLFormatter` formatter. ([@koic][]) * [#12424](https://github.com/rubocop/rubocop/issues/12424): Make `Style/HashEachMethods` aware of safe navigation operator. ([@koic][]) * [#12413](https://github.com/rubocop/rubocop/issues/12413): Make `Style/InverseMethods` aware of safe navigation operator. ([@koic][]) * [#12408](https://github.com/rubocop/rubocop/pull/12408): Make `Style/MapToHash` aware of safe navigation operator. ([@koic][]) [#]## Changes * [#12328](https://github.com/rubocop/rubocop/issues/12328): Make `Style/AutoResourceCleanup` aware of `Tempfile.open`. ([@koic][]) * [#12412](https://github.com/rubocop/rubocop/issues/12412): Enhance `Lint/RedundantSafeNavigation` to handle conversion methods with defaults. ([@fatkodima][]) * [#12410](https://github.com/rubocop/rubocop/issues/12410): Enhance `Lint/SelfAssignment` to check attribute assignment and key assignment. ([@fatkodima][]) * [#12370](https://github.com/rubocop/rubocop/issues/12370): Make `Style/HashEachMethods` aware of unused block value. ([@koic][]) * [#12380](https://github.com/rubocop/rubocop/issues/12380): Make `Style/RedundantParentheses` aware of lambda or proc. ([@koic][]) * [#12421](https://github.com/rubocop/rubocop/pull/12421): Make `Style/SelfAssignment` aware of `%`, `^`, `<<`, and `>>` operators. ([@koic][]) * [#12305](https://github.com/rubocop/rubocop/pull/12305): Require `rubocop-ast` version 1.30 or greater. ([@sambostock][]) * [#12337](https://github.com/rubocop/rubocop/issues/12337): Supports `EnforcedStyleForRationalLiterals` option for `Layout/SpaceAroundOperators`. ([@koic][]) * [#12296](https://github.com/rubocop/rubocop/issues/12296): Support `RedundantRestArgumentNames`, `RedundantKeywordRestArgumentNames`, and `RedundantBlockArgumentNames` options for `Style/ArgumentsForwarding`. ([@koic][])

1 0

Re: TW on Raspi 4
by DL3VL 07 Dec '23

07 Dec '23

Hi, Am 24.11.23 um 08:27 schrieb Guillaume Gardet: [...] >> >> The JeOS image works perfectly, but it seems that all kernel versions newer than >> 5.15.0-1041 (and/or all corresponding usb libs after that release) seem to have >> the same problem with my RTL usb stick. >> Older like 5.14.21-150400.24.97 on my PC (Leap 15.4) are working flawlessly too >> with that usb device so I wanted to give Suse a try on my Raspi 4. >> >> No success, so it is a dead horse - not useful to start from scratch my project on a >> new platform :-( >> >> Thanks nevertheless ... > > We may have a look, if you open a bug report on https://bugzilla.opensuse.org with all the information you have. > Opened a bug: https://bugzilla.opensuse.org/show_bug.cgi?id=1217860 Cheers Joe

2 1

New Arm Tumbleweed snapshot 20231205 released!
by Guillaume Gardet 06 Dec '23

06 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: NetworkManager NetworkManager-openconnect NetworkManager-openvpn NetworkManager-pptp NetworkManager-vpnc cnf file-roller (43.0 -> 43.1) fwupd (1.9.9 -> 1.9.10) gjs (1.78.0 -> 1.78.1) gnome-maps (45.1 -> 45.2) gnome-shell (45.1 -> 45.2) gnome-shell-extensions (45.1 -> 45.2) graphviz haveged hwdata (0.376 -> 0.377) libadwaita (1.4.1 -> 1.4.2) libnl3 (3.8.0 -> 3.9.0) mariadb-connector-c (3.3.7 -> 3.3.8) mutter nautilus (45.1 -> 45.2) ncurses (6.4.20231125 -> 6.4.20231202) netdata policycoreutils polkit (121 -> 123) python-urllib3 (2.0.7 -> 2.1.0) qt6-base sqlite3 (3.44.0 -> 3.44.1) sudo (1.9.14p3 -> 1.9.15p2) totem tuned xdg-desktop-portal xmlsec1 zenity (3.99.90 -> 3.99.91) === Details === ==== NetworkManager ==== Subpackages: NetworkManager-bluetooth NetworkManager-pppoe NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Add python3.6-in-sle.patch: SLE still takes python 3.6 as primary system, the patch allows meson to find python 3.6 in SLE. ==== NetworkManager-openconnect ==== - Rename gnome subpackage to NetworkManager-applet-openconnect to more accurately reflect its usage - Add missing supplements: - NM and openconnect - NMA subpackage: Main package and NMA ==== NetworkManager-openvpn ==== - Rename gnome subpackage to NetworkManager-applet-openvpn to more accurately reflect its usage - Add missing supplements: - NM and openvpn - NMA subpackage: Main package and NMA ==== NetworkManager-pptp ==== - Rename gnome subpackage to NetworkManager-applet-pptp to more accurately reflect its usage - Add missing supplements: - NM and pptp - NMA subpackage: Main package and NMA ==== NetworkManager-vpnc ==== - Rename gnome subpackage to NetworkManager-applet-vpnc to more accurately reflect its usage - Add missing supplements: - NM and vpnc - NMA subpackage: main package and NMA ==== cnf ==== Subpackages: cnf-bash - Enable build on riscv64 ==== file-roller ==== Version update (43.0 -> 43.1) - Update to version 43.1: + Fixed deb package support. + Fixed wrong filename when opening a files on Google Drive. + Updated README. + Updated translations. ==== fwupd ==== Version update (1.9.9 -> 1.9.10) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.10: + This release adds the following features: - Add support for not_hardware requirements - Add support for loongarch64 - Add support for per-release priority attributes - Make USB claim retry count configurable across devices + This release fixes the following bugs: - Compare the HID report value when checking for duplicates - Consider the component priority when installing composite updates - Deploy the CCGX firmware correctly the first time - Do not export the 'main-system-firmware' and 'cpu' GUIDs - Enforce fwupd version requirements client side - Fix Genesys 'failed to get static tool info from device' error - Fix potential 'dereference before null check' in ccmx-dmc - Fix the 'already registered private FuMmDevice flag with value' warning - Fix the 'assertion backend_id != NULL failed' runtime warning - Fix Wacom USB device emulation by recording the composite phases - Generate generic request message text where possible - Hide HTTP passwords in fwupd debugging logs - Let the client know what interaction is expected - Make all critical warnings into backtraces for non-release builds - Never obsolete the wrong HSI attribute - Never show a HSI index that is impossible - Only apply fastboot plugin to modem devices supporting fastboot - Only send interactive requests when the sender is alive - Remove the now-obsolete Synaptics MST cascade device scanning - Replace the Redfish KCS user if required - Restrict mediatek-scaler devices on specific hardware only - Skip any recovery partitions when detecting ESP ==== gjs ==== Version update (1.78.0 -> 1.78.1) Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0 - Update to version 1.78.1: + Gtk template signals cause a reference cycle that is not detected + Modules from resources may get loaded twice + docs: add examples for creating cairo image surfaces + Deadlocks between GJS GC and dconf gsettings when a setting value is changed + Gtk3: Fix leak in GtkBuilder template signal connections - Drop 3cae384aaf15dec6653b1a5400032c2c2e5dc34c.patch: Fixed upstream ==== gnome-maps ==== Version update (45.1 -> 45.2) - Update to version 45.2: + Fixed triggering a extranous reload of the trip query in the case the user has already filled in query points + Updated translations. ==== gnome-shell ==== Version update (45.1 -> 45.2) Subpackages: gnome-extensions gnome-shell-calendar - Update to version 45.2: + Fix performance degradation due to repeated signal leak + Optimize application search + Fix on-screen keyboard backspace getting stuck + Fix arrow navigation in search results + Support async code in Eval() D-Bus method + Fix sliders not requesting any size + Only show prefs dialog after the extension has been loaded + Improve high-contrast styling + Fix mapping of tablet rings/strips + Add support for "version-name" field in extension metainfo + Fixed crashes + Misc. bug fixes and cleanups + Updated translations. ==== gnome-shell-extensions ==== Version update (45.1 -> 45.2) Subpackages: gnome-shell-classic gnome-shell-extensions-common - Update to version 45.2: + window-list: - Fix buttons not being clickable at the screen edge - Really fix initial preview visibility + workspace-indicator: Really fix initial preview visibility + Misc. bug fixes and cleanups ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - Require bitstream-vera-fonts for correct .png rendering by doxygen+dot ==== haveged ==== Subpackages: libhavege2 - Remove haveged-switch-root.service because it's implemented incorrectly and neither upstream don't know how to fix it (#77). On the other hand, without this service haveged will be started from scratch after switch root so it's hopefully no big deal. Also remove patch for bsc#1203079 as it's considered as a security threat because of creating fixed name file in world-writable directory. [jsc#PED-6184, bsc#1206699] * Remove - haveged-switch-root.service - haveged-switch-root.patch ==== hwdata ==== Version update (0.376 -> 0.377) - update to 0.377: * Fixed trailing spaces in pnp.ids ==== libadwaita ==== Version update (1.4.1 -> 1.4.2) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.4.2: + Really fix build with libappstream 1.0 ==== libnl3 ==== Version update (3.8.0 -> 3.9.0) Subpackages: libnl-config libnl3-200 - Update to release 3.9 * route/link: add bonding interface options set rtnl apis * route: fix memleak in rtnl_act_parse() * route/tc: avoid integer overflow in rtnl_tc_calc_cell_log() ==== mariadb-connector-c ==== Version update (3.3.7 -> 3.3.8) - Update to 3.3.8: * https://mariadb.com/kb/en/mariadb-connector-c-3-3-8-release-notes/ ==== mutter ==== - Rebase mutter-SLE-bsc984738-grab-display.patch. ==== nautilus ==== Version update (45.1 -> 45.2) Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 - Update to version 45.2: + Don't crash when reconnecting to remove server. + Actually detect unmount on some non-native mounts. + Don't crash on image properties. + Allow types and sizes in Properties to expand. + Don't corrupt toast messages. + Updated translations. ==== ncurses ==== Version update (6.4.20231125 -> 6.4.20231202) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20231202 + correct initial alignment of extended capabilities in infocmp, so that the "-u" option can be used for more than two terminal types. + improve formatting/style of manpages, changing environment variables to italics (patches by Branden Robinson). ==== netdata ==== Subpackages: netdata-plugin-cups netdata-plugin-go - XEN only exists on x86 and aarch64 - Enable freeipmi plugin everywhere ==== policycoreutils ==== Subpackages: policycoreutils-python-utils python3-policycoreutils - Re-add "Obsoletes: policycoreutils-python <= 2.6" to avoid file conflicts with /usr/share/bash-completion/completions/setsebool of older policycoreutils-python-2.6 ==== polkit ==== Version update (121 -> 123) Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0 - Update to version 123: + Highlights: - better safety with deeper restriction of the configuration files - better safety with restricting the daemon's owner under systemd - better safety with the systemd unit sandboxing - less thread races during upload of the configuration - Changes from version 122: + Highlights: - new Georgian translation - port to mozjs-102 - daemon-less build (support for e.g. flatpak deps) - re-enable of (API) documentation build - See more detailed changes in the included NEWS.md file. - Change URL and Source to new home, and drop polkit.keyring and tar.gz.sign tarball signature, no longer available. - Drop polkit-fix-pam-prefix.patch: Fixed upstream. - Add /usr/bin/dbus-daemon BuildRequires, needed for tests. Replace the dbus-1 with /usr/bin/dbus-daemon Requires. - change /usr/share/polkit-1/rules.d to 555,root:root. /usr content isn't secret anyway so this avoids non-root owned files in /usr (boo#1215482) - update 50-default.rules to allow adding more admin rules (jsc#PED-260, drop polkit-no-wheel-group.patch) ==== python-urllib3 ==== Version update (2.0.7 -> 2.1.0) - update to 2.1.0: * Removed support for the deprecated urllib3[secure] extra. * Removed support for the deprecated SecureTransport TLS implementation. * Removed support for the end-of-life Python 3.7. * Allowed loading CA certificates from memory for proxies. * Fixed decoding Gzip-encoded responses which specified ``x-gzip`` content-encoding. ==== qt6-base ==== Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 - Add upstream patch for a bug in QMimeDatabase that causes some applications to hang: * 0001-QMimeDatabase-handle-buggy-type-definitions.patch * https://code.qt.io/cgit/qt/qtbase.git/commit/?id=54656da9ace06caf4a0eeb1832… ==== sqlite3 ==== Version update (3.44.0 -> 3.44.1) Subpackages: libsqlite3-0 sqlite3-tcl - Update to release 3.44.2 * Fix a mistake in the CLI that was introduced by the fix in 3.44.1. * Fix a problem in FTS5 that was discovered during internal fuzz testing only minutes after the 3.44.1 release was tagged. * Fix incomplete assert() statements that the fuzzer discovered. * Fix a couple of harmless compiler warnings that appeared in debug builds with GCC 16. - Update to release 3.44.1 * Change the CLI so that it uses UTF-16 for console I/O on Windows. * Other obscure bug fixes. ==== sudo ==== Version update (1.9.14p3 -> 1.9.15p2) Subpackages: sudo-plugin-python - Update to 1.9.15p2: * Fixed a bug on BSD systems where sudo would not restore the terminal settings on exit if the terminal had parity enabled. GitHub issue #326. - Update to 1.9.15p1: * Fixed a bug introduced in sudo 1.9.15 that prevented LDAP-based sudoers from being able to read the ldap.conf file. GitHub issue #325. - Update to 1.9.15: * Fixed an undefined symbol problem on older versions of macOS when "intercept" or "log_subcmds" are enabled in sudoers. GitHub issue #276. * Fixed "make check" failure related to getpwent(3) wrapping on NetBSD. * Fixed the warning message for "sudo -l command" when the command is not permitted. There was a missing space between "list" and the actual command due to changes in sudo 1.9.14. * Fixed a bug where output could go to the wrong terminal if "use_pty" is enabled (the default) and the standard input, output or error is redirected to a different terminal. Bug #1056. * The visudo utility will no longer create an empty file when the specified sudoers file does not exist and the user exits the editor without making any changes. GitHub issue #294. * The AIX and Solaris sudo packages on www.sudo.ws now support "log_subcmds" and "intercept" with both 32-bit and 64-bit binaries. Previously, they only worked when running binaries with the same word size as the sudo binary. GitHub issue #289. * The sudoers source is now logged in the JSON event log. This makes it possible to tell which rule resulted in a match. * Running "sudo -ll command" now produces verbose output that includes matching rule as well as the path to the sudoers file the matching rule came from. For LDAP sudoers, the name of the matching sudoRole is printed instead. * The embedded copy of zlib has been updated to version 1.3. * The sudoers plugin has been modified to make it more resilient to ROWHAMMER attacks on authentication and policy matching. This addresses CVE-2023-42465. * The sudoers plugin now constructs the user time stamp file path name using the user-ID instead of the user name. This avoids a potential problem with user names that contain a path separator ('/') being interpreted as part of the path name. A similar issue in sudo-rs has been assigned CVE-2023-42456. * A path separator ('/') in a user, group or host name is now replaced with an underbar character ('_') when expanding escapes in @include and @includedir directives as well as the "iolog_file" and "iolog_dir" sudoers Default settings. * The "intercept_verify" sudoers option is now only applied when the "intercept" option is set in sudoers. Previously, it was also applied when "log_subcmds" was enabled. Sudo 1.9.14 contained an incorrect fix for this. Bug #1058. * Changes to terminal settings are now performed atomically, where possible. If the command is being run in a pseudo-terminal and the user's terminal is already in raw mode, sudo will not change the user's terminal settings. This prevents concurrent sudo processes from restoring the terminal settings to the wrong values. GitHub issue #312. * Reverted a change from sudo 1.9.4 that resulted in PAM session modules being called with the environment of the command to be run instead of the environment of the invoking user. GitHub issue #318. * New Indonesian translation from translationproject.org. * The sudo_logsrvd server will now raise its open file descriptor limit to the maximum allowed value when it starts up. Each connection can require up to nine open file descriptors so the default soft limit may be too low. * Better log message when rejecting a command if the "intercept" option is enabled and the "intercept_allow_setid" option is disabled. Previously, "command not allowed" would be logged and the user had no way of knowing what the actual problem was. * Sudo will now log the invoking user's environment as "submitenv" in the JSON logs. The command's environment ("runenv") is no longer logged for commands rejected by the sudoers file or an approval plugin. - Package/ship empty /etc/sudoers.d directory for admins to discover where to put their won config. - Introduce optional wheel and sudo group policies as separate packages (bsc#1203978, jsc#PED-260) - Install config files into /usr/etc and read from both location: /etc and /usr/etc (bsc#1205118) ==== totem ==== Subpackages: totem-plugins totem-video-thumbnailer - Add upstream bug fix patches: + ac2d02530d3b555e44907162be05536a5927b2a0.patch: gst: Force using newer GStreamer libva plugins + d16d9ad1d2b214996639e4f01c4515b611fb2739.patch: data: Add new canonical mime-type for AVI files ==== tuned ==== - do not package inoperable plugins (bsc#1217758) ==== xdg-desktop-portal ==== - Own the directory which packages will use for portals.conf configuration files ==== xmlsec1 ==== Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Make use of openSUSE build flags ==== zenity ==== Version update (3.99.90 -> 3.99.91) - Update to version 3.99.91: + password: - Remove spurious "Warning" heading - Only fetch username buffer if username option specified + build: Add implicit fallthrough warnings + password/msg: Handle ZENITY_TIMEOUT to be in line with other libadwaita-based dialogs + filesel: Fix exit statuses for cancel and timeout + Cleanup 'timeout' and make it work properly for all dialogs + util: Maintain default timeout exit status as 5 for backwards compat; various cleanups + text: webkit2gtk-6.0 fixes + msg: Code cleanups + Updated translations.

1 0

New Arm Tumbleweed snapshot 20231204 released!
by Guillaume Gardet 05 Dec '23

05 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ibus (1.5.28 -> 1.5.29) libguestfs (1.50.1 -> 1.51.8) libva libva-gl mariadb (11.0.2 -> 11.1.2) procmail qt6-base (6.6.0 -> 6.6.1) qt6-declarative (6.6.0 -> 6.6.1) qt6-imageformats (6.6.0 -> 6.6.1) qt6-translations (6.6.0 -> 6.6.1) qt6-wayland (6.6.0 -> 6.6.1) zlib-ng-compat (2.1.4 -> 2.1.5) === Details === ==== ibus ==== Version update (1.5.28 -> 1.5.29) Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Update version to 1.5.29 * Add DeleteSurroundingText to PostProcessKeyEvent * Add preedit D-Bus signals to PostProcessKeyEvent * Tab should not be committed by IM * Translate keycodes with CapsLock * Update org.freedesktop.ibus.gschema.xml * Implement Plasma Wayland * Distinguish Arabic XKB and Keypad XKB options * Update simple.xml with xkeyboard-config 2.39 * Fix key typing issues * Fix Emoji and Unicode issues * Fix setup dialog SEGV * Fix remote desktop issue * Enhance CI * Update translations - Drop ibus-fix-key-release.patch, merged by upstream ==== libguestfs ==== Version update (1.50.1 -> 1.51.8) Subpackages: libguestfs-appliance libguestfs-xfs libguestfs0 - Require OCaml 4.07+ - Update to version 1.51.8 * There are no upstream release notes for verion 1.51.x * Dropped the virt-dib tool * Add support for lzma and zstd compression methods. * Add --chown option for virt-customize * Add new virt-customize --tar-in operation * Various bug fixes and language translations - Drop patch contained in new tarball Omit-file--S-option-on-older-distros-that-lack-support.patch ==== libva ==== Subpackages: libva-drm2 libva-wayland2 libva-x11-2 libva2 - This includes latest version of one of the components needed for Video (processing) hardware support on Intel GPUs (bsc#1217770) ==== libva-gl ==== - This includes latest version of one of the components needed for Video (processing) hardware support on Intel GPUs (bsc#1217770) ==== mariadb ==== Version update (11.0.2 -> 11.1.2) Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Fix location of unwanted binaries (which are deleted) - Fix location in rpmlintrc - Disable LTO on ppc64le due to error - constraints: increase memory to 16G on ppc64le, 10G is no longer enough (perhaps a linker bug?) - Update list of skipped tests - Update to 11.1.2: https://mariadb.com/kb/en/mariadb-11-1-2-release-notes/ https://mariadb.com/kb/en/mariadb-11-1-2-changelog/ * fixes for the following security vulnerabilities: 11.1.2: none - Refresh list of skipped tests - Workaround build failure with fmt-10: require fmt < 10 - Update to 11.0.3: * release notes and changelog: https://mariadb.com/kb/en/mariadb-11-0-3-release-notes/ https://mariadb.com/kb/en/mariadb-11-0-3-changelog/ * fixes for the following security vulnerabilities: 11.0.3: none ==== procmail ==== - Update reproducible.patch to drop more benchmarking (boo#1041534) ==== qt6-base ==== Version update (6.6.0 -> 6.6.1) Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 - Update to 6.6.1: * https://www.qt.io/blog/qt-6.6.1-released - Drop patches, merged upstream: * 0001-xcb-replace-a-warning-with-debug-info-in-qxcbconnect.patch * 0001-a11y-fix-race-condition-on-atspi-startup-on-Wayland.patch * 0001-xkb-fix-build-with-libxkbcommon-1.6.0-and-later.patch ==== qt6-declarative ==== Version update (6.6.0 -> 6.6.1) Subpackages: libQt6LabsAnimation6 libQt6LabsFolderListModel6 libQt6LabsQmlModels6 libQt6LabsSettings6 libQt6LabsSharedImage6 libQt6LabsWavefrontMesh6 libQt6Qml6 libQt6QmlCore6 libQt6QmlLocalStorage6 libQt6QmlModels6 libQt6QmlWorkerScript6 libQt6QmlXmlListModel6 libQt6Quick6 libQt6QuickControls2-6 libQt6QuickControls2Impl6 libQt6QuickDialogs2-6 libQt6QuickDialogs2QuickImpl6 libQt6QuickDialogs2Utils6 libQt6QuickEffects6 libQt6QuickLayouts6 libQt6QuickParticles6 libQt6QuickShapes6 libQt6QuickTemplates2-6 libQt6QuickTest6 qt6-declarative-imports - Update to 6.6.1: * https://www.qt.io/blog/qt-6.6.1-released ==== qt6-imageformats ==== Version update (6.6.0 -> 6.6.1) - Update to 6.6.1: * https://www.qt.io/blog/qt-6.6.1-released ==== qt6-translations ==== Version update (6.6.0 -> 6.6.1) - Update to 6.6.1: * https://www.qt.io/blog/qt-6.6.1-released ==== qt6-wayland ==== Version update (6.6.0 -> 6.6.1) Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Update to 6.6.1: * https://www.qt.io/blog/qt-6.6.1-released ==== zlib-ng-compat ==== Version update (2.1.4 -> 2.1.5) - update to 2.1.5: * This is a hotfix release, fixing an issue where certain applications would fail with a checksum error during inflate (decompression). * Fix bug with Z_FINISH handling with no window. #1602 * This was detected by libgit2 unit tests Issue #1600 * Added unit test for inflate with Z_FINISH and no window #1603 * Fix CMake handling of CMAKE_INSTALL_INCLUDEDIR #1593 * Fix pkgconfig support for WITH_GZFILEOP #1595 #1598 * Github Actions update #1590 * Readme Update #1594

1 0

New Arm Tumbleweed snapshot 20231129 released!
by Guillaume Gardet 01 Dec '23

01 Dec '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: NetworkManager NetworkManager-applet PackageKit (1.2.5 -> 1.2.8) PackageKit-branding-openSUSE accountsservice avahi avahi-glib2 dracut (059+suse.522.g0fc72191 -> 059+suse.530.gba7b6a35) evince gcr gcr3 gdm glib2 gnome-control-center (45.1+14 -> 45.1+22) gnome-keyring gnome-menus-branding-openSUSE gnome-music gnome-session gnome-settings-daemon gnome-shell grub2 gsettings-desktop-schemas gstreamer-plugins-bad gstreamer-plugins-base gstreamer-plugins-ugly gtk2 gtk2-engines gtk2-metatheme-sonar gtk3 gvfs kernel-firmware (20231107 -> 20231127) kio-extras5 libcanberra libdrm libsecret libsemanage libxslt (1.1.38 -> 1.1.39) mozjs115 mutter pcsc-lite (2.0.0 -> 2.0.1) polkit-gnome python-Pygments (2.16.1 -> 2.17.2) python-SQLAlchemy (2.0.21 -> 2.0.23) python-argcomplete (3.1.4 -> 3.1.6) python-certifi (2023.7.22 -> 2023.11.17) python-cryptography (41.0.5 -> 41.0.7) python-gevent (23.9.0 -> 23.9.1) python-greenlet (3.0.0 -> 3.0.1) python-httpx (0.25.0 -> 0.25.2) python-idna (3.4 -> 3.6) python-mysqlclient (2.1.1 -> 2.2.0) python-pyOpenSSL (23.2.0 -> 23.3.0) python-pyasn1 (0.5.0 -> 0.5.1) python-pycryptodome (3.18.0 -> 3.19.0) python-reportlab (4.0.5 -> 4.0.7) python-simplejson (3.19.1 -> 3.19.2) python-zipp (3.15.0 -> 3.17.0) rubygem-autoprefixer-rails (10.4.15.0 -> 10.4.16.0) rubygem-bcrypt (3.1.19 -> 3.1.20) rubygem-debase-ruby_core_source (3.2.2 -> 3.2.3) rubygem-hoe (4.0.5 -> 4.1.0) rubygem-mustermann-grape (1.0.2 -> 1.1.0) rubygem-nio4r (2.5.9 -> 2.6.1) rubygem-nokogiri (1.15.4 -> 1.15.5) rubygem-pkg-config (1.5.5 -> 1.5.6) rubygem-raindrops (0.20.0 -> 0.20.1) rubygem-spring (4.1.2 -> 4.1.3) rubygem-sshkit (1.21.5 -> 1.21.6) rubygem-unf_ext (0.0.8.2 -> 0.0.9.1) rubygem-xdg (7.0.2 -> 7.1.3) rubygem-xmlhash (1.3.8 -> 1.3.9) system-config-printer thin-provisioning-tools tigervnc tracker-miners util-linux util-linux-systemd virt-manager vte webkit2gtk3 webkit2gtk3-soup2 xdg-desktop-portal (1.18.1 -> 1.18.2) xdg-desktop-portal-gnome (45.0 -> 45.1) xfce4-dict (0.8.5 -> 0.8.6) yast2-core (5.0.0 -> 5.0.1) zenity (3.99.2 -> 3.99.90) === Details === ==== NetworkManager ==== Subpackages: NetworkManager-bluetooth NetworkManager-pppoe NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Use %patch -p N instead of deprecated %patchN. ==== NetworkManager-applet ==== Subpackages: NetworkManager-connection-editor - Use %autosetup instead of %setup/%patch. ==== PackageKit ==== Version update (1.2.5 -> 1.2.8) Subpackages: PackageKit-backend-zypp PackageKit-gstreamer-plugin PackageKit-gtk3-module libpackagekit-glib2-18 typelib-1_0-PackageKitGlib-1_0 - Update to version 1.2.8: + Libraries: - offline-updates: . Make package update list deduplication more efficient. . Add only one entry per package to 'offline-update-competed' file. - PkClient: Replace the GSimpleAsyncResult with the GTask API. - pk-client: . Fix use-before-set of PkProgress on cancellation. . Move cancellable disconnect to dispose. . Rework refcounting for PkClientState. + Backends: Changes to apt, dnf, PiSi and BSD backends. - Changes from version 1.2.7: + New Features: - pkclient: Add an option to count download size with dependencies. - pk-transaction: Add support for getting the RemainingTime property. + Backends: - zypp: Fix ambiguous reference to 'filesystem' class. - Changes to dnf, apt, alpm backends. - Changes from version 1.2.6: + New Features: - Expose transaction sender as read-only property on the bus. - pkmon: Display transaction sender binary name in log. - pk-transaction: Add Packages signal. - pk-transaction: Combine some D-Bus PropertiesChanged signal emissions. - pk-transaction: Add UpdateDetails signal. + Backends: - zypp: . implement upgrade-system method. . Clean up trailing whitespaces. . Avoid statuReset() on locked packages. . restore pool status after simulating an update. . Disable upgrade-system support in SLE. . build the pool before calling is_tumbleweed(). . update libzypp dependency version. . Don't refresh repos before searching. . Check if packages are locked before removing. . add repository data in package id. . Remove trailing whitespace. + Changes to alpm, aptcc, apt, and nix backends. - Rebase patches: + PackageKit-dnf-Add-support-for-AppStream-repodata-basenames-use.patch + PackageKit-dynamic-export.patch + PackageKit-zypp-disable-upgrade-system-in-sle.patch - Drop upstream fixed patches: + PackageKit-zypp-add-repo-in-packageid.patch + PackageKit-zypp-add-upgrade-system.patch + PackageKit-zypp-avoid-statuReset.patch + PackageKit-zypp-dont-refresh-before-searching.patch + PackageKit-zypp-dont-remove-locked-packages.patch + PackageKit-zypp-fix-ambiguous-filesystem-reference.patch + PackageKit-zypp-fix-is-tumbleweed-check.patch + PackageKit-zypp-restore-pool-status-after-simulating-update.patch + PackageKit-zypp-update-libzypp-dependency-version.patch ==== PackageKit-branding-openSUSE ==== - Use %patch -p N instead of deprecated %patchN. - Rebase PackageKit-branding-vendor.patch to apply against PackageKit 1.2.7 and later. ==== accountsservice ==== Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0 - Use %patch -p N instead of deprecated %patchN. ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - Reformat avahi-gacdir.patch to apply as patch -p1. - Use %autopatch instead of deprecated %patchN format. ==== avahi-glib2 ==== Subpackages: libavahi-glib1 libavahi-gobject0 libavahi-ui-gtk3-0 - Reformat avahi-gacdir.patch to apply as patch -p1. - Use %autopatch instead of deprecated %patchN format. ==== dracut ==== Version update (059+suse.522.g0fc72191 -> 059+suse.530.gba7b6a35) - Update to version 059+suse.530.gba7b6a35: * fix(dracut.sh): skip README for AMD microcode generation (bsc#1217083) * fix(90kernel-modules): add intel_lpss_pci for MacBook Pro 2017 * feat(kernel-modules): install SPMI modules on ARM/RISC-V * feat(kernel-modules): add Qualcomm IPC router to enable USB * fix(pcsc): add --disable-polkit to pcscd.service * fix(pcsc): add opensc load module file ==== evince ==== Subpackages: evince-plugin-comicsdocument evince-plugin-djvudocument evince-plugin-dvidocument evince-plugin-pdfdocument evince-plugin-tiffdocument evince-plugin-xpsdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Use %patch -P N instead of deprecated %patchN. ==== gcr ==== Subpackages: gcr-ssh-agent gcr-ssh-askpass gcr-viewer libgck-2-2 libgcr-4-4 typelib-1_0-Gck-2 typelib-1_0-Gcr-4 - Use %patch -p N instead of deprecated %patchN. ==== gcr3 ==== Subpackages: gcr3-data gcr3-prompter gcr3-ssh-agent gcr3-ssh-askpass libgck-1-0 libgcr-3-1 - Use %patch -p N instead of deprecated %patchN. ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Use %patch -p N instead of deprecated %patchN. ==== glib2 ==== Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 - Use %autosetup instead of %setup/%patch. ==== gnome-control-center ==== Version update (45.1+14 -> 45.1+22) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Use %patch -p N instead of deprecated %patchN. - Update to version 45.1+22: + apps: Fix status page glitch on initialization + po: Fix missing closing tag in pt_BR locale + background: Improve preview performance + applications: Fix File & Link Associations UI + Updated translations. ==== gnome-keyring ==== Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring - Use %patch -p N instead of deprecated %patchN. ==== gnome-menus-branding-openSUSE ==== - Use %patch -p N instead of deprecated %patchN. ==== gnome-music ==== - Use %patch -P N instead of deprecated %patchN. ==== gnome-session ==== Subpackages: gnome-session-core gnome-session-default-session gnome-session-wayland - Use %patch -p N instead of deprecated %patchN. ==== gnome-settings-daemon ==== - Use %patch -p N instead of deprecated %patchN. - Add a059909d62da0c11774f1089d02937699fabf150.patch: power: Fix enum mismatch warning - Add 41d0dc1db4d75c37ba67fe903105b4e162d42f1a.patch: power: Fix uninitialised variable warning - Renumber patches, ensure we have a patch0 when upstream patches are available in future release. ==== gnome-shell ==== Subpackages: gnome-extensions gnome-shell-calendar - Use %patch -p N instead of deprecated %patchN. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix unattended boot with TPM2 allows downgrading kernel and rootfs, also enhancing the overall security posture (bsc#1216680) * 0001-Improve-TPM-key-protection-on-boot-interruptions.patch * 0002-Restrict-file-access-on-cryptodisk-print.patch * 0003-Restrict-ls-and-auto-file-completion-on-cryptodisk-p.patch * 0004-Key-revocation-on-out-of-bound-file-access.patch - grub2.spec: Fix openQA test failure in SLE-15-SP6 due to missing font in memdisk ==== gsettings-desktop-schemas ==== - Use %autosetup instead of %setup/%patch. ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Use %patch -p N instead of deprecated %patchN. ==== gstreamer-plugins-base ==== Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Use %autosetup instead of %setup/%patch. ==== gstreamer-plugins-ugly ==== - Move libgstasf plugin from BUILD_ORIG to main package, stop passing asfdemux=disabled to meson setup. ==== gtk2 ==== Subpackages: gtk2-data gtk2-immodule-amharic gtk2-immodule-inuktitut gtk2-immodule-thai gtk2-immodule-tigrigna gtk2-immodule-vietnamese gtk2-tools libgtk-2_0-0 - Use %patch -p N instead of deprecated %patchN. ==== gtk2-engines ==== Subpackages: gtk2-engine-clearlooks gtk2-engine-crux gtk2-engine-glide gtk2-engine-hcengine gtk2-engine-industrial gtk2-engine-mist gtk2-engine-redmond95 gtk2-engine-thinice gtk2-theme-clearlooks gtk2-theme-crux gtk2-theme-industrial gtk2-theme-mist gtk2-theme-redmond95 gtk2-theme-thinice - Use %autosetup instead of %setup/%patch. - Fix baselibs.conf: reference correct name of hcengine. ==== gtk2-metatheme-sonar ==== Subpackages: metatheme-sonar-common sonar-icon-theme - Use %patch -p N instead of deprecated %patchN. ==== gtk3 ==== Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Use %patch -p N instead of deprecated %patchN. ==== gvfs ==== Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse - Use %patch -p N instead of deprecated %patchN. ==== kernel-firmware ==== Version update (20231107 -> 20231127) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20231127 (git commit 4124f8f928d5): * Make rdfind optional * ice: update ice DDP wireless_edge package to 1.3.13.0 * linux-firmware: update firmware for mediatek bluetooth chip (MT7922) * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: update firmware for MT7921 WiFi device * Makefile, copy-firmware: Use portable "command -v" to detect installed programs * amdgpu: update DMCUB firmware to 0.0.194.0 for DCN321 and DCN32 * powervr: add firmware for Imagination Technologies AXE-1-16M GPU * ice: update ice DDP comms package to 1.3.45.0 * ice: update ice DDP package to 1.3.35.0 * mediatek: Remove an unused packed library * amdgpu: update DMCUB firmware to 0.0.193.0 for DCN31 and DCN314 - Drop obsoleted copy-file-skip-rdfind.patch; use --ignore-duplicates - Update to version 20231120 (git commit 9552083a783e): * mediatek: Sync shared memory structure changes * Intel Bluetooth: Update firmware file for Intel Bluetooth BE200 * i915: Update MTL DMC to v2.19 * Make email replies more resilient * Try both utf-8 and windows-1252 for decoding email - Update to version 20231116 (git commit 6723a8d90923): * iwlwifi: fix for the new FWs from core83-55 release * Enable deb and rpm builds on tags * linux-firmware: Add firmware for Cirrus CS35L41 on HP G11 Laptops * linux-firmware: Add firmware for Cirrus CS35L41 on 2024 ASUS Zenbook Laptops - Update to version 20231115 (git commit a07fd0b96b5a): * iwlwifi: add new FWs from core83-55 release * iwlwifi: update cc/Qu/QuZ firmwares for core83-55 release * Add a workaround for gitlab.freedesktop.org pull requests * Add extra debugging output when processing pull requests * Process pull requets directly from mbox * linux-firmware: add firmware for mt7988 internal 2.5G ethernet phy * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX101 * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX203 * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX211 * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX101 * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX101 * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX203 * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX203 * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX211 * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX211 * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX210 - Update to version 20231110 (git commit 74158e7ac86d): * amdgpu: DMCUB updates for various AMDGPU ASICs * Ensure rdfind is installed * Add checks for destination directory being specified * Fix symlink creation for some files * Fix classification of some pull requests * nvidia: add GSP-RM version 535.113.01 firmware images - Skip rdfind (not included in our distro as default): copy-file-skip-rdfind.patch - Fix make-files.sh to handle symlinked directories ==== kio-extras5 ==== Subpackages: libkioarchive5 - Add missing BuildRequires again, they got removed for some reason (boo#1211933) - Mention all plugins in %files explicitly ==== libcanberra ==== Subpackages: canberra-gtk-play libcanberra-gtk-module-common libcanberra-gtk0 libcanberra-gtk2-module libcanberra-gtk3-0 libcanberra-gtk3-module libcanberra0 - Use %autosetup instead of %setup/%patch. ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - adjusted n_libdrm-drop-valgrind-dep-generic.patch, n_libdrm-drop-valgrind-dep-intel.patch to fix build on sle15-sp6 ==== libsecret ==== Subpackages: libsecret-1-0 typelib-1_0-Secret-1 - Use %patch -p N instead of deprecated %patchN. ==== libsemanage ==== Subpackages: libsemanage-conf libsemanage-migrate-store libsemanage2 - Remove dependency on /usr/bin/python3, making scripts to depends on the real python3 binary, not the link. bsc#1212476 ==== libxslt ==== Version update (1.1.38 -> 1.1.39) Subpackages: libexslt0 libxslt-tools libxslt1 - Update to version 1.1.39: * Bug fixes: extensions: Don't search imports for extension prefixes * Improvements: - transform: Check maximum depth when processing default templates - build: . Add more missing include . Add missing includes - python: Don't set deprecated global - imports: Limit nesting depth - extensions: Report top-level elements in xsltDebugDumpExtensions - Add extern "C" { } block to xsltlocale.h * Portability: - python: Make it compatible with python3.12 - date: . Fix check for localtime_s . Fix check for gmtime_s * Build systems: - pkg-config files include cflags for static builds - Handle NOCONFIG case when setting locations from CMake target properties - autotools: Make xslt-config executable * Tests: - tests: Structured error handler now passes a const xmlError - python: Fix tests on MinGW - fuzz: Fix xmlFuzzEntityLoader after recent libxml2 changes ==== mozjs115 ==== - Use %patch -p N instead of deprecated %patchN. ==== mutter ==== - Use %patch -p N instead of deprecated %patchN. ==== pcsc-lite ==== Version update (2.0.0 -> 2.0.1) Subpackages: libpcsclite1 - version 2.0.1 * SCardConnect(): return SCARD_W_SECURITY_VIOLATION when needed (polkit) * SCardCancel(): return SCARD_S_SUCCESS even if the client already finished * polkit is enabled by default * libpcscspy: fix a crash with NULL pointers * Doxygen: fix SCardBeginTransaction() documentation * fix pcscd internal thread safety issues (clang -fsanitize=thread) * Some other minor improvements ==== polkit-gnome ==== - Use %autosetup instead of %setup/%patch. ==== python-Pygments ==== Version update (2.16.1 -> 2.17.2) - update to 2.17.2: * Fix a packaging issue on macOS * Updated lexers: * TOML: Fix bug making lexing of single-quoted strings too eager * Cypher: fix comment matching, add missing keywords * Fortran: add ``elseif`` keyword * Lean: make it available as ``lean3``, in preparation for * a possible switch to ``lean`` highlighting as Lean 4 * JSON: add MIME types and file extensions for several line- delimited JSON formats * Nix: many improvements * OCaml: Add ``and`` keyword, remove ``value`` from keywords * Python: add ``starlark`` and ``bazel`` aliases * Snowball: Treat ``len`` like ``size`` * Spice: add ``panic`` keyword and ``->`` operator * squid.conf: fix catastrophic backtracking * TOML: rewritten, with many fixes * Turtle: support blank nodes * Wikitext: fix erroneous highlighting of LanguageConverter markup * CMake: support ``[=[ bracketed arguments ]=]``` * Fix ctags support and tests * Include ``Lexer.add_filter`` in the documentation * Add a ``Lean3Lexer`` alias * The ``pygments.styles`` module contains a new ``STYLES`` variable with a dictionary of built-in styles. The old ``STYLE_MAP`` variable, which uses a different format, is kept for backwards compatibility. * On Windows, add a new installation extra (``windows- terminal``) which pulls in dependencies for colored console output. See :doc:`cmdline` for more details. * Support more file types in ``autopygmentize`` script * Change color of numbers in ``rrt`` style * Fix error when trying to look up plugin formatters by file extension of the output format * Use Hatchling as a build backend instead of setuptools. * This change is transparent to most users. Distribution packagers who build without build isolation need to add hatchling as a build dependency and remove setuptools. People downloading source distributions and wheels from PyPI directly should note that they now have ``pygments`` in their file names instead of ``Pygments``. * Improve the test framework to also check for lost tokens when processing the snippets and example files * Improve the *Dracula* style definition to make it easier to maintain ==== python-SQLAlchemy ==== Version update (2.0.21 -> 2.0.23) - update to 2.0.23: * https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.23 * https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.22 ==== python-argcomplete ==== Version update (3.1.4 -> 3.1.6) - update to 3.1.6: * Respect user choice in activate-global-python-argcomplete * Escape colon in zsh completions. Fixes #456 * Call \_default as a fallback in zsh global completion ==== python-certifi ==== Version update (2023.7.22 -> 2023.11.17) - update to 2023.11.17: Added certs: * Subject: CN=TrustAsia Global Root CA G3 O=TrustAsia Technologies, Inc. * Subject: CN=TrustAsia Global Root CA G4 O=TrustAsia Technologies, Inc. * Subject: CN=CommScope Public Trust ECC Root-01 O=CommScope * Subject: CN=CommScope Public Trust ECC Root-02 O=CommScope * Subject: CN=CommScope Public Trust RSA Root-01 O=CommScope * Subject: CN=CommScope Public Trust RSA Root-02 O=CommScope Removed certs: * Subject: CN=Autoridad de Certificacion Firmaprofesional CIF A62634068 ==== python-cryptography ==== Version update (41.0.5 -> 41.0.7) - update to 41.0.7 (CVE-2023-49083, bsc#1217592): * Fixed compilation when using LibreSSL 3.8.2. * Fixed a null-pointer-dereference and segfault that could occur when loading certificates from a PKCS#7 bundle. Credit to **pkuzco** for reporting the issue. **CVE-2023-49083** ==== python-gevent ==== Version update (23.9.0 -> 23.9.1) - update to 23.9.1: * Require greenlet 3.0 on Python 3.11 and Python 3.12; greenlet 3.0 is recommended for all platforms. ==== python-greenlet ==== Version update (3.0.0 -> 3.0.1) - update to 3.0.1: * Fix a potential crash on Python 3.8 at interpreter shutdown time. This was a regression from earlier 3.0.x releases. ==== python-httpx ==== Version update (0.25.0 -> 0.25.2) - update to 0.25.2: * Add missing type hints to few `__init__()` methods. (#2938) * Add support for Python 3.12. (#2854) * Add support for httpcore 1.0 (#2885) * Raise `ValueError` on `Response.encoding` being set after `Response.text` has been accessed. (#2852) - drop newer-httpcore.patch (upstream) ==== python-idna ==== Version update (3.4 -> 3.6) - update to 3.6: * Fix regression to include tests in source distribution. * Update to Unicode 15.1.0 * String codec name is now "idna2008" as overriding the system codec "idna" was not working. * Fix typing error for codec encoding * "setup.cfg" has been added for this release due to some downstream * lack of adherence to PEP 517. Should be removed in a future release so please prepare accordingly. * Removed reliance on a symlink for the "idna-data" tool to comport with PEP 517 and the Python Packaging User Guide for sdist archives. * Added security reporting protocol for project ==== python-mysqlclient ==== Version update (2.1.1 -> 2.2.0) - update to 2.2.0: * Use ``pkg-config`` instead of ``mysql_config`` (#586) * Raise ProgrammingError on -inf (#557) * Raise IntegrityError for ER_BAD_NULL. (#579) * Windows: Use MariaDB Connector/C 3.3.4 (#585) * Use pkg-config instead of mysql_config (#586) * Add collation option (#564) * Drop Python 3.7 support (#593) * Use pyproject.toml for build (#598) * Add Cursor.mogrify (#477) * Partial support of ssl_mode option with mariadbclient (#475) * Discard remaining results without creating Python objects * Fix executemany with binary prefix (#605) ==== python-pyOpenSSL ==== Version update (23.2.0 -> 23.3.0) - update to 23.3.0: * Dropped support for Python 3.6. * The minimum ``cryptography`` version is now 41.0.5. * Removed ``OpenSSL.crypto.loads_pkcs7`` and ``OpenSSL.crypto.loads_pkcs12`` which had been deprecated for 3 years. * Added ``OpenSSL.SSL.OP_LEGACY_SERVER_CONNECT`` to allow legacy insecure renegotiation between OpenSSL and unpatched servers. * Deprecated ``OpenSSL.crypto.PKCS12`` (which was intended to have been deprecated at the same time as ``OpenSSL.crypto.load_pkcs12``). * Deprecated ``OpenSSL.crypto.NetscapeSPKI``. * Deprecated ``OpenSSL.crypto.CRL`` * Deprecated ``OpenSSL.crypto.Revoked`` * Deprecated ``OpenSSL.crypto.load_crl`` and ``OpenSSL.crypto.dump_crl`` * Deprecated ``OpenSSL.crypto.sign`` and ``OpenSSL.crypto.verify`` * Deprecated ``OpenSSL.crypto.X509Extension`` * Changed ``OpenSSL.crypto.X509Store.add_crl`` to also accept * ``cryptography``'s ``x509.CertificateRevocationList`` arguments in addition * to the now deprecated ``OpenSSL.crypto.CRL`` arguments. * Fixed ``test_set_default_verify_paths`` test so that it is skipped if no network connection is available. ==== python-pyasn1 ==== Version update (0.5.0 -> 0.5.1) - update to 0.5.1: * Added support for PyPy 3.10 and Python 3.12 * Updated RTD configuration to include a dummy index.rst redirecting to contents.html, ensuring compatibility with third-party documentation and search indexes. * Fixed the API breakage wih decoder.decode(substrateFun=...). * A substrateFun passed to ``decoder.decode()`` can now be either v0.4 Non-Streaming or v0.5 Streaming. pyasn1 will detect and handle both cases transparently. * A substrateFun passed to one of the new streaming decoders is * still expected to be v0.5 Streaming only. ==== python-pycryptodome ==== Version update (3.18.0 -> 3.19.0) - update to 3.19.0: * The ``update()`` methods of TupleHash128 and TupleHash256 objects can now hash multiple items (byte strings) at once. * Added support for ECDH, with ``Crypto.Protocol.DH``. * GH#754: due to a bug in ``cffi``, do not use it on Windows with Python 3.12+. ==== python-reportlab ==== Version update (4.0.5 -> 4.0.7) - update to 4.0.7: * allow testutils.makeSuiteForClasses to specify a prefix for test method names * SpiderChart can have direct draw flowable labels * fix and improve tests for python -mreportlab.lib.rl_accel * fix barchart 3D stacked case & fix barchart valueAxis reverseDirection behaviour. * fix importlib usage in reportlab init, reported by Frank Epperlein and others * add value axes extraMinMaxValues as aid to parallel axes * add styles str2alignment maps left/right/center/centre/justify etc * fix validators.isSubclassOf * test ddfStyle as instance first in textlabels.py * allow Pie Doughnut classes to control label class - drop importlib.patch (upstream) ==== python-simplejson ==== Version update (3.19.1 -> 3.19.2) - update to 3.19.2: * Updated test & build matrix to include Python 3.12 ==== python-zipp ==== Version update (3.15.0 -> 3.17.0) - update to 3.17.0: * Added ``CompleteDirs.inject`` classmethod to make available for use elsewhere. * Avoid matching path separators for '?' in glob. * In ``Path.match``, Windows path separators are no longer honored. The fact that they were was incidental and never supported. (#92) * Fixed name/suffix/suffixes/stem operations when no filename is present and the Path is not at the root of the zipfile. (#96) * Reworked glob utilizing the namelist directly. (#101) * Replaced the ``fnmatch.translate`` with a fresh glob-to-regex translator for more correct matching behavior. (#98) * Require Python 3.8 or later. ==== rubygem-autoprefixer-rails ==== Version update (10.4.15.0 -> 10.4.16.0) - ## 10.4.16.0 * Improved performance (by Romain Menke). ==== rubygem-bcrypt ==== Version update (3.1.19 -> 3.1.20) - 3.1.20 Nov 17 2023 - Limit packaged files -- decrease gem filesize by ~28% [GH #272 by @pusewicz] ==== rubygem-debase-ruby_core_source ==== Version update (3.2.2 -> 3.2.3) - ## [3.2.3](https://github.com/ruby-debug/debase-ruby_core_source/compare/3.2.3.… * ruby-3.3.0-preview3 sources added * ruby-3.3.0-preview2 sources removed ==== rubygem-hoe ==== Version update (4.0.5 -> 4.1.0) - New upstream release 4.1.0, see bundled History.rdoc ==== rubygem-mustermann-grape ==== Version update (1.0.2 -> 1.1.0) - New upstream release 1.1.0, see bundled CHANGELOG.md ==== rubygem-nio4r ==== Version update (2.5.9 -> 2.6.1) - New upstream release 2.6.1, see bundled changes.md ==== rubygem-nokogiri ==== Version update (1.15.4 -> 1.15.5) - 1.15.5: [#]# 1.15.5 / 2023-11-17 [#]## Dependencies * [CRuby] Vendored libxml2 is updated to v2.11.6 from v2.11.5. For details please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.6 * [CRuby] Vendored libxslt is updated to v1.1.39 from v1.1.38. For details please see https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.39 ==== rubygem-pkg-config ==== Version update (1.5.5 -> 1.5.6) - New upstream release 1.5.6, see bundled NEWS ==== rubygem-raindrops ==== Version update (0.20.0 -> 0.20.1) - New upstream release 0.20.1, see bundled NEWS ==== rubygem-spring ==== Version update (4.1.2 -> 4.1.3) - New upstream release 4.1.3, no changelog found ==== rubygem-sshkit ==== Version update (1.21.5 -> 1.21.6) - New upstream release 1.21.6, see bundled CHANGELOG.md ==== rubygem-unf_ext ==== Version update (0.0.8.2 -> 0.0.9.1) - # Changelog [#]# [0.0.9.1](https://github.com/knu/ruby-unf_ext/tree/v0.0.9.1) (2023-11-16) [Full Changelog](https://github.com/knu/ruby-unf_ext/compare/v0.0.9...v0.0.9.1) - Fix use of designated initializers. [\#75](https://github.com/knu/ruby-unf_ext/pull/75) ([igorpeshansky](https://github.com/igorpeshansky)) [#]# [0.0.9](https://github.com/knu/ruby-unf_ext/tree/v0.0.9) (2023-11-11) [Full Changelog](https://github.com/knu/ruby-unf_ext/compare/v0.0.8.2...v0.0.9) - Use the newer TypedData extension API [\#72](https://github.com/knu/ruby-unf_ext/pull/72) ([casperisfine](https://github.com/casperisfine)) - Update Actions - updates OS's, add Ruby 3,2, etc [\#71](https://github.com/knu/ruby-unf_ext/pull/71) ([MSP-Greg](https://github.com/MSP-Greg)) - Add cross compilation for Ruby 3.2 [\#69](https://github.com/knu/ruby-unf_ext/pull/69) ([johnnyshields](https://github.com/johnnyshields)) ==== rubygem-xdg ==== Version update (7.0.2 -> 7.1.3) - New upstream release 7.1.3, no changelog found ==== rubygem-xmlhash ==== Version update (1.3.8 -> 1.3.9) - New upstream release 1.3.9, see bundled History.txt ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-dbus-service udev-configure-printer - Use %autosetup -p1 instead of multiple %patch lines. Allows us to get rid of deprecated %patchN. ==== thin-provisioning-tools ==== - Update vendored dependencies ==== tigervnc ==== Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module - introduced n_dont_sign_java_client.patch and changed n_tigervnc-date-time.patch to allow the build to be reproducible (bsc#1208478): * Dont sign the Java client so the jar file won't contain a signed file with a variable timestamp. * The signing was necessary for accessing the system clipboard when the Java client runs as an applet. (This shouldn't harm due to the deprecation of Java applets was done in version 9). ==== tracker-miners ==== Subpackages: tracker-miner-files - Use %patch -p N instead of deprecated %patchN. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Remove /etc/filesystem, the content is outdated (/etc cleanup, [jsc#PED-240]) - Add libuuid-avoid-truncate-clocks.txt-to-improve-performance.patch ==== util-linux-systemd ==== - Remove /etc/filesystem, the content is outdated (/etc cleanup, [jsc#PED-240]) - Add libuuid-avoid-truncate-clocks.txt-to-improve-performance.patch ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Upstream bug fixes (bsc#1027942) (jsc#PED-2104) 001-cli-disk-Add-driver.metadata_cache-options.patch 002-tests-cli-Fix-test-output-after-previous-commit.patch 003-fsdetails-Fix-an-error-with-source.socket-of-virtiofs.patch 004-cli-Drop-unnecessary-disk-prop-aliases.patch 005-tests-testdriver-Add-filesystem-socket-example.patch 006-virtinstall-split-no_install-conditional-apart-to-track-code-coverage.patch 007-virtinstall-fix-regression-with-boot-and-no-install-method.patch 008-tests-Add-a-compat-check-for-linux2020-in-amd-sev-test-case.patch 009-cli-cpu-Add-maxphysaddr.mode-bits-options.patch 010-virt-install-help-required-options-are-wrong.patch 011-cloner-Sync-uuid-and-sysinfo-system-uuid.patch 012-virt-install-unattended-and-cloud-init-conflict.patch 013-virt-install-Reuse-cli.fail_conflicting.patch 014-cli-support-boot-loader.stateless-.patch 015-diskbackend-Drop-support-for-sheepdog.patch 016-Fix-pylint-pycodestyle-warnings-with-latest-versions.patch 017-tests-cpio-set-owner-to-00.patch 018-addhardware-Fix-backtrace-when-controller.index-is-None.patch 019-Clean-up-FileChooser-usage-a-bit.patch 020-guest-Query-availability-of-usb-redirdevs-in-domcaps.patch 021-guest-Query-availability-of-spicevmc-channels-in-domcaps.patch 022-tests-Add-domcaps-coverage-for-usb-redir-spicevmc-channel-checks.patch 023-tests-Update-to-latest-kvm-domcaps.patch 024-progress-Fix-showing-correct-final-total.patch 025-virtinstall-Fix-the-allocating-disk-size-printed-by-the-progress-bar.patch 026-virtinstall-Hide-total_size-in-the-progress-bar-if-it-doesnt-need.patch 027-asyncjob-Fix-backtrace-when-no-cursor-theme-installed.patch 029-asyncjob-Remove-unused-import.patch 030-Packit-initial-enablement.patch 031-virt-install-Recommend-boot-uefi.patch 032-virt-install-Document-Secure-Boot-setups.patch 033-cloner-clone-serial-files.patch 034-tests-cli-test-serial-file-clone.patch 035-man-virt-install-Add-a-note-about-different-behavior-of-boot-on-s390x.patch 036-tests-uitests-Fix-window-reposition-on-f38.patch 037-tests-livetests-work-around-qemu-media-change-regression.patch 038-tests-uitests-Fix-manager-window-repositioning-test.patch 039-tests-Default-uitests-to-verbosity-2.patch 040-uitests-Make-hotplug-test-pass-on-both-f37-and-f38.patch 041-uitests-More-attempts-at-making-manager-reposition-test-reliable.patch 042-tests-uitests-make-menu-operations-more-robust.patch 043-rpm-convert-license-to-SPDX-format.patch 044-uitests-Drop-hotplug-work-around-f38-libvirt-is-fixed-now.patch 045-virtinst-delay-lookup_capsinfo-until-we-really-need-it.patch 046-virtinst-suppress-lookup_capsinfo-exception-in-machine-type-alias-check.patch 047-tests-data-refresh-Fedora-tree-URLs-in-virt-install-osinfo-expected-XMLs.patch 048-tests-Add-unit-test-coverage-for-539.patch 049-fix-indentation-of-multiline-log.exception-invocations.patch 050-virt-clone-Copy-disk-permissions-as-well.patch 051-data-appstream-add-launchable-tag.patch 052-Fix-some-pylint.patch 055-connectauth-Drop-sanity-checking-for-libvirtd.patch 056-delete-Fix-ambiguity-that-confused-pylint.patch 057-Fix-filesystem-socket.source.patch - Replaced patches 11a887ec-cli-disk-Add-driver.metadata_cache-options.patch 1cb0be40-virtinstall-split-no_install-conditional-apart-to-track-code-coverage.patch 58f5e36d-fsdetails-Fix-an-error-with-source.socket-of-virtiofs.patch 67832d30-addhardware-Fix-backtrace-when-controller-index-is-None.patch 7295ebfb-tests-cli-Fix-test-output-after-previous-commit.patch 999ccb85-virt-install-unattended-and-cloud-init-conflict.patch b0d05167-cloner-Sync-uuid-and-sysinfo-system-uuid.patch c22a876e-tests-Add-a-compat-check-for-linux2020-in-amd-sev-test-case.patch e94786c0-virtinstall-fix-regression-with-boot-and-no-install-method.patch fbdf0516-cli-cpu-Add-maxphysaddr.mode-bits-options.patch - Dropped patches virtman-check-for-libvirt-modular-daemons.patch virtman-fix-osinfo-tests.patch - Supportconfig: Adapt plugin to modern supportconfig The supportconfig 'scplugin.rc' file is deprecated in favor of supportconfig.rc'. Adapt the virt-manager plugin to the new scheme. virt-manager-supportconfig ==== vte ==== Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Use %patch -p N instead of deprecated %patchN. ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Adjust path to (openSUSE renamed) gst-plugin-scanner in the code using sed. ==== webkit2gtk3-soup2 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Adjust path to (openSUSE renamed) gst-plugin-scanner in the code using sed. ==== xdg-desktop-portal ==== Version update (1.18.1 -> 1.18.2) - Update to version 1.18.2: + Pass the token to the OpenURI portal and, when missing, an empty string. + Fix various memory and file descriptor leaks in the Document portal. + Make files and folders openend with the Document portal close properly. This should fix cases where the Document portal prevented external devices from unmounting, due to files inside them not getting closed after applications stop using them. + Implement FUSE getlk and setlk callbacks.This should enable using sqlite3 through the Document portal. + Properly resolve fd symlinks before opening them with O_NOFOLLOW. + Fix cases where the portal id is assumed to match the .desktop file name. + Allow sending directories in the file transfer portal. This should make it possible to, among other things, drag and drop folders and files simultaneously from and to sandboxed applications. + Fallback to a hardcoded check to xdg-desktop-portal-gtk in the absence of any other portal or configuration file, as a last resort mechanism. + Various smaller fixes to the build system. ==== xdg-desktop-portal-gnome ==== Version update (45.0 -> 45.1) - Update to version 45.1: + accountdialog: Fix crash when pressing Escape + Send remote file URIs as local FUSE URIs + Various fixes to screencast and input capture + Expose org.gnome.desktop.calendar through the Settings portal + Put dialogs in separate window groups + Updated translations. ==== xfce4-dict ==== Version update (0.8.5 -> 0.8.6) Subpackages: xfce4-dict-lang xfce4-panel-plugin-dict - Update to version 0.8.6 * Use getaddrinfo(3) to support IPv6 DICT servers * Add icons at missing sizes, clean up SVG metadata ==== yast2-core ==== Version update (5.0.0 -> 5.0.1) - Do not test YCP on non-UTF-8 strings (bsc#1217523) - 5.0.1 ==== zenity ==== Version update (3.99.2 -> 3.99.90) - Update to version 3.99.90: + build: Make building manpage dependent upon manpage option + text: Handle long inputs properly + colview: Use g_signal_connect_object + tree/colview: Return correct value when filtered using search; code cleanups + colview: Add missing declaration to header + build: - Make implicit declarations an error - Make zenity4 compile against gtk 4.12 without deprecation warnings + tree: - Fix reading input from a named pipe - --checklist or --radiolist with < 2 cols should be an error - Fix output for non-check/radio multiple selections + util: Replace gtk_window_destroy() with gtk_application_remove_window(). + Updated translations.

1 0

New Arm Tumbleweed snapshot 20231127 released!
by Guillaume Gardet 29 Nov '23

29 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MozillaFirefox (119.0.1 -> 120.0) gstreamer-plugins-bad icewm (3.4.3 -> 3.4.4) inxi (3.3.27 -> 3.3.31) kyotocabinet (1.2.77 -> 1.2.80) libdrm (2.4.117 -> 2.4.118) nghttp2 (1.57.0 -> 1.58.0) pam-config (2.9 -> 2.10) pipewire (0.3.85 -> 1.0.0) policycoreutils python-charset-normalizer (3.3.0 -> 3.3.2) python-lxml python-setproctitle (1.3.2 -> 1.3.3) restorecond tango-icon-theme tpm2-0-tss transmission (4.0.3 -> 4.0.4) usbutils (015 -> 017) wireplumber (0.4.15 -> 0.4.16) xwayland === Details === ==== MozillaFirefox ==== Version update (119.0.1 -> 120.0) - Mozilla Firefox 120.0 https://www.mozilla.org/en-US/firefox/120.0/releasenotes MFSA 2023-49 (bsc#1217230) * CVE-2023-6204 (bmo#1841050) Out-of-bound memory access in WebGL2 blitFramebuffer * CVE-2023-6205 (bmo#1854076) Use-after-free in MessagePort::Entangled * CVE-2023-6206 (bmo#1857430) Clickjacking permission prompts using the fullscreen transition * CVE-2023-6207 (bmo#1861344) Use-after-free in ReadableByteStreamQueueEntry::Buffer * CVE-2023-6208 (bmo#1855345) Using Selection API would copy contents into X11 primary selection. * CVE-2023-6209 (bmo#1858570) Incorrect parsing of relative URLs starting with "///" * CVE-2023-6210 (bmo#1801501) Mixed-content resources not blocked in a javascript: pop-up * CVE-2023-6211 (bmo#1850200) Clickjacking to load insecure pages in HTTPS-only mode * CVE-2023-6212 (bmo#1658432, bmo#1820983, bmo#1829252, bmo#1856072, bmo#1856091, bmo#1859030, bmo#1860943, bmo#1862782) Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5 * CVE-2023-6213 (bmo#1849265, bmo#1851118, bmo#1854911) Memory safety bugs fixed in Firefox 120 - rebased patches ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Stop passing sctp=disabled and pass sctp=enabled to meson setup instead, enable build of sctp plugin. ==== icewm ==== Version update (3.4.3 -> 3.4.4) Subpackages: icewm-config-upstream icewm-default icewm-lang icewm-lite - update to 3.4.4: * Use fcsmart for capturing loadText data. * Support TIFF and WEBP in icewmbg. * More permissive parsing of a PAM image header in icesh. * Remove obsolete winoption examples and add one for plank. * Use --disable-librsvg instead of --disable-rsvg. * Add `supportsFormat` to check for support of additional image formats. * Support JXL, JP2, RAW, SVG, TGA image formats in icewmbg. * Test if a color can be considered dark for issue #715. * Brighten the color of inactive preview icons for dark themes for issue * Fix a crash when a ping timeout dialog is destroyed for issue #729. * Let icewmbg interpret command-line arguments relative to the current working directory. * Clarify prefoverride and closes #750 * When mapping a client by PID, search for the best match. * Don't enforce the use of clang++ in the debug build. * Fix ordering in the 4th configuration * Fix minor warnings from recent CMake and GCC * Translated using Weblate (Portuguese (Brazil)) ==== inxi ==== Version update (3.3.27 -> 3.3.31) - Updated to version 3.3.31: + /usr/share/doc/packages/inxi/inxi.changelog. - Updated spec file for new location of inxi at codeberg.org. ==== kyotocabinet ==== Version update (1.2.77 -> 1.2.80) - update to 1.2.80: - configure.in supports strict C99 rules. - Fixed errors of kcdirtest on BtrFS. - Fixed build warnings. ==== libdrm ==== Version update (2.4.117 -> 2.4.118) Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - update to 2.4.118: * improve SMPTE color LUT accuracy * util: factor out and optimize C8 SMPTE color LUT * util: add support for DRM_FORMAT_C[124] * util: store number of colors for indexed formats * util: add SMPTE pattern support for C4 format * util: add SMPTE pattern support for C1 format * util: add SMPTE pattern support for C2 format * modetest: add support for DRM_FORMAT_C[124] * modetest: add SMPTE pattern support for C[124] formats * intel: determine target endianness using meson * util: fix 32 bpp patterns on big-endian * util: fix 16 bpp patterns on big-endian * util: add missing big-endian RGB16 frame buffer formats * modetest: add support for parsing big-endian formats * util: add test pattern support for big-endian XRGB1555/RGB565 * util: fix pwetty on big-endian * util: add pwetty support for big-endian RGB565 * modetest: add support for big-endian XRGB1555/RGB565 * modetest: add support for DRM_FORMAT_NV{15,20,30} * modetest: switch usage to proper options grammar * xf86drm: add drmGetNodeTypeFromDevId * Sync headers with drm-next * xf86drmMode: add drmModeCloseFB() ==== nghttp2 ==== Version update (1.57.0 -> 1.58.0) - update to 1.58.0: * Update manual pages * Bump neverbleed * Bump ngtcp2 * Prefer clock_gettime if __CYGWIN__ defined * Do not require strict c++ mode * nghttpx: Stricter transfer-encoding checks * Refactor character comparison * Integration servertester h3 * integration: Enable http3 test with cmake ==== pam-config ==== Version update (2.9 -> 2.10) - Update to version 2.10 - Enable session and account support for kanidm and himmelblau ==== pipewire ==== Version update (0.3.85 -> 1.0.0) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.0.0 (El Presidente): * Highlights - Fix a memfd/dmabuf leak when uploading buffers while shutting down. - Handle concurrent jack_port_get_buffer() calls because ardour seems to be doing this. - Improve time reporting (less jitter) in ALSA when using IRQ. - Many doc improvements. * PipeWire - Respect PIPEWIRE_DLCLOSE everywhere, remove pw_in_valgrind(). - Remove a warning when a client tries to change ignored properties. * Modules - Fix a memfd/dmabuf leak when uploading buffers while shutting down. - Fix a potential segfault when copying mix structures. (#3658) - Avoid races in setrlimit in module-rt. - Fix a memory leak in filter-chain. - Set rtp.ptime on senders, not receivers. - The ROC modules were ported to ROC 0.3 * SPA - Improve time reporting (less jitter) in ALSA when using IRQ. (#3657) - Add latency param query in libcamera. - Fix some compiler warnings. - The EVL plugin was updated. * Bluetooth - LC3 codec and compatibility improvements. * Pulse server - Fix emission of events when a sink/source state changes. (#3660) * JACK - Improve transport and time handling. Use unique ids to make consistent snapshots of the current time and transport. - Avoid enumerating port params that we are not going to use. - Optimize buffer reuse. - Handle concurrent jack_port_get_buffer() calls because ardour seems to be doing this. (#3632) * Docs - Many doc improvements. - Add man pages for pw-dump, pw-loopback, modules, pipewire-pulse. - Manpages are now made with Doxygen. - Add docs for pulse-modules ==== policycoreutils ==== Subpackages: policycoreutils-python-utils python3-policycoreutils - Change deprecated `%patch1 -p1` syntax to supported `%patch -P1 -p1` (bsc#1216669) ==== python-charset-normalizer ==== Version update (3.3.0 -> 3.3.2) - update to 3.3.2: * Unintentional memory usage regression when using large payload that match several encoding (#376) * Regression on some detection case showcased in the documentation (#371) * Noise (md) probe that identify malformed arabic representation due to the presence of letters in isolated form * Optional mypyc compilation upgraded to version 1.6.1 for Python >= 3.8 * Improved the general detection reliability based on reports from the community ==== python-lxml ==== - Add libxml2212-tests.patch to fix tests with new libxml2 ==== python-setproctitle ==== Version update (1.3.2 -> 1.3.3) - update to 1.3.3: * Add support for Python 3.12 * Fix package metadata to include Python 3.11, 3.12. ==== restorecond ==== - Change deprecated `%patch1 -p1` syntax to supported `%patch -P1 -p1` (bsc#1216669) ==== tango-icon-theme ==== - Use %patch -P N instead of deprecated %patchN. ==== tpm2-0-tss ==== Subpackages: libtss2-esys0 libtss2-mu0 libtss2-rc0 libtss2-sys1 libtss2-tctildr0 - libtss2-fapi1 requires system-user-tss for tmpfile creation ==== transmission ==== Version update (4.0.3 -> 4.0.4) Subpackages: transmission-common transmission-gtk - Update to version 4.0.4: + Fixed bug in sending torrent metadata to peers. + Avoid unnecessary heap memory allocations. + Fixed filename collision edge case when renaming files. + Fixed locale errors that broke number rounding when displaying statistics, e.g. upload / download ratios. + Always use a fixed-length key query in tracker announces. This isn't required by the spec, but some trackers rely on that fixed length because it's common practice by other BitTorrent clients. + Fixed potential Windows crash when getstdhandle() returns NULL. + Fixed 4.0.0 bug where the port numbers in LDP announces are sometimes malformed. + Fixed a bug that prevented editing the query part of a tracker URL. + Fixed a bug where Transmission may not announce LPD on its listening interface. + Made small performance improvements in libtransmission. + Qt Client: - Fixed torrent name rendering when showing magnet links in compact view. - Fixed bug that broke the "Move torrent file to trash" setting. - Fixed Qt 6.4 deprecation warning. - Fixed poor resolution of Qt application icon. + GTK Client: Fixed missing 'Remove torrent' tooltip. + Web Client: - Don't show null as a tier name in the inspector's tier list. - Fixed truncated play / pause icons. - Fixed overflow when rendering peer lists and made speed indicators honor prefers-color-scheme media queries. - Made the main menu accessible even on smaller displays. + transmission-cli: - Fixed "no such file or directory" warning when adding a magnet link. - Fixed bug that caused the wrong decimal separator to be used in some locales. + transmission-remote: Fixed display bug that failed to show some torrent labels. + Everything Else: - Ran all PNG files through lossless compressors to make them smaller. - Fixed potential build issue when compiling on macOS with gcc. ==== usbutils ==== Version update (015 -> 017) - update to 017: * lsusb: fix up [unknown] vendor and product strings. * lsusb: fix build warning for dump_billboard_alt_mode_capability_desc() * lsusb: add fallback names for 'lsusb -v' output * names: simplify get_vendor_product_with_fallback() a bit * rezso (1): * Honor system libdir and includedir * usbutils 016 * usbutils: lsusb-t: print entries for devices with no interfaces * Fix a typo in usb-spec.h * lsusb.py.in: Display (device) power/wakeup via -w option. * Fix an incorrect length value in hid descriptor. * Fix misalignments in hid device descripptor. * Use bigger buffer to place speed value string * lsusb -h returns an error * lsusb -h fixups * lsusb -t: sort in bus order, not reverse order * lsusb -t: print ports and busses and devices with same width * lsusb -t: assign_interface_to_parent() fixups * lsusb.8.in: fix up missing '-' in text * README.md: add source location * lsusb.py: fix up wakeup logic for devices that do not support it * lsusb.py.in: add another default path for usb.ids * names.c: if a string can not be found in the usb.ids file, return [unknown] * lsusb-t: if a driver is not bound to an interface, report "[none]" * Generate usbutils.pc pkgconfig file * usbreset: Allow idProduct and idVendor to be 0 * usb-devices: make shellcheck happy * lsusb: Add function that sorts the output by device ID. * lsusb: Additional sorting by bus number. * lsusb: This is a more compact implementation of the device list sort implemented within this pull request. The output remains the same as the one demonstrated in the previous commit. ==== wireplumber ==== Version update (0.4.15 -> 0.4.16) Subpackages: libwireplumber-0_4-0 wireplumber-audio - Update to version 0.4.16: * Additions: - Added a new "sm-objects" script that allows loading objects on demand via metadata entries that describe the object to load; this can be used to load pipewire modules, such as filters or network sources/sinks, on demand - Added a mechanism to override device profile priorities in the configuration, mainly as a way to re-prioritize Bluetooth codecs, but this also can be used for other devices - Added a mechanism in the endpoints policy to allow connecting filters between a certain endpoint's virtual sink and the device sink; this is specifically intended to allow plugging a filter-chain to act as equalizer on the Multimedia endpoint - Added wp_core_get_own_bound_id() method in WpCore * Changes: - PipeWire 0.3.68 is now required - policy-dsp now has the ability to hide hardware nodes behind the DSP sink to prevent hardware misuse or damage - JSON parsing in Lua now allows keys inside objects to be without quotes - Added optional argument in the Lua JSON parse() method to limit recursions, making it possible to partially parse a JSON object - It is now possible to pass nil in Lua object constructors that expect an optional properties object; previously, omitting the argument was the only way to skip the properties - The endpoints policy now marks the endpoint nodes as "passive" instead of marking their links, adjusting for the behavior change in PipeWire 0.3.68 - Removed the "passive" property from si-standard-link, since only nodes are marked as passive now * Fixes: - Fixed the wpctl clear-default command to completely clear all the default nodes state instead of only the last set default - Reduced the amount of globals that initially match the interest in the object manager - Used an idle callback instead of pw_core_sync() in the object manager to expose tmp globals - Remove patches included upstream: * 0001-object-manager-reduce-the-amount-of-globals-that-initially.patch * 0002-object-manager-use-an-idle-callback-to-expose-tmp-globals.patch * 0001-policy-dsp-add-ability-to-hide-parent-nodes.patch - Update split-config-file.py ==== xwayland ==== - This release contains the following patches mentioned in previous sle15 releases * U_Xext-fix-invalid-event-type-mask-in-XTestSwapFakeInp.patch: fixes regression introduced with security update for CVE-2022-46340 (bsc#1205874) * U_bsc1216135-Xi-randr-fix-handling-of-PropModeAppend-Prepend.patch: fix handling of PropModeAppend/Prepend ((CVE-2023-5367, ZDI-CAN-22153, bsc#1216135) * U_bsc1216261-0001-mi-fix-CloseScreen-initialization-order.patch, U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch: Server Damage Object Use-After-Free Local Privilege Escalation Vulnerability (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261) * U_bsc1216261-0003-dix-always-initialize-pScreen-CloseScreen.patch: fixes a regresion, which can trigger a segfault in Xwayland on exit, introduced by U_bsc1216261-0002-fb-properly-wrap-unwrap-CloseScreen.patch (CVE-2023-5574, ZDI-CAN-21213, bsc#1216261)

1 0

New Arm Tumbleweed snapshot 20231126 released!
by Guillaume Gardet 27 Nov '23

27 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa Mesa-drivers apache2-mod_php8 (8.2.12 -> 8.2.13) avahi avahi-glib2 gstreamer-plugins-bad kded kernel-firmware-nvidia-gspx-G06 (545.29.02 -> 545.29.06) libadwaita libbpf (1.2.2 -> 1.3.0) libdrm libgcrypt libqt5-qtwebengine (5.15.15 -> 5.15.16) libsolv (0.7.26 -> 0.7.27) libstorage-ng (4.5.157 -> 4.5.158) multipath-tools (0.9.6+115+suse.07776fb -> 0.9.7+76+suse.5f857af) nvidia-open-driver-G06-signed (545.29.02_k6.6.2_1 -> 545.29.06_k6.6.2_1) php8 (8.2.12 -> 8.2.13) python-Twisted (22.10.0 -> 23.10.0) python-anyio (3.6.2 -> 3.7.1) python-charset-normalizer (3.2.0 -> 3.3.0) python-linux-procfs (0.7.1 -> 0.7.3) python-markdown-it-py (2.2.0 -> 3.0.0) python-mdit-py-plugins (0.3.0 -> 0.4.0) python-pexpect (4.8.0 -> 4.9.0) python311 (3.11.5 -> 3.11.6) python311-core (3.11.5 -> 3.11.6) raspberrypi-firmware (2023.04.25 -> 2023.11.21) raspberrypi-firmware-config (2023.04.25 -> 2023.11.21) raspberrypi-firmware-dt (2023.05.02 -> 2023.11.21) ruby-common selinux-policy (20231030 -> 20231124) webkit2gtk3 webkit2gtk3-soup2 yast2-trans (84.87.20231117.f12231d4de -> 84.87.20231121.7869d671a6) === Details === ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - buildrequire 'pkgconfig(SPIRV-Tools)' also with disabled rusticl (new dep since some time) - re-disable rusticl on sle15-sp6 to prevent more deps (rust-bindgen) - buildrequire 'pkgconfig(LLVMSPIRVLib)' also with disabled rusticl (new dep since some time) - enable rusticl on sle15-sp6 - let sle15-sp6 require llvm17/clang17 ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva - buildrequire 'pkgconfig(SPIRV-Tools)' also with disabled rusticl (new dep since some time) - re-disable rusticl on sle15-sp6 to prevent more deps (rust-bindgen) - buildrequire 'pkgconfig(LLVMSPIRVLib)' also with disabled rusticl (new dep since some time) - enable rusticl on sle15-sp6 - let sle15-sp6 require llvm17/clang17 ==== apache2-mod_php8 ==== Version update (8.2.12 -> 8.2.13) - version update to 8.2.13 * This is a bug fix release. https://www.php.net/ChangeLog-8.php#8.2.13 ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - avahi-autoipd: drop the post script part migrating the user owning files in /var/lib/avahi-autoipd: the code was aiding migrations from SLE<=11/openSUSE<=12.3, which are no longer in scope for upgrades nowadays. - avahi-autoipd: guard %post chown with -h, to not follow symlinks (boo#1217398). ==== avahi-glib2 ==== Subpackages: libavahi-glib1 libavahi-gobject0 libavahi-ui-gtk3-0 - avahi-autoipd: drop the post script part migrating the user owning files in /var/lib/avahi-autoipd: the code was aiding migrations from SLE<=11/openSUSE<=12.3, which are no longer in scope for upgrades nowadays. - avahi-autoipd: guard %post chown with -h, to not follow symlinks (boo#1217398). ==== gstreamer-plugins-bad ==== Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Move pkgconfig(dvdnav) and pkgconfig(dvdread) BuildRequires out of BUILD_ORIG conditional, and stop passing resindvd=disabled and siren=disabled to meson setup, build dvd and siren 7 support in main package. ==== kded ==== - Pull in kconf_update5 ==== kernel-firmware-nvidia-gspx-G06 ==== Version update (545.29.02 -> 545.29.06) - update firmware to version 545.29.06 ==== libadwaita ==== Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Add 3e3967d5f69180644519936991cad10136e84ca9.patch: Fix building against libappstream 1.0 (boo#1217047). ==== libbpf ==== Version update (1.2.2 -> 1.3.0) - update to 1.3.0: * support for `netfilter` programs is added `SEC("netfilter")` is now available * API function `bpf_program__attach_netfilter()` is now available * support for `tcx` BPF programs is added: * the following new SEC definitions are now available: SEC("tc/egress"), SEC("tc/ingress"), SEC("tcx/egress"), SEC("tcx/ingress") * the following SEC definitions are now considered legacy: SEC("tc"), SEC("action"), SEC("classifier") * functions `bpf_prog_attach_opts()` and `bpf_prog_query_opts()` are extended to work with `tcx` programs, plus two new API functions are added: * the following new SEC definitions are now available: SEC("uprobe.multi"), SEC("uprobe.multi.s"), SEC("uretprobe.multi"), SEC("uretprobe.multi.s") * support for section `SEC("usdt.s")` is added for sleepable `usdt` programs; * support for Unix domain socket cgroup BPF programs is added the following new SEC definitions are now available: SEC("cgroup/connect_unix"),SEC("cgroup/sendmsg_unix"), SEC("cgroup/recvmsg_unix"), SEC("cgroup/getpeername_unix"), SEC("cgroup/getsockname_unix") * new `LIBBPF_OPTS_RESET()` utility macro; * new `bpf_object__unpin()` function to complement existing `bpf_object__pin()`; * new API functions for work with ring buffers * uprobe SEC matcher extended to allow golang symbols; * uprobe support for symbols versioning; * `bpf_map__set_value_size()` can now be used to resize memory mapped region for memory mapped maps; * `struct bpf_xdp_query_opts` extended with `xdp_zc_max_segs` output field; * basic BTF sanity check pass added to reject bogus BTF. * fix for btf_dump__dump_type_data() when type contains bitfields; * fix for correct work of offsetof() and container_of() macro with CO-RE; * no longer attempt to load modules BTF when resolving CO-RE relocations if CAP_SYS_ADMIN are absent; * regex based function search for "kprobe.multi/" programs no longer attempts to trace functions that cannot be traced; * bpf_program__set_type() no longer resets sec_def if it is set to a custom fallback SEC handler; * fix for memory leak possible after bpf_program__set_attach_target() call; ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - adjusted n_libdrm-drop-valgrind-dep-generic.patch, n_libdrm-drop-valgrind-dep-intel.patch ==== libgcrypt ==== - Re-create HMAC checksum after RPM build strips the library (bsc#1217058) ==== libqt5-qtwebengine ==== Version update (5.15.15 -> 5.15.16) - Update to version 5.15.16: * Bump version to 5.15.16 * Add check for system ffmpeg compatibility * Fix handling of external URLs in PDFs * Update Chromium: * [Backport] CVE-2023-5996: Use after free in WebAudio * [Backport] CVE-2023-5482 and CVE-2023-5849 * [Backport] CVE-2023-45853: Buffer overflow in MiniZip * [Backport] Security bug 1478470 * [Backport] Security bug 1472365 and 1472366 * [Backport] CVE-2023-5218: Use after free in Site Isolation * [Backport] Security bug 1486316 * FIXUP: [Backport] [PA] Support 16kb pagesize on Linux+ARM64 * [Backport] Add Intel Meteorlake GPU series type * [Backport] Add Intel Raptorlake GPU series type * [Backport] Add a few missing IntelGpuSeriesTypes in gpu_util.cc * [Backport] Add Intel Alchemist GPU series type * [Backport] Add Alderlake to intel_gpu_series field in gpu control list. * [Backport] Add missing Intel GPU series types. * [Backport] Add Alderlake's GPU to list supporting two NV12 overlay planes. * [Backport] CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx * [Backport] Security bug 1479104 * [Backport] [PA] Support 16kb pagesize on Linux+ARM64 * [Backport] Replace uses of re2::StringPiece::set(). * Fix build with GCC 13 * Fix errors and warnings for perfetto * Remove nodiscard attribute from cpwl_combo_box.h * Bump V8_PATCH_LEVEL * [Backport] CVE-2023-4762: Type Confusion in V8 * [Backport] CVE-2023-4362: Heap buffer overflow in Mojom IDL * [Backport] CVE-2023-4354: Heap buffer overflow in Skia * [Backport] CVE-2023-4351: Use after free in Network * Disable Windows IME for GPU thread * [Backport] CVE-2023-4863: Heap buffer overflow in WebP * [Backport] Security bug 1465224 * [Backport] Dependency for security bug 1465224 * [Backport] CVE-2023-4071: Heap buffer overflow in Visuals * [Backport] CVE-2023-4076: Use after free in WebRTC * [Backport] CVE-2023-4074: Use after free in Blink Task Scheduling ==== libsolv ==== Version update (0.7.26 -> 0.7.27) Subpackages: libsolv-tools python3-solv ruby-solv - add zstd support for the installcheck tool - add putinowndirpool cache to make file list handling in repo_write much faster - bump version to 0.7.27 ==== libstorage-ng ==== Version update (4.5.157 -> 4.5.158) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#966 - fixed build with libxml 2.12.0 - 4.5.158 ==== multipath-tools ==== Version update (0.9.6+115+suse.07776fb -> 0.9.7+76+suse.5f857af) Subpackages: kpartx libmpath0 - Update to version 0.9.7+76+suse.5f857af: * Update to upstream 0.9.7 (jsc#PED-6464) * added max_retries config option to limit SCSI retries * added auto_resize config option to enable resizing multipath maps automatically * fixed memory and error handling for code using aio (marginal path code, directio path checker) * dropped modules-load.d/multipath.conf; replaced by a dependency on modprobe(a)dm-multipath.service (systemd >= 245: SLE15-SP3 and later only) and a softdep on sd_mod for the SCSI device handlers (bsc#1217377) * On SLE/Leap suse-module-tools doesn't ship a scsi_mod->sd_mod softdep yet. Add it here, too. It will be overridden by s-m-t when it's added there. * drop usr_prefix= setting in SLE build recipes (set to /usr by upstream automatically) ==== nvidia-open-driver-G06-signed ==== Version update (545.29.02_k6.6.2_1 -> 545.29.06_k6.6.2_1) - Update to 545.29.06 ==== php8 ==== Version update (8.2.12 -> 8.2.13) Subpackages: php8-cli php8-ctype php8-dom php8-gd php8-gettext php8-iconv php8-mbstring php8-mysql php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.2.13 * This is a bug fix release. https://www.php.net/ChangeLog-8.php#8.2.13 ==== python-Twisted ==== Version update (22.10.0 -> 23.10.0) Subpackages: python311-Twisted python311-Twisted-tls - Update to 23.10.0 * reactor.spawnProcess() now uses posix_spawnp when possible, making it much more efficient (#5710) * Twisted now officially supports Python 3.11. (#10343) * twisted.internet.defer.race has been added as a way to get the first available result from a list of Deferreds. (#11817) * The CI suite was updated to execute the tests using a Python 3.12 pre-release (#11857) * PyAsn1 has been removed as a conch dependency. * Due to changes in the way raw private key byte serialization are handled in Cryptography, and widespread support for Ed25519 in current versions of OpenSSL, we no longer support PyNaCl as a fallback for Ed25519 keys in Conch. (#11871) * In Twisted 16.3.0, we changed twisted.web to stop dispatching HTTP/1.1 pipelined requests to application code. There was a bug in this change which still allowed clients which could send multiple full HTTP requests in a single TCP segment to trigger asynchronous processing of later requests, which could lead to out-of-order responses. This has now been corrected and twisted.web should never process a pipelined request over HTTP/1.1 until the previous request has fully completed. (CVE-2023-46137, GHSA-cq7q-gv5w-rwx2) (#11976) * Drop support for Python 3.7. Remove twisted[contextvars] extra (contextvars are always available in Python 3.7+) (#11913) * When using CPython, functions wrapped by twisted.internet.defer.inlineCallbacks can have their arguments and return values freed immediately after completion (due to there no longer being circular references). (#11885) - Delete merged patches: * regenerate-cert-to-work-with-latest-service-identity.patch * no-pygtkcompat.patch * support-new-glibc.patch * CVE-2023-46137-HTTP-pipeline-response.patch * remove-pynacl-optional-dependency.patch * py311-tests-compat.patch ==== python-anyio ==== Version update (3.6.2 -> 3.7.1) - update to 3.7.1: * Fixed sending large buffers via UNIX stream sockets on asyncio * Fixed several minor documentation issues (broken links to classes, missing classes or attributes) * Dropped support for Python 3.6 * Improved type annotations: * Several functions and methods that were previously annotated as accepting ``Coroutine[Any, Any, Any]`` as the return type of the callable have been amended to accept ``Awaitable[Any]`` instead, to allow a slightly broader set of coroutine-like inputs, like ``async_generator_asend`` objects returned from the ``asend()`` method of async generators, and to match the ``trio`` annotations: * ``anyio.run()`` * ``anyio.from_thread.run()`` * ``TaskGroup.start_soon()`` * ``TaskGroup.start()`` * ``BlockingPortal.call()`` * ``BlockingPortal.start_task_soon()`` * ``BlockingPortal.start_task()`` * Changed ``TLSAttribute.shared_ciphers`` to match the documented semantics of ``SSLSocket.shared_ciphers`` of always returning ``None`` for client-side streams * Fixed ``CapacityLimiter`` on the asyncio backend to order waiting tasks in the FIFO order (instead of LIFO) * Fixed ``CancelScope.cancel()`` not working on asyncio if called before entering the scope * Fixed ``open_signal_receiver()`` inconsistently yielding integers instead of ``signal.Signals`` instances on the ``trio`` backend * Fixed ``to_thread.run_sync()`` hanging on asyncio if the target callable raises ``StopIteration`` * Fixed ``start_blocking_portal()`` raising an unwarranted * ``RuntimeError: This portal is not running`` if a task raises an exception that causes the event loop to be closed * Fixed ``current_effective_deadline()`` not returning ``-inf`` on asyncio when the currently active cancel scope has been cancelled (PR by Ganden Schaffner) * Fixed the ``OP_IGNORE_UNEXPECTED_EOF`` flag in an SSL context created by default in ``TLSStream.wrap()`` being inadvertently set on Python 3.11.3 and 3.10.11 * Fixed ``CancelScope`` to properly handle asyncio task uncancellation on Python 3.11 * Fixed ``OSError`` when trying to use ``create_tcp_listener()`` to bind to a link-local * IPv6 address (and worked around related bugs in ``uvloop``) * Worked around a `PyPy bug <https://foss.heptapod.net/pypy/pypy/-/issues/3938>`_ when using ``anyio.getaddrinfo()`` with for IPv6 link-local addresses containing interface names - drop fix-failing-tls-tests.patch support-trio-0.22.patch: obsolete - update to 3.7.1: * Fixed sending large buffers via UNIX stream sockets on asyncio * Fixed several minor documentation issues (broken links to classes, missing classes or * attributes) * **3.7.0** * Dropped support for Python 3.6 * Improved type annotations: * Several functions and methods that were previously annotated as accepting * ``Coroutine[Any, Any, Any]`` as the return type of the callable have been amended to * accept ``Awaitable[Any]`` instead, to allow a slightly broader set of coroutine-like * inputs, like ``async_generator_asend`` objects returned from the ``asend()`` method * of async generators, and to match the ``trio`` annotations: * ``anyio.run()`` * ``anyio.from_thread.run()`` * ``TaskGroup.start_soon()`` * ``TaskGroup.start()`` * ``BlockingPortal.call()`` * ``BlockingPortal.start_task_soon()`` * ``BlockingPortal.start_task()`` * Note that this change involved only changing the type annotations; run-time * functionality was not altered. * The ``TaskStatus`` class is now a generic protocol, and should be parametrized to * indicate the type of the value passed to ``task_status.started()`` * The ``Listener`` class is now covariant in its stream type * ``create_memory_object_stream()`` now allows passing only ``item_type`` * Object receive streams are now covariant and object send streams are correspondingly * contravariant * Changed ``TLSAttribute.shared_ciphers`` to match the documented semantics of * ``SSLSocket.shared_ciphers`` of always returning ``None`` for client-side streams * Fixed ``CapacityLimiter`` on the asyncio backend to order waiting tasks in the FIFO * order (instead of LIFO) (PR by Conor Stevenson) * Fixed ``CancelScope.cancel()`` not working on asyncio if ... changelog too long, skipping 30 lines ... * interface names ==== python-charset-normalizer ==== Version update (3.2.0 -> 3.3.0) - update to 3.3.0: * Allow to execute the CLI (e.g. normalizer) through `python -m charset_normalizer.cli` or `python -m charset_normalizer` * Support for 9 forgotten encoding that are supported by Python but unlisted in `encoding.aliases` as they have no alias * Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.7 * Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in \_\_lt\_\_ (#350) ==== python-linux-procfs ==== Version update (0.7.1 -> 0.7.3) - update to 0.7.3: * python 3.12 support (remove distutils) * drop spec files and add SPDX licenses ==== python-markdown-it-py ==== Version update (2.2.0 -> 3.0.0) - Update to version 3.0.0: * drop python 3.7 support * Update from upstream markdown-it 12.2.0 to 13.0.0 - A key change is the addition of a new Token type, text_special, which is used to represent HTML entities and backslash escaped characters. - This ensures that (core) typographic transformation rules are not incorrectly applied to these texts. - The final core rule is now the new text_join rule, which joins adjacent text/text_special tokens, and so no text_special tokens should be present in the final token stream. - Any custom typographic rules should be inserted before text_join. - A new linkify rule has also been added to the inline chain, which will linkify full URLs (e.g. https://example.com) and fixes collision of emphasis and linkifier (so http://example.org/foo._bar_-_baz is now a single link, not emphasized). - Emails and fuzzy links are not affected by this. * REFACTOR: Replace most character code use with strings - The use of StateBase.srcCharCode is deprecated (with backward-compatibility), and all core uses are replaced by StateBase.src. - Conversion of source string characters to an integer representing the Unicode character is prevalent in the upstream JavaScript implementation, to improve performance. However, it is unnecessary in Python and leads to harder to read code and performance deprecations (during the conversion in the StateBase initialisation). * Centralise indented code block tests - For CommonMark, the presence of indented code blocks prevent any other block element from having an indent of greater than 4 spaces. - Certain Markdown flavors and derivatives, such as mdx and djot, disable these code blocks though, since it is more common to use code fences and/or arbitrary indenting is desirable. - Previously, disabling code blocks did not remove the indent limitation, since most block elements had the 3 space limitation hard-coded. - This change centralised the logic of applying this limitation (in StateBlock.is_code_block), and only applies it when indented code blocks are enabled. * Maintenance changes - Strict type annotation checking has been applied to the whole code base, ruff is now used for linting, and fuzzing tests have been added to the CI, to integrate with Google OSS-Fuzz testing, thanks to @DavidKorczynski. ==== python-mdit-py-plugins ==== Version update (0.3.0 -> 0.4.0) - Update to version 0.4.0: * UPGRADE: Drop python 3.7 and support 3.11 (#77) * UPGRADE: Allow markdown-it-py v3 (#85) - Make field_list compatible with latest upstream (#75) - Convert state.srcCharCode -> state.src (#84) - Remove unnecessary method arg by @chrisjsewell in( #76) - Centralise code block test (#83 and #87) - This means that disabling the code block rule in markdown-it-py v3+ will now allow all syntax blocks to be indented by any amount of whitespace. * Improve dollarmath plugin: Add allow_blank_lines option, thanks to @eric-wieser (#46) * Improve admon plugin: Add ??? support, thanks to @KyleKing (#58) * MAINTAIN: Make type checking strict (#86) - v0.3.5: * FIX: Regression in dollarmath by @chrisjsewell in #69 * Fix regression in amsmath by @chrisjsewell in #70 * Correct project documentation link by @andersk in #73 * RELEASE v0.3.5 by @chrisjsewell in #74 - v0.3.4: * NEW: Add attrs_block_plugin by @chrisjsewell in #66 * Improve field lists by @chrisjsewell in #65 * Update pre-commit by @chrisjsewell in #64 (moving from flake8 to ruff) - v0.3.3: * FIX: attrs: span with end of inline before attrs by @chrisjsewell in #57 - v0.3.2: * MAINTAIN: Fix pre-commit configuration by @hukkin in #54 * NEW: Add span parsing to inline attributes plugin by @chrisjsewell in #55 * FIX: Task list item marker can be followed by any GFM whitespace by @hukkin in #42 * NEW: Port admon plugin by @KyleKing in #53 * RELEASE: v0.3.2 by @chrisjsewell in #56 - v0.3.1: * MAINTAIN: Remove upper bound from Python version constraint by @cjolowicz in #40 * MAINTAIN: Update pre-commit by @chrisjsewell in #47 * FIX: Parsing when newline is between footnote ID and first paragraph by @hukkin in #49 * Anchor ids in separate renders should not affect each other. by @distractedmosfet in #43 * PEP 621 package build, drop Python 3.6 by @chrisjsewell in #51 * NEW: Add attrs_plugin by @chrisjsewell in #50 * RELEASE: v0.3.1 by @chrisjsewell in #52 ==== python-pexpect ==== Version update (4.8.0 -> 4.9.0) - update to 4.9: * Add support for Python 3.12 #769. * Clean up temporary files after UnicodeTests #753. * Add Python 3.5, 3.6 and 3.12.0-rc.1 to test matrix #763. * Set prompt correctly for zsh #712. * Add zsh convenience function to replwrap module #751. * Rework async unittests to rely on unittest.IsolatedAsyncioTestCase #764. * Make test_expect.py work on POSIX systems that are not Linux based #698. * Add support for ``socket``, which allows sockets to be used crossplatform #745. * Update async to work on newer versions of python #732. * Remove deprecated RSAAuthentication option (SSHv1) #744. * Multiple CI fixes #743 #737 #742 #739 #722. * Use Github Actions for CI #734. * Remove pytest-capturelog from testing requirements #730. * Fix usage for Solaris #663 #604 #560. * Fix threading for new versions of python #684. * Fix documentation builds for use with Sphinx 3 #638. * Use ``sys.executable`` for tests and wrapper, allowing the calling python executable to be used instead #623. * Update documentation about Wexpect #623. * Added project urls to ``setup.py`` #620. * Provide examples for how to use Pexpect and Pyte #587. * Coerce compiled regex patterns type according to spawn encoding #560. * Several doc updates #626 #635 #643 #644 #728. drop 31fab7b0edbe9b3401507b5dfa4db6aaf3fabca5.patch, 684.patch, 715.patch, 742.patch, dae602d37493bae239e0e8db5b3dabafebfd59db.patch, fix-fail-no-alias.patch, no-python-binary.patch: upstream ==== python311 ==== Version update (3.11.5 -> 3.11.6) Subpackages: python311-curses python311-dbm - Remove not needed patch 103213-fetch-CONFIG_ARGS.patch - Refresh patches: - bpo-31046_ensurepip_honours_prefix.patch - fix_configure_rst.patch - Update to 3.11.6: - Core and Builtins - gh-109351: Fix crash when compiling an invalid AST involving a named (walrus) expression. - gh-109207: Fix a SystemError in __repr__ of symtable entry object. - gh-109179: Fix bug where the C traceback display drops notes from SyntaxError. - gh-88943: Improve syntax error for non-ASCII character that follows a numerical literal. It now points on the invalid non-ASCII character, not on the valid numerical literal. - gh-108959: Fix caret placement for error locations for subscript and binary operations that involve non-semantic parentheses and spaces. Patch by Pablo Galindo - gh-108520: Fix multiprocessing.synchronize.SemLock.__setstate__() to properly initialize multiprocessing.synchronize.SemLock._is_fork_ctx. This fixes a regression when passing a SemLock accross nested processes. - Rename multiprocessing.synchronize.SemLock.is_fork_ctx to multiprocessing.synchronize.SemLock._is_fork_ctx to avoid exposing it as public API. - Library - gh-110036: On Windows, multiprocessing Popen.terminate() now catchs PermissionError and get the process exit code. If the process is still running, raise again the PermissionError. Otherwise, the process terminated as expected: store its exit code. Patch by Victor Stinner. - gh-110038: Fixed an issue that caused KqueueSelector.select() to not return all the ready events in some cases when a file descriptor is registered for both read and write. - gh-109631: re functions such as re.findall(), re.split(), re.search() and re.sub() which perform short repeated matches can now be interrupted by user. - gh-109593: Avoid deadlocking on a reentrant call to the multiprocessing resource tracker. Such a reentrant call, though unlikely, can happen if a GC pass invokes the finalizer for a multiprocessing object such as SemLock. - gh-109613: Fix os.stat() and os.DirEntry.stat(): check for exceptions. Previously, on Python built in debug mode, these functions could trigger a fatal Python error (and abort the process) when a function succeeded with an exception set. Patch by Victor Stinner. - gh-109375: The pdb alias command now prevents registering aliases without arguments. - gh-107219: Fix a race condition in concurrent.futures. When a process in the process pool was terminated abruptly (while the future was running or pending), close the connection write end. If the call queue is blocked on sending bytes to a worker process, closing the connection write end interrupts the send, so the queue can be closed. Patch by Victor Stinner. - gh-50644: Attempts to pickle or create a shallow or deep copy of codecs streams now raise a TypeError. Previously, copying failed with a RecursionError, while pickling produced wrong results that eventually caused unpickling to fail with a RecursionError. - gh-108987: Fix _thread.start_new_thread() race condition. If a thread is created during Python finalization, the newly spawned thread now exits immediately instead of trying to access freed memory and lead to a crash. Patch by Victor Stinner. - gh-108843: Fix an issue in ast.unparse() when unparsing f-strings containing many quote types. - gh-108682: Enum: raise TypeError if super().__new__() is called from a custom __new__. - gh-105829: Fix concurrent.futures.ProcessPoolExecutor deadlock - gh-64662: Fix support for virtual tables in sqlite3.Connection.iterdump(). Patch by Aviv Palivoda. - gh-107913: Fix possible losses of errno and winerror values in OSError exceptions if they were cleared or modified by the cleanup code before creating the exception object. - gh-104372: On Linux where subprocess can use the vfork() syscall for faster spawning, prevent the parent process from blocking other threads by dropping the GIL while it waits for the vforkâed child process exec() outcome. This prevents spawning a binary from a slow filesystem from blocking the rest of the application. - gh-84867: unittest.TestLoader no longer loads test cases from exact unittest.TestCase and unittest.FunctionTestCase classes. - Documentation - gh-109209: The minimum Sphinx version required for the documentation is now 4.2. - gh-105052: Update timeit doc to specify that time in seconds is just the default. - gh-102823: Document the return type of x // y when x and y have type float. - Tests - gh-110031: Skip test_threading tests using thread+fork if Python is built with Address Sanitizer (ASAN). Patch by Victor Stinner. - gh-110088: Fix test_asyncio timeouts: donât measure the maximum duration, a test should not measure a CI performance. Only measure the minimum duration when a task has a timeout or delay. Add CLOCK_RES to test_asyncio.utils. Patch by Victor Stinner. - gh-110033: Fix test_interprocess_signal() of test_signal. Make sure that the subprocess.Popen object is deleted before the test raising an exception in a signal handler. Otherwise, Popen.__del__() can get the exception which is logged as ... changelog too long, skipping 106 lines ... multissltests to use 1.1.1w, 3.0.11, and 3.1.3. ==== python311-core ==== Version update (3.11.5 -> 3.11.6) Subpackages: libpython3_11-1_0 python311-base - Remove not needed patch 103213-fetch-CONFIG_ARGS.patch - Refresh patches: - bpo-31046_ensurepip_honours_prefix.patch - fix_configure_rst.patch - Update to 3.11.6: - Core and Builtins - gh-109351: Fix crash when compiling an invalid AST involving a named (walrus) expression. - gh-109207: Fix a SystemError in __repr__ of symtable entry object. - gh-109179: Fix bug where the C traceback display drops notes from SyntaxError. - gh-88943: Improve syntax error for non-ASCII character that follows a numerical literal. It now points on the invalid non-ASCII character, not on the valid numerical literal. - gh-108959: Fix caret placement for error locations for subscript and binary operations that involve non-semantic parentheses and spaces. Patch by Pablo Galindo - gh-108520: Fix multiprocessing.synchronize.SemLock.__setstate__() to properly initialize multiprocessing.synchronize.SemLock._is_fork_ctx. This fixes a regression when passing a SemLock accross nested processes. - Rename multiprocessing.synchronize.SemLock.is_fork_ctx to multiprocessing.synchronize.SemLock._is_fork_ctx to avoid exposing it as public API. - Library - gh-110036: On Windows, multiprocessing Popen.terminate() now catchs PermissionError and get the process exit code. If the process is still running, raise again the PermissionError. Otherwise, the process terminated as expected: store its exit code. Patch by Victor Stinner. - gh-110038: Fixed an issue that caused KqueueSelector.select() to not return all the ready events in some cases when a file descriptor is registered for both read and write. - gh-109631: re functions such as re.findall(), re.split(), re.search() and re.sub() which perform short repeated matches can now be interrupted by user. - gh-109593: Avoid deadlocking on a reentrant call to the multiprocessing resource tracker. Such a reentrant call, though unlikely, can happen if a GC pass invokes the finalizer for a multiprocessing object such as SemLock. - gh-109613: Fix os.stat() and os.DirEntry.stat(): check for exceptions. Previously, on Python built in debug mode, these functions could trigger a fatal Python error (and abort the process) when a function succeeded with an exception set. Patch by Victor Stinner. - gh-109375: The pdb alias command now prevents registering aliases without arguments. - gh-107219: Fix a race condition in concurrent.futures. When a process in the process pool was terminated abruptly (while the future was running or pending), close the connection write end. If the call queue is blocked on sending bytes to a worker process, closing the connection write end interrupts the send, so the queue can be closed. Patch by Victor Stinner. - gh-50644: Attempts to pickle or create a shallow or deep copy of codecs streams now raise a TypeError. Previously, copying failed with a RecursionError, while pickling produced wrong results that eventually caused unpickling to fail with a RecursionError. - gh-108987: Fix _thread.start_new_thread() race condition. If a thread is created during Python finalization, the newly spawned thread now exits immediately instead of trying to access freed memory and lead to a crash. Patch by Victor Stinner. - gh-108843: Fix an issue in ast.unparse() when unparsing f-strings containing many quote types. - gh-108682: Enum: raise TypeError if super().__new__() is called from a custom __new__. - gh-105829: Fix concurrent.futures.ProcessPoolExecutor deadlock - gh-64662: Fix support for virtual tables in sqlite3.Connection.iterdump(). Patch by Aviv Palivoda. - gh-107913: Fix possible losses of errno and winerror values in OSError exceptions if they were cleared or modified by the cleanup code before creating the exception object. - gh-104372: On Linux where subprocess can use the vfork() syscall for faster spawning, prevent the parent process from blocking other threads by dropping the GIL while it waits for the vforkâed child process exec() outcome. This prevents spawning a binary from a slow filesystem from blocking the rest of the application. - gh-84867: unittest.TestLoader no longer loads test cases from exact unittest.TestCase and unittest.FunctionTestCase classes. - Documentation - gh-109209: The minimum Sphinx version required for the documentation is now 4.2. - gh-105052: Update timeit doc to specify that time in seconds is just the default. - gh-102823: Document the return type of x // y when x and y have type float. - Tests - gh-110031: Skip test_threading tests using thread+fork if Python is built with Address Sanitizer (ASAN). Patch by Victor Stinner. - gh-110088: Fix test_asyncio timeouts: donât measure the maximum duration, a test should not measure a CI performance. Only measure the minimum duration when a task has a timeout or delay. Add CLOCK_RES to test_asyncio.utils. Patch by Victor Stinner. - gh-110033: Fix test_interprocess_signal() of test_signal. Make sure that the subprocess.Popen object is deleted before the test raising an exception in a signal handler. Otherwise, Popen.__del__() can get the exception which is logged as ... changelog too long, skipping 106 lines ... multissltests to use 1.1.1w, 3.0.11, and 3.1.3. ==== raspberrypi-firmware ==== Version update (2023.04.25 -> 2023.11.21) - Update to 8972935 (2023-11-21) * firmware: config: Add [pi5] to config.txt on 2711 and earlier platforms * firmware: arm_dt: Add support for the HAT map See: raspberrypi/linux#5610 * firmware: arm_dt: Ensure strings are NUL-terminated * firmware: video_decode: Add support for 32bpp RGB conversion * firmware: Image format patches * firmware: platform: Fixes for arm side display when throttling * firmware: dtoverlay: Support literal assignments of path strings * firmware: arm_loader: Fix non-standard console UARTs * firmware: arm_loader: Improve UART console selection * firmware: arm_loader: Remove unwanted assert * firmware: arm_loader: initramfs must match the kernel * firmware: arm_loader: Don't overwrite kernel path, check before loading stub * firmware: arm_loader: Use os_prefix when looking for stubs * firmware: arm_loader: Add auto_initramfs support * firmware: arm_loader: Set WiFi MAC address if all zeroes * firmware: platform: Don't set GPIOs 28&29 to RGMII if NO_RGMII trait is set ==== raspberrypi-firmware-config ==== Version update (2023.04.25 -> 2023.11.21) - Update to 8972935 (2023-11-21) * firmware: config: Add [pi5] to config.txt on 2711 and earlier platforms * firmware: arm_dt: Add support for the HAT map See: raspberrypi/linux#5610 * firmware: arm_dt: Ensure strings are NUL-terminated * firmware: video_decode: Add support for 32bpp RGB conversion * firmware: Image format patches * firmware: platform: Fixes for arm side display when throttling * firmware: dtoverlay: Support literal assignments of path strings * firmware: arm_loader: Fix non-standard console UARTs * firmware: arm_loader: Improve UART console selection * firmware: arm_loader: Remove unwanted assert * firmware: arm_loader: initramfs must match the kernel * firmware: arm_loader: Don't overwrite kernel path, check before loading stub * firmware: arm_loader: Use os_prefix when looking for stubs * firmware: arm_loader: Add auto_initramfs support * firmware: arm_loader: Set WiFi MAC address if all zeroes * firmware: platform: Don't set GPIOs 28&29 to RGMII if NO_RGMII trait is set - Add _multibuild to define 2nd spec file as additional flavor. Eliminates the need for source package links in OBS. ==== raspberrypi-firmware-dt ==== Version update (2023.05.02 -> 2023.11.21) - Update to 77f41f30fe (2023-11-21): * switch to 6.6 branch - Rebase patches: * 0001-ARM-dts-bcm2711-rpi-Reuse-bcm2836-vchiq-driver.patch * 0001-ARM-dts-bcm27xx-Use-better-name-for-spidev.patch ==== ruby-common ==== - gem_cleanup macro: yet another place which got hit by ruby 3.3 replace `gem env gemdir` with `ruby -r rubygems -e 'puts Gem.default_dir'` - Fix for the previous change. we need to set the GEM_HOME before even wrapping into the re-exec with ruby. - add workaround for https://github.com/rubygems/rubygems/commit/64273fd7e3 for now we will always set GEM_HOME to ensure that this new logic does not break our paths - ensure that gems built against an jemalloc enabled ruby also pulls a ruby version that is built with jemalloc ==== selinux-policy ==== Version update (20231030 -> 20231124) Subpackages: selinux-policy-targeted - Update to version 20231124: * Allow virtnetworkd_t to execute bin_t (bsc#1216903) - Add new modules that were missed in the last update to modules-mls-contrib.conf - Add new modules that were missed in the last update to modules-targeted-contrib.conf ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Ensure max_link_jobs and max_compile_jobs have valid values even when %{jobs} is not defined (like when building outside of OBS). ==== webkit2gtk3-soup2 ==== Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Ensure max_link_jobs and max_compile_jobs have valid values even when %{jobs} is not defined (like when building outside of OBS). ==== yast2-trans ==== Version update (84.87.20231117.f12231d4de -> 84.87.20231121.7869d671a6) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20231121.7869d671a6: * New POT for text domain 'hana-ha'.

1 0

New Arm Tumbleweed snapshot 20231122 released!
by Guillaume Gardet 23 Nov '23

23 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: ImageMagick (7.1.1.20 -> 7.1.1.21) aria2 (1.36.0 -> 1.37.0) dhcp ell (0.59 -> 0.60) fwupd (1.9.8 -> 1.9.9) git (2.42.1 -> 2.43.0) grub2 kernel-source (6.6.1 -> 6.6.2) libX11 libblockdev libfido2 (1.13.0 -> 1.14.0) libheif (1.17.3 -> 1.17.5) librdkafka (2.1.1 -> 2.3.0) llvm17 (17.0.4 -> 17.0.5) mariadb-connector-c (3.3.5 -> 3.3.7) mdadm nghttp2 nvidia-open-driver-G06-signed (545.29.02_k6.6.1_1 -> 545.29.02_k6.6.2_1) openvpn (2.6.7 -> 2.6.8) ovmf p11-kit (0.25.2 -> 0.25.3) python-numpy (1.25.2 -> 1.26.2) python-pip (23.2.1 -> 23.3.1) readline sssd transactional-update (4.4.0 -> 4.5.0) xen (4.18.0_02 -> 4.18.0_04) xkeyboard-config yast2-trans (84.87.20231104.b73ad6fbc9 -> 84.87.20231117.f12231d4de) === Details === ==== ImageMagick ==== Version update (7.1.1.20 -> 7.1.1.21) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.21 https://github.com/ImageMagick/Website/blob/main/ChangeLog.md - modified patches [bsc#1217014][bsc#1216811] % ImageMagick-s390x-disable-tests.patch (refreshed) - deleted patches - ImageMagick-correct-time-to-live.patch (upstreamed) - added patches https://github.com/ImageMagick/ImageMagick/commit/8f3c56fabc619c1672865257e… https://github.com/ImageMagick/ImageMagick/commit/3a7b915d9a810ce742987b37c… + ImageMagick-infinite-resource-time-limit.patch ==== aria2 ==== Version update (1.36.0 -> 1.37.0) Subpackages: libaria2-0 - Update to version 1.37.0 * Fix header in --http-accept-gzip documentation * Allow empty dist name in bencode which is needed for hybrid torrent * Fix undefined behavior/crash in GZipEncoder * Fix Metalink4 parsing with foreign namespaces * fix wrong dht.dat binary file structure in docs * Increase ByteArrayDiskWriter maximum size * Logger: Fix format string overflow in writeHeader() * Cap infoHashLength in .aria2 file * Various documentation fixes and rewords ==== dhcp ==== Subpackages: dhcp-relay dhcp-server - Remove dhclient-script (boo#1216822). ==== ell ==== Version update (0.59 -> 0.60) - update to 0.60: * Fix issue with missing NETLINK_EXT_ACK definition. * Fix issue with incorrect derivation of ECC compressed points. * Add support for ECC usage from SPAKE2+ key exchange protocol. ==== fwupd ==== Version update (1.9.8 -> 1.9.9) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.9 (boo#1217295): + This release adds the following features: - Add a new generic request for the device power cable. + This release adds support for the following hardware: - Lenovo X1 Yoga Gen7 530E. - Advantech BMC devices. ==== git ==== Version update (2.42.1 -> 2.43.0) Subpackages: git-core git-email git-web perl-Git - update to 2.43.0: * The "--rfc" option of "git format-patch" used to be a valid way to override an earlier "--subject-prefix=<something>" on the command line and replace it with "[RFC PATCH]", but from this release, it merely prefixes the string "RFC " in front of the given subject prefix. If you are negatively affected by this change, please use "--subject-prefix=PATCH --rfc" as a replacement. * In Git 2.42, "git rev-list --stdin" learned to take non-revisions (like "--not") from the standard input, but the way such a "--not" was handled was quite confusing, which has been rethought. The updated rule is that "--not" given from the command line only affects revs given from the command line that comes but not revs read from the standard input, and "--not" read from the standard input affects revs given from the standard input and not revs given from the command line. * A message written in olden time prevented a branch from getting checked out, saying it is already checked out elsewhere. But these days, we treat a branch that is being bisected or rebased just like a branch that is checked out and protect it from getting modified with the same codepath. The message has been rephrased to say that the branch is "in use" to avoid confusion. * Hourly and other schedules of "git maintenance" jobs are randomly distributed now. * "git cmd -h" learned to signal which options can be negated by listing such options like "--[no-]opt". * The way authentication related data other than passwords (e.g., oauth token and password expiration data) are stored in libsecret keyrings has been rethought. * Update the libsecret and wincred credential helpers to correctly match which credential to erase; they erased the wrong entry in some cases. * Git GUI updates. * "git format-patch" learned a new "--description-file" option that lets cover letter description to be fed; this can be used on detached HEAD where there is no branch description available, and also can override the branch description if there is one. * Use of the "--max-pack-size" option to allow multiple packfiles to be created is now supported even when we are sending unreachable objects to cruft packs. * "git format-patch --rfc --subject-prefix=<foo>" used to ignore the "--subject-prefix" option and used "[RFC PATCH]"; now we will add "RFC" prefix to whatever subject prefix is specified. * "git log --format" has been taught the %(decorate) placeholder for further customization over what the "--decorate" option offers. * The default log message created by "git revert", when reverting a commit that records a revert, has been tweaked, to encourage people to describe complex "revert of revert of revert" situations better in their own words. * The command-line completion support (in contrib/) learned to complete "git commit --trailer=" for possible trailer keys. * "git update-index" learned the "--show-index-version" option to inspect the index format version used by the on-disk index file. * "git diff" learned the "diff.statNameWidth" configuration variable, to give the default width for the name part in the "--stat" output. * "git range-diff --notes=foo" compared "log --notes=foo --notes" of the two ranges, instead of using just the specified notes tree, which has been corrected to use only the specified notes tree. * The command line completion script (in contrib/) can be told to complete aliases by including ": git <cmd> ;" in the alias to tell it that the alias should be completed in a similar way to how "git <cmd>" is completed. The parsing code for the alias has been loosened to allow ';' without an extra space before it. * "git for-each-ref" and friends learned to apply mailmap to authorname and other fields in a more flexible way than using separate placeholder letters like %a[eElL] every time we want to come up with small variants. * "git repack" machinery learned to pay attention to the "--filter=" option. * "git repack" learned the "--max-cruft-size" option to prevent cruft packs from growing without bounds. * "git merge-tree" learned to take strategy backend specific options via the "-X" option, like "git merge" does. * "git log" and friends learned the "--dd" option that is a short-hand for "--diff-merges=first-parent -p". * The attribute subsystem learned to honor the "attr.tree" configuration variable that specifies which tree to read the .gitattributes files from. * "git merge-file" learns a mode to read three variants of the contents to be merged from blob objects. * see https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.4… ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Update the TPM2 patches to skip the persistent SRK handle if not specified and improve the error messages + 0003-protectors-Add-TPM2-Key-Protector.patch + 0005-util-grub-protect-Add-new-tool.patch + 0004-tpm2-Support-authorized-policy.patch ==== kernel-source ==== Version update (6.6.1 -> 6.6.2) - Linux 6.6.2 (bsc#1012628). - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation (bsc#1012628). - numa: Generalize numa_map_to_online_node() (bsc#1012628). - sched/topology: Fix sched_numa_find_nth_cpu() in CPU-less case (bsc#1012628). - sched/topology: Fix sched_numa_find_nth_cpu() in non-NUMA case (bsc#1012628). - sched/fair: Fix cfs_rq_is_decayed() on !SMP (bsc#1012628). - iov_iter, x86: Be consistent about the __user tag on copy_mc_to_user() (bsc#1012628). - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0 (bsc#1012628). - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max = 0 (bsc#1012628). - objtool: Propagate early errors (bsc#1012628). - sched: Fix stop_one_cpu_nowait() vs hotplug (bsc#1012628). - nfsd: Handle EOPENSTALE correctly in the filecache (bsc#1012628). - vfs: fix readahead(2) on block devices (bsc#1012628). - writeback, cgroup: switch inodes with dirty timestamps to release dying cgwbs (bsc#1012628). - x86/srso: Fix SBPB enablement for (possible) future fixed HW (bsc#1012628). - x86/srso: Print mitigation for retbleed IBPB case (bsc#1012628). - x86/srso: Fix vulnerability reporting for missing microcode (bsc#1012628). - x86/srso: Fix unret validation dependencies (bsc#1012628). - futex: Don't include process MM in futex key on no-MMU (bsc#1012628). - x86/numa: Introduce numa_fill_memblks() (bsc#1012628). - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window (bsc#1012628). - cgroup/cpuset: Fix load balance state in update_partition_sd_lb() (bsc#1012628). - x86/sev-es: Allow copy_from_kernel_nofault() in earlier boot (bsc#1012628). - x86/boot: Fix incorrect startup_gdt_descr.size (bsc#1012628). - cpu/SMT: Make SMT control more robust against enumeration failures (bsc#1012628). - x86/apic: Fake primary thread mask for XEN/PV (bsc#1012628). - srcu: Fix callbacks acceleration mishandling (bsc#1012628). - drivers/clocksource/timer-ti-dm: Don't call clk_get_rate() in stop function (bsc#1012628). - x86/nmi: Fix out-of-order NMI nesting checks & false positive warning (bsc#1012628). - pstore/platform: Add check for kstrdup (bsc#1012628). - perf: Optimize perf_cgroup_switch() (bsc#1012628). - selftests/x86/lam: Zero out buffer for readlink() (bsc#1012628). - PCI/MSI: Provide stubs for IMS functions (bsc#1012628). - string: Adjust strtomem() logic to allow for smaller sources (bsc#1012628). - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated() (bsc#1012628). - irqchip/sifive-plic: Fix syscore registration for multi-socket systems (bsc#1012628). - wifi: ath12k: fix undefined behavior with __fls in dp (bsc#1012628). - wifi: cfg80211: add flush functions for wiphy work (bsc#1012628). - wifi: mac80211: move radar detect work to wiphy work (bsc#1012628). - wifi: mac80211: move scan work to wiphy work (bsc#1012628). - wifi: mac80211: move offchannel works to wiphy work (bsc#1012628). - wifi: mac80211: move sched-scan stop work to wiphy work (bsc#1012628). - wifi: mac80211: fix RCU usage warning in mesh fast-xmit (bsc#1012628). - wifi: cfg80211: fix off-by-one in element defrag (bsc#1012628). - wifi: mac80211: fix # of MSDU in A-MSDU calculation (bsc#1012628). - wifi: iwlwifi: honor the enable_ini value (bsc#1012628). - wifi: iwlwifi: don't use an uninitialized variable (bsc#1012628). - i40e: fix potential memory leaks in i40e_remove() (bsc#1012628). - iavf: Fix promiscuous mode configuration flow messages (bsc#1012628). - selftests/bpf: Correct map_fd to data_fd in tailcalls (bsc#1012628). - bpf, x64: Fix tailcall infinite loop (bsc#1012628). - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush() (bsc#1012628). - udp: introduce udp->udp_flags (bsc#1012628). - udp: move udp->no_check6_tx to udp->udp_flags (bsc#1012628). - udp: move udp->no_check6_rx to udp->udp_flags (bsc#1012628). - udp: move udp->gro_enabled to udp->udp_flags (bsc#1012628). - udp: add missing WRITE_ONCE() around up->encap_rcv (bsc#1012628). - udp: move udp->accept_udp_{l4|fraglist} to udp->udp_flags (bsc#1012628). - udp: lockless UDP_ENCAP_L2TPINUDP / UDP_GRO (bsc#1012628). - udp: annotate data-races around udp->encap_type (bsc#1012628). - udplite: remove UDPLITE_BIT (bsc#1012628). - udplite: fix various data-races (bsc#1012628). - selftests/bpf: Skip module_fentry_shadow test when bpf_testmod is not available (bsc#1012628). - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed (bsc#1012628). ... changelog too long, skipping 987 lines ... - commit 9ecdaa5 ==== libX11 ==== Subpackages: libX11-6 libX11-data libX11-xcb1 - this update is needed due to jsc#PED-7282; it includes the security fix for CVE-2022-3555 (bsc#1204425, bsc#1208881) and a fix for a race condition in libX11 that causes various applications to crash randomly (boo#1181963) ==== libblockdev ==== Subpackages: libbd_btrfs3 libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3 - Add %{_libdir}/libbd_s390.so for s390x because missing file identitied ==== libfido2 ==== Version update (1.13.0 -> 1.14.0) - update to 1.14.0: * fido2-cred -M, fido2-token -G: support raw client data via -w flag. * New API calls: * * fido_assert_authdata_raw_len; * * fido_assert_authdata_raw_ptr; * * fido_assert_set_winhello_appid. - add keyring for gpg validation ==== libheif ==== Version update (1.17.3 -> 1.17.5) Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif1 - update to 1.17.5: * Fixes installation of the Gnome "heif.thumbnailer" config file. - update to 1.17.4: * ispe boxes in AVIF images with clap boxes were written with the wrong size (would only happen with svt-av1 encoder), always output MIAF brand for AVIF images * fix kvazaar encoding with odd image sizes and encodings with non-4:2:0 chroma ==== librdkafka ==== Version update (2.1.1 -> 2.3.0) - update to 2.3.0: * Partial support of topic identifiers. Topic identifiers in metadata response available through the new `rd_kafka_DescribeTopics` function * KIP-117 Add support for AdminAPI `DescribeCluster()` and `DescribeTopics()` * Return authorized operations in Describe Responses. * KIP-580: Added Exponential Backoff mechanism for retriable requests with `retry.backoff.ms` as minimum backoff and `retry.backoff.max.ms` as the maximum backoff, with 20% jitter (#4422). * Fixed ListConsumerGroupOffsets not fetching offsets for all the topics in a group with Apache Kafka version below 2.4.0. * Add missing destroy that leads to leaking partition structure memory when there are partition leader changes and a stale leader epoch is received (#4429). * Fix a segmentation fault when closing a consumer using the cooperative-sticky assignor before the first assignment * Fix for insufficient buffer allocation when allocating rack information (@wolfchimneyrock, #4449). * Fix for infinite loop of OffsetForLeaderEpoch requests on quick leader changes. (#4433). * Fix for stored offsets not being committed if they lacked the leader epoch (#4442). * Upgrade OpenSSL to v3.0.11 (while building from source) with various security fixes, check the release notes * Fix to ensure permanent errors during offset validation continue being retried and don't cause an offset reset (#4447). * Fix to ensure max.poll.interval.ms is reset when rd_kafka_poll is called with consume_cb (#4431). * Fix for idempotent producer fatal errors, triggered after a possibly persisted message state (#4438). * Fix `rd_kafka_query_watermark_offsets` continuing beyond timeout expiry (#4460). * Fix `rd_kafka_query_watermark_offsets` not refreshing the partition leader after a leader change and subsequent `NOT_LEADER_OR_FOLLOWER` error (#4225). ==== llvm17 ==== Version update (17.0.4 -> 17.0.5) - Update to version 17.0.5. * This release contains bug-fixes for the LLVM 17.0.0 release. This release is API and ABI compatible with 17.0.0. - Rebase llvm-do-not-install-static-libraries.patch. - Also test clang-tools-extra (at least most parts) and lld. - Adapt test in lld-default-sha1.patch. - Don't disable testing if qemu_user_space_build has been set to 0. ==== mariadb-connector-c ==== Version update (3.3.5 -> 3.3.7) - update to 3.3.7: * https://mariadb.com/kb/en/mariadb-connector-c-3-3-7-release-notes/ * https://mariadb.com/kb/en/mariadb-connector-c-3-3-6-release-notes/ ==== mdadm ==== - No longer recommend smtp-daemon: this was a remainder from the cron configuration, which was removed back in 2018. ==== nghttp2 ==== - fix unversioned provides to be in sync with nghttp3 ==== nvidia-open-driver-G06-signed ==== Version update (545.29.02_k6.6.1_1 -> 545.29.02_k6.6.2_1) - no longer try to overwrite NVreg_OpenRMEnableSupporteGpus driver option setting; apparently it's ignored by the driver (boo#1215981, comment#26) - use different modprobe.d config file to resolve conflict with older driver package (boo#1217370); overwrite NVreg_OpenRMEnableSupporteGpus driver option setting (disable it), since letting it enabled is supposed to break booting (boo#1215981, comment#23) ==== openvpn ==== Version update (2.6.7 -> 2.6.8) - update to 2.6.8: * SIGSEGV crash: Do not check key_state buffers that are in S_UNDEF state - the new sanity check function introduced in 2.6.7 sometimes tried to use a NULL pointer after an unsuccessful TLS handshake * CVE-2023-46850 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly use a send buffer after it has been free()d in some circumstances, causing some free()d memory to be sent to the peer. All configurations using TLS (e.g. not using --secret) are affected by this issue. * CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore --fragment configuration in some circumstances, leading to a division by zero when --fragment is used. On platforms where division by zero is fatal, this will cause an OpenVPN crash. * DCO: warn if DATA_V1 packets are sent by the other side - this a hard incompatibility between a 2.6.x client connecting to a 2.4.0-2.4.4 server, and the only fix is to use --disable-dco. * Remove OpenSSL Engine method for loading a key. This had to be removed because the original author did not agree to relicensing the code with the new linking exception added. This was a somewhat obsolete feature anyway as it only worked with OpenSSL 1.x, which is end-of-support. * add warning if p2p NCP client connects to a p2mp server - this is a combination that used to work without cipher negotiation (pre 2.6 on both ends), but would fail in non-obvious ways with 2.6 to 2.6. * add warning to --show-groups that not all supported groups are listed (this is due the internal enumeration in OpenSSL being a bit weird, omitting X448 and X25519 curves). * --dns: remove support for exclude-domains argument (this was a new 2.6 option, with no backend support implemented yet on any platform, and it turns out that no platform supported it at all - so remove option again) * warn user if INFO control message too long, do not forward to management client (safeguard against protocol-violating server implementations) * DCO-WIN: get and log driver version (for easier debugging). * print "peer temporary key details" in TLS handshake * log OpenSSL errors on failure to set certificate, for example if the algorithms used are in acceptable to OpenSSL (misleading message would be printed in cryptoapi / pkcs11 scenarios) * add CMake build system for MinGW and MSVC builds * remove old MSVC build system * improve cmocka unit test building for Windows ==== ovmf ==== Subpackages: qemu-uefi-aarch64 - Sync change log to prepare for sending edk2-stable202308 ovmf to SLE15-SP6 (jsc#PED-6233, jsc#PED-5523) - Removed the following backported patches because they are merged to edk2 mainline: - ovmf-SecurityPkg-DxeImageVerificationLib-Check-result-of-.patch 494127613b SecurityPkg/DxeImageVerificationLib: Check result of GetEfiGlobalVariable2 (CVE-2019-14560, bsc#1174246) ==== p11-kit ==== Version update (0.25.2 -> 0.25.3) Subpackages: libp11-kit0 p11-kit-tools - Update to 0.25.3: * rpc: fix serialization of NULL mechanism pointer [#601] * fix meson build failure in macOS (appleframeworks not found) [#603] ==== python-numpy ==== Version update (1.25.2 -> 1.26.2) - Update to 1.26.2: * TYP: Trim down the ``_NestedSequence.__getitem__`` signature * BUG: fix choose refcount leak * TST: fix running the test suite in builds without BLAS/LAPACK * BUG: random: Fix generation of nan by dirichlet. * TST: fix distutils tests for deprecations in recent setuptools... * MAINT: Remove versioneer * MAINT: Pin upper version of sphinx. * ENH: Add prefix to _ALIGN Macro * BUG: cleanup warnings [skip azp][skip circle][skip travis][skip... * BUG: ``asv dev`` has been removed, use ``asv run``. * BUG: Fix meson build failure due to unchanged inplace auto-generated... * BUG: fix issue with git-version script, needs a shebang to run * BUG: Use a default assignment for git_hash [skip ci] * BUG: fix NPY_cast_info error handling in choose * BUG: Fix common block handling in f2py * BUG: Fix assumed length f2py regression * MAINT: Harmonize fortranobject * TYP: add kind argument to numpy.isin type specification * BUG: fix comparisons between masked and unmasked structured arrays * ENH: Adopt new macOS Accelerate BLAS/LAPACK Interfaces, including... * TYP: Add the missing ``casting`` keyword to ``np.clip`` * TST: convert cython test from setup.py to meson * MAINT: Fixup ``fromnumeric.pyi`` * BUG, ENH: Fix ``iso_c_binding`` type maps * TYP: Allow ``binary_repr`` to accept any object * TYP: Explicitly declare ``dtype`` and ``generic`` hashable * ENH: Refactor the typing "reveal" tests using `typing.assert_type` * ENH: ``meson`` backend for ``f2py`` * MAINT: Refactor partial load Workaround for Clang * BUG: Fix data stmt handling for complex values in f2py * TYP: Add annotations for the py3.12 buffer protocol * DOC: Updated the f2py docs to remove a note on -fimplicit-none * BUG: Fix SIMD f32 trunc test on s390x when baseline is none * BUG: Fix DATA statements for f2py * API: Add ``NumpyUnpickler`` for backporting * MAINT: Xfail test failing on PyPy. * ENH: meson: implement BLAS/LAPACK auto-detection * DOC: add a 1.26.1 release notes section for BLAS/LAPACK build * MAINT: Backport ``numpy._core`` stubs. Remove ``NumpyUnpickler`` * BUG: loongarch doesn't use REAL(10) * MAINT: align test_dispatcher s390x targets with _umath_tests_mtargets * ENH: Add Cython enumeration for NPY_FR_GENERIC * MAINT: Remove unhelpful error replacements from ``import_array()`` * BUG: Avoid intp conversion regression in Cython 3 * MAINT: Add missing ``noexcept`` to shuffle helpers * DOC: Fix license identifier for OpenBLAS * BLD: improve detection of Netlib libblas/libcblas/liblapack * MAINT: Make bitfield integers unsigned * BUG: Make n a long int for np.random.multinomial * BUG: ensure passing ``np.dtype`` to itself doesn't crash - Update BuildRequires as appropiate, build system changed from setuptools to meson. - Drop patch ignore-pkg_resources-deprecation.patch, no longer required - f2py3 no longer shipped ==== python-pip ==== Version update (23.2.1 -> 23.3.1) - Update to 23.3.1: - Bug Fixes - Handle a timezone indicator of Z when parsing dates in the self check. (#12338) - Fix bug where installing the same package at the same time with multiple pip processes could fail. (#12361) - Update to 23.3: - Process - Added reference to vulnerability reporting guidelines to pip's security policy. - Features - Improve extras resolution for multiple constraints on same base package. (#11924) - Improve use of datastructures to make candidate selection 1.6x faster. (#12204) - Allow pip install --dry-run to use platform and ABI overriding options. (#12215) - Add is_yanked boolean entry to the installation report (--report) to indicate whether the requirement was yanked from the index, but was still selected by pip conform to PEP 592. (#12224) - Bug Fixes - Ignore errors in temporary directory cleanup (show a warning instead). (#11394) - Normalize extras according to PEP 685 from package metadata in the resolver for comparison. This ensures extras are correctly compared and merged as long as the package providing the extra(s) is built with values normalized according to the standard. Note, however, that this does not solve cases where the package itself contains unnormalized extra values in the metadata. (#11649) - Prevent downloading sdists twice when PEP 658 metadata is present. (#11847) - Include all requested extras in the install report (--report). (#11924) - Removed uses of datetime.datetime.utcnow from non-vendored code. (#12005) - Consistently report whether a dependency comes from an extra. (#12095) - Fix completion script for zsh (#12166) - Fix improper handling of the new onexc argument of shutil.rmtree() in Python 3.12. (#12187) - Filter out yanked links from the available versions error message: "(from versions: 1.0, 2.0, 3.0)" will not contain yanked versions conform PEP 592. The yanked versions (if any) will be mentioned in a separate error message. (#12225) - Fix crash when the git version number contains something else than digits and dots. (#12280) - Use -r=... instead of -r ... to specify references with Mercurial. (#12306, CVE-2023-5752, bsc#1217353) - Redact password from URLs in some additional places. (#12350) - pip uses less memory when caching large packages. As a result, there is a new on-disk cache format stored in a new directory ($PIP_CACHE_DIR/http-v2). (#2984) - Vendored Libraries - Upgrade certifi to 2023.7.22 - Add truststore 0.8.0 - Upgrade urllib3 to 1.26.17 - Improved Documentation - Document that pip search support has been removed from PyPI (#12059) - Clarify --prefer-binary in CLI and docs (#12122) - Document that using OS-provided Python can cause pip's test suite to report false failures. (#12334) - Adjust pip-shipped-requests-cabundle.patch. ==== readline ==== Subpackages: libreadline8 readline-doc - Add upstream patch readline82-002 * It's possible for readline to try to zero out a line that's not null- terminated, leading to a memory fault. - Add upstream patch readline82-003 - Add upstream patch readline82-004 - Add upstream patch readline82-005 * If an application is using readline in callback mode, and a signal arrives after readline checks for it in rl_callback_read_char() but before it restores the application's signal handlers, it won't get processed until the next time the application calls rl_callback_read_char(). Readline needs to check for and resend any pending signals after restoring the application's signal handlers. - Add upstream patch readline82-006 * This is a variant of the same issue as the one fixed by patch 5. In this case, the signal arrives and is pending before readline calls rl_getc(). When this happens, the pending signal will be handled by the loop, but may alter or destroy some state that the callback uses. Readline needs to treat this case the same way it would if a signal interrupts pselect/select, so compound operations like searches and reading numeric arguments get cleaned up properly. - Add upstream patch readline82-007 * If readline is called with no prompt, it should display a newline if return is typed on an empty line. It should still suppress the final newline if return is typed on the last (empty) line of a multi-line command. ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Adapt spec file for SLE 15 SP6/Leap 15.6; (jsc#PED-6714); * Remove package sssd-common, merged into sssd * Continue building deprecated files provider and infopipe responder * Disable selinux and semanage * Provide rcsssd shortcut ==== transactional-update ==== Version update (4.4.0 -> 4.5.0) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit tukitd - Version 4.5.0 - libtukit: Use permissions of real /etc when creating overlay [bsc#1215878] - libtukit, tukit: Support "rollback" via library now - tukitd: Implement Snapshot delete and rollback methods - tukit: Check for missing arguments with "close" and "abort" commands - t-u: Warn user when using "kdump" if it isn't configured to avoid confusion with "setup-kdump" [boo#1215725] - t-u: Abort if mkdumprd run is not successful - t-u: Use defaut from config file if t-u is called without arguments [gh#openSUSE/transactional-update#101] - Improved README.md [gh#openSUSE/transactional-update#59] and API docs - Code cleanup ==== xen ==== Version update (4.18.0_02 -> 4.18.0_04) Subpackages: xen-libs xen-tools-domU - Enable the Kconfig options REQUIRE_NX and DIT_DEFAULT to provide better hypervisor security xen.spec - Upstream bug fixes (bsc#1027519) 654370e2-x86-x2APIC-remove-ACPI_FADT_APIC_CLUSTER-use.patch 65437103-x86-i8259-dont-assume-IRQs-always-target-CPU0.patch 655b2ba9-fix-sched_move_domain.patch - Pass XEN_BUILD_DATE + _TIME to override build date (boo#1047218) ==== xkeyboard-config ==== - the current source supersedes old sle15-sp5 patches (see changelog below) * U_Map-evdev-keycodes-KEY_RFKILL-and-KEY_WWAN-to-XF86RF.patch * U_Updating-Old-Hungarian.patch * U_Fix-media-keys-lag-on-ABNT2-keyboard.patch * U_Add-the-new-AZERTY-layout-norm-NF-Z71-300.patch - includes fixes for * missing mappings for evdev keys KEY_RFKILL and KEY_WWAN (boo#1123784) * capslock in Old Hungarian layout (boo#1153774) * wrong keyboard mapping causing input delays with ABNT2 keyboards (bsc#1191242) - includes backport of French standardized AZERTY layout (AFNOR: NF Z71-300) (bsc#1188867) - supersedes a patch called 'U_fixed-keycode-comment.patch' from sle15-sp5, which wasn't applied there any longer either. <I247> = 247; // #define KEY_UWB 239 is defined in keycodes/evdev since a long time ... ==== yast2-trans ==== Version update (84.87.20231104.b73ad6fbc9 -> 84.87.20231117.f12231d4de) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20231117.f12231d4de: * New POT for text domain 'cc'.

1 0

TW on Raspi 4
by DL3VL 22 Nov '23

22 Nov '23

Hello list, after struggling with Ubuntu LTS 22.04.3 on my Raspi 4 for a while I ended at a point with a RTL_433 stick not working because of a bug (after updating) in the USB system (Kernel up to latest 5.15.0-1043). So I consider trying Suse TW. I found this page: http://download.opensuse.org/ports/aarch64/tumbleweed/appliances/ Is this the right place? Which appliance to choose for starting? JeOS, minimal? My platform is headless, no X11 is needed but WLAN and some Python stuff. Thanks in advance Joe

3 2

New Arm Tumbleweed snapshot 20231120 released!
by Guillaume Gardet 22 Nov '23

22 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: dracut (059+suse.511.g0bdb16ac -> 059+suse.522.g0fc72191) drbd gnutls (3.8.1 -> 3.8.2) hplip inkscape (1.3 -> 1.3.1) libksba (1.6.4 -> 1.6.5) libreoffice (7.6.2.1 -> 7.6.3.1) libsolv (0.7.25 -> 0.7.26) libxml2 (2.11.5 -> 2.11.6) libxml2-python (2.11.5 -> 2.11.6) rubygem-google-protobuf (3.23.1 -> 3.25.1) rubygem-rgl (0.5.10 -> 0.6.6) rubygem-webrick (1.7.0 -> 1.8.1) sssd texlive virglrenderer === Details === ==== dracut ==== Version update (059+suse.511.g0bdb16ac -> 059+suse.522.g0fc72191) - Update to version 059+suse.522.g0fc72191: * fix(install.d): do not create rescue entry when working with UKIs * fix(install.d): skip if $KERNEL_INSTALL_INITRD_GENERATOR is set otherwise * feat(resume): do not attempt to install systemd-hibernate-resume@.service * feat(install.d): add sort-key field to rescue BLS entries * fix(install.d): do not generate a new initrd if any INITRD_FILE is provided * fix(install.d): do not create initramfs if the supplied image is UKI * feat(install.d): allow using dracut in combination with ukify * fix(resume): add new systemd-hibernate-resume.service * feat(systemd): install systemd-executor ==== drbd ==== - drbd: fix build error against kernel v6.6.1 (boo#1217078) * add upstream patches + 0021-compat-sock-Remove-sendpage-in-favour-of-sendmsg-MSG.patch + 0022-compat-block-replace-fmode_t-with-a-block-specific-t.patch + 0023-compat-genetlink-remove-userhdr-from-struct-genl_inf.patch * remove patch which are already included in upstream patches: - bsc-1215699_fix-build-error-against-kernel-v6.5.4.patch ==== gnutls ==== Version update (3.8.1 -> 3.8.2) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.2: [bsc#1217277, CVE-2023-5981] * libgnutls: Fix timing side-channel inside RSA-PSK key exchange. [GNUTLS-SA-2023-10-23, CVSS: medium] [CVE-2023-5981] * libgnutls: Add API functions to perform ECDH and DH key agreement The functionality has been there for a long time though they were not available as part of the public API. This enables applications to implement custom protocols leveraging non-interactive key agreement with ECDH and DH. * libgnutls: Added support for AES-GCM-SIV ciphers (RFC 8452) The new algorithms GNUTLS_CIPHER_AES_128_SIV_GCM and GNUTLS_CIPHER_AES_256_SIV_GCM have been added to be used through the AEAD interface. Note that, unlike GNUTLS_CIPHER_AES_{128,256}_SIV_GCM, the authentication tag is appended to the ciphertext, not prepended. * libgnutls: transparent KTLS support is extended to FreeBSD kernel The kernel TLS feature can now be enabled on FreeBSD as well as Linux when compiled with the --enable-ktls configure option. * gnutls-cli: New option --starttls-name Depending on deployment, application protocols such as XMPP may require a different origin address than the external address to be presented prior to STARTTLS negotiation. The --starttls-name can be used to specify specify the addresses separately. * API and ABI modifications: - gnutls_pubkey_import_dh_raw: New function - gnutls_privkey_import_dh_raw: New function - gnutls_pubkey_export_dh_raw: New function - gnutls_privkey_export_dh_raw: New function - gnutls_x509_privkey_import_dh_raw: New function - gnutls_privkey_derive_secret: New function - GNUTLS_KEYGEN_DH: New enum member of gnutls_keygen_types_t - GNUTLS_CIPHER_AES_128_SIV_GCM: Added - GNUTLS_CIPHER_AES_256_SIV_GCM: Added * Rebase gnutls-FIPS-140-3-references.patch * Remove upstream: gnutls-GNUTLS_NO_EXTENSIONS-compatibility.patch ==== hplip ==== Subpackages: hplip-hpijs hplip-sane hplip-udev-rules - hppsfilter: booklet printing: change insecure fixed /tmp file paths (bsc#1214399) * add hppsfilter-booklet-printing-change-insecure-fixed-tm.patch ==== inkscape ==== Version update (1.3 -> 1.3.1) Subpackages: inkscape-extensions-extra inkscape-extensions-fig inkscape-extensions-gimp - Update to version 1.3.1: + more than 30 crash/freeze fixes + a new feature to disable snapping to grid lines + a new feature to split text into its letters + the Shape Builder tool now creates an appropriate number of nodes + PDF files that could not be opened with Inkscape 1.3 can now be opened / imported again + See the full release notes https://inkscape.org/doc/release_notes/1.3.1/Inkscape_1.3.1.html ==== libksba ==== Version update (1.6.4 -> 1.6.5) - Update to 1.6.5: * Add Brainpool curve detection using parameters with compressed base point. [rKeb23f853f178] * New configure option --with-libtool-modification. [T6619] * Release-info: https://dev.gnupg.org/T6822 ==== libreoffice ==== Version update (7.6.2.1 -> 7.6.3.1) Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-en libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit - Update to 7.6.3.1: https://wiki.documentfoundation.org/Releases/7.6.3/RC1 https://wiki.documentfoundation.org/Releases/7.6.2/RC2 - Update bundled dependencies: libcmis-0.5.2.tar.xz -> libcmis-0.6.0.tar.xz poppler-23.06.0.tar.xz -> poppler-23.09.0.tar.xz - Add bundled() markers ==== libsolv ==== Version update (0.7.25 -> 0.7.26) Subpackages: libsolv-tools python3-solv ruby-solv - fix evr roundtrip in testcases - do not use deprecated headerUnload with newer rpm versions - bump version to 0.7.26 ==== libxml2 ==== Version update (2.11.5 -> 2.11.6) Subpackages: libxml2-2 libxml2-tools - Update to version 2.11.6: * Regressions: - threads: Fix --with-thread-alloc - xinclude: Fix âlastâ pointer in xmlXIncludeCopyNode * Bug fixes: parser: Fix potential use-after-free in xmlParseCharDataInternal ==== libxml2-python ==== Version update (2.11.5 -> 2.11.6) - Update to version 2.11.6: * Regressions: - threads: Fix --with-thread-alloc - xinclude: Fix âlastâ pointer in xmlXIncludeCopyNode * Bug fixes: parser: Fix potential use-after-free in xmlParseCharDataInternal ==== rubygem-google-protobuf ==== Version update (3.23.1 -> 3.25.1) - New upstream release 3.25.1 - Add 0001-ruby-return-0-from-shared_convert.c-shared_message.c.patch to fix build failures with -Werror=return-type - Fix spurious +x permissions in the sources ==== rubygem-rgl ==== Version update (0.5.10 -> 0.6.6) - New upstream release 0.6.6, see bundled CHANGELOG.md ==== rubygem-webrick ==== Version update (1.7.0 -> 1.8.1) - New upstream release 1.8.1, no changelog found ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Fix spec file for Leap - /usr/etc migration, restore /etc/sssd/sssd.conf.rpmsave after update (bsc#1216865) - Do not install the KRB5 IDP plugin, it is useless without the OIDC child - Drop no longer valid --without-secrets configure switch ==== texlive ==== Subpackages: libkpathsea6 libsynctex2 - Silent some rpmlint errors - Catch all lua based binaries for boo#1216650 - texlive-latex-bin-bin: Ensure the same version of libz1 is installed in system as against what texlive was compiled (boo#1216650). ==== virglrenderer ==== - Add pkgconfig(libva) BuildRequires: Enable support for hardware video acceleration - Add pkgconfig(vulkan) BuildRequires: Enable support for venus on Tumbleweed (build failed on leap)

1 0

New Arm Tumbleweed snapshot 20231119 released!
by Guillaume Gardet 20 Nov '23

20 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: AppStream (0.16.3 -> 0.16.4) avahi avahi-glib2 bash (5.2.15 -> 5.2.21) bind (9.18.19 -> 9.18.20) btrfsprogs (6.5.1 -> 6.6.2) createrepo_c dnsmasq emacs flatpak (1.15.4 -> 1.15.6) freerdp fwupd (1.9.7 -> 1.9.8) gdb gnome-bluetooth (42.6 -> 42.7) gnome-control-center (45.1 -> 45.1+14) google-noto-fonts grub2 gstreamer (1.22.6 -> 1.22.7) gstreamer-plugins-bad (1.22.6 -> 1.22.7) gstreamer-plugins-base (1.22.6 -> 1.22.7) gstreamer-plugins-good (1.22.6 -> 1.22.7) gstreamer-plugins-libav (1.22.6 -> 1.22.7) gstreamer-plugins-rs (1.22.6 -> 0.11.2) gstreamer-plugins-ugly (1.22.6 -> 1.22.7) harfbuzz (8.2.2 -> 8.3.0) jq libadwaita (1.4.0 -> 1.4.0+12) libgcrypt (1.10.2 -> 1.10.3) libportal libstorage-ng (4.5.156 -> 4.5.157) libuv (1.46.0 -> 1.47.0) lua54 makedumpfile (1.7.3 -> 1.7.4) nodejs21 (21.1.0 -> 21.2.0) openssl-1_1 openssl-3 ovmf patterns-media perl-IO-Socket-SSL (2.083 -> 2.84.0) perl-Mail-AuthenticationResults (2.20230112 -> 2.20231031) pipewire (0.3.84 -> 0.3.85) plasma5-openSUSE (84.87~git20230131T131056~433af24 -> 84.87~git20231117T211718~757fefa) poppler (23.10.0 -> 23.11.0) poppler-qt5 (23.10.0 -> 23.11.0) python-Twisted python-psutil (5.9.5 -> 5.9.6) python-rich (13.5.2 -> 13.7.0) python-sniffio qemu qt6-base rubygem-jaro_winkler (1.5.4 -> 1.5.6) rubygem-llhttp-ffi (0.4.0 -> 0.5.0) rubygem-nokogiri (1.13.9 -> 1.15.4) rubygem-passenger (6.0.17 -> 6.0.18) rubygem-rails-html-sanitizer (1.5.0 -> 1.6.0) shared-mime-info (2.3 -> 2.4) tgt (1.0.85 -> 1.0.89) vte webkit2gtk3 (2.42.1 -> 2.42.2) webkit2gtk3-soup2 (2.42.1 -> 2.42.2) xen (4.17.2_04 -> 4.18.0_02) xfce4-notifyd xfce4-whiskermenu-plugin (2.8.0 -> 2.8.1) === Details === ==== AppStream ==== Version update (0.16.3 -> 0.16.4) Subpackages: libAppStreamQt2 libappstream4 - Update to version 0.16.4: * Features: - Allow hyphens in the last segment of a component-ID - Implement the developer element for unique developer IDs - Add meson overrides * Bugfixes: - meson: Prevent building attempts with MSVC - meson: Avoid potentially bad sed backup filename when fixing .pc file * Miscellaneous: Make sed invocation more portable - Rebase patch with quilt. ==== avahi ==== Subpackages: libavahi-client3 libavahi-common3 libavahi-core7 - avahi-autoipd: only migrate files owned by avahi user if said user exists: if the user does not exist (fresh installs), then there is no chance any file is owned by the user (boo#1216730). ==== avahi-glib2 ==== Subpackages: libavahi-glib1 libavahi-gobject0 libavahi-ui-gtk3-0 - avahi-autoipd: only migrate files owned by avahi user if said user exists: if the user does not exist (fresh installs), then there is no chance any file is owned by the user (boo#1216730). ==== bash ==== Version update (5.2.15 -> 5.2.21) Subpackages: bash-doc bash-sh - Declare token YYEOF to be able to support older bison versions as well - Be sure to have a usable bison installed at build time - Add upstream patches * bash52-021 There is an off-by-one error that causes command substitutions to fail when they appear in a word expansion inside a here-document. * bash52-020 The parser did not allow `time' to appear as the first reserved word in a command substitution. * bash52-019 There are some cases where the shell reaped a background (asynchronous) job and would incorrectly try to set the terminal's process group back to the shell's. In these cases it never set the terminal process group to that jobs's process group initially, so resetting it is incorrect. * bash52-018 There are two problems with returning tokens to yyparse() when the shell encounters a syntax error or when it reads EOF. When reading a WORD token, the parser has to return the correct value to yyparse. Previous versions returned a value < 0, which the bash parser translated into YYERRCODE for bison, and in newer versions of bison, the appropriate reset actions didn't happen. We should return YYUNDEF, which bison uses for `invalid token'. Since we can return a token < 0 for both invalid tokens and EOF, the bash tokenizer needs to differentiate between those two cases. * bash52-017 In certain cases, using the `.' builtin in a subshell would optimize away the rest of the commands in the subshell. * bash52-016 If an expression in an arithmetic for loop expands to NULL, the shell would crash. - Correct offsets of patches * bash-4.3-sigrestart.patch * bash-5.2.dif ==== bind ==== Version update (9.18.19 -> 9.18.20) Subpackages: bind-doc bind-utils - Update to release 9.18.20 Feature Changes: * The IP addresses for B.ROOT-SERVERS.NET have been updated to 170.247.170.2 and 2801:1b8:10::b. Bug Fixes: * If the unsigned version of an inline-signed zone contained DNSSEC records, it was incorrectly scheduled for resigning. This has been fixed. * Looking up stale data from the cache did not take local authoritative data into account. This has been fixed. * An assertion failure was triggered when lock-file was used at the same time as the named -X command-line option. This has been fixed. * The lock-file file was being removed when it should not have been, making the statement ineffective when named was started three or more times. This has been fixed. - Disable SLP by default for Factory and ALP (bsc#1214884) ==== btrfsprogs ==== Version update (6.5.1 -> 6.6.2) Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - update to 6.6.2 * squota: change key number of EXTENT_OWNER_REF_KEY, sync with kernel 6.7-rc1 * property set/get: completely skip char devices, trying to set properties and open /dev/watchdog* causes a reboot * other: build warnings, test updates, documentation updates - update to 6.6.1 * fix device scanning ioctl definition, accidental change to the 'forget' ioctl that breaks mounting multi-device filesystems - update to 6.6 * new global option --dry-run, now implemented for 'subvolume delete' * fi defrag: new option --step to defragment files in steps, report progress * balance: removed support for obsolete short syntax 'btrfs balance /path' * mkfs: print zone count for each device in the overview * check: * verify inline ref ordering * deprecate --clear-space-cache, moved to the 'rescue' group * rescue clear-space-cache: new command moved from 'btrfs check' implementing the same as option --clear-space-cache (to be deprecated and removed in the future) * dump-tree: output sequence number for inline refs * fixes: * fi resize: fallback to lowest devid when 1 does not exist, previously the command would fail with "No such device" * fi usage: fix "devices 0 != 1" message and broken output on multi-device filesystem * open files in non-blocking mode when reading fsid, this could hang when trying to open fifo files or some special character devices, was observed with 'prop set/get' * experimental: * mkfs: parametric zone size for emulated zoned mode * other: * cleanups refactoring * new and updated tests * CI updates * documentation updates - update to 6.5.3 * mkfs: * add short aliases for -O specification, block-group-tree (bgt), free-space-tree (fst), raid-stripe-tree (rst) * don't try to resize the image (namely when backed by file) when --rootdir contains sparse file larger than the image * also copy xattr/permissions/ugid/timestamps of the top --rootdir directory * add new option --device-uuid to let user specify exact uuid of the device item (only for single device filesystems) * check: * on zoned devices, use correct super block offsets when repairing * check inline extent refs order * subvolume create: add new option --parent to create missing path components of the given path (like mkdir -p) * rescue clear-ino-cache: new command moved from 'btrfs check' implementing the same as option --clear-ino-cache (to be deprecated and removed in the future) * dump-tree: allow '-' in tree identifier names for option -t * btrfstune: * drop short option and add long option to enable squota * tune space reservation and batch size for block-group-tree conversion * scrub status: print correct value of "Bytes scrubbed" for unfinished runs * qgroup show: fix crash when attempting to print path of stale qgroups * experimental features: * move build of raid-stripe-tree out for testing but it's still considered experimental * other: * shell completion updates * sync raid-stripe-tree code with kernel * build fixes * new and updated tests - update to 6.5.2 * new feature support: * raid-stripe-tree, new tree to track extent mapping for raid profiles, allows raid1*, raid0 and raid10 on zoned devices (kernel 6.7) * simple quotas, simplified accounting that does not track exclusive and shared extents (kernel 6.7) * mkfs with duplicate UUID on a single device, temp-fsid (kernel 6.7) * metadata_uuid: enhanced capabilities to repair partially updated fsid on multiple devices * other: * updated tests and CI * sync sources with kernel ==== createrepo_c ==== Subpackages: libcreaterepo_c1 python3-createrepo_c - remove unneeded file-devel dependency ==== dnsmasq ==== - SLP got dropped, remove config (bsc#1214884) ==== emacs ==== Subpackages: emacs-el emacs-eln emacs-info emacs-nox emacs-x11 etags - only use valgrind on 64 bit architectures ==== flatpak ==== Version update (1.15.4 -> 1.15.6) Subpackages: flatpak-remote-flathub libflatpak0 system-user-flatpak - Update to version 1.15.6: + In distributions that compile Flatpak to use a separate bubblewrap (bwrap) executable, version 0.8.0 is now required. + Enabling the optional Wayland security context feature requires libwayland-client, wayland-scanner >= 1.15 and wayland-protocols >= 1.32. + Add --device=input, for access to evdev devices in /dev/input + Update bundled copy of bubblewrap to version 0.8.0, and rely on its features: + Improve error message if seccomp is disabled in kernel config + Security hardening: set user namespace limit to 0, to prevent creation of nested user namespaces in a more robust way + For subsandboxes started by flatpak-portal, inherit environment variables from the flatpak run that started the original instance rather than from flatpak-portal, fixing behaviour of FLATPAK_GL_DRIVERS and similar features + Stop http transfers if a download in progress becomes very slow + Make it easier to configure extra languages, by picking them up from AccountsService if configured there + Add new flatpak_transaction_add_rebase_and_uninstall() API, allowing end-of-life apps to be replaced by their intended replacement more reliably + Create a private Wayland socket with the "security context" extension if available, allowing the compositor to identify connections from sandboxed apps as belonging to the sandbox + Update libglnx to 2023-08-29 + Use features of newer GLib versions if available + Turn off system-level crash reporting infrastructure during some unit tests that involve intentional assertion failures + Add anchors to link to sections of flatpak-metadata documentation + Bug fixes: - Avoid warnings processing symbolic links with GLib >= 2.77.0, and with GLib 2.76.0 (GLib 2.76.1 or later silences these warnings) - Bypass page cache for backend requests in revokefs, fixing installation errors with libostree 2023.4 - Show AppStream metadata in flatpak remote-info as intended - Don't let Flatpak apps inherit VK_DRIVER_FILES or VK_ICD_FILENAMES from the host system, which would be wrong for the sandbox - Fix build failure with prereleases of libappstream 0.17.x - Forward-compatibility with libappstream 1.0 - Fix installation with Meson if configured with - Dauto_sideloading=true - Fix a memory leak - Fix compiler warnings - Make the tests fail more comprehensibly if a required tool is missing - Clean up /var/tmp/flatpak-cache-* directories on boot - Don't force GIO_USE_VFS=local for programs launched via flatpak-spawn - Clarify documentation for D-Bus name ownership + Internal changes: - Split up large source files into smaller modules, reducing internal circular dependencies - Re-synchronize code backported from GLib with the version in GLib - Clarify documentation for D-Bus name ownership - Make the flags used to apply "extra data" clearer - Use glnx_opendirat() where possible + Updated translations. - Add pkgconfig(wayland-client), pkgconfig(wayland-scanner) and pkgconfig(wayland-protocols) BuildRequires and pass with-wayland-security-context=yes to configure: Enable the optional Wayland security context. ==== freerdp ==== Subpackages: libfreerdp2-2 libwinpr2-2 - Fix winpr-devel dependencies. WinePRTargets-*.cmake defines CMake targets for winpr-hash and winpr-makecert. They have to be present. ==== fwupd ==== Version update (1.9.7 -> 1.9.8) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Re-add fwupd-bsc1130056-change-shim-path.patch: patch was dropped in error (boo#1217138). - Update to version 1.9.8: + This release adds the following features: - Add a DP AUX device subclass and port the Synaptics MST plugin to it - Add a feature flag for non-generic requests where translations are required - Hide generic VID/PIDs to avoid accidental firmware matches - Optionally set the modem carrier configuration as the branch name - Rename 'fwupdmgr sync-bkc' to 'fwupdmgr sync' and also consider the branch - Require additional requirements for devices using non-OEM USB VIDs - Set the waiting-for-user status when sending a request - Support uSWID SBoM data with LZMA compressed payloads + This release adds support for the following hardware: - Kinetic SST/MST DisplayPort converters - Wacom Cintiq Pros (DTH172, DTH227) ==== gdb ==== - Maintenance script qa.sh: * Update PR31004 kfail. - Patches added (backport from gdb-patches): * gdb-fix-segfault-in-for_each_block-part-1.patch - Maintenance script qa.sh: * Update PR28561 kfail. * Remove PR31015 kfail. * Remove PR30547 kfail. - Patches added (backport from master): * gdb-symtab-add-producer_is_gas.patch * gdb-symtab-work-around-gas-pr28629.patch * gdb-tdep-fix-nr-array-elements-in-ppc64_aggregate_ca.patch * gdb-testsuite-fix-gdb.python-py-breakpoint.exp-with-.patch * gdb-tui-fix-segfault-in-tui_find_disassembly_address.patch * gdb-tui-fix-wmaybe-uninitialized-in-tui_find_disasse.patch * gdb-testsuite-add-wait_for_msg-arg-to-term-resize-fi.patch - Patches added (backport from gdb-patches): * gdb-fix-segfault-in-for_each_block-part-2.patch * gdb-tui-allow-command-window-of-1-or-2-lines.patch * gdb-tui-fix-resizing-of-terminal-to-1-or-2-lines.patch - Maintenance script qa.sh: * Remove PR28467, PR29418, PR29420, PR29814 and PR29408 kfail. * Remove gdb.tui/tui-layout-asm-short-prog.exp kfail. * Remove commit f68eca29d3b, 29004660c94, 301fe55e9c4, 4d88ae0c7b5, e7d69e72bfd, 8b272d7671f, 85819864f7c, 167f3beb655 and a0eda3df5b7 kfails. * Add PR31015 kfail. * Remove PR29793 kfail. * Remove gdb.arch/powerpc-bcl-prologue.exp kfail. * Remove PR29813 and PR29816 kfail. - Maintenance script qa.sh: * Update PR28561 kfail. * Update PR29781 kfail. - Maintenance script qa-local.sh: * Add "Verify quilt setup" step. - Patches added (backport from master): * gdb-symtab-handle-self-reference-die.patch * gdb-symtab-handle-self-reference-in-inherit_abstract.patch * gdb-symtab-add-optimized-out-static-var-to-cooked-in.patch - Maintenance script qa.sh: * Add comment to kfail for PR30528. * Add UNRESOLVED kfail for gdb.base/gcore-excessive-memory.exp. * Add UNRESOLVED kfail for PR31001. * Remove PR27238 kfail. * Add powerpc64le hw watchpoint kfails. * Add PR31004 kfail. * Add PR30531 kfail. - Patches added (backport from master): * xcoffread.c-fix-werror-dangling-pointer-issue-with-m.patch * avoid-manual-memory-management-in-go-lang.c.patch * gdb-go-handle-v3-go_0-mangled-prefix.patch - Patches added (backport from master): * gdb-symtab-don-t-deduplicate-variables-in-gdb-index.patch - Patches dropped (requires unsupported command): * gdb-testsuite-add-wait-for-index-cache-in-gdb.dwarf2.patch - Maintenance script qa.sh: * Added PR30528 kfail. - Patches added (manual import from fedora rawhide @ 52a4dab): * gdb-rhbz1773651-gdb-index-internal-error.patch - Patches added (backport from master): * gdb-support-rseq-auxvs.patch * gdb-symtab-fix-line-number-of-static-const-class-mem.patch * gdb-symtab-fix-too-many-symbols-in-gdbpy_lookup_stat.patch * gdb-symtab-handle-pu-in-iterate_over_some_symtabs.patch * gdb-symtab-work-around-pr-gas-29517.patch * gdb-testsuite-add-kfail-for-pr-ada-30908.patch * gdb-testsuite-add-xfail-for-gdb-29965-in-gdb.threads.patch * gdb-testsuite-fix-gdb.ada-mi_task_arg.exp-with-newer.patch * gdb-testsuite-fix-gdb.arch-i386-signal.exp-on-x86_64.patch * gdb-testsuite-fix-gdb.cp-m-static.exp-regression-on-.patch * gdb-testsuite-fix-gdb.dwarf2-nullptr_t.exp-with-cc-w.patch * gdb-testsuite-fix-regexps-in-gdb.base-step-over-sysc.patch * gdb-symtab-find-main-language-without-symtab-expansi.patch * gdb-testsuite-add-wait-for-index-cache-in-gdb.dwarf2.patch - Patches moved (from "Backport from gdb-patches" to "Backports from master, available in next release"): * gdb-cli-handle-pending-c-after-rl_callback_read_char.patch * gdb-testsuite-add-have_host_locale.patch - Maintenance script qa.sh: * Remove PR28463, PR28108, PR29247 and PR29160 kfails. * Remove PR30540, PR30908, PR29965 kfails. * Remove gdb.ada/mi_task_arg.exp kfail. - Limit "Suggests: %{python}-Pygments" to SLE-15 and later. - Mention import-fedora.sh to fix warning. - Maintenance script qa.sh: * Update kfail for PR28561. - Maintenance script import-fedora.sh: * New script. Move skipped patches list from gdb.spec to script. - Update to fedora 38 @ 82cc8e0. - Patch renamed: * pass-const-frame_info_ptr-reference-for-skip_-langua.patch -> gdb-rhbz2192105-ftbs-dangling-pointer - Patches added: * gdb-bz2237392-dwarf-obstack-allocation.patch * gdb-bz2237515-debuginfod-double-free.patch * gdb-rhbz2160211-excessive-core-file-warnings.patch * gdb-rhbz2196395-debuginfod-legacy-openssl-crash.patch * gdb-rhbz2233961-CVE-2022-4806.patch * gdb-rhbz2233965-memory-leak.patch ... changelog too long, skipping 14 lines ... * Remove PR27813 kfail and corresponding todo. ==== gnome-bluetooth ==== Version update (42.6 -> 42.7) Subpackages: libgnome-bluetooth-3_0-13 libgnome-bluetooth-ui-3_0-13 typelib-1_0-GnomeBluetooth-3_0 - Update to version 42.7: + Fix bugs that stopped the Obex Push server from automatically accepting files from paired devices. + Fix bugs that caused the device's Connection switch to appear out of sync with the connection state. + Build fixes. + Updated translations. ==== gnome-control-center ==== Version update (45.1 -> 45.1+14) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces - Update to version 45.1+14: + user-accounts: Sync lock tooltip for the Avatar + privacy: Fix crash from free bug in cc-camera-page + default-apps: Workaround AdwComboRow item selection at startup + network-connection-editor: Align Routes labels + Updated translations. ==== google-noto-fonts ==== - make build reproducible (boo#1047218) ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix XFS regression in 2.12~rc1 and support large extent counters * 0001-fs-xfs-Incorrect-short-form-directory-data-boundary-.patch * 0002-fs-xfs-Fix-XFS-directory-extent-parsing.patch * 0003-fs-xfs-add-large-extent-counters-incompat-feature-su.patch ==== gstreamer ==== Version update (1.22.6 -> 1.22.7) Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.22.7: + Highlighted bugfixes: - Security fixes for the MXF demuxer and AV1 codec parser - glfilter: Memory leak fix for OpenGL filter elements - d3d11videosink: Fix toggling between fullscreen and maximized, and window switching in fullscreen mode - DASH / HLS adaptive streaming fixes - Decklink card device provider device name string handling fixes - interaudiosrc: handle non-interleaved audio properly - openh264: Fail gracefully if openh264 encoder/decoder creation fails - rtspsrc: improved whitespace handling in response headers by certain cameras - v4l2codecs: avoid wrap-around after 1000000 frames; tiled formats handling fixes - video-scaler, audio-resampler: downgraded "Can't find exact taps" debug log messages - wasapi2: Don't use global volume control object - Rust plugins: various improvements in aws, fmp4mux, hlssink3, livesync, ndisrc, rtpav1depay, rsfilesink, s3sink, sccparse - WebRTC: various webrtchttp, webrtcsrc, and webrtcsink improvements and fixes - Cerbero build tools: recognise Windows 11; restrict parallelism of gst-plugins-rs build on small systems - Packages: ca-certificates update; fix gio module loading and TLS support on macOS + gstreamer: - debugutils: provide gst_debug_bin_to_dot_data() implementation even if debug system is disabled - Rebase reduce-required-meson.patch ==== gstreamer-plugins-bad ==== Version update (1.22.6 -> 1.22.7) Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.22.7: + audiobuffersplit: disable max-silence-time if set to 0 + libde265: Do not decode the non 4:2:0 8 bits format + codecparsers: av1: Clip max tile rows and cols values + codecs: h265: Do not free slice header before using it + d3d11converter: Fix 10/12bits planar output + d3d11decoder: Fix crash on negotiate() when decoder is not configured + d3d11videosink: Fix toggling between fullscreen and maximized + d3d11videosink: Fix window switching in case of fullscreen mode + d3d11screencapturesrc: Fix mouse cursor blending + decklink: Fix broken COM string conversion + decklink: Decklink Device Provider wrongly parses SDK strings + gstwayland: Don't depend on wayland-protocols + interaudiosrc: Add audio meta to buffers containing non-interleaved samples + kmssink: Add TIDSS auto-detection + mfvideoencoder: Fix typo in template caps + mxfdemux: Store GstMXFDemuxEssenceTrack in their own fixed allocation + nvcodec: fix bounds for auto-select GPU enumeration + openh264: Fail gracefully if openh264 encoder/decoder creation fails + tsmux: More cleanups + tsmux: Fill padding packets with stuffing bytes + v4l2codecs: Fix tiled formats stride conversion + v4l2videodec: Correctly free caps to avoid memory leak + wasapi2: Don't use global volume control object + wasapi2device: Ignore activation failed device - Rebase reduce-required-meson.patch ==== gstreamer-plugins-base ==== Version update (1.22.6 -> 1.22.7) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.22.7: + audioaggregator, audiomixer: Make access to the pad list thread-safe while mixing + basetextoverlay: Fix overlay never rendering again if width reaches 1px + glfiter: Protect GstGLContext access + glfilter: Only add parent meta if inbuf != outbuf + macOS: fix huge memory leak with glfilter-based elements + rtspconnection: Ignore trailing whitespace in rtsp headers + video-scaler, audio-resampler: downgrade 'can't find exact taps' to debug - Rebase reduce-required-meson.patch ==== gstreamer-plugins-good ==== Version update (1.22.6 -> 1.22.7) Subpackages: gstreamer-plugins-good-extra gstreamer-plugins-good-gtk gstreamer-plugins-good-jack gstreamer-plugins-good-qtqml - Update to version 1.22.7: + adaptivedemux2: Do not submit_transfer when cancelled + adaptivedemux2: Call GTasks's return functions for blocking tasks + flacenc: Correctly handle up to 255 cue entries + flvmux: set the src segment position as running time + imagesequencesrc: fix deadlock when feeding the same image in a loop + pngenc: output one frame only in snapshot mode and mark output frames as I-frames + qmlglsrc: sync on the streaming thread + souphttpsrc: Chain up to finalize to fix memory leak + wavparse: fix buffer leak with adtl tag + v4l2codecs: Avoid QBUF/DQBUF struct timeval .tv_usec wrap-around at frame 1000000 + v4l2codecs: Fix tiled formats stride conversion - Rebase reduce-required-meson.patch ==== gstreamer-plugins-libav ==== Version update (1.22.6 -> 1.22.7) - Update to version 1.22.7: + No changes, stable bump only. - Rebase reduce-required-meson.patch. ==== gstreamer-plugins-rs ==== Version update (1.22.6 -> 0.11.2) - Use xz format in the _service file since services in SLE SP6 don't support zstd. - Update to version 0.11.2: + Fixed - filesink / s3sink: Set sync=false to allow processing faster than real-time. - hlssink3: Various minor bugfixes and cleanups. - livesync: Various minor bugfixes and cleanups that should make the element work more reliable. - s3sink: Fix handling of non-ASCII characters in URIs and keys. - sccparse: Parse SCC files that are incorrectly created by CCExtractor. - ndisrc: Assume > 8 channels are unpositioned. - rtpav1depay: Skip unexpected leading fragments instead of repeatedly warning - about the stream possibly being corrupted. - rtpav1depay: Don't push stale temporal delimiters downstream but wait until a complete OBU is collected. - whipwebrtcsink: Use correct URL during redirects. - webrtcsink: Make sure to not miss any ICE candidates. - webrtcsink: Fix deadlock when calling set-local-description. - webrtcsrc: Fix reference cycles that prevented the element from being freed. - webrtcsrc: Define signaller property as CONSTRUCT_ONLY to make it actually possible to set different signallers. - webrtc: Update livekit signaller to livekit 0.2. - meson: Various fixes to the meson-based build system. + Added - audiornnoise: Attach audio level meta to output buffers. - hlssink3: Allow adding EXT-X-PROGRAM-DATE-TIME tag to the manifest. - webrtcsrc: Add turn-servers property. + Changed - aws/webrtc: Update to AWS SDK 0.57/0.35. - The last update to 1.22.6 was actually a downgrade to the 0.9 branch that upstream seems to tag following the gstreamer version number but we should stick to the gstreamer-plugins-rs versioning scheme. - To see the changes between 0.10.11 and 0.11.2, please check: https://gitlab.freedesktop.org/gstreamer/gst-plugins-rs/-/blob/main/CHANGEL… - Add a vendor-for-dav1d-1.3.0.tar.zst vendor file specifically for Tumbleweed where dav1d 1.3.0 is used and is not supported by the dav1d crate used in 0.11.2 by default, so in this manually created vendor file, the dav1d 0.10 crate is forced. - Add ix86 to excluded arches. ==== gstreamer-plugins-ugly ==== Version update (1.22.6 -> 1.22.7) - Update to version 1.22.7: + No changes, stable bump only. - Rebase reduce-required-meson.patch. ==== harfbuzz ==== Version update (8.2.2 -> 8.3.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 8.3.0: + Improve memory barrier to fix potential segfaults + Various subsetting and instancing fixes. + Rename âhb-subsetâ option â--instanceâ to â--variationsâ to match the other tools, old option kept as an alias - -devel: fix no-library-dependency-on libharbuzz-cairo0 ==== jq ==== Subpackages: libjq1 - build with valgrind only on 64 bit architectures ==== libadwaita ==== Version update (1.4.0 -> 1.4.0+12) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.4.0+12: + docs: Use `<property>` instead of `<child> for `AdwNavigationSplitView` + navigation-view: Add missing space to warning message + tab-view: Fix typo causing crash on AdwTabPages dispose + combo-row: Make the selected indicator a presentational element + tab-view: pages model can outlive it's view + tab-view: keep view alive during ::page-detached + about-window: Fix build with newer libappstream (boo#1217047) + combo-row: Preserve focus when opening the popover + Revert "Add some default options to the GTK subproject" + Updated translations. ==== libgcrypt ==== Version update (1.10.2 -> 1.10.3) - Update to 1.10.3: * Bug fixes: - Fix public key computation for other EdDSA curves. [rC469919751d6e] - Remove out of core handler diagnostic in FIPS mode. [T6515] - Check that the digest size is not zero in gcry_pk_sign_md and gcry_pk_verify_md. [T6539] - Make store an s-exp with \0 is considered to be binary. [T6747] - Various constant-time improvements. * Portability: - Use getrandom call only when supported by the platform. [T6442] - Change the default for --with-libtool-modification to never. [T6619] * Release-info: https://dev.gnupg.org/T6817 * Remove patch upstream libgcrypt-1.10.0-out-of-core-handler.patch ==== libportal ==== Subpackages: libportal-gtk3-1 libportal-gtk4-1 typelib-1_0-Xdp-1_0 - Rename package name from libportal-1 to libportal1, this is necessary to conform to the shared library policy: https://en.opensuse.org/openSUSE:Shared_library_packaging_policy#Package_na… ==== libstorage-ng ==== Version update (4.5.156 -> 4.5.157) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#965 - refactored class SystemCmd - fixed passing huge amount of data to stdin - coding style - 4.5.157 ==== libuv ==== Version update (1.46.0 -> 1.47.0) - libuv.keyring: added keyid 79A67C55A3679C8B Jameson Nash <vtjnash(a)gmail.com> - refresh fix_tests.patch - Update to 1.47.0 * test: fix license blurb (Ben Noordhuis) * linux: fix harmless warn_unused_result warning (Shuduo Sang) * darwin: fix build warnings (å°æ) * linux: don't use io_uring on pre-5.10.186 kernels (Ben Noordhuis) * fs: fix WTF-8 decoding issue (Jameson Nash) * test: enable disabled tcp_connect6_error_fault Ben Noordhuis)( * test: enable disabled fs_link (Ben Noordhuis) * test: enable disabled spawn_same_stdout_stderr (Ben Noordhuis) * linux: handle UNAME26 personality (Ben Noordhuis) * build: move cmake_minimum_required version to 3.9 (Keith Winstein) * unix: set ipv6 scope id for link-local addresses (Ben Noordhuis) * unix: match kqueue and epoll code (Trevor Norris) * win,spawn: allow `%PATH%` to be unset (Kyle Edwards) * doc: switch to Furo, a more modern Sphinx theme (SaÃºl Ibarra CorretgÃ©) * darwin: make TCP_KEEPINTVL and TCP_KEEPCNT available (å°æ) * win,fs: avoid winapi macro redefinition (Brad King) * linux: add missing riscv syscall numbers (michalbiesek) * doc: fix broken "Shared library" Wikipedia link (Alois Klink) * unix: get mainline kernel version in Ubuntu (Santiago Gimeno) * unix: get mainline kernel version in Debian (Ben Noordhuis) * unix: disable io_uring close on selected kernels (Santiago Gimeno) * test: skip tests when ipv6 is not available (Santiago Gimeno) * ibmi: implement ifaddrs, getifaddrs, freeifaddrs (Abdirahim Musse) * unix: reset signal counters after fork (SmorkalovG) * unix: remove pread/preadv conditionals (Ben Noordhuis) * unix: remove pwrite/pwritev conditionals (Ben Noordhuis) * darwin: remove workaround for data corruption bug (Ben Noordhuis) * src: default to stream=stderr in handle printer (Ben Noordhuis) * test: switch to new-style ASSERT_EQ macros (Pleuvens) * zos: correctly get cpu model in uv_cpu_info() (jolai) * test: fix get_passwd2 on IBM i (Abdirahim Musse) * unix: don't malloc on sync uv_fs_read (Ben Noordhuis) * freebsd: get fs event path with fcntl(F_KINFO) (David Carlier) * test: switch from ASSERT_* to ASSERT_PTR_* (Pleuvens) * darwin: workaround apple pthread_cond_wait bug (Julien Roncaglia) * doc: uv_close should be called after exit callback (Pleuvens) * test: 192.0.2.0/24 is the actual -TEST-NET-1 (prubel) * unix: add back preadv/pwritev fallback (Ben Noordhuis) * unix: rename variable for consistency (Ben Noordhuis) * unix: merge read/write code into single functions (Ben Noordhuis) * doc: filename arg to uv_fs_event_cb can be NULL (Ben Noordhuis) * build,win: we need to link against shell32.lib (Per Allansson) * unix: no preadv/pwritev workaround if not needed (Jeffrey H. Johnson) * build: add CI for Windows ARM64 (build only) (Per Allansson) * linux: disable io_uring on 32 bits arm systems (Ben Noordhuis) * misc: export WTF8 conversion utilities (Jameson Nash) * build: fix libuv.a file name for cmake (Jameson Nash) * build: add windows ubsan and clang ci (Matheus Izvekov) * win: improve accuracy of ProductName between arch (Christian Heimlich)) ==== lua54 ==== - Add skip-tests_big-endian.patch to skip little-endian-only tests (bsc#1216930). ==== makedumpfile ==== Version update (1.7.3 -> 1.7.4) - Enable build for riscv64. - Reduce compatibility cruft. - Update to 1.7.4: * Add riscv64 support * Support kernels up to v6.6 (x86_64) - Drop upstreamed patches: * ppc64-do-page-traversal-if-vmemmap_list-not-po.patch * Support-struct-module_memory-on-Linux-6.4-and-.patch - Build with a bundled eppic git snapshot. ==== nodejs21 ==== Version update (21.1.0 -> 21.2.0) Subpackages: npm21 - Update to 21.2.0 * esm: add import.meta.dirname and import.meta.filename * fs: add stacktrace to fs/promises * lib: + add --no-experimental-global-navigator CLI flag + add navigator.language & navigator.languages + add navigator.platform * stream: + add support for deflate-raw format to webstreams compression + use Array for Readable buffer + optimize creation * test_runner: + adds built in lcov reporter + test_runner: add Date to the supported mock APIs + test_runner, cli: add --test-timeout flag For details see https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V21.md#21… - nodejs20-zlib-1.3.patch: upstreamed, dropped - node-gyp-addon-gypi.patch: rebased - fix_ci_tests.patch: partially upstreamed ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Security fix: [bsc#1216922, CVE-2023-5678] * Fix excessive time spent in DH check / generation with large Q parameter value. * Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex () or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. * Add openssl-CVE-2023-5678.patch - Remove trailing spaces from changelog ==== openssl-3 ==== Subpackages: libopenssl3 - Security fix: [bsc#1216922, CVE-2023-5678] * Fix excessive time spent in DH check / generation with large Q parameter value. * Applications that use the functions DH_generate_key() to generate an X9.42 DH key may experience long delays. Likewise, applications that use DH_check_pub_key(), DH_check_pub_key_ex () or EVP_PKEY_public_check() to check an X9.42 DH key or X9.42 DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source this may lead to a Denial of Service. * Add openssl-CVE-2023-5678.patch ==== ovmf ==== Subpackages: qemu-uefi-aarch64 - Add ovmf-UefiCpuPkg-BaseXApicX2ApicLib-fix-CPUID_V2_EXTENDED_.patch fix CPUID_V2_EXTENDED_TOPOLOGY detection (bsc#1216472) - Sync change log to prepare for sending edk2-stable202308 ovmf to SLE15-SP6 (jsc#PED-6233, jsc#PED-5523) - Removed the following backported patches because they are merged to edk2 mainline: - ovmf-MdeModulePkg-PiSmmCore-SmmEntryPoint-underflow-CVE-2.patch cab1f02565 MdeModulePkg/PiSmmCore: SmmEntryPoint underflowÂ (CVE-2021-38578) (bsc#1196741) ==== patterns-media ==== - Drop libpurple-meanwhile plugin from the DVD; as the media-rest_dvd pattern was not installable for so long, some cruft that has not been missing from the DVD has accumulated. - Do not recommend 32bit libraries on the DVD, except glibc-32bit. - Drop seamonkey from the rest_dvd pattern recommends: it did not end up on the DVD anyway due to other locks. - Drop hylafax as well: has not been on the DVD until below pattern fix was merged. - Also drop patterns-network_admin: quite large with nagios and wireshark. - Drop pulseaudio (which was missing for a while already) as we switched long ago to pipewire. - No longer require breeze5-wallpapers: this has been locked from the DVD for a long time already, but the requirement here actually makes the entire patterns-media-rest_dvd fall off the DVD. ==== perl-IO-Socket-SSL ==== Version update (2.083 -> 2.84.0) - updated to 2.084 see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.084 2023/11/06 - various fixes for edge cases and build: #136, #141, #142, #143, #145 - update documentation to reflect default SSL_version ==== perl-Mail-AuthenticationResults ==== Version update (2.20230112 -> 2.20231031) - updated to 2.20231031 see /usr/share/doc/packages/perl-Mail-AuthenticationResults/Changes 2.20231031 2023-10-31 23:57:33+00:00 UTC - Option to set more strict quoting of string ==== pipewire ==== Version update (0.3.84 -> 0.3.85) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 0.3.85 (1.0RC5): * Highlights - Fix an issue where a link could end up paused while not negotiated. - Fix an infinite recursion issue when finding runnable nodes. - Support XDG base directories when loading ACP config. - Fix MIDI event recording preview in Ardour. - Many more small fixes, cleanups and improvements. * PipeWire - Fix an issue where a link could end up paused while not negotiated. (#3619) - Fix an infinite recursion issue when finding runnable nodes by stopping the scan on feedback links around the driver. (#3621) - The system service now has better socket permissions. * Modules - Add support for uclamp. This allows the scheduler to make better informed decisions about where tasks should be placed, and what pstate to set for the CPU it is running on. - Emit warnings when applications are not doing the right locking instead of crashing. - Improve media.name for RAOP sinks. (#3801) - Support pause/resume in pipe-tunnel. (#3197) - Remove time rlimit when probing for realtime to avoid SIGXCPU. * SPA - Fix a bug where the resampler would be activated even when there is an ALSA pitch element. (#3628) - Improve resume from suspend in ALSA. (#3646) - Add option to expose ALSA controls as prop params. - Support XDG base directories when loading ACP config. This makes it possible to override the ACP config files. * Bluetooth - Schedule nodes in the same ISO group together. - More BAP fixes and cleanups. * JACK - Fix MIDI events from peer ports. This makes the MIDI event recording preview of Ardour work correctly. * GStreamer - Fix some error handling in the source and sink. * ALSA plugin - Improve poll descriptor handling. (#3648) * Docs - Many improvements to the layout and organization. ==== plasma5-openSUSE ==== Version update (84.87~git20230131T131056~433af24 -> 84.87~git20231117T211718~757fefa) Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to version 84.87~git20231117T211718~757fefa: * Fix active titlebar color with OpenSUSEdark(alternate) color schemes ==== poppler ==== Version update (23.10.0 -> 23.11.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools - version update to 23.11.0 core: * CairoOutputDev: Use internal downscaling algorithm if image exceeds Cairo's maximum dimensions. * Internal code improvements * Fix crash on malformed files utils: * pdftocairo: Add option to document logical structure if output is pdf * pdftocairo: EPS output should not contain %%PageOrientation ==== poppler-qt5 ==== Version update (23.10.0 -> 23.11.0) - version update to 23.11.0 core: * CairoOutputDev: Use internal downscaling algorithm if image exceeds Cairo's maximum dimensions. * Internal code improvements * Fix crash on malformed files utils: * pdftocairo: Add option to document logical structure if output is pdf * pdftocairo: EPS output should not contain %%PageOrientation ==== python-Twisted ==== Subpackages: python311-Twisted python311-Twisted-tls - Add CVE-2023-46137-HTTP-pipeline-response.patch (bsc#1216588, CVE-2023-46137) serializing pipelined HTTP requests. ==== python-psutil ==== Version update (5.9.5 -> 5.9.6) - update to version 5.9.6: * Enhancements + 1703: cpu_percent() and cpu_times_percent() are now thread safe, meaning they can be called from different threads and still return meaningful and independent results. + 2266: if Process class is passed a very high PID, raise NoSuchProcess instead of OverflowError. (patch by Xuehai Pan) + 2246: drop python 3.4 & 3.5 support. (patch by Matthieu Darbois) + 2290: PID reuse is now pre-emptively checked for Process.ppid() and Process.parents(). + 2312: use ruff Python linter instead of flake8 + isort. It's an order of magnitude faster + it adds a ton of new code quality checks. * Bug fixes + 2195, [Linux]: no longer print exception at import time in case /proc/stat can't be read due to permission error. + 2268: bytes2human() utility function was unable to properly represent negative values. + 2284, [Linux]: Process.memory_full_info() may incorrectly raise ZombieProcess if it's determined via /proc/pid/smaps_rollup. + 2288, [Linux]: correctly raise ZombieProcess on Process.exe(), Process.cmdline() and Process.memory_maps() instead of returning a "null" value. + 2290: differently from what stated in the doc, PID reuse is not pre-emptively checked for Process.nice() (set), Process.ionice(), (set), Process.cpu_affinity() (set), Process.rlimit() (set), Process.parent(). - refresh skip_rlimit_tests_on_python2.patch - drop removal of shebang: fixed upstream ==== python-rich ==== Version update (13.5.2 -> 13.7.0) - update to version 13.7.0: * Added + Adds missing parameters to Panel.fit #3142 + Fixed + Some text goes missing during wrapping when it contains double width characters #3176 + Ensure font is correctly inherited in exported HTML #3104 + Fixed typing for FloatPrompt. - additional changes from 13.6.0: * Added Python 3.12 to classifiers. - additional changes from 13.5.3: * Fixed + Markdown table rendering issue with inline styles and links [#3115] + Fix Markdown code blocks on a light background #3123 ==== python-sniffio ==== - Remove dependency on curio completely. ==== qemu ==== Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - Fix bsc#1216638: * target/s390x: Fix LAALG not updating cc_src * target/s390x: Fix CLC corrupting cc_src ==== qt6-base ==== Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-platformtheme-gtk3 - Make libQt6Network6 require the network plugins ==== rubygem-jaro_winkler ==== Version update (1.5.4 -> 1.5.6) - New upstream release 1.5.6, no changelog found ==== rubygem-llhttp-ffi ==== Version update (0.4.0 -> 0.5.0) - New upstream release 0.5.0, see bundled CHANGELOG.md ==== rubygem-nokogiri ==== Version update (1.13.9 -> 1.15.4) - Bump mini_portile2 version in the spec - 1.15.4: [#]# 1.15.4 / 2023-08-11 [#]## Dependencies * [CRuby] Vendored libxml2 is updated to v2.11.5 from v2.11.4. For details please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.5 [#]## Fixed * Fixed a typo in a HTML5 parser error message. [[#2927](https://github.com/sparklemotion/nokogiri/issues/2927)] (Thanks, [@anishathalye](https://github.com/anishathalye)!) * [CRuby] `ObjectSpace.memsize_of` is now safe to call on `Document`s with complex DTDs. In previous versions, this debugging method could result in a segfault. [[#2923](https://github.com/sparklemotion/nokogiri/issues/2923), [#2924](https://github.com/sparklemotion/nokogiri/issues/2924)] --- sha256 checksums: ``` 14091a07e07045a440213f7d5ced732fa7654ae8b6c7d180137f4124c5284ab8 nokogiri-1.15.4-aarch64-linux.gem 572ddc19934d010e98821a946d89462ae66b310fecc3fe12c48b0025c2f76855 nokogiri-1.15.4-arm-linux.gem 707288e293f4fc82a008f90b7ba0180d9f803f6a239a13e424378fedf8cf93e9 nokogiri-1.15.4-arm64-darwin.gem 04745925f63af61144eccef38a703928629cf97c34dbb1c42e3def17ac77ec92 nokogiri-1.15.4-java.gem a0bfb65461a0453afed1a41b235fe84d5b9c7f4d70afd45f0dc2fdec8909faf1 nokogiri-1.15.4-x64-mingw-ucrt.gem b9d01b9202e33cc23d19b2c1fc18ff4029cdda9b4f937a4baaefd4124a2158ba nokogiri-1.15.4-x64-mingw32.gem f6ae258d7ed5f81715118282aa45486e68fd44b9747d0244a236e9ed5b94c45d nokogiri-1.15.4-x86-linux.gem 3f65b2426ece8da908bd5df5b6262ce525393f5245f8258a245bb4c3f5759b98 nokogiri-1.15.4-x86-mingw32.gem d756605c540034debd7f486ae27802e6b1b129013fd6b1bb823783ef6f2bc5d7 nokogiri-1.15.4-x86_64-darwin.gem 872ced3d72d797ed9b5a76c67141c6cee7589711358e11c73e9c53724ffd1842 nokogiri-1.15.4-x86_64-linux.gem e4a801e5ef643cc0036f0a7e93433d18818b31d48c9c287596b68e92c0173c4d nokogiri-1.15.4.gem ``` 1.15.3: [#]# 1.15.3 / 2023-07-05 [#]## Fixed * Passing an object that is not a kind of `XML::Node` as the first parameter to `CDATA.new` now raises a `TypeError`. Previously this would result in either a segfault (CRuby) or a Java exception (JRuby). [[#2920](https://github.com/sparklemotion/nokogiri/issues/2920)] * Passing an object that is not a kind of `XML::Node` as the first parameter to `Schema.from_document` now raises a `TypeError`. Previously this would result in either a segfault (CRuby) or a Java exception (JRuby). [[#2920](https://github.com/sparklemotion/nokogiri/issues/2920)] * [CRuby] Passing an object that is not a kind of `XML::Node` as the second parameter to `Text.new` now raises a `TypeError`. Previously this would result in a segfault. [[#2920](https://github.com/sparklemotion/nokogiri/issues/2920)] * [CRuby] Replacing a node's children via methods like `Node#inner_html=`, `#children=`, and `#replace` no longer defensively dups the node's next sibling if it is a Text node. This behavior was originally adopted to work around libxml2's memory management (see [#283](https://github.com/sparklemotion/nokogiri/issues/283) and [#595](https://github.com/sparklemotion/nokogiri/issues/595)) but should not have included operations involving `xmlAddChild()`. [[#2916](https://github.com/sparklemotion/nokogiri/issues/2916)] * [JRuby] Fixed NPE when serializing an unparented HTML node. [[#2559](https://github.com/sparklemotion/nokogiri/issues/2559), [#2895](https://github.com/sparklemotion/nokogiri/issues/2895)] (Thanks, [@cbasguti](https://github.com/cbasguti)!) --- sha256 checksums: ``` 70dadf636ae026f475f07c16b12c685544d4f8a764777df629abf1f7af0f2fb5 nokogiri-1.15.3-aarch64-linux.gem 83871fa3f544dc601e27abbdef87315a77fe1270fe4904986bd3a7df9ca3d56f nokogiri-1.15.3-arm-linux.gem fa4a027478df9004a2ce91389af7b7b5a4fc790c23492dca43b210a0f8770596 nokogiri-1.15.3-arm64-darwin.gem 95d410f995364d9780c4147d8fca6974447a1ccd3a1e1b092f0408836a36cc9c nokogiri-1.15.3-java.gem 599a46b6e4f5a34dd21da06bdbd69611728304af5ef42bb183e4b4ca073fd7a3 nokogiri-1.15.3-x64-mingw-ucrt.gem 92ebfb637c9b7ba92a221b49ea3328c7e5ee79a28307d75ef55bfe4b5807face nokogiri-1.15.3-x64-mingw32.gem ee314666eca832fa71b5bb4c090be46a80aded857aa26121b3b51f3ed658a646 nokogiri-1.15.3-x86-linux.gem 44b7f18817894a5b697bab3d757b12bb7857a0218c1b2e0000929456a2178b34 nokogiri-1.15.3-x86-mingw32.gem 1f0bc0343f9dd1db8dd42e4c9110dd24fc11a7f923b9fa0f866e7f90739e4e7a nokogiri-1.15.3-x86_64-darwin.gem ca244ed58568d7265088f83c568d2947102fb00bac14b5bc0e63f678dcd6323d nokogiri-1.15.3-x86_64-linux.gem 876631295a85315dac37e7a71386d62d9eb452a891083cfe7505cca4805088cb nokogiri-1.15.3.gem ``` 1.15.2: [#]# 1.15.2 / 2023-05-24 [#]## Dependencies * [JRuby] Vendored org.nokogiri:nekodtd is updated to v0.1.11.noko2. This is functionally equivalent to v0.1.11.noko1 but restores support for Java 8. [#]## Fixed * [JRuby] Java 8 support is restored, fixing a regression present in v1.14.0..v1.14.4 and v1.15.0..v1.15.1. [[#2887](https://github.com/sparklemotion/nokogiri/issues/2887)] --- sha256 checksums: ``` 497c698f0cc0f283934c9c93064249d113408e97e5f3677b0b5111af24a67c29 nokogiri-1.15.2-aarch64-linux.gem 505ad4b80cedd12bc3c53065079cc825e7f3d4094ca7b54176ae6f3734dbe2cc nokogiri-1.15.2-arm-linux.gem bbedeaf45ce1494f51806e5fab0d31816fc4584f8e2ec757dd516b9b30847ee4 nokogiri-1.15.2-arm64-darwin.gem b15ba3c1aa5b3726d7aceb44f635250653467c5b0d04248fa0f6a6afc6515fb0 nokogiri-1.15.2-java.gem bc3cc9631c9dd7a74a59554215474da657f956ccb126391d082a2a8c45d3ee14 nokogiri-1.15.2-x64-mingw-ucrt.gem 1fd27732b161a497275798e502b31e97dfe1ab58aac02c0d6ace9cbe1fd6a38c nokogiri-1.15.2-x64-mingw32.gem 931383c6351d79903149b5c6a988e88daada59d7069f3a01b4dcf6730d411cc6 nokogiri-1.15.2-x86-linux.gem 3f4a6350ca1d87d185f4bf509d953820c7191d1cf4213cc3bac9c492b9b4a720 nokogiri-1.15.2-x86-mingw32.gem b57eeec09ee1c4010e317f50d2897fb9c1133d02598260db229e81127b337930 nokogiri-1.15.2-x86_64-darwin.gem 5bca696b9283ad7ce97b9c0dfdf029a62c26e92f39f440a65795e377d44f119a nokogiri-1.15.2-x86_64-linux.gem 20dc800b8fbe4c4f4b5b164e6aa3ab82a371bcb27eb685c166961c34dd8a22d7 nokogiri-1.15.2.gem ``` 1.14.5: [#]# 1.14.5 / 2023-05-24 [#]## Note To ensure that JRuby users on Java 8 can apply the security changes from v1.14.4, we're cutting this release on the v1.14.x branch. We don't expect to make any more v1.14.x releases. [#]## Dependencies * [JRuby] Vendored org.nokogiri:nekodtd is updated to v0.1.11.noko2. This is functionally equivalent to v0.1.11.noko1 but restores support for Java 8. [#]## Fixed * [JRuby] Java 8 support is restored, fixing a regression introduced in v1.14.0. [[#2887](https://github.com/sparklemotion/nokogiri/issues/2887)] --- sha256 checksums: ``` 60e521687e7fb81dbaa2c942d48efc22083780bc76d45586dc0a324bf0fb0e97 nokogiri-1.14.5-aarch64-linux.gem 80ea31d2534b14409e37437934c1c614de9844c806f72fc64134f50e0f3c1131 nokogiri-1.14.5-arm-linux.gem 3ab8ff3b62f4ff5826406007befea2d7ac33de2ee0c66209dd72ec16d0e8f5bf nokogiri-1.14.5-arm64-darwin.gem edc932157786888c8f83b49c811ac0ec26a5b23f8e3c69590c311cc14b7e6bf0 nokogiri-1.14.5-java.gem 75e476c4e0c91f0f8f00f7c8e697bb3f5c9932f948658cf90babdbebbd6f6c27 nokogiri-1.14.5-x64-mingw-ucrt.gem 73bd6ee2dbabd1a337c6878a8d349a872f04a3448505fbe7c773a1dfbb69e310 nokogiri-1.14.5-x64-mingw32.gem a9e4dc50c1cc327bfca3516281eba3fe972fd80bac64c7cdee4bcf07fbfd817d nokogiri-1.14.5-x86-linux.gem aea78a61c684f36213d38777a7cd09aa272c5193f11cbaf2b455bcaeebd4196b nokogiri-1.14.5-x86-mingw32.gem 7375a81e5fba6a5ada3e47cd02a53ca54d0d25ae73b8ebc6e3a962e46947a7b9 nokogiri-1.14.5-x86_64-darwin.gem 0b2150ae90a676a504cbab018d24188eb526bc886ab18b4303102df6b3077160 nokogiri-1.14.5-x86_64-linux.gem 23f69ddeb1e8ead5341bbbbca18d37de29c0265bc90e94bc5d9663b254dfdcbc nokogiri-1.14.5.gem ``` 1.15.1: [#]# 1.15.1 / 2023-05-19 [#]## Dependencies * [CRuby] Vendored libxml2 is updated to v2.11.4 from v2.11.3. For details please see https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.4 [#]## Fixed * [CRuby] The libxml2 update fixes an encoding regression when push-parsing UTF-8 sequences. [[#2882](https://github.com/sparklemotion/nokogiri/issues/2882), upstream [issue](https://gitlab.gnome.org/GNOME/libxml2/-/issues/542) and [commit](https://gitlab.gnome.org/GNOME/libxml2/-/commit/e0f3016f71297314502…)] --- sha256 checksums: ``` ... changelog too long, skipping 324 lines ... ``` ==== rubygem-passenger ==== Version update (6.0.17 -> 6.0.18) Subpackages: ruby3.2-rubygem-passenger rubygem-passenger-apache2 - New upstream release 6.0.18, see bundled CHANGELOG ==== rubygem-rails-html-sanitizer ==== Version update (1.5.0 -> 1.6.0) - Updated to version 1.6.0 * Dependencies have been updated: - Loofah `~>2.21` and Nokogiri `~>1.14` for HTML5 parser support - As a result, required Ruby version is now `>= 2.7.0` Security updates will continue to be made on the `1.5.x` release branch as long as Rails 6.1 (which supports Ruby 2.5) is still in security support. * Mike Dalessio* * HTML5 standards-compliant sanitizers are now available on platforms supported by Nokogiri::HTML5. These are available as: - `Rails::HTML5::FullSanitizer` - `Rails::HTML5::LinkSanitizer` - `Rails::HTML5::SafeListSanitizer` And a new "vendor" is provided at `Rails::HTML5::Sanitizer` that can be used in a future version of Rails. Note that for symmetry `Rails::HTML4::Sanitizer` is also added, though its behavior is identical to the vendor class methods on `Rails::HTML::Sanitizer`. Users may call `Rails::HTML::Sanitizer.best_supported_vendor` to get back the HTML5 vendor if it's supported, else the legacy HTML4 vendor. * Mike Dalessio* * Module namespaces have changed, but backwards compatibility is provided by aliases. The library defines three additional modules: - `Rails::HTML` for general functionality (replacing `Rails::Html`) - `Rails::HTML4` containing sanitizers that parse content as HTML4 - `Rails::HTML5` containing sanitizers that parse content as HTML5 The following aliases are maintained for backwards compatibility: - `Rails::Html` points to `Rails::HTML` - `Rails::HTML::FullSanitizer` points to `Rails::HTML4::FullSanitizer` - `Rails::HTML::LinkSanitizer` points to `Rails::HTML4::LinkSanitizer` - `Rails::HTML::SafeListSanitizer` points to `Rails::HTML4::SafeListSanitizer` * Mike Dalessio* * `LinkSanitizer` always returns UTF-8 encoded strings. `SafeListSanitizer` and `FullSanitizer` already ensured this encoding. * Mike Dalessio* * `SafeListSanitizer` allows `time` tag and `lang` attribute by default. * Mike Dalessio* * The constant `Rails::Html::XPATHS_TO_REMOVE` has been removed. It's not necessary with the existing sanitizers, and should have been a private constant all along anyway. * Mike Dalessio* - Removed comparison against a very old ruby code no longer maintained - Updated description in spec file ==== shared-mime-info ==== Version update (2.3 -> 2.4) - Update to 2.4 * Restore mimetype name for *.bz2 and *.tar.bz2 * Improve detection of application/mac-binhex40 * Add application/x-msdownload and subtypes * Add Windows app store types * Give Windows Installer packages the package icon * Lower priority for text/x-mpsub's magic, so it doesn't match pcb-drillFile.drl * Add application/x-powershell * Add application/wasm * Change comment of text/x-mpsub * Change comment of text/x-mpl2 * Add text/x-component * Give higher priority to the more specific image/apng magic * Recognize *.jfif as image/jpeg * Add application/its+xml * Add text/x-vb * Add text/x-basic * Add new group "chemical" in update-mime-database * Add mimetype for Protein Data Bank (pdb) files * Remove too generic magic from application/x-pak * Add application/json5 * Add text/vbscript.encode * Add text/jscript.encode * Add text/jscript as synonym of text/javascript * Fix backwards relationship between text/javascript and application/ecmascript * Add application/vnd.cups-ppd * Add application/x-ms-shortcut * Give application/x-mswinurl the link icon ==== tgt ==== Version update (1.0.85 -> 1.0.89) - Update to version v1.0.89 (from 1.0.85): * tgt 1.0.89 * tgtd.initd add missing * Prevents threads from looping indefinitely * tgt 1.0.88 * Create tgtd.confd /etc/conf.d/tgtd config file for openrc init system * openrc init script An openrc init script for tgtd. * tgt 1.0.87 * fix posix_fallocate ret check "posix_fallocate() returns zero on success, or an error number on failure. Note that errno is not set." * Add rotation_rate parameter to tgtadm.8.xml Add `rotation_rate` parameter and description. * tgt 1.0.86 * fix: unused function errors * add github actions CI just build test. * README: minor update update URLs. remove too old kernel version info. ==== vte ==== Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Update vte-revert-back-to-c++17.patch * revert more C++20 features ==== webkit2gtk3 ==== Version update (2.42.1 -> 2.42.2) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.42.2 (boo#1217210): + Bump Safari version in user agent header. + Fix CSP regression that broke Unity WebGL applications. + Fix the build with GBM disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-41983, CVE-2023-42852. ==== webkit2gtk3-soup2 ==== Version update (2.42.1 -> 2.42.2) Subpackages: libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 webkit2gtk-4_0-injected-bundles - Update to version 2.42.2 (boo#1217210): + Bump Safari version in user agent header. + Fix CSP regression that broke Unity WebGL applications. + Fix the build with GBM disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-41983, CVE-2023-42852. ==== xen ==== Version update (4.17.2_04 -> 4.18.0_02) Subpackages: xen-libs xen-tools-domU - Update to Xen 4.18.0 FCS release (jsc#PED-4984) xen-4.18.0-testing-src.tar.bz2 * Repurpose command line gnttab_max_{maptrack_,}frames options so they don't cap toolstack provided values. * Ignore VCPUOP_set_singleshot_timer's VCPU_SSHOTTMR_future flag. The only known user doesn't use it properly, leading to in-guest breakage. * The "dom0" option is now supported on Arm and "sve=" sub-option can be used to enable dom0 guest to use SVE/SVE2 instructions. * Physical CPU Hotplug downgraded to Experimental and renamed "ACPI CPU Hotplug" for clarity * On x86, support for features new in Intel Sapphire Rapids CPUs: - PKS (Protection Key Supervisor) available to HVM/PVH guests. - VM-Notify used by Xen to mitigate certain micro-architectural pipeline livelocks, instead of crashing the entire server. - Bus-lock detection, used by Xen to mitigate (by rate-limiting) the system wide impact of a guest misusing atomic instructions. * xl/libxl can customize SMBIOS strings for HVM guests. * Add support for AVX512-FP16 on x86. * On Arm, Xen supports guests running SVE/SVE2 instructions. (Tech Preview) * On Arm, add suport for Firmware Framework for Arm A-profile (FF-A) Mediator (Tech Preview) * Add Intel Hardware P-States (HWP) cpufreq driver. * On Arm, experimental support for dynamic addition/removal of Xen device tree nodes using a device tree overlay binary (.dtbo). * Introduce two new hypercalls to map the vCPU runstate and time areas by physical rather than linear/virtual addresses. * On x86, support for enforcing system-wide operation in Data Operand Independent Timing Mode. * The project has now officially adopted 6 directives and 65 rules of MISRA-C. * On x86, the "pku" command line option has been removed. It has never behaved precisely as described, and was redundant with the unsupported "cpuid=no-pku". Visibility of PKU to guests should be via its vm.cfg file. * xenpvnetboot removed as unable to convert to Python 3. * xencons is no longer supported or present. See 5d22d69b30 - Droppped patches contained in new tarballs 63e4da00-dont-log-errors-when-trying-to-load-PVH-xenstore-stubdom.patch 643e3810-CONFIG_DEBUG_INFO-no-EXPERT.patch 643e387f-xen-update-CONFIG_DEBUG_INFO-help-text.patch 6447a8fd-x86-EFI-permit-crash-dump-analysis.patch 64d33a57-libxenstat-Linux-nul-terminate-string.patch aarch64-rename-PSR_MODE_ELxx-to-match-linux-headers.patch xen.stubdom.newlib.patch xsa446.patch xsa445.patch xsa438.patch xsa439-00.patch xsa439-01.patch xsa439-02.patch xsa439-03.patch xsa439-04.patch xsa439-05.patch xsa439-06.patch xsa439-07.patch xsa439-08.patch xsa439-09.patch xsa443-10.patch xsa443-11.patch xsa440.patch - Dropped xen-utils-0.1.tar.bz2 The xen-list and xen-destroy commands are removed. Originally created as a better replacement for 'xm'. The 'xl' equivalent commands should be used instead. - Dropped libxl.pvscsi.patch Support for PVSCSI devices in the guest is no longer supported. - bsc#1216807 - VUL-0: CVE-2023-46836: xen: x86: BTC/SRSO fixes not fully effective (XSA-446) xsa446.patch - bsc#1216654 - VUL-0: CVE-2023-46835: xen: x86/AMD: mismatch in IOMMU quarantine page table levels (XSA-445) xsa445.patch - Supportconfig: Adapt plugin to modern supportconfig The supportconfig 'scplugin.rc' file is deprecated in favor of supportconfig.rc'. Adapt the xen plugin to the new scheme. xen-supportconfig - bsc#1215145 - VUL-0: CVE-2023-34322: xen: top-level shadow reference dropped too early for 64-bit PV guests (XSA-438) 650abbfe-x86-shadow-defer-PV-top-level-release.patch - bsc#1215474 - VUL-0: CVE-2023-20588: xen: AMD CPU transitional execution leak via division by zero (XSA-439) 64e5b4ac-x86-AMD-extend-Zenbleed-check.patch 65087000-x86-spec-ctrl-SPEC_CTRL_EXIT_TO_XEN-confusion.patch 65087001-x86-spec-ctrl-fold-DO_SPEC_CTRL_EXIT_TO_XEN.patch 65087002-x86-spec-ctrl-SPEC_CTRL-ENTRY-EXIT-asm-macros.patch 65087003-x86-spec-ctrl-SPEC_CTRL-ENTER-EXIT-comments.patch 65087004-x86-entry-restore_all_xen-stack_end.patch 65087005-x86-entry-track-IST-ness-of-entry.patch 65087006-x86-spec-ctrl-VERW-on-IST-exit-to-Xen.patch 65087007-x86-AMD-Zen-1-2-predicates.patch 65087008-x86-spec-ctrl-Zen1-DIV-leakage.patch - bsc#1215746 - VUL-0: CVE-2023-34326: xen: x86/AMD: missing IOMMU TLB flushing (XSA-442) 65263470-AMD-IOMMU-flush-TLB-when-flushing-DTE.patch - bsc#1215747 - VUL-0: CVE-2023-34325: xen: Multiple vulnerabilities in libfsimage disk handling (XSA-443) 65263471-libfsimage-xfs-remove-dead-code.patch 65263472-libfsimage-xfs-amend-mask32lo.patch 65263473-libfsimage-xfs-sanity-check-superblock.patch 65263474-libfsimage-xfs-compile-time-check.patch 65263475-pygrub-remove-unnecessary-hypercall.patch ... changelog too long, skipping 63 lines ... xsa444-2.patch ==== xfce4-notifyd ==== Subpackages: xfce4-notifyd-lang - relax branding requires (remove -version-release), so we can use xfce4-branding-openSUSE based branding. (bsc#1217193 bsc#1216470) - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut over systemd-mini. ==== xfce4-whiskermenu-plugin ==== Version update (2.8.0 -> 2.8.1) Subpackages: xfce4-whiskermenu-plugin-lang - Update to version 2.8.1 * Fix missing commandline option in man page. (Issue #119) * Fix incorrect category icons by disabling fallbacks. (Issue #116) * Remember order of recently used when searching. * Translation updates

1 0

Strategies Rocketplay app download
by jeffmoore12111＠gmail.com 20 Nov '23

20 Nov '23

Ready to elevate your entertainment experience? Look no further than Rocketplay! Here's a guide to masterfully navigate your way to a seamless Rocketplay app download and embark on an adventure like no other. Discover Rocketplay's Online Hub: Start by exploring https://rocketplay-au.com/app official website or app store listings. With a user-friendly interface, finding Rocketplay and initiating the download is just a few clicks away. Secure Platforms: Opt for trusted sources like official app stores or the company's website to ensure a safe and authentic download. Avoid third-party sources to protect your device and data. Device Compatibility: Check your device's compatibility with the Rocketplay app. Whether you're on iOS, Android, or other platforms, ensure your device meets the app's system requirements for optimal performance. App Installation: Once downloaded, follow the on-screen instructions for a smooth installation process. Ensure you grant necessary permissions for the app to function seamlessly. Create Your Profile: Dive into Rocketplay by setting up your user profile. This step allows you to personalize your gaming experience, track progress, and potentially unlock exclusive features. Explore Game Selection: Get ready for a thrilling journey! Explore Rocketplay's diverse range of games and discover your favorites. Whether you're into action, puzzles, or strategy, Rocketplay has something for every gaming enthusiast. Engage & Share: Join the Rocketplay community! Engage with fellow gamers, share experiences, and stay updated on new releases and events within the app. Embrace the social aspect of gaming for an enriched experience. Play Responsibly: While gaming can be exhilarating, always remember to play responsibly. Set time limits, establish budgetary constraints, and enjoy gaming as a form of entertainment without compromising other aspects of your life. Rocketplay isn't just an app; it's a gateway to endless entertainment possibilities. Download the app today and embark on a thrilling journey that transcends boundaries!

1 0

New Arm Tumbleweed snapshot 20231115 released!
by Guillaume Gardet 16 Nov '23

16 Nov '23

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&versio… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Mesa Mesa-drivers docbook-xsl (1.79.2.1 -> 1.79.2.2) hwdata (0.373 -> 0.376) libdrm libeconf (0.5.2 -> 0.6.0) libiscsi (1.19.0+git.20230208 -> 1.19.0+git.20231114) libosinfo (1.10.0 -> 1.11.0) libtommath (1.2.0 -> 1.2.1) libxml2 libxml2-python lsof (4.98.0 -> 4.99.0) nfs-utils openvpn (2.6.6 -> 2.6.7) osinfo-db (20230719 -> 20231027) procps procps4 publicsuffix (20231028 -> 20231108) python-alembic (1.12.0 -> 1.12.1) rubygem-benchmark (0.2.1 -> 0.3.0) rubygem-bundler (2.3.26 -> 2.4.22) rubygem-chef-utils (18.0.185 -> 18.3.0) rubygem-cool.io (1.7.1 -> 1.8.0) rubygem-csv (3.2.5 -> 3.2.8) rubygem-debase-ruby_core_source (0.10.18 -> 3.2.2) rubygem-domain_name (0.5.20190701 -> 0.6.20231109) rubygem-dry-types (1.7.0 -> 1.7.1) rubygem-excon (0.99.0 -> 0.104.0) rubygem-execjs (2.8.1 -> 2.9.1) rubygem-fast_gettext (2.2.0 -> 2.3.0) rubygem-flog (4.6.6 -> 4.8.0) rubygem-fluentd (1.15.3 -> 1.16.3) rubygem-fog-libvirt (0.10.1 -> 0.12.0) rubygem-gettext_i18n_rails (1.9.0 -> 1.12.0) rubygem-gli (2.21.0 -> 2.21.1) rubygem-globalid (1.1.0 -> 1.2.1) rubygem-googleapis-common-protos-types (1.9.0 -> 1.10.0) rubygem-gpgme (2.0.22 -> 2.0.23) rubygem-grape (1.6.2 -> 2.0.0) rubygem-haml (6.0.12 -> 6.2.3) rubygem-highline (2.0.3 -> 2.1.0) rubygem-hoe (3.26.0 -> 4.0.5) rubygem-http (5.1.0 -> 5.1.1) rubygem-json-jwt (1.16.1 -> 1.16.3) rubygem-json-schema (3.0.0 -> 4.1.1) rubygem-jwt (2.5.0 -> 2.7.1) rubygem-launchy (2.5.0 -> 2.5.2) rubygem-liquid-4 (4.0.3 -> 4.0.4) rubygem-loofah (2.19.1 -> 2.22.0) rubygem-mail (2.8.0 -> 2.8.1) rubygem-mime-types (3.4.1 -> 3.5.1) rubygem-mime-types-data (3.2022.0105 -> 3.2023.1003) rubygem-mini_mime (1.1.2 -> 1.1.5) rubygem-mocha (2.0.2 -> 2.1.0) rubygem-msgpack (1.6.0 -> 1.7.2) rubygem-multipart-post (2.2.3 -> 2.3.0) rubygem-mysql2 (0.5.4 -> 0.5.5) rubygem-net-ldap (0.17.1 -> 0.18.0) rubygem-nio4r (2.5.8 -> 2.5.9) rubygem-omniauth (2.1.0 -> 2.1.1) rubygem-optimist (3.0.1 -> 3.1.0) rubygem-parallel (1.22.1 -> 1.23.0) rubygem-parallel_tests (4.0.0 -> 4.3.0) rubygem-pkg-config (1.5.1 -> 1.5.5) rubygem-po_to_json (1.0.1 -> 2.0.0) rubygem-pry (0.14.1 -> 0.14.2) rubygem-pry-doc (1.3.0 -> 1.4.0) rubygem-puma-5 (5.6.5 -> 5.6.7) rubygem-puma (6.2.2 -> 6.4.0) rubygem-rack (3.0.7 -> 3.0.8) rubygem-rack-protection (3.0.4 -> 3.1.0) rubygem-rack-proxy (0.7.4 -> 0.7.7) rubygem-rails-dom-testing (2.0.3 -> 2.2.0) rubygem-rake-compiler (1.2.0 -> 1.2.5) rubygem-red-datasets (0.1.5 -> 0.1.7) rubygem-regexp_parser (2.6.1 -> 2.8.2) rubygem-rice (4.0.4 -> 4.1.0) rubygem-rouge (4.0.0 -> 4.2.0) rubygem-rspec-core (3.12.0 -> 3.12.2) rubygem-rspec-expectations (3.12.0 -> 3.12.3) rubygem-rspec-mocks (3.12.3 -> 3.12.6) rubygem-rspec-support (3.12.0 -> 3.12.1) rubygem-rubocop-ast (1.29.0 -> 1.30.0) rubygem-ruby-progressbar (1.11.0 -> 1.13.0) rubygem-ruby_parser (3.19.2 -> 3.20.3) rubygem-sdoc (2.4.0 -> 2.6.1) rubygem-serverengine (2.3.0 -> 2.3.2) rubygem-sexp_processor (4.16.1 -> 4.17.0) rubygem-sigdump (0.2.4 -> 0.2.5) rubygem-simplecov (0.21.2 -> 0.22.0) rubygem-slim (5.1.0 -> 5.2.0) rubygem-slop (4.9.3 -> 4.10.1) rubygem-spring (4.1.0 -> 4.1.2) rubygem-sprockets (4.1.1 -> 4.2.1) rubygem-sshkit (1.21.3 -> 1.21.5) rubygem-temple (0.10.0 -> 0.10.3) rubygem-thor (1.2.1 -> 1.3.0) rubygem-tilt (2.0.11 -> 2.3.0) rubygem-tzinfo-1.2 (1.2.10 -> 1.2.11) rubygem-tzinfo (2.0.5 -> 2.0.6) rubygem-tzinfo-data (1.2022.7 -> 1.2023.3) rubygem-version_gem (1.1.1 -> 1.1.3) rubygem-websocket (1.2.9 -> 1.2.10) rubygem-websocket-driver (0.7.5 -> 0.7.6) rubygem-xmlrpc (0.3.2 -> 0.3.3) rubygem-yard (0.9.28 -> 0.9.34) rubygem-zeitwerk (2.6.6 -> 2.6.12) sdbootutil (1+git20231102.beb4c19 -> 1+git20231114.6bcf1d3) thin-provisioning-tools (0.9.0 -> 1.0.7) vim (9.0.2078 -> 9.0.2103) === Details === ==== Mesa ==== Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libOSMesa8 libgbm1 - build with valgrind only on 64bit platforms ==== Mesa-drivers ==== Subpackages: Mesa-dri Mesa-gallium Mesa-libva - build with valgrind only on 64bit platforms ==== docbook-xsl ==== Version update (1.79.2.1 -> 1.79.2.2) - Raise version to 1.79.2.2 Integrate latest changes from assembly/assemble.xsl and assembly/effectivity.xsl - Remove docbook-xsl-1.79.2-assembly-assemble.xsl.patch We copy the two files directly. These two files contains the following overall changes: - Fix #254: Pass structure/@xml:lang to result doc - Support filterin/filterout elements - Fix problem with resourceref to another structure in assemblies - fix #28 assemble.xsl: imagedata filerefs in assembled output document may be incorrect - Fix #27 to allow merge from resource of titles not inside info because they are equivalent to titles inside info. Also fixe a couple of other problems noticed during testing. For details, see the upstream Git repo and run: $ git diff release/1.79.2..master -- \ xsl/assembly/assemble.xsl xsl/assembly/effectivity.xsl ==== hwdata ==== Version update (0.373 -> 0.376) - update to 0.376: * Update pci, usb and vendor ids ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - use valgrind support only on 64bit platforms ==== libeconf ==== Version update (0.5.2 -> 0.6.0) - Update to version 0.6.0: * Supporting Linux Userspace API (UAPI) Group chapter "Configuration Files Specification". See: https://uapi-group.org/specifications/specs/ configuration_files_specification/ - Update to version 0.5.3: * Added bindings for python3 and C# - Update to version 0.5.2: * Add python bindings (#188) * docu version 0.5.2 * Fix test (#185) * Plug memory leak (#186) ==== libiscsi ==== Version update (1.19.0+git.20230208 -> 1.19.0+git.20231114) - Update to version 1.19.0+git.20231114: * Log necessary message on internal reconnect * Dump opcode string in iscsi_dump_pdu_header() * Introduce helper function scsi_opcode_str * Declare value-string maps as static * Distinguish command timeout * doc: Add iscsi-md5sum * fixup! checking if task is in outqueue * checking if task is in outqueue * Add add a timeout to the event_loop in sync.c * iscsi-discard: adapt block limits * gitignore: Add utils/iscsi-md5sum * iscsi-md5sum: Add new tool * gitignore: add utils/iscsi-discard * iscsi-discard: Add new tool * utils: use strtol instead of atoi * Add iscsi_set_fd_dup_cb * Add /utils/iscsi-pr into .gitignore * iscsi-perf: Add -h/--help ==== libosinfo ==== Version update (1.10.0 -> 1.11.0) Subpackages: libosinfo-1_0-0 typelib-1_0-Libosinfo-1_0 - Update to version 1.11.0 (jsc#PED-2104) Changes in this release include: * Several minor memory leak fixes * Several CI improvements * Several translations improvements - Drop 3a0fef72.patch as it is now part of the tarball ==== libtommath ==== Version update (1.2.0 -> 1.2.1) - Update to version 1.2.1 (bsc#1214927, CVE-2023-36328): + Bugfix release because of potential integer overflow ( CVE-2023-36328). - Drop 546.patch: fixed upstream. - Update libtommath.keyring to contain gpg key 7B24BC73AFEEFA69A5BDE9C53FAA94B3BD9016D9. ==== libxml2 ==== Subpackages: libxml2-2 libxml2-tools - Security fix: CVE-2023-45322 (bsc#1216129) * use-after-free in xmlUnlinkNode() in tree.c * Added file libxml2-CVE-2023-45322.patch ==== libxml2-python ==== - Security fix: CVE-2023-45322 (bsc#1216129) * use-after-free in xmlUnlinkNode() in tree.c * Added file libxml2-CVE-2023-45322.patch ==== lsof ==== Version update (4.98.0 -> 4.99.0) - lsof 4.99.0: * Do not hard-code fd numbers in epoll test * --with-selinux configure option. * Improve performance by using closefrom() * Introduce liblsof for programmatic access over spawning lsof in a subprocess - build with libtirpc - switch to upstream tarball again as it dropped proprietary code ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client nfs-kernel-server - Build with --enable-junction so that nfsref is built https://lore.kernel.org/linux-nfs/DFBBA6DD-7F22-4A38-BAA2-DBD40EB81BB9@orac… ==== openvpn ==== Version update (2.6.6 -> 2.6.7) - update to 2.6.7: * CVE-2023-46850 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly use a send buffer after it has been free()d in some circumstances, causing some free()d memory to be sent to the peer. All configurations using TLS (e.g. not using --secret) are affected by this issue. * CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore --fragment configuration in some circumstances, leading to a division by zero when --fragment is used. On platforms where division by zero is fatal, this will cause an OpenVPN crash. * DCO: warn if DATA_V1 packets are sent by the other side - this a hard incompatibility between a 2.6.x client connecting to a 2.4.0-2.4.4 server, and the only fix is to use --disable-dco. * Remove OpenSSL Engine method for loading a key. This had to be removed because the original author did not agree to relicensing the code with the new linking exception added. This was a somewhat obsolete feature anyway as it only worked with OpenSSL 1.x, which is end-of-support. * add warning if p2p NCP client connects to a p2mp server - this is a combination that used to work without cipher negotiation (pre 2.6 on both ends), but would fail in non-obvious ways with 2.6 to 2.6. * add warning to --show-groups that not all supported groups are listed (this is due the internal enumeration in OpenSSL being a bit weird, omitting X448 and X25519 curves). * --dns: remove support for exclude-domains argument (this was a new 2.6 option, with no backend support implemented yet on any platform, and it turns out that no platform supported it at all - so remove option again) * warn user if INFO control message too long, do not forward to management client (safeguard against protocol-violating server implementations) * DCO-WIN: get and log driver version (for easier debugging). * print "peer temporary key details" in TLS handshake * log OpenSSL errors on failure to set certificate, for example if the algorithms used are in acceptable to OpenSSL (misleading message would be printed in cryptoapi / pkcs11 scenarios) * add CMake build system for MinGW and MSVC builds * remove old MSVC build system * improve cmocka unit test building for Windows ==== osinfo-db ==== Version update (20230719 -> 20231027) - Update to database version 20231027 (jsc#PED-2104) osinfo-db-20231027.tar.xz ==== procps ==== Subpackages: libprocps8 - procps-ng-3.3.17-logind.patch: Fix crash of "w -s -h" ==== procps4 ==== Subpackages: libproc2-0 - Remove duplicate BuildRequires ==== publicsuffix ==== Version update (20231028 -> 20231108) - Update to version 20231108: * Update public_suffix_list.dat (#1848) * util: gTLD data autopull updates for 2023-11-03T15:13:18 UTC (#1887) * Add `torun.pl` (#1684) ==== python-alembic ==== Version update (1.12.0 -> 1.12.1) - update to 1.12.1: * Fixed regression caused by :ticket:`879` released in 1.7.0 where the ".info" dictionary of ``Table`` would not render in autogenerate create table statements. This can be useful for custom create table DDL rendering schemes so it is restored. * Improved typing in the :paramref:`.EnvironmentContext.configure.process_revision_dir ectives` callable to better indicate that the passed-in type is :class:`.MigrationScript`, not the :class:`.MigrationOperation` base class, and added typing to the example at :ref:`cookbook_no_empty_migrations` to illustrate. * Repaired :class:`.ExecuteSQLOp` so that it can participate in "diff" operations; while this object is typically not present in a reflected operation stream, custom hooks may be adding this construct where it needs to have the correct ``to_diff_tuple()`` method. * Improved the ``op.execute()`` method to correctly accept the * ``Executable`` type that is the same which is used in SQLAlchemy ``Connection.execute()``. * Improve typing of the revision parameter in various command functions. * Fixed autogen render issue where expressions inside of indexes for PG need to be double-parenthesized, meaning a single parens must be present within the generated ``text()`` construct. * Alembic now accommodates for Sequence and Identity that support dialect kwargs. This is a change that will be added to SQLAlchemy v2.1. ==== rubygem-benchmark ==== Version update (0.2.1 -> 0.3.0) - 0.3.0: [#]# What's Changed * Migrate `set-output` to `$GITHUB_OUTPUT` by @znz in https://github.com/ruby/benchmark/pull/17 * Replace reusing actions by @hsbt in https://github.com/ruby/benchmark/pull/18 * Don't use version.rb by @hsbt in https://github.com/ruby/benchmark/pull/19 [#]# New Contributors * @znz made their first contribution in https://github.com/ruby/benchmark/pull/17 * *Full Changelog**: https://github.com/ruby/benchmark/compare/v0.2.1...v0.3.0 ==== rubygem-bundler ==== Version update (2.3.26 -> 2.4.22) - New upstream release 2.4.22, see bundled CHANGELOG.md ==== rubygem-chef-utils ==== Version update (18.0.185 -> 18.3.0) - New upstream release 18.3.0, no changelog found ==== rubygem-cool.io ==== Version update (1.7.1 -> 1.8.0) - New upstream release 1.8.0, see bundled Changes ==== rubygem-csv ==== Version update (3.2.5 -> 3.2.8) - New upstream release 3.2.8, no changelog found ==== rubygem-debase-ruby_core_source ==== Version update (0.10.18 -> 3.2.2) - ## [3.2.2](https://github.com/ruby-debug/debase-ruby_core_source/compare/3.2.2.… * ruby-3.3.0-preview2 sources added * ruby-3.3.0-preview1 sources removed [#]# [3.2.1](https://github.com/ruby-debug/debase-ruby_core_source/compare/3.2.1.… * ruby-3.3.0-preview1 sources added * tags naming changed to the version without v [#]# [3.2.0](https://github.com/ruby-debug/debase-ruby_core_source/compare/v0.10.… * ruby-3.2.0 sources added * ruby-3.2.0 preview sources removed * ruby-2.0.x sources removed (let's keep 10 last releases here) * versioning changed to match current ruby version ==== rubygem-domain_name ==== Version update (0.5.20190701 -> 0.6.20231109) - ## [v0.6.20231109](https://github.com/knu/ruby-domain_name/tree/v0.6.20231109) (2023-11-14) [Full Changelog](https://github.com/knu/ruby-domain_name/compare/v0.6.20190701...… - Update the eTLD database to 2023-11-09 00:10:10 UTC - Require Ruby >=2.7 and drop the dependency on unf ==== rubygem-dry-types ==== Version update (1.7.0 -> 1.7.1) - ## 1.7.1 2023-02-17 [#]## Fixed - Warning from jruby about overwritten keyword (@flash-gordon + @klobuczek in #454) [Compare v1.7.0...v1.7.1](https://github.com/dry-rb/dry-types/compare/v1.7.0...v1.7.… ==== rubygem-excon ==== Version update (0.99.0 -> 0.104.0) - New upstream release 0.104.0, no changelog found ==== rubygem-execjs ==== Version update (2.8.1 -> 2.9.1) - New upstream release 2.9.1, no changelog found ==== rubygem-fast_gettext ==== Version update (2.2.0 -> 2.3.0) - New upstream release 2.3.0, see bundled CHANGELOG ==== rubygem-flog ==== Version update (4.6.6 -> 4.8.0) - New upstream release 4.8.0, see bundled History.rdoc ==== rubygem-fluentd ==== Version update (1.15.3 -> 1.16.3) - ## Release v1.16.3 - 2023/11/14 [#]## Bug Fix * in_tail: Fix a stall bug on !follow_inode case https://github.com/fluent/fluentd/pull/4327 * in_tail: add warning for silent stop on !follow_inodes case https://github.com/fluent/fluentd/pull/4339 * Buffer: Fix NoMethodError with empty unstaged chunk arrays https://github.com/fluent/fluentd/pull/4303 * Fix for rotate_age where Fluentd passes as Symbol https://github.com/fluent/fluentd/pull/4311 - # v1.16 [#]# Release v1.16.2 - 2023/07/14 [#]## Bug Fix * in_tail: Fix new watcher is wrongly detached on rotation when `follow_inodes`, which causes stopping tailing the file https://github.com/fluent/fluentd/pull/4208 * in_tail: Prevent wrongly unwatching when `follow_inodes`, which causes log duplication https://github.com/fluent/fluentd/pull/4237 * in_tail: Fix warning log about overwriting entry when `follow_inodes` https://github.com/fluent/fluentd/pull/4214 * in_tail: Ensure to discard TailWatcher with missing target when `follow_inodes` https://github.com/fluent/fluentd/pull/4239 * MessagePackFactory: Make sure to reset local unpacker to prevent received broken data from affecting other receiving data https://github.com/fluent/fluentd/pull/4178 * Fix failure to launch Fluentd on Windows when the log path isn't specified in the command line https://github.com/fluent/fluentd/pull/4188 * logger: Prevent growing cache size of `ignore_same_log_interval` unlimitedly https://github.com/fluent/fluentd/pull/4229 * Update sigdump to 0.2.5 to fix wrong value of object counts https://github.com/fluent/fluentd/pull/4225 [#]## Misc * in_tail: Check detaching inode when `follow_inodes` https://github.com/fluent/fluentd/pull/4191 * in_tail: Add debug log for pos file compaction https://github.com/fluent/fluentd/pull/4228 * Code improvements detected by RuboCop Performance https://github.com/fluent/fluentd/pull/4201 https://github.com/fluent/fluentd/pull/4210 * Add notice for unused argument `unpacker` of `ChunkMessagePackEventStreamer.each` https://github.com/fluent/fluentd/pull/4159 [#]# Release v1.16.1 - 2023/04/17 [#]## Enhancement * in_tcp: Add `message_length_limit` to drop large incoming data https://github.com/fluent/fluentd/pull/4137 [#]## Bug Fix * Fix NameError of `SecondaryFileOutput` when setting secondary other than `out_secondary_file` https://github.com/fluent/fluentd/pull/4124 * Server helper: Suppress error of `UDPServer` over `max_bytes` on Windows https://github.com/fluent/fluentd/pull/4131 * Buffer: Fix that `compress` setting causes unexpected error when receiving already compressed MessagePack https://github.com/fluent/fluentd/pull/4147 [#]## Misc * Update MAINTAINERS.md https://github.com/fluent/fluentd/pull/4119 * Update security policy https://github.com/fluent/fluentd/pull/4123 * Plugin template: Remove unnecessary code https://github.com/fluent/fluentd/pull/4128 * Revive issue auto closer https://github.com/fluent/fluentd/pull/4116 * Fix a link for the repository of td-agent https://github.com/fluent/fluentd/pull/4145 * in_udp: add test of message_length_limit https://github.com/fluent/fluentd/pull/4117 * Fix a typo of an argument of `Fluent::EventStream#each` https://github.com/fluent/fluentd/pull/4148 * Test in_tcp: Fix undesirable way to assert logs https://github.com/fluent/fluentd/pull/4138 [#]# Release v1.16.0 - 2023/03/29 [#]## Enhancement * in_tcp: Add `send_keepalive_packet` option https://github.com/fluent/fluentd/pull/3961 * buffer: backup broken file chunk https://github.com/fluent/fluentd/pull/4025 * Add warning messages for restoring buffer with `flush_at_shutdown true` https://github.com/fluent/fluentd/pull/4027 * Add logs for time period of restored buffer possibly broken https://github.com/fluent/fluentd/pull/4028 [#]## Bug Fix * http_server_helper: Fix format of log messages originating from Async gem https://github.com/fluent/fluentd/pull/3987 * Change to not generate a sigdump file after receiving a `SIGTERM` signal on non-Windows https://github.com/fluent/fluentd/pull/4034 https://github.com/fluent/fluentd/pull/4043 * out_forward: fix error of ack handling conflict on stopping with `require_ack_response` enabled https://github.com/fluent/fluentd/pull/4030 * Fix problem that some `system` configs are not reflected https://github.com/fluent/fluentd/pull/4064 https://github.com/fluent/fluentd/pull/4065 https://github.com/fluent/fluentd/pull/4086 https://github.com/fluent/fluentd/pull/4090 https://github.com/fluent/fluentd/pull/4096 ... changelog too long, skipping 41 lines ... https://github.com/fluent/fluentd/pull/4069 ==== rubygem-fog-libvirt ==== Version update (0.10.1 -> 0.12.0) - New upstream release 0.12.0, no changelog found ==== rubygem-gettext_i18n_rails ==== Version update (1.9.0 -> 1.12.0) - New upstream release 1.12.0, no changelog found ==== rubygem-gli ==== Version update (2.21.0 -> 2.21.1) - New upstream release 2.21.1, no changelog found ==== rubygem-globalid ==== Version update (1.1.0 -> 1.2.1) - New upstream release 1.2.1, no changelog found ==== rubygem-googleapis-common-protos-types ==== Version update (1.9.0 -> 1.10.0) - ### 1.10.0 (2023-11-06) [#]### Features * Automated update of googleapis-common-protos-types ([#200](https://github.com/googleapis/common-protos-ruby/issues/200)) ==== rubygem-gpgme ==== Version update (2.0.22 -> 2.0.23) - New upstream release 2.0.23, no changelog found ==== rubygem-grape ==== Version update (1.6.2 -> 2.0.0) - New upstream release 2.0.0, see bundled CHANGELOG.md ==== rubygem-haml ==== Version update (6.0.12 -> 6.2.3) - New upstream release 6.2.3, see bundled CHANGELOG.md ==== rubygem-highline ==== Version update (2.0.3 -> 2.1.0) - ### 2.1.0 / 2022-12-31 * PR #255 - Change minimum Ruby version requirement to 2.3 (@abinoam) * PR #254 - Improve Github Actions file (@abinoam) * PR #253, PR #251 - Setup GitHub Actions and remove Travis (@petergoldstein, rev by @AlexWayfer) * PR #250 - Fix file permissions (@bdunne) ==== rubygem-hoe ==== Version update (3.26.0 -> 4.0.5) - New upstream release 4.0.5, see bundled History.rdoc ==== rubygem-http ==== Version update (5.1.0 -> 5.1.1) - New upstream release 5.1.1, see bundled CHANGES.md ==== rubygem-json-jwt ==== Version update (1.16.1 -> 1.16.3) - ### Fixed - Remove padding oracle by @btoews in https://github.com/nov/json-jwt/pull/109 [#]# [1.16.0] - 2022-10-08 ==== rubygem-json-schema ==== Version update (3.0.0 -> 4.1.1) - New upstream release 4.1.1, no changelog found ==== rubygem-jwt ==== Version update (2.5.0 -> 2.7.1) - New upstream release 2.7.1, see bundled CHANGELOG.md ==== rubygem-launchy ==== Version update (2.5.0 -> 2.5.2) - New upstream release 2.5.2, see bundled HISTORY.md ==== rubygem-liquid-4 ==== Version update (4.0.3 -> 4.0.4) - New upstream release 4.0.4, see bundled History.md ==== rubygem-loofah ==== Version update (2.19.1 -> 2.22.0) - ## 2.22.0 / 2023-11-13 [#]## Added * A `:targetblank` HTML scrubber which ensures all hyperlinks have `target="_blank"`. [#275] @stefannibrasil and @thdaraujo * A `:noreferrer` HTML scrubber which ensures all hyperlinks have `rel=noreferrer`, similar to the `:nofollow` and `:noopener` scrubbers. [#277] @wynksaiddestroy - ## 2.21.4 / 2023-10-10 [#]## Fixed * `Loofah::HTML5::Scrub.scrub_css` is more consistent in preserving whitespace (and lack of whitespace) in CSS property values. In particular, `.scrub_css` no longer inserts whitespace between tokens that did not already have whitespace between them. [[#273](https://github.com/flavorjones/loofah/issues/273), fixes [#271](https://github.com/flavorjones/loofah/issues/271)] [#]# 2.21.3 / 2023-05-15 [#]## Fixed * Quash "instance variable not initialized" warning in Ruby < 3.0. [[#268](https://github.com/flavorjones/loofah/issues/268)] (Thanks, [@dharamgollapudi](https://github.com/dharamgollapudi)!) [#]# 2.21.2 / 2023-05-11 [#]## Dependencies * Update the dependency on Nokogiri to be `>= 1.12.0`. The dependency in 2.21.0 and 2.21.1 was left at `>= 1.5.9` but versions before 1.12 would result in a `NameError` exception. [[#266](https://github.com/flavorjones/loofah/issues/266)] [#]# 2.21.1 / 2023-05-10 [#]## Fixed * Don't define `HTML5::Document` and `HTML5::DocumentFragment` when Nokogiri is `< 1.14`. In 2.21.0 these classes were defined whenever `Nokogiri::HTML5` was defined, but Nokogiri v1.12 and v1.13 do not support Loofah subclassing properly. [#]# 2.21.0 / 2023-05-10 [#]## HTML5 Support Classes `Loofah::HTML5::Document` and `Loofah::HTML5::DocumentFragment` are introduced, along with helper methods: - `Loofah.html5_document` - `Loofah.html5_fragment` - `Loofah.scrub_html5_document` - `Loofah.scrub_html5_fragment` These classes and methods use Nokogiri's HTML5 parser to ensure modern web standards are used. â HTML5 functionality is only available with Nokogiri v1.14.0 and higher. â HTML5 functionality is not available for JRuby. Please see [this upstream Nokogiri issue](https://github.com/sparklemotion/nokogiri/issues/2227) if you're interested in helping implement and support HTML5 support. [#]## `Loofah::HTML4` module and namespace `Loofah::HTML` has been renamed to `Loofah::HTML4`, and `Loofah::HTML` is aliased to preserve backwards-compatibility. `Nokogiri::HTML` and `Nokogiri::HTML4` parse methods still use libxml2's (or NekoHTML's) HTML4 parser. Take special note that if you rely on the class name of an object in your code, objects will now report a class of `Loofah::HTML4::Foo` where they previously reported `Loofah::HTML::Foo`. Instead of relying on the string returned by `Object#class`, prefer `Class#===` or `Object#is_a?` or `Object#instance_of?`. Future releases of Nokogiri may deprecate `HTML` classes and methods or otherwise change this behavior, so please start using `HTML4` in place of `HTML`. [#]## Official support for JRuby This version introduces official support for JRuby. Previously, the test suite had never been green due to differences in behavior in the underlying HTML parser used by Nokogiri. We've updated the test suite to accommodate those differences, and have added JRuby to the CI suite. [#]# 2.20.0 / 2023-04-01 [#]## Features * Allow SVG attributes `color-profile`, `cursor`, `filter`, `marker`, and `mask`. [[#246](https://github.com/flavorjones/loofah/issues/246)] * Allow SVG elements `altGlyph`, `cursor`, `feImage`, `pattern`, and `tref`. [[#246](https://github.com/flavorjones/loofah/issues/246)] * Allow protocols `fax` and `modem`. [[#255](https://github.com/flavorjones/loofah/issues/255)] (Thanks, [@cjba7](https://github.com/cjba7)!) ==== rubygem-mail ==== Version update (2.8.0 -> 2.8.1) - New upstream release 2.8.1, no changelog found ==== rubygem-mime-types ==== Version update (3.4.1 -> 3.5.1) - New upstream release 3.5.1, see bundled History.md ==== rubygem-mime-types-data ==== Version update (3.2022.0105 -> 3.2023.1003) - New upstream release 3.2023.1003, see bundled History.md ==== rubygem-mini_mime ==== Version update (1.1.2 -> 1.1.5) - 08-08-2023 - Version 1.1.5 - Update mime types from upstream 08-08-2023 - Version 1.1.4 - Version 1.1.3 had issues on Windows which does not support pread, added a polyfill 04-08-2023 - Version 1.1.3 - Added fork safety by migrating from seek+read to pread ==== rubygem-mocha ==== Version update (2.0.2 -> 2.1.0) - New upstream release 2.1.0, no changelog found ==== rubygem-msgpack ==== Version update (1.6.0 -> 1.7.2) - 2023-07-18 1.7.2: * Fix a potential GC bug when packing data using recursive extensions and buffers containing over 512KkiB of data (See #341). * Fix a regression where feeding an empty string to an Unpacker would be considered like the end of the buffer. 2023-05-19 1.7.1: * Fix JRuby 9.4 compatibility. * Fix compilation on older compilers (gcc 4.x). * Fix an infinite recursion issue when registering a Symbol type with a `nil` packer. 2023-03-29 1.7.0: * Fix a possible double-free issue when GC triggers inside `_msgpack_rmem_alloc2`. * `Unpacker#feed` now always directly read in provided strings instead of copying content in its buffer. * `Unpacker#feed` is now an alias of `Unpacker#feed_reference`. * Implement `Factory::Pool#unpacker` and `Factory::Pool#packer` to allow for more precise serialization. * Require Ruby 2.5+. 2023-03-03 1.6.1: * Undefine `#clone` and `#dup` on `MessagePack::Buffer`, `MessagePack::Packer` and `MessagePack::Unpacker`. These methods were never intended, and using them could cause leaks or crashes or worse. * Fix a possible GC crash when GC trigger inside `MessagePack::Buffer.new` (#314). ==== rubygem-multipart-post ==== Version update (2.2.3 -> 2.3.0) - New upstream release 2.3.0, see bundled changelog.md ==== rubygem-mysql2 ==== Version update (0.5.4 -> 0.5.5) - 0.5.5: [#] New * Support for Ruby GC compaction (#1192) * Add `--with-openssl-dir` option for improved linking with OpenSSL (#1303) [#] Changed * Lock on the current Fiber rather than current Thread (#1284) * Improve SSL support on MySQL 5.6.36+ and MariaDB Connector/C 3.0+ (#1304, #1306) * Additional search paths to find MySQL libraries by Homebrew (#1278) * README: Improve docs for SSL/TLS (#1142, #1306) * CI: Upgrade RuboCop and run in its own CI step (#1259, #1268, #1295) * CI: Update runtime environments (#1290, #1291, #1292, #1298, #1299) Full Changelog: https://github.com/brianmario/mysql2/compare/0.5.4...0.5.5 ==== rubygem-net-ldap ==== Version update (0.17.1 -> 0.18.0) - New upstream release 0.18.0, see bundled History.rdoc ==== rubygem-nio4r ==== Version update (2.5.8 -> 2.5.9) - ## 2.5.8 (2021-08-03) * [#276](https://github.com/socketry/nio4r/pull/276) Fix missing return statement in function returning non-void (issue [#275](https://github.com/socketry/nio4r/pull/275)) ([@ioquatix]) * Remove `guard-rspec` from development dependencies ([@ioquatix]) [#]# 2.5.7 (2021-03-04) * [#267](https://github.com/socketry/nio4r/pull/267) Don't try to link universal extension ([@ioquatix]) [#]# 2.5.6 (2021-03-04) * [#268](https://github.com/socketry/nio4r/pull/268) Prefer kqueue when on OSX >= v10.12.2 ([@jcmfernandes]) ==== rubygem-omniauth ==== Version update (2.1.0 -> 2.1.1) - New upstream release 2.1.1, no changelog found ==== rubygem-optimist ==== Version update (3.0.1 -> 3.1.0) - New upstream release 3.1.0, see bundled CHANGELOG.md ==== rubygem-parallel ==== Version update (1.22.1 -> 1.23.0) - New upstream release 1.23.0, no changelog found ==== rubygem-parallel_tests ==== Version update (4.0.0 -> 4.3.0) - New upstream release 4.3.0, no changelog found ==== rubygem-pkg-config ==== Version update (1.5.1 -> 1.5.5) - New upstream release 1.5.5, see bundled NEWS ==== rubygem-po_to_json ==== Version update (1.0.1 -> 2.0.0) - ## [2.0.0](https://github.com/webhippie/po_to_json/releases/tag/v2.0.0) - 2023-07-18 * Fix escape double quote in msgid (@chaomao) [#]# [1.1.0](https://github.com/webhippie/po_to_json/releases/tag/v1.0.1) - 2023-04-28 * Optionally remove var keyword to use a global (@illiatdesdindes) ==== rubygem-pry ==== Version update (0.14.1 -> 0.14.2) - ### [v0.14.2][v0.14.2] (January 9, 2023) [#]### Features * Configure `code` as a supported editor on Pry::Editor ([#2236](https://github.com/pry/pry/pull/2236)) * Added support for Ruby 3.2 ([#2263](https://github.com/pry/pry/pull/2263)) * Added support for Ruby 3.1 ([#2228](https://github.com/pry/pry/pull/2228)) [#]### Bug fixes * Short circuit eval regexes in finding module definition ([#2253](https://github.com/pry/pry/pull/2253)) * Revert "Escape non-printing characters" ([#2235](https://github.com/pry/pry/pull/2235)) * Fixed bug where WeirdMethodLocator would fail to find the source of a method breaking whereami ([#2244](https://github.com/pry/pry/pull/2244)) * Fixed bug where pry would throw an FrozenError when dealing with incomplete tokens ([#2136](https://github.com/pry/pry/pull/2136)) * Restore --no-history CLI flag functionality ([#2196](https://github.com/pry/pry/pull/2196)) * Fixed bug where reading from the `_out_` sticky local variable could return wrong results ([#2201](https://github.com/pry/pry/pull/2201)) [#]### Breaking Changes * Remove support for Ruby 1.9 and JRuby < 9.0 ([#2239](https://github.com/pry/pry/pull/2239)) ==== rubygem-pry-doc ==== Version update (1.3.0 -> 1.4.0) - New upstream release 1.4.0, see bundled CHANGELOG.md ==== rubygem-puma-5 ==== Version update (5.6.5 -> 5.6.7) - 5.6.7: Security Address HTTP request smuggling vulnerabilities with zero-length Content Length header and trailer fields ([GHSA-68xg-gqqm-vgj8](https://github.com/puma/puma/security/advisories/GHSA-…) ==== rubygem-puma ==== Version update (6.2.2 -> 6.4.0) - Update to 6.4.0 * Features * on_thread_exit hook ([#2920]) * on_thread_start_hook ([#3195]) * Shutdown on idle ([#3209], [#2580]) * New error message when control server port taken ([#3204]) * Refactor * Remove `Forwardable` dependency ([#3191], #3190) * Update URLMap Regexp usage for Ruby v3.3 ([#3165]) * Bugfixes * Bring the cert_pem: parameter into parity with the cert: parameter to ssl_bind. ([#3174]) * Fix using control server with IPv6 host ([#3181]) * control_cli.rb - add require_relative 'log_writer' ([#3187]) * Fix cases where fallback Rack response wasn't sent to the client ([#3094]) - 6.3.1: * Security * Address HTTP request smuggling vulnerabilities with zero-length Content Length header and trailer fields ([GHSA-68xg-gqqm-vgj8](https://github.com/puma/puma/security/advisories/GHSA-…) - Update to 6.3.0 - Features - Add dsl method `supported_http_methods` ([#3106], [#3014]) - Puma error responses no longer have any fingerprints to indicate Puma ([#3161], [#3037]) - Support decryption of SSL key ([#3133], [#3132]) - Bugfixes - Don't send 103 early hints response when only invalid headers are used ([#3163]) - Handle malformed request path ([#3155], [#3148]) - Misc lib file fixes - trapping additional errors, CI helper ([#3129]) - Fixup req form data file upload with "r\n" line endings ([#3137]) - Restore rack 1.6 compatibility Restore rack 1.6 compatibility ([#3156]) - Refactor - const.rb - Update Puma::HTTP_STATUS_CODES ([#3162]) - Clarify Reactor#initialize ([#3151]) ==== rubygem-rack ==== Version update (3.0.7 -> 3.0.8) - 3.0.8: [#]# What's Changed * Backport "Fix some unused variable verbose warnings" by @skipkayhil in https://github.com/rack/rack/pull/2084 [#]# New Contributors * @skipkayhil made their first contribution in https://github.com/rack/rack/pull/2084 * *Full Changelog**: https://github.com/rack/rack/compare/v3.0.7...v3.0.8 ==== rubygem-rack-protection ==== Version update (3.0.4 -> 3.1.0) - New upstream release 3.1.0, no changelog found ==== rubygem-rack-proxy ==== Version update (0.7.4 -> 0.7.7) - New upstream release 0.7.7, no changelog found ==== rubygem-rails-dom-testing ==== Version update (2.0.3 -> 2.2.0) - New upstream release 2.2.0, no changelog found ==== rubygem-rake-compiler ==== Version update (1.2.0 -> 1.2.5) - New upstream release 1.2.5, see bundled History.md ==== rubygem-red-datasets ==== Version update (0.1.5 -> 0.1.7) - New upstream release 0.1.7, see bundled news.md ==== rubygem-regexp_parser ==== Version update (2.6.1 -> 2.8.2) - New upstream release 2.8.2, no changelog found ==== rubygem-rice ==== Version update (4.0.4 -> 4.1.0) - ## 4.1 Rice 4.1 builds on the 4.0 release and has a number of improvements that both polish Rice and extend its functionality. However, there are three incompatibilities to know about: * Exception handlers are now registered globally versus per module. This requires updating code that calls Class#add_handler to use register_handler instead. * Rename Arg#isValue to Arg#setValue and then Arg#getIsValue to Arg#isValue * Rename Return#isValue to Return#setValue and Return#getIsValue to Return#isValue New or improved functionality includes: * Add support for std::map, std::unordered_map, std::variant, std::monostate and std::reference_wrapper * Enable calling of C++ member functions that are defined in ancestor classes * Make it easy to wrap C++ iterators like std::vector begin and end * Enable creating enumerators for C++ collections like std::vector and std::map * Enable calling more Ruby API methods including those with a variable number of parameters such as rb_yield_values * Add additional C++ to Ruby exception mappings (for example, std::system_error to SystemCallError) * Updated documentation, including new pages for instance tracking, iterators, exceptions and newly supported STL classes * Add support for calling Ruby methods with keywords from Rice::Object and its descendants * Automatically translate C++ character arrays that start with colons to symbols (ie, ":mysymbol") when sending them to Ruby * Add a constructor for Rice::Module that takes a name, to enable code like Module("Kernel") * Fix comparison methods in Rice::Object, such as Object#is_equal, to return the correct result * Fix various compiler warnings * Remove deprecated APIs * Remove support for Ruby 2.5 and 2.6 which are officially out of support * Add support for building tests with CMake * And lots of other fixes and code improvements Rice also includes experimental support for instance tracking so that Rice maps the same C++ instance to the same Ruby instance each time it is passed to Ruby. See the documentation for more information. ==== rubygem-rouge ==== Version update (4.0.0 -> 4.2.0) - 4.2.0: This release introduce 2 new levers: Code Owners and Svelte. In addition, we have also made some improvements across BPF, Dart, Elixir, Groovy, Python and Xoji lexer. Thank you for all the wonderful contributors â¤ï¸ Happy lexing! * *Full Changelog**: https://github.com/rouge-ruby/rouge/compare/v4.1.3...v4.2.0 4.1.3: This release brings some improvements on IRB, XQuery, TypeSCript, HCL and Terraform Lexer. Thank you for all our wonderful contributors. * *Full Changelog**: https://github.com/rouge-ruby/rouge/compare/v4.1.2...v4.1.3 4.1.2: This small release includes some bug fixes across Wollok and Python lexer. * *Full Changelog**: https://github.com/rouge-ruby/rouge/compare/v4.1.1...v4.1.2 4.1.1: This release introduces a number of bug fixes and enhancements across Dart, Dot, JavaScript, Liquid, Mosel, OpenEdge, PHP, Python, Ruby, Rush and Shell lexer. Thank you to everyone who has contributed to this release. Happy Lexing! 4.1.0: Welcome to the first release of 2023! This release introduces a new lexer, Cisco IOS, and many fixes and enhancements across C#, CPP, JavaScript, PHP, Python and YAML lexer. We also address an issue with handling long paths in Windows and support a new dark variant of the GitHub theme. Thank you to everyone who has contributed to this release. It is wonderful to see some first-time contributors. May all your wishes come true in 2023! * *Full Changelog**: https://github.com/rouge-ruby/rouge/compare/v4.0.1...v4.1.0 4.0.1: This release introduces a number of updates and fixes across Coq, Gherkin, HTTP, Java, JavaScript, LLVM, Powershell, Praat, SystemD, Vala and YAML lexer. Thanks to all the contributors who help make Rouge better. On behalf of the Rouge maintainers, we wish you a season full of joy and magic and a bright New Year. * *Full Changelog**: https://github.com/rouge-ruby/rouge/compare/v4.0.0...v4.0.1 ==== rubygem-rspec-core ==== Version update (3.12.0 -> 3.12.2) - New upstream release 3.12.2, see bundled Changelog.md ==== rubygem-rspec-expectations ==== Version update (3.12.0 -> 3.12.3) - New upstream release 3.12.3, see bundled Changelog.md ==== rubygem-rspec-mocks ==== Version update (3.12.3 -> 3.12.6) - New upstream release 3.12.6, see bundled Changelog.md ==== rubygem-rspec-support ==== Version update (3.12.0 -> 3.12.1) - New upstream release 3.12.1, see bundled Changelog.md ==== rubygem-rubocop-ast ==== Version update (1.29.0 -> 1.30.0) - New upstream release 1.30.0, no changelog found ==== rubygem-ruby-progressbar ==== Version update (1.11.0 -> 1.13.0) - New upstream release 1.13.0, no changelog found ==== rubygem-ruby_parser ==== Version update (3.19.2 -> 3.20.3) - New upstream release 3.20.3, see bundled History.rdoc ==== rubygem-sdoc ==== Version update (2.4.0 -> 2.6.1) - 2.6.0 ===== * #193 Add support for Ruby 3.2 as File.exists? has been removed [@sato11](https://github.com/sato11) 2.5.0 ===== * #192 Add padding and rounded borders to code examples [@p8](https://github.com/p8) * #191 Add css class for constant [@p8](https://github.com/p8) * #189 `index_path` should handle a nil `main_page` [@ghiculescu](https://github.com/ghiculescu) ==== rubygem-serverengine ==== Version update (2.3.0 -> 2.3.2) - New upstream release 2.3.2, see bundled Changelog ==== rubygem-sexp_processor ==== Version update (4.16.1 -> 4.17.0) - New upstream release 4.17.0, see bundled History.rdoc ==== rubygem-sigdump ==== Version update (0.2.4 -> 0.2.5) - 2023-07-03 version 0.2.5: * Added nil guard for thread.backtrace (by @yui-knk) * Fixed wrong calculation for array_size and hash_size (by @fatkodima) * Improved dumping speed (by @fatkodima) ==== rubygem-simplecov ==== Version update (0.21.2 -> 0.22.0) - 0.22.0 (2022-12-23) ========== [#]# Enhancements * On Ruby 3.2+, you can now use the new Coverage library feature for `eval` - See https://github.com/simplecov-ruby/simplecov/pull/1037. Thanks [@mame](https://github.com/mame)! [#]# Bugfixes * Fix for making the test suite pass against the upcoming Ruby 3.2 - See https://github.com/simplecov-ruby/simplecov/pull/1035. Thanks [@mame](https://github.com/mame) ==== rubygem-slim ==== Version update (5.1.0 -> 5.2.0) - New upstream release 5.2.0, see bundled CHANGES - 5.1.1 (2023-05-16) * Support lambda functions as shortcuts - #677 #813 #903 * Support --enable-frozen-string-literal - #851 ==== rubygem-slop ==== Version update (4.9.3 -> 4.10.1) - v4.10.1 (2023-02-26) Bug fixes * Fix boolean flags from being invalid when followed by arguments #279 v4.10.0 (2023-02-15) Features: * Add support for optional type validation [#278](https://github.com/leejarvis/slop/pull/278) (Victor Gama) ==== rubygem-spring ==== Version update (4.1.0 -> 4.1.2) - New upstream release 4.1.2, no changelog found - New upstream release 4.1.1, no changelog found ==== rubygem-sprockets ==== Version update (4.1.1 -> 4.2.1) - New upstream release 4.2.1, see bundled CHANGELOG.md ==== rubygem-sshkit ==== Version update (1.21.3 -> 1.21.5) - New upstream release 1.21.5, see bundled CHANGELOG.md ==== rubygem-temple ==== Version update (0.10.0 -> 0.10.3) - 0.10.3 * Remove test files from the gem package (#146) * Add DynamicMerger filter (#147) 0.10.2 * Fix Sinatra capture_generator problem (#145) 0.10.1 * Use specified :capture_generator for nested captures (#112, #144) * Compatibility with frozen string literals ==== rubygem-thor ==== Version update (1.2.1 -> 1.3.0) - 1.3.0: [#]# What's Changed * use the correct class for shared namespaces by @Gerst20051 in https://github.com/rails/thor/pull/754 * Allow to Override Order of Commands in Help by @alessio-signorini in https://github.com/rails/thor/pull/642 * Add support for providing http headers to get by @dnlgrv in https://github.com/rails/thor/pull/801 * Don't document negative boolean option named `no_*` by @BrentWheeldon in https://github.com/rails/thor/pull/797 * CreateFile#identical? fixed for files containing multi-byte UTF-8 codepoints by @tomclose in https://github.com/rails/thor/pull/786 * Drop support to Ruby 2.6 by @rafaelfranca in https://github.com/rails/thor/pull/821 * Fix dashless option usage info by @sambostock in https://github.com/rails/thor/pull/800 * Support Range in enum option by @phene in https://github.com/rails/thor/pull/775 * Check if `type: array` values are in `enum` by @movermeyer in https://github.com/rails/thor/pull/784 * Fix inject into file warning by @nicolas-brousse in https://github.com/rails/thor/pull/709 * Support `Thor::CoreExt::HashWithIndifferentAccess#slice` method by @shuuuuun in https://github.com/rails/thor/pull/812 * ð§ï¸ long_desc: new option to disable wrapping by @igneus in https://github.com/rails/thor/pull/739 * Print default in help when option type is :boolean and default is false by @nevesenin in https://github.com/rails/thor/pull/849 * Silence encoding warnings in specs by @p8 in https://github.com/rails/thor/pull/857 * Validate arguments for `method_option` and `class_option` by @p8 in https://github.com/rails/thor/pull/856 * Fix help for file_collision method without block by @shuuuuun in https://github.com/rails/thor/pull/858 * Extract print methods to seperate classes by @p8 in https://github.com/rails/thor/pull/854 * Add support for printing tables with borders by @p8 in https://github.com/rails/thor/pull/855 * Fix printing tables with borders and indentation by @p8 in https://github.com/rails/thor/pull/861 [#]# New Contributors * @Gerst20051 made their first contribution in https://github.com/rails/thor/pull/754 * @alessio-signorini made their first contribution in https://github.com/rails/thor/pull/642 * @dnlgrv made their first contribution in https://github.com/rails/thor/pull/801 * @BrentWheeldon made their first contribution in https://github.com/rails/thor/pull/797 * @tomclose made their first contribution in https://github.com/rails/thor/pull/786 * @sambostock made their first contribution in https://github.com/rails/thor/pull/800 * @phene made their first contribution in https://github.com/rails/thor/pull/775 * @movermeyer made their first contribution in https://github.com/rails/thor/pull/784 * @nicolas-brousse made their first contribution in https://github.com/rails/thor/pull/709 * @shuuuuun made their first contribution in https://github.com/rails/thor/pull/812 * @igneus made their first contribution in https://github.com/rails/thor/pull/739 * @nevesenin made their first contribution in https://github.com/rails/thor/pull/849 * *Full Changelog**: https://github.com/rails/thor/compare/v1.2.2...v1.3.0 1.2.2: [#]# What's Changed * Respect implicit encoding of thorfiles by @timdiggins in https://github.com/rails/thor/pull/782 * Switch hash from MD5 to SHA256 by @stanhu in https://github.com/rails/thor/pull/785 * Respect the updated NO_COLOR specification by @coderjoe in https://github.com/rails/thor/pull/796 * Remove support for deprecated OS by @peterzhu2118 in https://github.com/rails/thor/pull/798 * Support `thor install <uri>` to install remote thor files by @deivid-rodriguez in https://github.com/rails/thor/pull/787 * Update error message for content already exists case. by @jpgeek in https://github.com/rails/thor/pull/799 * Allow setting file permissions with create_file by @skipkayhil in https://github.com/rails/thor/pull/820 * Properly pad aliases for option usage by @p8 in https://github.com/rails/thor/pull/810 [#]# New Contributors * @ytkg made their first contribution in https://github.com/rails/thor/pull/767 * @timdiggins made their first contribution in https://github.com/rails/thor/pull/780 * @stanhu made their first contribution in https://github.com/rails/thor/pull/785 * @jdufresne made their first contribution in https://github.com/rails/thor/pull/806 * @peterzhu2118 made their first contribution in https://github.com/rails/thor/pull/798 * @casperisfine made their first contribution in https://github.com/rails/thor/pull/807 * @jpgeek made their first contribution in https://github.com/rails/thor/pull/799 * @skipkayhil made their first contribution in https://github.com/rails/thor/pull/820 * @p8 made their first contribution in https://github.com/rails/thor/pull/810 * *Full Changelog**: https://github.com/rails/thor/compare/v1.2.1...v1.2.2 ==== rubygem-tilt ==== Version update (2.0.11 -> 2.3.0) - New upstream release 2.3.0, no changelog found ==== rubygem-tzinfo-1.2 ==== Version update (1.2.10 -> 1.2.11) - Version 1.2.11 - 28-Jan-2023 * Eliminate Object#untaint deprecation warnings on JRuby 9.4.0.0. #145. ==== rubygem-tzinfo ==== Version update (2.0.5 -> 2.0.6) - 2.0.6: * Eliminate `Object#untaint` deprecation warnings on JRuby 9.4.0.0. #145. [TZInfo v2.0.6 on RubyGems.org](https://rubygems.org/gems/tzinfo/versions/2.0.6) ==== rubygem-tzinfo-data ==== Version update (1.2022.7 -> 1.2023.3) - New upstream release 1.2023.3, no changelog found ==== rubygem-version_gem ==== Version update (1.1.1 -> 1.1.3) - New upstream release 1.1.3, see bundled CHANGELOG.md ==== rubygem-websocket ==== Version update (1.2.9 -> 1.2.10) - ## Edge [#]# 1.2.10 - ensure correct port is always specified for handshake - no longer using Base64 for compatibility with Ruby 3.4+ ==== rubygem-websocket-driver ==== Version update (0.7.5 -> 0.7.6) - ### 0.7.6 / 2023-07-25 - Fix handling of default ports in `Host` headers on Ruby 3.1+ ==== rubygem-xmlrpc ==== Version update (0.3.2 -> 0.3.3) - New upstream release 0.3.3, see bundled NEWS.md ==== rubygem-yard ==== Version update (0.9.28 -> 0.9.34) - # [0.9.34] - April 12nd, 2023 [0.9.34]: https://github.com/lsegal/yard/compare/v0.9.33...v0.9.34 - Add changelog to yard.gemspec - Fix fork behavior in `yard server --fork` [#] [0.9.33] - April 11st, 2023 [0.9.33]: https://github.com/lsegal/yard/compare/v0.9.32...v0.9.33 - Ensure .yardopts is present in gem package (internal YARD documentation change) [#] 0.9.32 - April 9th, 2023 [0.9.32]: https://github.com/lsegal/yard/compare/v0.9.31...v0.9.32 - Fix issue with custom Rack::Request attributes in `yard server` [#] [0.9.31] - April 9th, 2023 [0.9.31]: https://github.com/lsegal/yard/compare/v0.9.30...v0.9.31 - Remove dependency on webrick in YARD::Server::Commands::StaticFileHelpers [#] [0.9.30] - April 9th, 2023 [0.9.30]: https://github.com/lsegal/yard/compare/v0.9.29...v0.9.30 - Hot release fix to correct issue with gem packaging missing templates (#1490) [#] [0.9.29] - April 8th, 2023 [0.9.29]: https://github.com/lsegal/yard/compare/v0.9.28...v0.9.29 - Enable table support for CommonMarker (#1443) - Parser performance improvements (#1452, #1453, #1454, #1455) - Fix autoload of RipperParser (#1460) - Remove dependency on webrick for better Ruby 3.1+ support - Improvements for mixin resolution (#1467, #1468) ==== rubygem-zeitwerk ==== Version update (2.6.6 -> 2.6.12) - New upstream release 2.6.12, no changelog found ==== sdbootutil ==== Version update (1+git20231102.beb4c19 -> 1+git20231114.6bcf1d3) Subpackages: sdbootutil-rpm-scriptlets sdbootutil-snapper - Update to version 1+git20231114.6bcf1d3: * Fix quoting when calling dracut ==== thin-provisioning-tools ==== Version update (0.9.0 -> 1.0.7) - Update to version 1.0.7: * v1.0.7 * [thin_generate_metadata] Fix command line parsing * [tests] Introduce era_generate_metadata * [era] Factor out MetadataGenerator * [era_invalidate] Fix missing value_parser for the --written-since option * [tests] Support additional program-specific arguments in IO tests * [examples] Add a custom emitter examples * Remove unnecesary type casting * [file_utils] Verify ioctl request code in tests * [file_utils] Fix the ioctl request code for the powerpc architecture * bump version to 1.0.6 * [build] Update dependencies * [thin_delta] Remove redundant code * [thin_delta] Fix range mappings construction * [thin_delta] Fix command line parsing * [pack/unpack] Fix clippy lints * Bump version to v1.05 * Add some test cases to delta_list * [pack/unpack] Fix some wrapping issues * [tests] Ensure the scope of thin_check --super-block-only * [tests] Test repairing thin metadata with stale superblock * [thin_generate_damage] Support overriding superblock fields * [tests] Validate more fields in repaired thin superblock * [thin_explore] Fix visiting empty leaves * [xml] Improve xml value parsing and error handling * [all] Update error messages for xml parsers * [build] Update quick-xml to v0.29 * [build] Update clap to v4.3 * [build] Update dependencies * [thin_rmap] Check the input ranges * [thin_dump/repair] Fix the ordering of found empty roots * [report] Fix stderr redirection * [thin_dump/repair] Ensure the tools never fail with repairable metadata * [build] allow overriding PDATA_TOOLS in Makefile * [build] fix build on musl * [thin_stat] Display column headers and further statistics * [thin_stat] Display data run length statistics for measuring data locality * [thin_explore] Fix unit conversion for data block size * [thin_explore] Display space maps usage and roots * [thin_stat] Fix opening read-only files * [thin_dump] Fix a regression that cannot keep shared defs with only one predecessor * [commands] Print out error root cause if available - Update to version 1.0.4: * Bump version to 1.0.4 * [build] Update dependencies * [all] Fix clippy lints for Rust 1.69.0 * [build] Drop the nix crate * [file_utils] Fix the BLKGETSIZE64 ioctl for 32-bit platoforms * [file_utils] Use stat64 explicitly to handle large files on 32-bit systems * [write_batcher] Fix compilation error on 32-bit platforms ==== vim ==== Version update (9.0.2078 -> 9.0.2103) Subpackages: vim-data vim-data-common xxd - Update to version 9.0.2103 - drop vim-changelog.sh * recursive callback may cause issues on some archs * matchparen highlight not cleared in completion mode * improve the breakpoint sign label (#13525) * Improve CONTRIBUTING.md * Renamed "makefile_*.mak" for Vim documentation (#13517) * Update for Lynx 2.8.9 (#13510) * Improve :let-heredoc syntax highlighting (#12923) * clarify when formatoptions applies * Update for i3 4.23 (#13522) * Update usr_51.txt to be more inclusive (#13496) * Add missing null_<type> help tags (#13498) * labeler.yml use all instead of any for doc detection (#13507) * No filetype support for xcompose files * clarify `:help inclusion` section * labeler.yml: Add some more component detection rules (#13511) * No support for cypher files * Vim9: confusing usage of private * labeler.yml: add documentation label (#13506) * fix grammar in termdebug doc, remove trailing spaces (#13505) * improve window handling, shorten var types * handle buffer-local mappings properly * statusline may look different than expected * Vim9: need more assignment tests * Update for Wget2 2.1.0 (#13497) * Unsupported option causes skipping of modeline test * tests: failure in test_arabic * Switch Hindu-Arabic to Arabic numerals in arabic keymap (#13430) * Update the translation of Russian messages to Vim 9.0.2091 (#13490) * improve the error detection * document vim-script library function * Make dist/vim.vim work properly when lacking vim9script support (#13487) * Vim9: cannot convert list to string using += * add legacy version for central vim library * centralize safe executable check and add vim library (#13413) * clarify terminal capabilities for focus reporting * complete_info() skips entries with 'noselect' * Add Makefile for the Vim documentation on Windows (#13467) * sound_playfile() fails when using powershell * Vim9: still allows abstract static methods * Update sh syntax and add shDerefOffset to shDerefVarArray for bash (#13480) * make strace ft check less strict (#13482) * build-failure in vim9class * code cleanup for option callbacks needed * Vim9: abstract can be used in interface * Vim9: abstract static methods are possible * runtime(sh) Update sh syntax and add shDblParen to shCaseList (#13469) * Perl: xsubpp may be in non-standard location * Add noble (24.04 LTS) as Ubuntu release name (#13472) * test_channel may fail because of IPv6 config issue * smoothscroll may result in wrong cursor position * add shDblParen to shLoopList for bash (#13445) * vim9_script test too large * all secure options should note this restriction in the documentation (#13448) * Not all Dart files detected

1 0

RPi2 TW images not start into desktop environment
by Kasimir 16 Nov '23

16 Nov '23

Hello, i tried the current TW images for the RPi2[1,2,3,4] and after booting I only get a black screen and no desktop environment. Is there anything known? Thanks Kasimir [1] https://download.opensuse.org/ports/armv7hl/tumbleweed/appliances/openSUSE-… [2] https://download.opensuse.org/ports/armv7hl/tumbleweed/appliances/openSUSE-… [3] https://download.opensuse.org/ports/armv7hl/tumbleweed/appliances/openSUSE-… [4] https://download.opensuse.org/ports/armv7hl/tumbleweed/appliances/openSUSE-…

3 7