New Arm Tumbleweed snapshot 20240808 released!
Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=3&version=Tumbleweed&build=20240808 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: 389-ds (3.0.1~git39.e24615f -> 3.1.1~git0.aef1668) ImageMagick (7.1.1.34 -> 7.1.1.35) Imath (3.1.9 -> 3.1.11) Mesa (24.1.2 -> 24.1.3) Mesa-drivers (24.1.2 -> 24.1.3) MozillaFirefox (127.0 -> 128.0.3) NetworkManager (1.48.2 -> 1.48.6) SVT-AV1 (2.1.1 -> 2.1.2) aaa_base (84.87+git20240620.57ee9e1 -> 84.87+git20240805.7513b28) aalib abseil-cpp akonadi (24.05.1 -> 24.05.2) akonadi-calendar (24.05.1 -> 24.05.2) akonadi-calendar-tools (24.05.1 -> 24.05.2) akonadi-contacts (24.05.1 -> 24.05.2) akonadi-import-wizard (24.05.1 -> 24.05.2) akonadi-mime (24.05.1 -> 24.05.2) akonadi-notes (24.05.1 -> 24.05.2) akonadi-search (24.05.1 -> 24.05.2) akregator (24.05.1 -> 24.05.2) amarok (3.0.1 -> 3.1.0) analitza (24.05.1 -> 24.05.2) apache2 (2.4.59 -> 2.4.62) apache2-manual (2.4.59 -> 2.4.62) apache2-mod_php8 (8.3.8 -> 8.3.9) apache2-prefork (2.4.59 -> 2.4.62) apache2-utils (2.4.59 -> 2.4.62) apparmor (4.0.1 -> 4.0.2) ark (24.05.1 -> 24.05.2) b43-fwcutter baloo-widgets (24.05.1 -> 24.05.2) bind (9.18.27 -> 9.20.0) blinken (24.05.1 -> 24.05.2) bluedevil6 (6.1.1 -> 6.1.4) blueman (2.3.5 -> 2.4.2) bolt boost-base boost-extra breeze6 (6.1.1 -> 6.1.4) breeze6-gtk (6.1.1 -> 6.1.4) brltty btrfsmaintenance (0.5 -> 0.5.2) btrfsprogs (6.9 -> 6.10) ca-certificates-mozilla (2.66 -> 2.68) calendarsupport (24.05.1 -> 24.05.2) certmonger cfitsio (4.3.1 -> 4.4.0) checkpolicy (3.6 -> 3.7) chrony clamav (0.103.11 -> 1.3.1) clazy (1.11git.20240520T014559~87b83e3 -> 1.12git.20240630T203330~f3fb82c) clucene-core colord container-selinux (2.228.0 -> 2.232.1) coreutils coreutils-systemd cronie cryptsetup (2.7.2 -> 2.7.4) cups (2.4.8 -> 2.4.10) curl (8.8.0 -> 8.9.0) discover6 (6.1.1 -> 6.1.4) dolphin (24.05.1 -> 24.05.2) dracut (059+suse.598.gfe80dac7 -> 059+suse.628.g20b345b4) drkonqi6 (6.1.1 -> 6.1.4) ell (0.66 -> 0.67) emacs emacs-compat (29.1.4.5 -> 30.0.0.0) emacs-jinx (1.8 -> 1.10) eog (45.3 -> 45.4) espeak-ng (1.51 -> 1.51.1) eventviews (24.05.1 -> 24.05.2) evince (46.3 -> 46.3.1) evolution (3.52.2 -> 3.52.4) evolution-data-server (3.52.2 -> 3.52.4) evolution-ews (3.52.2 -> 3.52.4) exiv2 (0.28.2 -> 0.28.3) fdupes (2.3.0 -> 2.3.1) ffmpeg-4 ffmpeg-6 ffmpegthumbs (24.05.1 -> 24.05.2) flatpak-kcm6 (6.1.1 -> 6.1.4) fontconfig fprintd (1.94.2 -> 1.94.3) freecell-solver (6.10.0 -> 6.12.0) freerdp (3.5.1 -> 3.6.3) frei0r-plugins (2.3.1 -> 2.3.3) fribidi (1.0.14 -> 1.0.15) fwupd (1.9.21 -> 1.9.23) gcc14 (14.1.1+git10335 -> 14.2.0+git10526) gdm gegl gettext-runtime ghostscript (10.03.0 -> 10.03.1) git (2.45.2 -> 2.46.0) glib2 (2.80.3 -> 2.80.4) glslang (14.2.0 -> 14.3.0) gnome-control-center (46.2 -> 46.3) gnome-keyring (46.1 -> 46.2) gnome-music (46.0 -> 46.1) gnome-online-accounts (3.50.2 -> 3.50.4) gnome-remote-desktop (46.2 -> 46.3) gnome-shell (46.2 -> 46.4) gnome-software (46.2 -> 46.3) gnome-sudoku (46.2 -> 46.3) gnutls (3.8.5 -> 3.8.6) gom (0.5.1 -> 0.5.2) google-noto-fonts (20240601 -> 20240801) grantleetheme (24.05.1 -> 24.05.2) graphviz grub2 gsettings-desktop-schemas (46.0 -> 46.1) gstreamer (1.24.0 -> 1.24.6) gstreamer-plugins-bad (1.24.0 -> 1.24.6) gstreamer-plugins-base (1.24.0 -> 1.24.6) gstreamer-plugins-good (1.24.0 -> 1.24.5) gstreamer-plugins-libav (1.24.0 -> 1.24.6) gstreamer-plugins-ugly (1.24.0 -> 1.24.6) gtk2 gtk3 (3.24.42 -> 3.24.43) gtk4 (4.14.4 -> 4.15.4) guestfs-tools (1.52.0 -> 1.53.1) gvfs (1.54.1 -> 1.54.2) gwenview (24.05.1 -> 24.05.2) harfbuzz (8.5.0 -> 9.0.0) hplip hwdata (0.383 -> 0.384) ibus (1.5.29 -> 1.5.30) imlib2 (1.12.2 -> 1.12.3) incidenceeditor (24.05.1 -> 24.05.2) inkscape irqbalance java-21-openjdk (21.0.3.0 -> 21.0.4.0) javapackages-tools kaccounts-integration (24.05.1 -> 24.05.2) kaccounts-integration-kf5 (24.05.1 -> 24.05.2) kaccounts-providers (24.05.1 -> 24.05.2) kactivitymanagerd6 (6.1.1 -> 6.1.4) kaddressbook (24.05.1 -> 24.05.2) kalgebra (24.05.1 -> 24.05.2) kamera (24.05.1 -> 24.05.2) kanagram (24.05.1 -> 24.05.2) kapptemplate (24.05.1 -> 24.05.2) kate (24.05.1 -> 24.05.2) kbruch (24.05.1 -> 24.05.2) kcachegrind (24.05.1 -> 24.05.2) kcalc (24.05.1 -> 24.05.2) kcalutils (24.05.1 -> 24.05.2) kcharselect (24.05.1 -> 24.05.2) kcolorchooser (24.05.1 -> 24.05.2) kde-cli-tools6 (6.1.1 -> 6.1.4) kde-dev-utils (24.05.1 -> 24.05.2) kde-gtk-config6 (6.1.1 -> 6.1.4) kdecoration6 (6.1.1 -> 6.1.4) kdeedu-data (24.05.1 -> 24.05.2) kdegraphics-mobipocket (24.05.1 -> 24.05.2) kdegraphics-thumbnailers (24.05.1 -> 24.05.2) kdenetwork-filesharing (24.05.1 -> 24.05.2) kdepim-addons (24.05.1 -> 24.05.2) kdepim-runtime (24.05.1 -> 24.05.2) kdeplasma6-addons (6.1.1 -> 6.1.4) kdevelop5 (24.05.1 -> 24.05.2) kdialog (24.05.1 -> 24.05.2) kdump (2.0.7 -> 2.0.9) kernel-firmware (20240618 -> 20240728) kernel-firmware-nvidia-gspx-G06 (550.90.07 -> 550.100) kernel-source (6.9.7 -> 6.10.3) kf6-attica (6.3.0 -> 6.4.0) kf6-baloo (6.3.0 -> 6.4.0) kf6-bluez-qt (6.3.0 -> 6.4.0) kf6-breeze-icons (6.3.0 -> 6.4.0) kf6-frameworkintegration (6.3.0 -> 6.4.0) kf6-karchive (6.3.0 -> 6.4.0) kf6-kauth (6.3.0 -> 6.4.0) kf6-kbookmarks (6.3.0 -> 6.4.0) kf6-kcalendarcore (6.3.0 -> 6.4.0) kf6-kcmutils (6.3.0 -> 6.4.0) kf6-kcodecs (6.3.0 -> 6.4.0) kf6-kcolorscheme (6.3.0 -> 6.4.0) kf6-kcompletion (6.3.0 -> 6.4.0) kf6-kconfig (6.3.0 -> 6.4.0) kf6-kconfigwidgets (6.3.0 -> 6.4.0) kf6-kcontacts (6.3.0 -> 6.4.0) kf6-kcoreaddons (6.3.0 -> 6.4.0) kf6-kcrash (6.3.0 -> 6.4.0) kf6-kdav (6.3.0 -> 6.4.0) kf6-kdbusaddons (6.3.0 -> 6.4.0) kf6-kdeclarative (6.3.0 -> 6.4.0) kf6-kded (6.3.0 -> 6.4.0) kf6-kdesu (6.3.0 -> 6.4.0) kf6-kdnssd (6.3.0 -> 6.4.0) kf6-kdoctools (6.3.0 -> 6.4.0) kf6-kfilemetadata (6.3.0 -> 6.4.0) kf6-kglobalaccel (6.3.0 -> 6.4.0) kf6-kguiaddons (6.3.0 -> 6.4.0) kf6-kholidays (6.3.0 -> 6.4.0) kf6-ki18n (6.3.0 -> 6.4.0) kf6-kiconthemes (6.3.0 -> 6.4.0) kf6-kidletime (6.3.0 -> 6.4.0) kf6-kimageformats (6.3.0 -> 6.4.0) kf6-kio (6.3.0 -> 6.4.0) kf6-kirigami (6.3.0 -> 6.4.0) kf6-kitemmodels (6.3.0 -> 6.4.0) kf6-kitemviews (6.3.0 -> 6.4.0) kf6-kjobwidgets (6.3.0 -> 6.4.0) kf6-knewstuff (6.3.0 -> 6.4.0) kf6-knotifications (6.3.0 -> 6.4.0) kf6-knotifyconfig (6.3.0 -> 6.4.0) kf6-kpackage (6.3.0 -> 6.4.0) kf6-kparts (6.3.0 -> 6.4.0) kf6-kplotting (6.3.0 -> 6.4.0) kf6-kpty (6.3.0 -> 6.4.0) kf6-kquickcharts (6.3.0 -> 6.4.0) kf6-krunner (6.3.0 -> 6.4.0) kf6-kservice (6.3.0 -> 6.4.0) kf6-kstatusnotifieritem (6.3.0 -> 6.4.0) kf6-ksvg (6.3.0 -> 6.4.0) kf6-ktexteditor (6.3.0 -> 6.4.0) kf6-ktexttemplate (6.3.0 -> 6.4.0) kf6-ktextwidgets (6.3.0 -> 6.4.0) kf6-kunitconversion (6.3.0 -> 6.4.0) kf6-kuserfeedback (6.3.0 -> 6.4.0) kf6-kwallet (6.3.0 -> 6.4.0) kf6-kwidgetsaddons (6.3.0 -> 6.4.0) kf6-kwindowsystem (6.3.0 -> 6.4.0) kf6-kxmlgui (6.3.0 -> 6.4.0) kf6-modemmanager-qt (6.3.0 -> 6.4.0) kf6-networkmanager-qt (6.3.0 -> 6.4.0) kf6-prison (6.3.0 -> 6.4.0) kf6-purpose (6.3.0 -> 6.4.0) kf6-qqc2-desktop-style (6.3.0 -> 6.4.0) kf6-solid (6.3.0 -> 6.4.0) kf6-sonnet (6.3.0 -> 6.4.0) kf6-syndication (6.3.0 -> 6.4.0) kf6-syntax-highlighting (6.3.0 -> 6.4.0) kf6-threadweaver (6.3.0 -> 6.4.0) kgamma6 (6.1.1 -> 6.1.4) kgeography (24.05.1 -> 24.05.2) kglobalacceld6 (6.1.1 -> 6.1.4) khangman (24.05.1 -> 24.05.2) khelpcenter (24.05.1 -> 24.05.2) kidentitymanagement (24.05.1 -> 24.05.2) kig (24.05.1 -> 24.05.2) kimap (24.05.1 -> 24.05.2) kinfocenter6 (6.1.1 -> 6.1.4) kio-extras (24.05.1 -> 24.05.2) kio_audiocd (24.05.1 -> 24.05.2) kipi-plugins (24.05.1 -> 24.05.2) kirigami-addons6 (1.3.0 -> 1.4.0) kiten (24.05.1 -> 24.05.2) kitinerary (24.05.1 -> 24.05.2) kldap (24.05.1 -> 24.05.2) kleopatra (24.05.1 -> 24.05.2) kmag (24.05.1 -> 24.05.2) kmahjongg (24.05.1 -> 24.05.2) kmail (24.05.1 -> 24.05.2) kmail-account-wizard (24.05.1 -> 24.05.2) kmailtransport (24.05.1 -> 24.05.2) kmbox (24.05.1 -> 24.05.2) kmenuedit6 (6.1.1 -> 6.1.4) kmime (24.05.1 -> 24.05.2) kmines (24.05.1 -> 24.05.2) kmousetool (24.05.1 -> 24.05.2) kmplot (24.05.1 -> 24.05.2) knotes (24.05.1 -> 24.05.2) konsole (24.05.1 -> 24.05.2) kontact (24.05.1 -> 24.05.2) kontactinterface (24.05.1 -> 24.05.2) konversation (24.05.1 -> 24.05.2) korganizer (24.05.1 -> 24.05.2) kpat (24.05.1 -> 24.05.2) kpimtextedit (24.05.1 -> 24.05.2) kpipewire6 (6.1.1 -> 6.1.4) kpkpass (24.05.1 -> 24.05.2) kqtquickcharts (24.05.1 -> 24.05.2) krb5 (1.21.2 -> 1.21.3) kreversi (24.05.1 -> 24.05.2) ksanecore (24.05.1 -> 24.05.2) kscreen6 (6.1.1 -> 6.1.4) kscreenlocker6 (6.1.1 -> 6.1.4) ksmtp (24.05.1 -> 24.05.2) ksshaskpass6 (6.1.1 -> 6.1.4) ksudoku (24.05.1 -> 24.05.2) ksystemstats6 (6.1.1 -> 6.1.4) ktnef (24.05.1 -> 24.05.2) ktouch (24.05.1 -> 24.05.2) kwayland-integration6 (6.1.1 -> 6.1.4) kwayland6 (6.1.1 -> 6.1.4) kwin6 (6.1.1.2 -> 6.1.4) kwordquiz (24.05.1 -> 24.05.2) kwrited6 (6.1.1 -> 6.1.4) lapack layer-shell-qt6 (6.1.1 -> 6.1.4) ldb (2.9.0 -> 2.9.1) ldns less (656 -> 661) libX11 (1.8.9 -> 1.8.10) libXfont2 (2.0.6 -> 2.0.7) libXtst (1.2.4 -> 1.2.5) libadwaita (1.5.1 -> 1.5.2) libapparmor (4.0.1 -> 4.0.2) libblockdev (3.1.0 -> 3.1.1) libbpf (1.4.3 -> 1.4.5) libcdio libdb-4_8 libdecor (0.2.0 -> 0.2.2) libdv libgcrypt (1.10.3 -> 1.11.0) libgee libgexiv2 (0.14.2 -> 0.14.3) libgnomesu (2.0.7 -> 2.0.8) libgpod libgravatar (24.05.1 -> 24.05.2) libguestfs (1.52.1 -> 1.53.5) libgusb (0.4.8 -> 0.4.9) libheif (1.17.6 -> 1.18.1) libjxl (0.10.2 -> 0.10.3) libjxl-gtk (0.10.2 -> 0.10.3) libkcddb-qt6 (24.05.1 -> 24.05.2) libkcompactdisc-qt6 (24.05.1 -> 24.05.2) libkdcraw-qt6 (24.05.1 -> 24.05.2) libkdegames (24.05.1 -> 24.05.2) libkdepim (24.05.1 -> 24.05.2) libkeduvocdocument (24.05.1 -> 24.05.2) libkexiv2-qt6 (24.05.1 -> 24.05.2) libkgapi6 (24.05.1 -> 24.05.2) libkipi (24.05.1 -> 24.05.2) libkleo (24.05.1 -> 24.05.2) libkmahjongg (24.05.1 -> 24.05.2) libksane (24.05.1 -> 24.05.2) libksba (1.6.6 -> 1.6.7) libkscreen6 (6.1.1 -> 6.1.4) libksieve (24.05.1 -> 24.05.2) libksysguard6 (6.1.1 -> 6.1.4) libmaxminddb (1.9.1 -> 1.10.0) libnbd (1.18.4 -> 1.20.2) libndp libnl3 (3.9.0 -> 3.10.0) libnvme (1.9+0.g80c5cf2 -> 1.10+0.gdd51fa8) libopenmpt (0.7.8 -> 0.7.9) liborcus libostree (2024.6 -> 2024.7) libphonenumber (8.13.30 -> 8.13.40) libplasma6 (6.1.1 -> 6.1.4) libqt5-qtbase (5.15.14+kde140 -> 5.15.14+kde143) libreoffice (24.2.4.2 -> 24.2.5.2) librsvg (2.58.1 -> 2.58.2) libselinux (3.6 -> 3.7) libselinux-bindings (3.6 -> 3.7) libsemanage (3.6 -> 3.7) libsepol (3.6 -> 3.7) libsolv (0.7.29 -> 0.7.30) libstorage-ng (4.5.215 -> 4.5.219) liburing (2.5 -> 2.6) libva (2.21.0 -> 2.22.0) libva-gl (2.21.0 -> 2.22.0) libvirt (10.4.0 -> 10.6.0) libvisual libvpx (1.14.0 -> 1.14.1) libxml2 (2.12.8 -> 2.12.9) libxml2-python (2.12.8 -> 2.12.9) libyui (4.6.1 -> 4.6.2) libyui-ncurses (4.6.1 -> 4.6.2) libyui-ncurses-pkg (4.6.1 -> 4.6.2) libyui-qt (4.6.1 -> 4.6.2) libyui-qt-graph (4.6.1 -> 4.6.2) libyui-qt-pkg (4.6.1 -> 4.6.2) libzypp (17.34.1 -> 17.35.9) lightdm linux-atm linux-glibc-devel (6.9 -> 6.10) live555 (2023.11.30 -> 2024.06.26) llvm18 (18.1.6 -> 18.1.8) lokalize (24.05.1 -> 24.05.2) lua54 (5.4.6 -> 5.4.7) lvm2 lvm2-device-mapper lz4 (1.9.4 -> 1.10.0) mailcommon (24.05.1 -> 24.05.2) mailimporter (24.05.1 -> 24.05.2) makedumpfile mariadb mariadb-connector-c (3.3.8 -> 3.3.10) markdownpart (24.05.1 -> 24.05.2) mbox-importer (24.05.1 -> 24.05.2) messagelib (24.05.1 -> 24.05.2) microos-tools (2.21+git12 -> 2.21+git13) milou6 (6.1.1 -> 6.1.4) mimetreeparser (24.05.1 -> 24.05.2) mozilla-nss (3.100 -> 3.102.1) mpg123 (1.32.6 -> 1.32.7) mtools (4.0.43 -> 4.0.44) multipath-tools (0.9.9+90+suse.f1d2f20 -> 0.9.9+161+suse.0c835ef) mutter (46.2 -> 46.4) nano (8.0 -> 8.1) nbdkit (1.36.5 -> 1.40.1) ncurses (6.5.20240608 -> 6.5.20240713) netpbm (11.5.2 -> 11.7.0) newt nvidia-open-driver-G06-signed (550.90.07_k6.9.7_1 -> 550.100_k6.10.3_1) nvme-cli (2.9.1 -> 2.10) ocean-sound-theme6 (6.1.1 -> 6.1.4) okular (24.05.1 -> 24.05.2) open-vm-tools (12.4.0 -> 12.4.5) openSUSE-release (20240629 -> 20240808) openblas_openmp openblas_pthreads openldap2 (2.6.7 -> 2.6.8) openldap2-contrib-src (2.6.7 -> 2.6.8) openssh openssl-3 orc (0.4.38 -> 0.4.39) orca (46.1 -> 46.2) osinfo-db (20240510 -> 20240701) ovmf (202311 -> 202402) p11-kit pam pam-full-src pam_kwallet6 (6.1.1 -> 6.1.4) parley (24.05.1 -> 24.05.2) pciutils (3.12.0 -> 3.13.0) perl (5.38.2 -> 5.40.0) perl-Bootloader (1.13 -> 1.14) perl-HTML-Parser (3.820.0 -> 3.830.0) perl-IO-Socket-SSL (2.85.0 -> 2.88.0) php8 (8.3.8 -> 8.3.9) pim-data-exporter (24.05.1 -> 24.05.2) pim-sieve-editor (24.05.1 -> 24.05.2) pimcommon (24.05.1 -> 24.05.2) pinentry (1.2.1 -> 1.3.1) pinentry-gui (1.2.1 -> 1.3.1) pipewire (1.2.0 -> 1.2.1) plasma5support6 (6.1.1 -> 6.1.4) plasma6-activities (6.1.1 -> 6.1.4) plasma6-activities-stats (6.1.1 -> 6.1.4) plasma6-browser-integration (6.1.1 -> 6.1.4) plasma6-desktop (6.1.1 -> 6.1.4) plasma6-disks (6.1.1 -> 6.1.4) plasma6-integration (6.1.1 -> 6.1.4) plasma6-nm (6.1.1 -> 6.1.4) plasma6-openSUSE plasma6-pa (6.1.1 -> 6.1.4) plasma6-print-manager (6.1.1 -> 6.1.4) plasma6-systemmonitor (6.1.1 -> 6.1.4) plasma6-thunderbolt (6.1.1 -> 6.1.4) plasma6-workspace (6.1.1 -> 6.1.4) polari policycoreutils (3.6 -> 3.7) polkit polkit-default-privs (1550+20240620.095c860 -> 1550+20240708.7e0e3f4) polkit-kde-agent-6 (6.1.1 -> 6.1.4) poppler (24.03.0 -> 24.07.0) poppler-qt6 (24.03.0 -> 24.07.0) postfix powerdevil6 (6.1.1 -> 6.1.4) ppp procps publicsuffix (20240603 -> 20240722) python-Babel (2.14.0 -> 2.15.0) python-Jinja2 python-Pillow (10.3.0 -> 10.4.0) python-PyYAML python-Twisted (23.10.0 -> 24.3.0) python-argcomplete (3.3.0 -> 3.4.0) python-certifi (2023.11.17 -> 2024.7.4) python-cffi python-cryptography (42.0.8 -> 43.0.0) python-libvirt-python (10.4.0 -> 10.6.0) python-msgpack (1.0.7 -> 1.0.8) python-psutil (5.9.7 -> 6.0.0) python-ptyprocess python-pyOpenSSL (24.1.0 -> 24.2.1) python-pycairo (1.26.0 -> 1.26.1) python-pygit2 (1.15.0 -> 1.15.1) python-semanage (3.6 -> 3.7) python-setuptools (70.0.0 -> 70.1.1) python-tornado6 (6.4 -> 6.4.1) python311 python311-core qalculate (4.9.0 -> 5.2.0) qemu (9.0.0 -> 9.0.2) qqc2-breeze-style6 (6.1.1 -> 6.1.4) qt6-base qt6-sensors qt6-wayland re2 (20240601 -> 20240702) redland restorecond (3.6 -> 3.7) rng-tools (6.16 -> 6.17) rsyslog (8.2306.0 -> 8.2406.0) ruby3.3 (3.3.3 -> 3.3.4) rubygem-nokogiri (1.15.5 -> 1.16.7) rubygem-ruby-augeas salt samba (4.20.1+git.339.cf6e153bb2 -> 4.20.2+git.350.4cfcde9cdb) sddm-kcm6 (6.1.1 -> 6.1.4) selinux-policy (20240617 -> 20240802) sensors shim signon-kwallet-extension (24.05.1 -> 24.05.2) skanlite (24.05.1 -> 24.05.2) snapper (0.11.0 -> 0.11.1) spectacle (24.05.1 -> 24.05.2) speech-dispatcher sssd step (24.05.1 -> 24.05.2) strace (6.9 -> 6.10) sudo supermin (5.3.3 -> 5.3.4) suse-module-tools (16.0.45 -> 16.0.48) svgpart (24.05.1 -> 24.05.2) swtpm (0.8.1 -> 0.9.0) system-config-printer systemd (255.7 -> 256.4) systemd-presets-branding-Aeon systemsettings6 (6.1.1 -> 6.1.4) sysuser-tools (3.2 -> 3.3) taglib (2.0 -> 2.0.1) tar telepathy-logger thin-provisioning-tools (1.0.12 -> 1.0.13) thunar (4.18.10 -> 4.18.11) transactional-update (4.6.8 -> 4.7.0) umbrello (24.05.1 -> 24.05.2) upower (1.90.2+15 -> 1.90.4) util-linux util-linux-systemd vde2 vim (9.1.0512 -> 9.1.0636) virt-manager virt-v2v (2.4.0 -> 2.5.5) vte vulkan-loader (1.3.283.0 -> 1.3.290) vulkan-tools (1.3.283.0 -> 1.3.290) wacomtablet-kcm6 (6.1.1 -> 6.1.4) webkit2gtk3 wicked (0.6.75 -> 0.6.76) wireplumber (0.5.4+git2.96dc045 -> 0.5.5) wol wtmpdb (0.12.0+git.20240508 -> 0.13.0+git.20240726) xclip (0.13 -> 0.13+git20220129) xdg-desktop-portal-kde6 (6.1.1 -> 6.1.4) xdg-utils xen xf86-video-nouveau xfce4-kbdleds-plugin (0.2.5 -> 0.3.0) xfce4-screenshooter (1.10.6 -> 1.11.1) xfsprogs (6.8.0 -> 6.9.0) xinit xmlsec1 (1.2.38 -> 1.2.40) xorg-x11-server xterm (389 -> 393) xwayland (24.1.0 -> 24.1.1) yast2 (5.0.8 -> 5.0.9) yast2-kdump (5.0.0 -> 5.0.1) yast2-trans (84.87.20240624.0295c6c7b8 -> 84.87.20240801.d54b6ae08f) zchunk (1.4.0 -> 1.5.1) zenity (4.0.1 -> 4.0.2) zsh zypp-plugin (0.6.3 -> 0.6.4) zypper (1.14.74 -> 1.14.76) === Details === ==== 389-ds ==== Version update (3.0.1~git39.e24615f -> 3.1.1~git0.aef1668) Subpackages: lib389 libsvrcore0 - dirsrv-user.conf: Remove explicit dirsrv group definition, it's already specified implicit with "u dirsrv" and not all tools like duplicate group entries. - Update to version 3.1.1~git0.aef1668: * Bump version to 3.1.1 * Issue 6256 - nsslapd-numlisteners limit is not enforced (#6257) * Issue 5327 - Fix test metadata * Security fix for CVE-2024-6237 * Security fix for CVE-2024-5953 * Security fix for CVE-2024-3657 * Security fix for CVE-2024-2199 * Issue 6256 - nsslapd-numlisteners limit is not enforced * Issue 6265 - lmdb - missing entries in range searches (#6266) * Issue 5853 - Update Cargo.lock * Bump openssl from 0.10.64 to 0.10.66 in /src * Issue 6245 - Revert __COVERITY__ ifndef (#6268) * Issue 6248 - fix fanalyzer warnings (#6253) * Issue 6238 - Fix test_audit_json_logging CI test regression (#6264) * Issue 6254 - Enabling replication for a sub suffix crashes browser (#6255) * Issue 6155 - ldap-agent fails to start because of permission error (#6179) * Issue 6238 - RFE - add option to write audit log in JSON format * Issue 6216 - CI test_fast_slow_import sometime fail (#6247) * Issue 6245 - covscan fixes (#6246) * Issue 6241 - Add support for CRYPT-YESCRYPT (#6242) * Issue 6229 - After an initial failure, subsequent online backups fail (#6230) * Issue 6236 - rpm: fix compatibility with RPM 4.20 * Issue 6227 - dsconf schema does not show inChain matching rule (#6228) * Issue 6233 - CI test wait_for_async_feature_test sometime fails (#6234) * Bump ws from 7.5.9 to 7.5.10 in /src/cockpit/389-console * Issue 6224 - d2entry - Could not open id2entry err 0 - at startup when having sub-suffixes (#6225) * Issue 6222 - CI test acl/test_timeofday_keyword sometime fails (#6223) * Issue 6120 - /usr/lib64/dirsrv/plugins/libback-bdb.so has an invalid-looking DT_RPATH: /usr/lib/dirsrv * Issue 5772 - ONE LEVEL search fails to return sub-suffixes (#6219) * Issue 6183 - Slow ldif2db import on a newly created BDB backend (#6208) * Issue 6207 - Random crash in test_long_rdn CI test (#6215) * Bump braces from 3.0.2 to 3.0.3 in /src/cockpit/389-console * Issue 6191 - Node.js 16 actions are deprecated * Issue 6199 - unprotected search query during certificate based authentication (#6205) * Issue 6200 - Disable WebUI CI tests * Issue 6192 - Test failure: test_match_large_valueset * Issue 6181 - RFE - Allow system to manage uid/gid at startup * Issue 6188 - Add nsslapd-haproxy-trusted-ip to cn=schema (#6201) * Issue 6181 - RFE - Allow system to manage uid/gid at startup (#6182) * Issue 6170 - audit log buffering doesn't handle large updates * Issue 6193 - Test failure: test_tls_command_returns_error_text * Issue 6177 - Spec file cleanup * Issue 6189 - CI tests fail with `[Errno 2] No such file or directory: '/var/cache/dnf/metadata_lock.pid'` * Issue 6175 - Referential integrity plugin - in referint_thread_func does not handle null from ldap_utf8strtok (#6168) * Change default salt sizes generated in crypt_pwd (#6185) * Issue 6123 - Allow DNA plugin to reuse global config for bind method and connection protocol (#6124) * Issue 6159 - Add a test to check URP add and delete conflict (#6160) * Issue 6151 - Use %bcond macro for conditional builds in the spec file * Issue 6172 - RFE: improve the performance of evaluation of filter component when tested against a large valueset (like group members) (#6173) * Bump version to 3.1.0 * fix issue6165 (#6167) ==== ImageMagick ==== Version update (7.1.1.34 -> 7.1.1.35) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.35 * Also set dpi-x and dpi-y when running rsvg-convert. eac001f * convert sub-command is deprecated d67039e * only operators should disable "identify ping" (ImageMagick/ImageMagick#7441) a262192 * fix compiler error ecc21c7 * -outdir deprecated 9980efa * Get the correct width and height when heic:preserve-orientation is set to true. ed3a0dd * Set heic image orientation using transform information. ba470aa * Exit earlier when the symlink could not be created when invoking the svg:decode delegate. 8a48edd * Fixed MSYS2 build error. 3b22378 * Also set the DNG properties when pinging the image. fc1c61b * Silence warning when lqr delegate is disabled. ae0d69a * Added version check for the heif_properties.h include. 656b4d2 * Make sure we always use the i64 version of the "file methods" on Windows. b3e8a78 * Changed defines to use method instead of a define. 75b66c4 * Changes due to upgrade of libheif. 841f033 * smooth the rendering of an ellipse (ImageMagick/ImageMagick#7465) 1bfce2a ==== Imath ==== Version update (3.1.9 -> 3.1.11) - update to 3.1.11: * Fix a problem where downstream projects using Imath would build python bindings even if they weren't requested. * Fix for missing `std::bit_cast` * Fix missing/necessary use of IMATH_HOSTDEVICE * IMATH_INSTALL_PKG_CONFIG is now on by default, even on Windows * Fix calling default constructor by uniform init in TypeTraits * Fix redundant PYIMATH_EXPORTS causing compile issues on Windows Clang * Update to SO versioning policy: * succ()/pred() now use std::nextafter(). * Expand epsilon bounds for m44x pyImath test. * Rename "docs" to "website". * Add missing copyright/license identifiers. ==== Mesa ==== Version update (24.1.2 -> 24.1.3) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - Update to bugfix release 24.1.3 - -> https://docs.mesa3d.org/relnotes/24.1.3 - supersedes the following patches: * u_dri-Fix-BGR-format-exclusion.patch * u_egl-gbm-Enable-RGBA-configs.patch * u_egl-surfaceless-Enable-RGBA-configs.patch * boo1226725-test-fix1.patch - use gcc-13 on SLE 15/Leap 15.x in order to fix build; credits go to "Friedrich Haubensak" <hsk17@mail.de> to figure this out! ==== Mesa-drivers ==== Version update (24.1.2 -> 24.1.3) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to bugfix release 24.1.3 - -> https://docs.mesa3d.org/relnotes/24.1.3 - supersedes the following patches: * u_dri-Fix-BGR-format-exclusion.patch * u_egl-gbm-Enable-RGBA-configs.patch * u_egl-surfaceless-Enable-RGBA-configs.patch * boo1226725-test-fix1.patch - use gcc-13 on SLE 15/Leap 15.x in order to fix build; credits go to "Friedrich Haubensak" <hsk17@mail.de> to figure this out! ==== MozillaFirefox ==== Version update (127.0 -> 128.0.3) - Firefox 128.0.3 Release * Fixed: Fixed an issue causing some sites to not load when connecting via HTTP/2. (bmo#1908161, bmo#1909666) * Fixed: Fixed collapsed table rows not appearing when expected in some situations. (bmo#1907789) * Fixed: Fixed the Windows on-screen keyboard potentially concealing the webpage when displayed. (bmo#1907766) - Firefox 128.0.2 Release * Fixed: Fixed an audio echo in video calls on macOS under certain conditions. (bmo#1908539) * Fixed: Fixed an issue where the Adguard extension popup was not displaying. (bmo#1906132) * Fixed: Fixed an issue causing some screen readers to fail to read when navigating by character in rich text editors. (Bug 1905021) * Fixed: Fixed visual glitches when dark mode is enabled in Windows ARM devices. (bmo#1897444) * Fixed: Fixed an issue causing NTLM authentication failure. (bmo#1908115) * Fixed: Fixed an issue where content displayed on mouseover was not captured in a screenshot. (bmo#1905468) * Fixed: Various stability fixes. - renamed firefox-3781e3117706.patch to mozilla-bmo1905018.patch to conform with patch structure and naming for the package - Add firefox-3781e3117706.patch to fix boo#1227856 aka bmo#1905018 where an incompatible pointer assignment is not accepted in C by GCC 14. - Mozilla Firefox 128.0 https://www.mozilla.org/en-US/firefox/128.0/releasenotes MFSA 2024-29 (bsc#1226316) * CVE-2024-6605 (bmo#1836786) Firefox Android missed activation delay to prevent tapjacking * CVE-2024-6606 (bmo#1902305) Out-of-bounds read in clipboard component * CVE-2024-6607 (bmo#1694513) Leaving pointerlock by pressing the escape key could be prevented * CVE-2024-6608 (bmo#1743329) Cursor could be moved out of the viewport using pointerlock. * CVE-2024-6609 (bmo#1839258) Memory corruption in NSS * CVE-2024-6610 (bmo#1883396) Form validation popups could block exiting full-screen mode * CVE-2024-6600 (bmo#1888340) Memory corruption in WebGL API * CVE-2024-6601 (bmo#1890748) Race condition in permission assignment * CVE-2024-6602 (bmo#1895032) Memory corruption in NSS * CVE-2024-6603 (bmo#1895081) Memory corruption in thread creation * CVE-2024-6611 (bmo#1844827) Incorrect handling of SameSite cookies * CVE-2024-6612 (bmo#1880374) CSP violation leakage when using devtools * CVE-2024-6613 (bmo#1900523) Incorrect listing of stack frames * CVE-2024-6614 (bmo#1902983) Incorrect listing of stack frames * CVE-2024-6604 (bmo#1748105, bmo#1837550, bmo#1884266) Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13 * CVE-2024-6615 (bmo#1892875, bmo#1894428, bmo#1898364) Memory safety bugs fixed in Firefox 128 - requires NSS 3.101.1 rust >= 1.78 - update create-tar.sh - add wayland upstream fixes (bmo#1907511, bmo#1898476) (mozilla-bmo1898476.patch and mozilla-bmo1907511.patch) - Mozilla Firefox 127.0.2 * Fixed an issue where YouTube playback may experience stalling under certain conditions (bmo#1900191, bmo#1878510). * Fixed an issue where the Private Window icon was displayed in the taskbar on Windows when browser.privateWindowSeparation.enabled was set to false (bmo#1901840). - Mozilla Firefox 127.0.1 * Fixed an issue where users with a primary password set on their profile could lose their previous session of tabs upon upgrading if they dismissed the primary password prompt (bmo#1901899). * Fixed an issue where Linux users with accessibility.monoaudio.enable set to true were experiencing slow audio speeds (bmo#1900972). * Fixed an issue where, in some circumstances, the Firefox installer on Windows failed to complete the installation (bmo#1896868). * Fixed an issue causing Firefox to incorrectly reject cookies for certain websites (bmo#1901325). - Fix GNOME search provider (boo#1225278) ==== NetworkManager ==== Version update (1.48.2 -> 1.48.6) Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Add NetworkManager-dont-renew-bridge-dhcp-if-no-mac-on-wakeup.patch: manager: don't renew dhcp lease when software devices' MAC is empty (bsc#1225498, glfd#NetworkManager/NetworkManager#1587). - Update to version 1.48.6: + activation: Allow changing controller of exposed active connection + ovs: wait for the link to be ready before activating + policy: assert that the auto-activate list is empty on dispose - Update to version 1.48.4: + Support matching a OVS system interface by MAC address. + When looking up the system hostname from the reverse DNS lookup of addresses configured on interfaces, NetworkManager now takes into account the content of /etc/hosts. ==== SVT-AV1 ==== Version update (2.1.1 -> 2.1.2) - update to 2.1.2: * Cleanup, bug fixes: * Fixed profile-guided-optimization build by removing the remaining decoder path ==== aaa_base ==== Version update (84.87+git20240620.57ee9e1 -> 84.87+git20240805.7513b28) Subpackages: aaa_base-extras - Update to version 84.87+git20240805.7513b28: * Remove obsolete resolv+ manual page * Remove obsolete defaultdomain.5 manual page * Move /etc/skel to /usr/etc/skel (hermetic-usr) * Remove obsolete refresh_initrd * Add deprecation notice for service [jsc#PED-266] - Update to version 84.87+git20240801.75f05dd: * sysctl: Don't set kernel.pid_max on 32b archs (bsc#1227117) ==== aalib ==== - Add -fpermissive to the remaining uses of optflags. [boo#1223910] ==== abseil-cpp ==== Subpackages: libabsl_2401_0_0 libabsl_lite_2401_0_0 - Add upstream patch abseil-cmake-gtest-testonly.patch to fix issue with GTest and CMake 3.30 ==== akonadi ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6AkonadiAgentBase6 libKPim6AkonadiCore6 libKPim6AkonadiPrivate6 libKPim6AkonadiWidgets6 libKPim6AkonadiXml6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-calendar ==== Version update (24.05.1 -> 24.05.2) Subpackages: akonadi-plugin-calendar kalendarac libKPim6AkonadiCalendar6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add missing change notification for initial calendar loading ==== akonadi-calendar-tools ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-contacts ==== Version update (24.05.1 -> 24.05.2) Subpackages: akonadi-plugin-contacts libKPim6AkonadiContactCore6 libKPim6AkonadiContactWidgets6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-import-wizard ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6ImportWizard6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-mime ==== Version update (24.05.1 -> 24.05.2) Subpackages: akonadi-plugin-mime libKPim6AkonadiMime6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-notes ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akonadi-search ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6AkonadiSearch6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== akregator ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== amarok ==== Version update (3.0.1 -> 3.1.0) - Update to 3.1.0 https://blogs.kde.org/2024/08/02/amarok-3.1-tricks-of-the-light-released/ New features: * Last.fm plugin updated to use token-based authentication (kde#414826, kde#327547) * Reintroducing Last.fm Similar Artists context applet * Remember the previous destination provider when saving playlist (kde#216528) ==== analitza ==== Version update (24.05.1 -> 24.05.2) Subpackages: libAnalitza9 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== apache2 ==== Version update (2.4.59 -> 2.4.62) - Update to 2.4.62 * ) SECURITY: CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows (cve.mitre.org) [boo#1228098] SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue. Credits: Smi1e (DBAPPSecurity Ltd.) * ) SECURITY: CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1228097] A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.62, which fixes this issue. * ) mod_proxy: Fix canonicalisation and FCGI env (PATH_INFO, SCRIPT_NAME) for "balancer:" URLs set via SetHandler, also allowing for "unix:" sockets with BalancerMember(s). PR 69168. [Yann Ylavic] * ) mod_proxy: Avoid AH01059 parsing error for SetHandler "unix:" URLs. PR 69160 [Yann Ylavic] * ) mod_ssl: Fix crashes in PKCS#11 ENGINE support with OpenSSL 3.2. [Joe Orton] * ) mod_ssl: Add support for loading certs/keys from pkcs11: URIs via OpenSSL 3.x providers. [Ingo Franzki <ifranzki linux.ibm.com>] * ) mod_ssl: Restore SSL dumping on trace7 loglevel with OpenSSL >= 3.0. [Ruediger Pluem, Yann Ylavic] * ) mpm_worker: Fix possible warning (AH00045) about children processes not terminating timely. [Yann Ylavic] - Update to 2.4.61 * ) SECURITY: CVE-2024-39884: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1227353] A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.61, which fixes this issue. - Update to 2.4.60 * ) SECURITY: CVE-2024-39573: Apache HTTP Server: mod_rewrite proxy handler substitution (cve.mitre.org) [boo#1227271] Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38477: Apache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request (cve.mitre.org) [boo#1227270] null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38476: Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect (cve.mitre.org) [boo#1227269] Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Note: Some legacy uses of the 'AddType' directive to connect a request to a handler must be ported to 'AddHandler' after this fix. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38475: Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path. (cve.mitre.org) [boo#1227268] Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected. Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38474: Apache HTTP Server weakness with encoded question marks in backreferences (cve.mitre.org) [boo#1227278] Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI. Note: Some RewriteRules that capture and substitute unsafely will now fail unless rewrite flag "UnsafeAllow3F" is specified. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38473: Apache HTTP Server proxy encoding problem (cve.mitre.org) [boo#1227276] Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent ... changelog too long, skipping 49 lines ... - apache2-issue-444.patch ==== apache2-manual ==== Version update (2.4.59 -> 2.4.62) - Update to 2.4.62 * ) SECURITY: CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows (cve.mitre.org) [boo#1228098] SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue. Credits: Smi1e (DBAPPSecurity Ltd.) * ) SECURITY: CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1228097] A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.62, which fixes this issue. * ) mod_proxy: Fix canonicalisation and FCGI env (PATH_INFO, SCRIPT_NAME) for "balancer:" URLs set via SetHandler, also allowing for "unix:" sockets with BalancerMember(s). PR 69168. [Yann Ylavic] * ) mod_proxy: Avoid AH01059 parsing error for SetHandler "unix:" URLs. PR 69160 [Yann Ylavic] * ) mod_ssl: Fix crashes in PKCS#11 ENGINE support with OpenSSL 3.2. [Joe Orton] * ) mod_ssl: Add support for loading certs/keys from pkcs11: URIs via OpenSSL 3.x providers. [Ingo Franzki <ifranzki linux.ibm.com>] * ) mod_ssl: Restore SSL dumping on trace7 loglevel with OpenSSL >= 3.0. [Ruediger Pluem, Yann Ylavic] * ) mpm_worker: Fix possible warning (AH00045) about children processes not terminating timely. [Yann Ylavic] - Update to 2.4.61 * ) SECURITY: CVE-2024-39884: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1227353] A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.61, which fixes this issue. - Update to 2.4.60 * ) SECURITY: CVE-2024-39573: Apache HTTP Server: mod_rewrite proxy handler substitution (cve.mitre.org) [boo#1227271] Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38477: Apache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request (cve.mitre.org) [boo#1227270] null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38476: Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect (cve.mitre.org) [boo#1227269] Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Note: Some legacy uses of the 'AddType' directive to connect a request to a handler must be ported to 'AddHandler' after this fix. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38475: Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path. (cve.mitre.org) [boo#1227268] Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected. Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38474: Apache HTTP Server weakness with encoded question marks in backreferences (cve.mitre.org) [boo#1227278] Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI. Note: Some RewriteRules that capture and substitute unsafely will now fail unless rewrite flag "UnsafeAllow3F" is specified. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38473: Apache HTTP Server proxy encoding problem (cve.mitre.org) [boo#1227276] Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent ... changelog too long, skipping 49 lines ... - apache2-issue-444.patch ==== apache2-mod_php8 ==== Version update (8.3.8 -> 8.3.9) - version update to 8.3.9 Core: Fixed bug GH-14315 (Incompatible pointer type warnings). Fixed bug GH-12814 (max_execution_time reached too early on MacOS 14 when running on Apple Silicon). Fixed bug GH-14387 (Crash when stack walking in destructor of yielded from values during Generator->throw()). Fixed bug GH-14456 (Attempting to initialize class with private constructor calls destructor). Fixed bug GH-14510 (memleak due to missing pthread_attr_destroy()-call). Fixed bug GH-14549 (Incompatible function pointer type for fclose). BCMatch: Fixed bug (bcpowmod() with mod = -1 returns 1 when it must be 0). Curl: Fixed bug GH-14307 (Test curl_basic_024 fails with curl 8.8.0). DOM: Fixed bug GH-14343 (Memory leak in xml and dom). FPM: Fixed bug GH-14037 (PHP-FPM ping.path and ping.response config vars are ignored in status pool). GD: Fix parameter numbers for imagecolorset(). Intl: Fix reference handling in SpoofChecker. MySQLnd: Partially fix bug GH-10599 (Apache crash on Windows when using a self-referencing anonymous function inside a class with an active mysqli connection). Opcache: Fixed bug GH-14267 (opcache.jit=off does not allow enabling JIT at runtime). Fixed TLS access in JIT on FreeBSD/amd64. Fixed bug GH-11188 (Error when building TSRM in ARM64). PDO ODBC: Fixed bug GH-14367 (incompatible SDWORD type with iODBC). PHPDBG: Fixed bug GH-13681 (segfault on watchpoint addition failure). Soap: Fixed bug #47925 (PHPClient can't decompress response). Fix missing error restore code. Fix memory leak if calling SoapServer::setObject() twice. Fix memory leak if calling SoapServer::setClass() twice. Fix reading zlib ini settings in ext-soap. Fix memory leaks with string function name lookups. Fixed bug #69280 (SoapClient classmap doesn't support fully qualified class name). Fixed bug #76232 (SoapClient Cookie Header Semicolon). Fixed memory leaks when calling SoapFault::__construct() twice. Sodium: Fix memory leaks in ext/sodium on failure of some functions. SPL: Fixed bug GH-14290 (Member access within null pointer in extension spl). Standard: Fixed bug GH-14483 (Fixed off-by-one error in checking length of abstract namespace Unix sockets). Streams: Fixed bug GH-11078 (PHP Fatal error triggers pointer being freed was not allocated and malloc: double free for ptr errors). ==== apache2-prefork ==== Version update (2.4.59 -> 2.4.62) - Update to 2.4.62 * ) SECURITY: CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows (cve.mitre.org) [boo#1228098] SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue. Credits: Smi1e (DBAPPSecurity Ltd.) * ) SECURITY: CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1228097] A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.62, which fixes this issue. * ) mod_proxy: Fix canonicalisation and FCGI env (PATH_INFO, SCRIPT_NAME) for "balancer:" URLs set via SetHandler, also allowing for "unix:" sockets with BalancerMember(s). PR 69168. [Yann Ylavic] * ) mod_proxy: Avoid AH01059 parsing error for SetHandler "unix:" URLs. PR 69160 [Yann Ylavic] * ) mod_ssl: Fix crashes in PKCS#11 ENGINE support with OpenSSL 3.2. [Joe Orton] * ) mod_ssl: Add support for loading certs/keys from pkcs11: URIs via OpenSSL 3.x providers. [Ingo Franzki <ifranzki linux.ibm.com>] * ) mod_ssl: Restore SSL dumping on trace7 loglevel with OpenSSL >= 3.0. [Ruediger Pluem, Yann Ylavic] * ) mpm_worker: Fix possible warning (AH00045) about children processes not terminating timely. [Yann Ylavic] - Update to 2.4.61 * ) SECURITY: CVE-2024-39884: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1227353] A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.61, which fixes this issue. - Update to 2.4.60 * ) SECURITY: CVE-2024-39573: Apache HTTP Server: mod_rewrite proxy handler substitution (cve.mitre.org) [boo#1227271] Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38477: Apache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request (cve.mitre.org) [boo#1227270] null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38476: Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect (cve.mitre.org) [boo#1227269] Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Note: Some legacy uses of the 'AddType' directive to connect a request to a handler must be ported to 'AddHandler' after this fix. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38475: Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path. (cve.mitre.org) [boo#1227268] Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected. Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38474: Apache HTTP Server weakness with encoded question marks in backreferences (cve.mitre.org) [boo#1227278] Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI. Note: Some RewriteRules that capture and substitute unsafely will now fail unless rewrite flag "UnsafeAllow3F" is specified. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38473: Apache HTTP Server proxy encoding problem (cve.mitre.org) [boo#1227276] Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent ... changelog too long, skipping 49 lines ... - apache2-issue-444.patch ==== apache2-utils ==== Version update (2.4.59 -> 2.4.62) - Update to 2.4.62 * ) SECURITY: CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows (cve.mitre.org) [boo#1228098] SSRF in Apache HTTP Server on Windows with mod_rewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue. Credits: Smi1e (DBAPPSecurity Ltd.) * ) SECURITY: CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1228097] A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.62, which fixes this issue. * ) mod_proxy: Fix canonicalisation and FCGI env (PATH_INFO, SCRIPT_NAME) for "balancer:" URLs set via SetHandler, also allowing for "unix:" sockets with BalancerMember(s). PR 69168. [Yann Ylavic] * ) mod_proxy: Avoid AH01059 parsing error for SetHandler "unix:" URLs. PR 69160 [Yann Ylavic] * ) mod_ssl: Fix crashes in PKCS#11 ENGINE support with OpenSSL 3.2. [Joe Orton] * ) mod_ssl: Add support for loading certs/keys from pkcs11: URIs via OpenSSL 3.x providers. [Ingo Franzki <ifranzki linux.ibm.com>] * ) mod_ssl: Restore SSL dumping on trace7 loglevel with OpenSSL >= 3.0. [Ruediger Pluem, Yann Ylavic] * ) mpm_worker: Fix possible warning (AH00045) about children processes not terminating timely. [Yann Ylavic] - Update to 2.4.61 * ) SECURITY: CVE-2024-39884: Apache HTTP Server: source code disclosure with handlers configured via AddType (cve.mitre.org) [boo#1227353] A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of local content. For example, PHP scripts may be served instead of interpreted. Users are recommended to upgrade to version 2.4.61, which fixes this issue. - Update to 2.4.60 * ) SECURITY: CVE-2024-39573: Apache HTTP Server: mod_rewrite proxy handler substitution (cve.mitre.org) [boo#1227271] Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by mod_proxy. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38477: Apache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request (cve.mitre.org) [boo#1227270] null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38476: Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect (cve.mitre.org) [boo#1227269] Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Note: Some legacy uses of the 'AddType' directive to connect a request to a handler must be ported to 'AddHandler' after this fix. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38475: Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path. (cve.mitre.org) [boo#1227268] Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. Substitutions in server context that use a backreferences or variables as the first segment of the substitution are affected. Some unsafe RewiteRules will be broken by this change and the rewrite flag "UnsafePrefixStat" can be used to opt back in once ensuring the substitution is appropriately constrained. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38474: Apache HTTP Server weakness with encoded question marks in backreferences (cve.mitre.org) [boo#1227278] Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by the configuration but not directly reachable by any URL or source disclosure of scripts meant to only to be executed as CGI. Note: Some RewriteRules that capture and substitute unsafely will now fail unless rewrite flag "UnsafeAllow3F" is specified. Credits: Orange Tsai (@orange_8361) from DEVCORE * ) SECURITY: CVE-2024-38473: Apache HTTP Server proxy encoding problem (cve.mitre.org) [boo#1227276] Encoding problem in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent ... changelog too long, skipping 49 lines ... - apache2-issue-444.patch ==== apparmor ==== Version update (4.0.1 -> 4.0.2) Subpackages: apparmor-abstractions apparmor-docs apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - update to AppArmor 4.0.2 - bugfix release with lots of fixes in all areas - add new userns profiles for balena-etcher, chromium and wike - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_4.0.2 for the detailed upstream changelog - drop upstream(ed) patches: - aa-remove-unknown-fix-unconfined.diff - logprof-mount-empty-source.diff - plasmashell.diff - sampa-rpcd-witness.diff - sddm-xauth.diff - teardown-unconfined.diff - test-aa-notify.diff - tools-fix-redefinition.diff - utils-relax-mount-rules-2.diff - utils-relax-mount-rules.diff - refresh GPG key (was expired) ==== ark ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkerfuffle24 - Add patch to fix tmp folder cleanup (kde#487229): * 0001-cliinterface-adapt-to-behavior-change-in-QTemporaryD.patch - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Tests: Comment out test that fails to pass ==== b43-fwcutter ==== - Provide fallback in case %_firmwaredir is not defined ==== baloo-widgets ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix FileMetadataItemCountTest::testItemCount ==== bind ==== Version update (9.18.27 -> 9.20.0) Subpackages: bind-doc bind-utils - Update to new major version 9.20.0 For a complete list of all changes see: * https://bind9.readthedocs.io/en/v9.20.0/notes.html * The CHANGES file in the source RPM Some noteworthy changes: * Added new BuildRequires liburcu for lock free data structures. * A new DNSSEC tool dnssec-ksr has been added to create Key Signing Request (KSR) and Signed Key Response (SKR) files. * /etc/bind.keys and /var/lib/named/named.root.key have been removed as the correct defaults are pre-compiled and there is no need to configure bind.keys manually. * The functions that were in the libbind9 shared library have been moved to the libisc and libisccfg libraries. The now-empty libbind9 has been removed and is no longer installed. * The irs_resconf module has been moved to the libdns shared library. The now-empty libirs library has been removed and is no longer installed. Security Fixes: * A malicious DNS client that sent many queries over TCP but never read the responses could cause a server to respond slowly or not at all for other clients. This has been fixed. (CVE-2024-0760) [bsc#1228255] * It is possible to craft excessively large resource records sets, which have the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-records-per-type option. * It is possible to craft excessively large numbers of resource record types for a given owner name, which has the effect of slowing down database processing. This has been addressed by adding a configurable limit to the number of records that can be stored per name and type in a cache or zone database. The default is 100, which can be tuned with the new max-types-per-name option. (CVE-2024-1737) [bsc#1228256] * Validating DNS messages signed using the SIG(0) protocol (RFC 2931) could cause excessive CPU load, leading to a denial-of-service condition. Support for SIG(0) message validation was removed from this version of named. (CVE-2024-1975) [bsc#1228257] * Due to a logic error, lookups that triggered serving stale data and required lookups in local authoritative zone data could have resulted in an assertion failure. This has been fixed. * Potential data races were found in our DoH implementation, related to HTTP/2 session object management and endpoints set object management after reconfiguration. These issues have been fixed. * When looking up the NS records of parent zones as part of looking up DS records, it was possible for named to trigger an assertion failure if serve-stale was enabled. This has been fixed. (CVE-2024-4076) [bsc#1228258] ==== blinken ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== bluedevil6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== blueman ==== Version update (2.3.5 -> 2.4.2) Subpackages: thunar-sendto-blueman - Update to version 2.4.2: * Broken audio profile applet menu items * Missing manager window title * Teardown of DBus mock server in tests * Only a single battery notification * Renamed recent connections header in applet menu * Translation updates * An option to toggle the manager window with the tray icon (the 2.3 behavior useful when there are no window decorations for closing it) - Update to version 2.4.1: * Fallback for missing icons * Correct Bluetooth state tracking in manager window * Sporadic error on battery data (Note that there was a regression in Linux 6.8.2, 6.7.11 and 6.6.23 that causes it and lots of other trouble) * Active state on tray icon * Broken markup in tray menu * Translation updates * Handle incompabilities with kded6 running on desktops without StatusNotifierItem support - Update to version 2.4: * Fix device-selected handlers * Fix deprecations in tests * Fix showing -1 seconds when discovering @kuraga * Tray: Let dbus call end and reply to caller * Get the image-missing icon if lookup failed to avoid crash * Raise minimum Python version to 3.8 * Raise minumum Gtk+ version to 3.24 * Hide recent connections associated with unavailable adapters * Store network configuration in GSettings instead of /var/lib/blueman/network.state. * Replace custom MessageArea widget with regular Gtk.InfoBar * Drop auto-power feature. BlueZ now has the AutoEnable setting for even better auto-powering. * Do not use pointless link quality value * Recent connections in toplevel applet menu * Never hide keyboard and combos, see #1954 for more info * Do not close blueman-manager from applet * Add Switch to blueman-manager to set bluetooth on/off * Remove broken check for bluetooth status * PluginDialog: Replace custom list with Gtk.ListBox * Ignore double-click for connect when unpowered * Drop homgeneous from statusbar * PulseAudioUtils: Use python enums in several places * Use operator convenience functions * Cleanup PluginDialog UI * Show HCI device in blueman-adapers tabs * Show different icon for the active audio profile @localevil * Make blueman-services a notebook * Use the TypedDict as constructor * Audio profile switcher in applet menu (@abhijeetviswa) * Set router address as DNS server instead of loopback addresses * Enable dnsmasq DNS service if possible and add DNS servers otherwise * Reconfigure DHCP service on local nameserver changes * Support for systemd-resolved for getting nameservers for NAP clients * List connected devices in status icon tooltip * Support for nautilus 43 and later * Copy bleutooth address to clipboard in devicelist * Add battery levels to status icon tooltip ==== bolt ==== - Edit license: LGPL-2.1-or-later - Add BuildRequires: asciidoc to produce manpages: * boltd.8 boltctl.1 - Switch dependencies to provided pkgconfig - Update meson required version 0.60 - Use autosetup ==== boost-base ==== Subpackages: boost-license1_85_0 libboost_filesystem1_85_0 libboost_iostreams1_85_0 libboost_locale1_85_0 libboost_program_options1_85_0 libboost_thread1_85_0 - add patch boost-1.85.0-python-numpy-2.patch from upstream ==== boost-extra ==== - add patch boost-1.85.0-python-numpy-2.patch from upstream ==== breeze6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: breeze6-cursors breeze6-decoration breeze6-style - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== breeze6-gtk ==== Version update (6.1.1 -> 6.1.4) Subpackages: gtk2-metatheme-breeze6 gtk3-metatheme-breeze6 gtk4-metatheme-breeze6 metatheme-breeze6-common - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== brltty ==== Subpackages: brltty-driver-at-spi2 brltty-driver-brlapi brltty-driver-speech-dispatcher brltty-driver-xwindow libbrlapi0_8 python3-brlapi system-user-brltty xbrlapi - Add %python3_fix_shebang_path to fix binaries dependency on /usr/bin/python3 ==== btrfsmaintenance ==== Version update (0.5 -> 0.5.2) - update to version 0.5.2 - fix syntax error in run_task, preventing jobs to start - start scrub jobs sequentially if RAID5 or RAID6 data profile is found - fix btrfsmaintenance-refresh.service description - fix bsc#1224364 - update to version 0.5.1 - fix handling of OnCalendar timer directive in the drop-in configuration file that reads the periods from the sysconfig - fix use of --verbose option of fstrim, not available on util-linux < 2.27 - ship manual page of README, also available as 'systemctl help servicename' ==== btrfsprogs ==== Version update (6.9 -> 6.10) Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - update to 6.10 * inspect: * list-chunks: new command to print information about chunks (i.e. the physical chunks as stored on devices), sortable; requires root as it's using SEARCH_TREE ioctl * tree-stats: * new option -t to print only the given tree * add long options for size units * filesystem df: with increased verbosity print per-type information from sysfs * version: print a line with built-in features or options (+FEATURE1 -FEATURE2) * image: document option -s and its potential problems * fixes: * scrub status: user selected base for Rate values * receive: escape special characters in paths and xattrs * dump-tree: escape special characters in paths and xattrs * image: sanitizing filenames did not work properly in all cases * convert: fix displayed restored image path on rollback * tune change csum: do conversion in smaller batches * other: * build fixes for uClibc * build fix for python 3.13 * documentation updates - update to 6.9.2 * subvol list: fix accidental trimming of subvolume name * check: revert checking file extent item 'ram_bytes' * libbtrfsutil: * patchlevel version update 1.3.2 * fix accidentally closing fd passed to subvolume iterator - update to 6.9.1 * fix detection of intermediate super block flags (e.g. csum change and other conversions) * raid-stripe-tree support (still experimental): * moved under experimental build flags (mkfs, convert) * format change, removed encoding type; backward incompatible * receive dump: escape special chars in xattr names and values, and clone source path * tune change csum: fix reservation size when starting a transaction * other: * new and updated tests * updated CI images, new reference build targets * cleanups and refactoring ==== ca-certificates-mozilla ==== Version update (2.66 -> 2.68) - Updated to 2.68 state of Mozilla SSL root CAs (bsc#1227525) - Added: FIRMAPROFESIONAL CA ROOT-A WEB - Distrust: GLOBALTRUST 2020 ==== calendarsupport ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6CalendarSupport6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== certmonger ==== - Add cm_dont_restart_external.patch (a SUSE specific patch) which prevents the restart of the cert request for an external ca (bsc#1221406). ==== cfitsio ==== Version update (4.3.1 -> 4.4.0) - Update to version 4.4.0: * Reorganization of helper utility code; added fitsverify * CMakeLists.txt: Changed install location of cfitsio-targets.cmake to conform with the one listed in cfitsio-config.cmake.in (i.e. including the extra "cfitsio" subdir of lib/cmake). * calculator functions that read GTIs do more correct validity checking of GTI input files * fits_insert_rows now works if input table starts with both no rows and no columns * Can now write internal memory files of size > 2^32 directly to a gzip-compressed output file. * Added support for unsigned long long types to fits_update_key. * Added ability for Windows builds to handle UTF-8 needed for reading filenames with non-ASCII characters. * Added 2-byte int test to speed.c utility. * Made fix to http file handler to expand the allowed URL length. - Change License tag to NASA-1.3 in keeping with upstream. - Switch to cmake+ninja for build. - Switch BuildRequires to pkgconfig based packages where possible. - Add a bunch of cmake build related patches to make the output close to that generated by autotools: * cfitsio-cmake-devel-scripts-destination.patch: Fix destination of pkgconfig and cmake scripts from /usr/lib to %{_libdir}. * cfitsio-cmake-allow-user-specified-incdir.patch: Allow specifying user-defined include dir into which to install header files. * cfitsio-cmake-lowercase-util-names.patch: Use lowercase names for utility binaries when building using cmake (same as autotools) * cfitsio-cmake-match-autotools-soversion.patch: Same so number as used in configure.in. ==== checkpolicy ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes: * checkpolicy: support CIDR notation for nodecon statements * checkpolicy: provide more descriptive error messages and improve error handling * Bugfixes: * checkpolicy: handle unprintable token * checkpolicy: avoid assigning garbage values * checkpolicy: free temporary bounds type * checkpolicy: perform contiguous check in host byte order * checkpolicy: include <ctype.h> for isprint(3) * oss-fuzz fixes: * checkpolicy: add libfuzz based fuzzer * checkpolicy: free complete role_allow_rule on error * checkpolicy: free identifiers on invalid typebounds * checkpolicy: return YYerror on invalid character * checkpolicy: clone level only once ==== chrony ==== Subpackages: chrony-pool-openSUSE - Update clknetsim to snapshot 633a0be: fix missing stat/fstat with latest glibc. ==== clamav ==== Version update (0.103.11 -> 1.3.1) - Add upstream 1305.patch to fix tests (boo#1102840, https://github.com/Cisco-Talos/clamav/issues/1300) - New Version: 1.3.1: * CVE-2024-20380: Fixed a possible crash in the HTML file parser that could cause a denial-of-service (DoS) condition. * Updated select Rust dependencies to the latest versions. * Fixed a bug causing some text to be truncated when converting from UTF-16. * Fixed assorted complaints identified by Coverity static analysis. * Fixed a bug causing CVDs downloaded by the DatabaseCustomURL Freshclam config option to be pruned and then re-downloaded with every update. * Added the new 'valhalla' database name to the list of optional databases in preparation for future work. - New version: 1.3.0: * Added support for extracting and scanning attachments found in Microsoft OneNote section files. OneNote parsing will be enabled by default, but may be optionally disabled. * Added file type recognition for compiled Python (`.pyc`) files. * Improved support for decrypting PDFs with empty passwords. * Fixed a warning when scanning some HTML files. * ClamOnAcc: Fixed an infinite loop when a watched directory does not exist. * ClamOnAcc: Fixed an infinite loop when a file has been deleted before a scan. - New version: 1.2.0: * Added support for extracting Universal Disk Format (UDF) partitions. * Added an option to customize the size of ClamAV's clean file cache. * Raised the MaxScanSize limit so the total amount of data scanned when scanning a file or archive may exceed 4 gigabytes. * Added ability for Freshclam to use a client certificate PEM file and a private key PEM file for authentication to a private mirror. * Fix an issue extracting files from ISO9660 partitions where the files are listed in the plain ISO tree and there also exists an empty Joliet tree. * PID and socket are now located under /run/clamav/clamd.pid and /run/clamav/clamd.sock . * bsc#1211594: Fixed an issue where ClamAV does not abort the signature load process after partially loading an invalid signature. - New version 1.1.0: * https://blog.clamav.net/2023/05/clamav-110-released.html * Added the ability to extract images embedded in HTML CSS <style> blocks. * Updated to Sigtool so that the --vba option will extract VBA code from Microsoft Office documents the same way that libclamav extracts VBA. * Added a new option --fail-if-cvd-older-than=days to clamscan and clamd, and FailIfCvdOlderThan to clamd.conf * Added a new function cl_cvdgetage() to the libclamav API. * Added a new function cl_engine_set_clcb_vba() to the libclamav API. * obsoletes clamav-ec32.patch. - boo#1180296: Integrate clamonacc as a service. - New version 1.0.1 LTS (including changes in 0.104 and 0.105): * As of ClamAV 0.104, CMake is required to build ClamAV. * As of ClamAV 0.105, Rust is now required to compile ClamAV. * Increased the default limits for file and scan size: * MaxScanSize: 100M to 400M * MaxFileSize: 25M to 100M * StreamMaxLength: 25M to 100M * PCREMaxFileSize: 25M to 100M * MaxEmbeddedPE: 10M to 40M * MaxHTMLNormalize: 10M to 40M * MaxScriptNormalize: 5M to 20M * MaxHTMLNoTags: 2M to 8M * Added image fuzzy hash subsignatures for logical signatures. * Support for decrypting read-only OLE2-based XLS files that are encrypted with the default password. * Overhauled the implementation of the all-match feature. * Added a new callback to the public API for inspecting file content during a scan at each layer of archive extraction. * Added a new function to the public API for unpacking CVD signature archives. * The option to build with an external TomsFastMath library has been removed. ClamAV requires non-default build options for TomsFastMath to support bigger floating point numbers. * For a full list of changes see the release announcements: * https://blog.clamav.net/2022/11/clamav-100-lts-released.html * https://blog.clamav.net/2022/05/clamav-01050-01043-01036-released.html * https://blog.clamav.net/2021/09/clamav-01040-released.html - Build clamd with systemd support. - Fix format strings on 32bit platforms (clamav-format.patch). - Add missing endianness conversions (clamav-ec32.patch). - Don't build on armv7l for now due to some test failures. - Drop clamav-disable-yara.patch as yara cannot be disabled anymore ==== clazy ==== Version update (1.11git.20240520T014559~87b83e3 -> 1.12git.20240630T203330~f3fb82c) - Update to version 1.12git.20240630T203330~f3fb82c: * docs: update HOWTO.md * Update ChangeLog for 1.12 * docs: Update HOWTO to include release instructions * Don't hardcode version in ClazyStandaloneMain.cpp * docs: Bump minimum LLVM to 11 * docs: Don't hardcode current version in README * no-module-include: Fix on Windows as line endings can have \r\n * ci: Fix build on ubuntu 24.04 * ci: Bump to Qt 6.7 * tests: Remove ubuntu-18.04 and 20.04 Dockerfiles ==== clucene-core ==== Subpackages: libclucene-contribs-lib1 libclucene-core1 libclucene-shared1 - Add clucene-reprobuild.patch to allow libreoffice reproducible builds (boo#1047218) => New Provides for libclucene2(setStartVersion) ==== colord ==== Subpackages: colord-color-profiles libcolord2 libcolorhug2 - Build -D_FILE_OFFSET_BITS=64 and -D_TIME_BITS=64 in order to avoid wrong type being passed to gmtime_r on i586 (and perhaps other 32bit targets). [boo#1228331] ==== container-selinux ==== Version update (2.228.0 -> 2.232.1) - Update to version 2.232.1: * Bump to v2.232.1 * TMT: fix srpm download syntax on rawhide * Bump to 2.232.0 * Packit: remove `update_release` key from downstream jobs (#313) * Update container-selinux.8 man page * Add ownership of /usr/share/udica (#312) * Packit/TMT: upstream maintenance of downstream gating tests * extend container_engine_t again * Allow spc_t to use localectl * Allow spc_t to use timedatectl * introduce container_use_xserver_devices boolean to allow GPU access - Update to version 2.231.0: * Allow container domains to communicate with spc_t unix_stream_sockets * Move to %posttrans to ensure selinux-policy got updated before the commands run (bsc#1221720) - Manual update to version 2.230.0+git4.a8e389d to include this commit that is needed for the main selinux-policy update to work: * Rename all /var/run file context entries to /run - Update to version 2.230.0: * Move to tar_scm based packaging: added _service and _servicedata * Allow containers to unmount file systems * Add buildah as a container_runtime_exec_t label * Additional rules for container_user_t * improve container_engine_t ==== coreutils ==== - Avoid empty scriptlets - coreutils-i18n.patch: fold(1): fix exit code for non-existent file. The exit code of fold(1) was zero for non-existent file: $ fold badfile; echo $? fold: badfile: No such file or directory 0 The bug was introduced by the downstrean I18N patch. (rhbz#2296201) ==== coreutils-systemd ==== - Avoid empty scriptlets - coreutils-i18n.patch: fold(1): fix exit code for non-existent file. The exit code of fold(1) was zero for non-existent file: $ fold badfile; echo $? fold: badfile: No such file or directory 0 The bug was introduced by the downstrean I18N patch. (rhbz#2296201) ==== cronie ==== Subpackages: cron - Improve permissions checks in run-cron. Just check if the permission matches completely. Otherwise e.g. setgid directories causes failures ==== cryptsetup ==== Version update (2.7.2 -> 2.7.4) Subpackages: cryptsetup-doc libcryptsetup12 - Update to 2.7.4: * Detect device busy failure for device-mapper table-referenced devices. * Fix shared activation for dm-verity devices. * Add --shared option for veritysetup open action. * Do not use exclusive flag for the allocated backing loop files. * Fixes for problems found by static analyzers and Valgrind. * Fixes to tests and CI scripts. - Use fdupes to link identical man pages. - Update to 2.7.3: * Do not allow formatting LUKS2 with Opal SED (hardware encryption) if the reported logical sector size for the block device and Opal encryption logical block differs. * Fixes to wiping LUKS2 headers after Opal locking area erase. * Mention the need for possible PSID revert before Opal format for some drives (man page). * Fix Bitlocker-compatible code to ignore newly seen metadata entries. * Fix interactive query retry if LUKS2 unbound keyslot is present. * Detect unsupported zoned devices for LUKS header devices. * Allow "capi" cipher format for benchmark command and fix parsing of plain IV in "capi" format. * Add support for HCTR2 encryption mode. * Source code now uses SPDX license identifiers instead of full license preambles. * Fix missing includes for cryptographic backend that could cause compilation errors for some systems. * Fix tests to work correctly in FIPS mode with recent OpenSSL 3.2. * Fix various (mostly false positive) issues detected by Coverity. - License: Replace legacy 'AND SUSE-GPL-2.0-with-openssl-exception' with 'WITH cryptsetup-OpenSSL-exception' (the official SPDX exception). ==== cups ==== Version update (2.4.8 -> 2.4.10) Subpackages: cups-client cups-config libcups2 libcupsimage2 - Replaced avoid_C99_mode_for_loop_initial_declarations.patch which is now the upstream fix https://github.com/OpenPrinting/cups/commit/a2b8872ea95564e065e3a08e2aa12a15... see https://github.com/OpenPrinting/cups/issues/1000 and https://github.com/OpenPrinting/cups/pull/1004 - Version upgrade to 2.4.10: See https://github.com/openprinting/cups/releases CUPS 2.4.10 brings two fixes: * Fixed error handling when reading a mixed 1setOf attribute. * Fixed scheduler start if there is only domain socket to listen on (Issue #985) which is fix for regression after fix for CVE-2024-35235 in scenarios where is no other listeners in cupsd.conf than domain socket created on demand by systemd, launchd or upstart. Issues are those at https://github.com/OpenPrinting/cups/issues - Version upgrade to 2.4.9: See https://github.com/openprinting/cups/releases CUPS 2.4.9 brings security fix for CVE-2024-35235 and several bug fixes regarding CUPS Web User Interface, PPD generation and HTTP protocol implementation. Detailed list (from CHANGES.md): * Fixed domain socket handling (CVE-2024-35235) * Fixed creating of `cupsUrfSupported` PPD keyword (Issue #952) * Fixed searching for destinations in web ui (Issue #954) * Fixed TLS negotiation using OpenSSL with servers that require the TLS SNI extension. * Really raised `cups_enum_dests()` timeout for listing available IPP printers (Issue #751)... * Fixed `Host` header regression (Issue #967) * Fixed DNS-SD lookups of local services with Avahi (Issue #970) * Fixed listing jobs in destinations in web ui. (Apple issue #6204) * Fixed showing search query in web ui help page. (Issue #977) Issues are those at https://github.com/OpenPrinting/cups/issues Apple issues are those at https://github.com/apple/cups/issues - Adapted downgrade-autoconf-requirement.patch for CUPS 2.4.10 - Removed cups-2.4.8-CVE-2024-35235.patch : fixed upstream see the above CUPS 2.4.9 changes - avoid_C99_mode_for_loop_initial_declarations.patch avoids error "'for' loop initial declarations are only allowed in C99 mode" that happens when building for SLE12 in scheduler/client.c at "for (char *start = ..." since https://github.com/OpenPrinting/cups/commit/a7eda84da73126e40400e05dd27d57f8... see https://github.com/OpenPrinting/cups/issues/1000 ==== curl ==== Version update (8.8.0 -> 8.9.0) Subpackages: curl-zsh-completion libcurl4 - Update to 8.9.0: * Security fixes: - [bsc#1227888, CVE-2024-6197] curl: freeing stack buffer in utf8asn1str - [bsc#1228260, CVE-2024-6874] idn: tweak buffer use when converting with macidn * Changes: - curl: add --ip-tos (IP Type of Service / Traffic Class) - curl: add --mptcp - curl: add --vlan-priority - curl: add -w '%{num_retries} - gnutls: support CA caching - mbedtls: support CURLOPT_CERTINFO - noproxy: patterns need to be comma separated - socket: support binding to interface *AND* IP - tcpkeepalive: add CURLOPT_TCP_KEEPCNT and --keepalive-cnt - urlapi: add CURLU_NO_GUESS_SCHEME - wolfssl: support CA caching * Bugfixes: - connection: shutdown TLS (for FTP) better - curl-config: revert to backticks to support old target envs - curl: allow etag and content-disposition for 3xx reply - curl: bsearch the --write-out variable name - curl: check for --disable case *sensitively* - doh: fix leak and zero-length HTTPS RR crash - file: separate fake headers and body with a stand-alone CRLF - ftp: remove redundant null pointer check in loop condition - gnutls: improve TLS shutdown - gnutls: pass in SNI name, not hostname when checking cert - hostip: skip error check for infallible function call - http/3: add shutdown support - http/3: resume upload on ack if we have more data to send - lib: add a few DEBUGASSERT(data) to aid code analyzers - lib: add failure reason on bind errors - lib: graceful connection shutdown - lib: xfer_setup and non-blocking shutdown - multi: add multi->proto_hash, a key-value store for protocol data - multi: do a final progress update on connect failure - multi: fix multi_wait() timeout handling - multi: fix pollset during RESOLVING phase - ngtcp2+quictls: fix cert-status use - noproxy: test bad ipv6 net size first - openssl/gnutls: rectify the TLS version checks for QUIC - openssl: fix hostname handling when using ECH - openssl: stop duplicate ssl key logging for legacy OpenSSL - quic: enable UDP GRO - quic: openssl quic, cmake and doc version update to 3.3.0 - quic: require at least OpenSSL 3.3 for QUIC - quic: update to quiche 0.22.0 - smtp: for starttls, do full upgrade - tool_operate: avoid explicitly setting verifypeer to 1 - tool_writeout: get certinfo only when needing it - transfer: avoid polling socket every transfer loop - transfer: conn close on paused upload - transfer: do not use EXPIRE_NOW while blocked - transfer: remove curl_upload_refill_watermark, no longer used - transfer: set CSELECT_IN if there is data pending - url: allow DoH transfers to override max connection limit - x509asn1: add some common ECDSA OIDs - x509asn1: ASN1tostr() should fail when 'constructed' is set - x509asn1: fallback to dotted OID representation - x509asn1: prevent NULL dereference - x509asn1: remove superfluous free() - x509asn1: remove two static variables * Rebase libcurl-ocloexec.patch * Remove curl-make-install-curl-config.patch upstream ==== discover6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-backend-packagekit discover6-notifier - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Only chop off leading @ from tokenized license text if needed (kde#491172) * flatpak: Make sure we don't call versionCompare with a null resource * flatpak: Ensure we are caching the right icons (kde#490786) * category: assert names aren't duplicated * ApplicationPage: Do not use Item.visible to calculate the visibility of the parent (kde#489745) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * flatpak: also auto-handle rebases from runtimes * flatpak: uninstall properly EOL refs that have no replacement * flatpak: don't trip over null gerrors (kde#487526) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * ApplicationPage: Fix share dialog (kde#488976) * update version for new release ==== dolphin ==== Version update (24.05.1 -> 24.05.2) Subpackages: dolphin-part dolphin-zsh-completion libdolphinvcs6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add missing GENERATE_MOC to kconfig_add_kcfg_files * CI: Disable Craft Windows ==== dracut ==== Version update (059+suse.598.gfe80dac7 -> 059+suse.628.g20b345b4) - Update to version 059+suse.628.g20b345b4: * feat(crypt): force the inclusion of crypttab entries with x-initrd.attach (bsc#1226529) * fix(mdraid): try to assemble the missing raid device (bsc#1226412) * feat(ifcfg): minimize s390-specific network configuration aspects * refactor(ifcfg): delete code duplication using iface_get_subchannels() * fix(znet): append to udev rules so each rd.znet_ifname is effective * feat(qeth_rules): remove qeth handling consolidated in 95znet * docs(dracut.cmdline): generalize description of rd.znet * feat(znet): use zdev for consolidated device configuration * feat(dasd): minimize dasd handling consolidated in s390-tools * feat(dasd_mod): minimize dasd handling consolidated in s390-tools * feat(dasd_rules): remove dasd handling consolidated in s390-tools * feat(zfcp): minimize zfcp handling consolidated in s390-tools * feat(zfcp_rules): remove zfcp handling consolidated in s390-tools * refactor(cms): remove now unnecessary inclusion of full s390utils-base * refactor(cms): use consolidated network config with zdev from s390-tools * refactor(cms): use consolidated dasd config with zdev from s390-tools * refactor(cms): use consolidated zfcp config with zdev from s390-tools * refactor(cms): use zdev to simplify handling CMSDASD=... boot option * fix(dracut-install): continue parsing if ldd prints "cannot be preloaded" (bsc#1208690) ==== drkonqi6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Use frameworks version number from kcrash * sentry: also send qt_version in the tags * support consuming the qt version from kcrash * coredump: synthesize crash metadata for kwin_x11 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ell ==== Version update (0.66 -> 0.67) - update to 0.67: * Add support for handling sysctl char settings. ==== emacs ==== Subpackages: emacs-el emacs-eln emacs-info emacs-nox etags - Use simple trusted members of the group games (boo#1228058) - Split off the emacs-games package for score handling (boo#1227737) - Implement setgid based score handling - The xauth patch should ignore any locking at read time as otherwise emacs server might hang - Provide support of ELPA systemwide installations to OBS - Support system wide ELPA and MELPA site lisp paths - Move post scriptlets for font-latex to emacs-auctex as triggerin scriptlets - The release 29.4 does fix boo#1226957 -- CVE-2024-39331 ==== emacs-compat ==== Version update (29.1.4.5 -> 30.0.0.0) - Add back the install_info macro's for Leap, info triggers are not old enough for Leap - Add patch to fix Texinfo references inside the manual: 0002-compat.texi-Fix-references-to-Emacs-30.1-in-Support-.patch - Remove use deprecated install_info macro's - Rebase 0001-Add-install-target.patch against new upstream version - Update to version 30.0.0.0: * compat-28: Mark =subr-native-elisp-p= as obsolete (renamed in Emacs 30). * compat-30: New function =char-to-name=. * compat-30: New function =obarray-clear=. * compat-30: New function =interpreted-function-p=. * compat-30: New function =primitive-function-p=. * compat-30: New function =closurep=. * compat-30: Add extended function =sort= with keyword arguments. * compat-30: New function =value<=. * compat-30: Add extended =copy-tree= with support for copying records with non-nil optional second argument. * compat-30: New macro =static-if=. * compat-30: New alias =drop=. * compat-30: New function =merge-ordered-lists=. * compat-30: New variables =completion-lazy-hilit= and =completion-lazy-hilit-fn= and new function =completion-lazy-hilit=. * compat-30: New function =require-with-check=. * compat-30: New functions =find-buffer= and =get-truename-buffer=. * compat-30: Add extended =completion-metadata-get= with support for =completion-category-overrides= and =completion-extra-properties=. ==== emacs-jinx ==== Version update (1.8 -> 1.10) - Rebase p0001-Only-export-necessary-symbols.-Fixes-105.patch against version 1.10 - Update to version 1.10: * Add jinx--syntax-overrides to override syntax table - Rebase p0001-Only-export-necessary-symbols.-Fixes-105.patch against version 1.9. - Update to version 1.9: * Expose (jinx-correct-all t) via C-u C-u C-u M-x jinx-correct * jinx-correct-all: Add ONLY-CHECK argument. * A better fix for #156 * Revert "Fix bug in jinx--find-visible-pending (See #156)" * Fix bug in jinx--find-visible-pending (See #156) * correct link to enchant manual (#185) ==== eog ==== Version update (45.3 -> 45.4) - Update to version 45.4: + Bug fixes and improvements: - Regenerate thumbnails on save. - Use "fast" content type as fallback if normal content type is unavailable. + docs: Replace dead links to developer-old.gnome.org. + Updated translations. ==== espeak-ng ==== Version update (1.51 -> 1.51.1) - Update patch fix-configure-1171.patch from upstream (just a minor change in revision numbers) - Add espeak-ng-CVE-2023-49990-49991-49992-49993-49994.patch: Backporting 58f1e0b6 from upstream, * Add crash test and vectors provided by @SEU-SSL * Disallow dummy/null voice load (that causes incorrect translator initialization) * Fix empty `phondata` file load (that causes unitialized memory access) * Limit max word length for RemoveEnding (causes buffer overflow) * Limit punctlist initialization from embedded commands (buffer overflow) * Fix unitialized pitch in wavegen (DBZ and indexing problems) * Properly zeroize stack variables before use in TranslateClause and SetWordStress (CVE-2023-49990, bsc#1218010; CVE-2023-49991, bsc#1218006 CVE-2023-49992, bsc#1218007; CVE-2023-49993, bsc#1218008 CVE-2023-49994, bsc#1218009) - Update to 1.51.1: - no changes ==== eventviews ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6EventViews6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix warning "QObject::disconnect: Unexpected nullptr parameter" on startup ==== evince ==== Version update (46.3 -> 46.3.1) Subpackages: evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0 - Update to version 46.3.1: + ev-window: - Don't attempt to load non-seekable files directly - Improve detection of non-seekable files + libview: Revert "ev-view-presentation: Simplify reset_jobs calls" + Updated translations. ==== evolution ==== Version update (3.52.2 -> 3.52.4) Subpackages: evolution-plugin-spamassassin - Update to version 3.52.4: + Bug Fixes: - Tooltips in Month view not always shown. - Mail: Print to File keeps previous file name. - Tooltips only sometimes displayed in Task and Memos Pane. + Miscellaneous: EWebView: Just loaded remote images may be left invisible. + Updated translations. - Update to version 3.52.3: + Bug Fixes: - Speed up startup - lots of local folders - Composer: . Wrap search by default . Text out of <div> can break Undo . Crash when opening spellcheck dialog - Forwarded e-mails don't have a filename extension - Composer: Crash when opening spellcheck dialog - Unable to drag'n'drop attachments between attachment bars - Crash under gtk_clutter_init_internal() + Miscellaneous: - Misc: Replace XPM images with SVG images - EAttachment: Check file_info contains display-name before accessing it - CI: Workaround broken git clone for libcanberra + Updated translations. ==== evolution-data-server ==== Version update (3.52.2 -> 3.52.4) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-3 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.52.4: + alarm-notify: Save acknowledge time without sending iTip message. + Calendar: Anniversaries hidden when book goes to online. - Update to version 3.52.3: + Bug Fixes: - Camel: . Attachments not recognized when filtering POP3 message . Search folder's message UID is not persistent - CalDAV: Correct check for "is Google server" + Miscellaneous: - OAuth2 Prompter: Fix two memory leaks - EOAuth2ServiceYahoo: Update redirect URI - CI: Workaround broken git clone for libcanberra - Fix few issues reported by Coverity Scan + Updated translations. ==== evolution-ews ==== Version update (3.52.2 -> 3.52.4) - Update to version 3.52.4: + Contacts: Offline GAL not searched with "manual query" views. + m365: Workaround MIME send server's reencode with forced base64. - Update to version 3.52.3: + Bug Fixes: - m365: A removed task in the web app is not removed in Evolution - Mails sent only to the first recipient in the list + Miscellaneous: - m365 Camel: . Auto-save store summary on folder count changes . Send messages as MIME data . Fix a memory leak in m365_folder_merge_server_user_flags() - CI: Workaround broken git clone for libcanberra + Updated translations. ==== exiv2 ==== Version update (0.28.2 -> 0.28.3) - update to 0.28.3 (bsc#1227528, CVE-2024-39695): * Release Notes: + https://github.com/Exiv2/exiv2/issues/3008 + https://github.com/Exiv2/exiv2/milestone/14?closed=1 * This release also fixes a low-severity security issue in asfvideo.cpp: out-of-bounds read in AsfVideo::streamProperties. - use --parallel as single-dash parameters are eaten by ctest's rpm macro ==== fdupes ==== Version update (2.3.0 -> 2.3.1) - update to 2.3.1: * Fix buffer overflow bug in getrealpath() function. ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Add ffmpeg-c99.patch so that the package conforms to the C99 standard and builds on i586 with GCC 14. - Add ffmpeg-4-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230, bsc#1227296) ==== ffmpeg-6 ==== Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Add ffmpeg-c99.patch so that the package conforms to the C99 standard and builds on i586 with GCC 14. - Add ffmpeg-6-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230 bsc#1227296) - Add ffmpeg-6-CVE-2024-32228.patch: Backporting 45964876 from upstream, Fix segfault on invalid film grain metadata. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-5d7f234e.patch: Backporting 5d7f234e from upstream, document that there can be multiple complex filtergraphs to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-f50382cb.patch: Backporting f50382cb from upstream, implement AFGS1 parsing. to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-1535d338.patch: Backporting 1535d338 from upstream, add AOM film grain synthesis, to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) ==== ffmpegthumbs ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== flatpak-kcm6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - No code changes since 6.1.3 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - No code changes since 6.1.2 - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - No code changes since 6.1.1 ==== fontconfig ==== Subpackages: libfontconfig1 - Run autoreconf unconditionally to allow newer versions of Automake. ==== fprintd ==== Version update (1.94.2 -> 1.94.3) Subpackages: fprintd-pam - update to 1.94.3: * Don't try to clear storage on devices without internal storage * Build: Add option to use libelogind for DBus * Fixed loading external storage modules * Do not require bash to build (just posix sh) * Tests fixes for newer python, python-dbusmock and libfprint * Even more translation updates ==== freecell-solver ==== Version update (6.10.0 -> 6.12.0) Subpackages: freecell-solver-presets libfreecell-solver0 - Update to 6.12.0 * Avoid packaging .tidyall.d * Renames to "global_instance" and clean-ups ==== freerdp ==== Version update (3.5.1 -> 3.6.3) Subpackages: libfreerdp3-3 librdtk0-0 libwinpr3-3 - Update to 3.6.3: * Fix xfreerdp and sdl-freerdp manpage names (accidentally changed name) * Fix crash of wfreerdp * Fix missing dependency for ci abi-checker * Fix build WITH_SSE2/WITH_NEON: only enable support if the compiler also defines symbols that suggest support. * Improved image copy (#10208) * Experimental [MS-RDPECAM] support by @oleg0421 (#10258) * Improved primitives (#10304) * Connection timeout for HTTP gateway transport (#10288) * Improved command line failure logging (#10333) * p11-kit support (#10081) * json-c support (#10183) * (experimental) SDL3 port SDL client (#10195) * New option '/gfx:frame-ack:off' for connection delay testing (#10214) * improved decoder speed (#10222, #10235) * xfreerdp floatbar hide bug (#10237) * winpr-makecert month bug (#10236) * kerberos kdcUrl check fixes (#10238) * timezone updates (#10120, #10144, #10170) * fixed a capability protocol violation bug (#10132) * fix SDL client dialog bug terminating on credential dialog (#10134) * some more oss-fuzz issues (#10126, #10141, #10148, #10161, #10239) * fix a graphics regression (#10352) * workaround for a protocol bug of older FreeRDP based servers (#10358) * fix possible NULL dereference in command line parser (#10348) ==== frei0r-plugins ==== Version update (2.3.1 -> 2.3.3) - Update to 2.3.3 * Add new Kaleid0sc0pe example video * New effect - gate weave * Gateweave, Filmgrain - change inline functions to static inline * Filmgrain - fix memory leak when blur = 0 ==== fribidi ==== Version update (1.0.14 -> 1.0.15) Subpackages: libfribidi0 - update to 1.0.15: * Fixed the bad tarball from 1.0.14 with stall include files. There are no other changes ==== fwupd ==== Version update (1.9.21 -> 1.9.23) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.23: + Fix a regression in 1.9.22 that caused some devices not to probe correctly. + Try harder to get a valid response when flashing usi-dock devices. - Update to version 1.9.22: + This release fixes the following bugs: - Add a PCB tag in the usi-dock GUID to distinguish different revisions. - Add explicit hidraw permission to fwupd.service to fix several devices. - Always load the flashrom plugin when using coreboot. - Be explicit with the rts54hub detach retry delay to fix the Acer D501. - Be more careful when setting thelio-io version strings. - Fix a critical warning if a device returns unexpected data from DFU upload. - Fix a critical warning if the DMI manufacturer is an empty string. - Fix several reported integer overflows from Coverity. - Fix the Blackbird and Talos II baseboard details. - Fix transient version number issue after flashing wacom-usb devices. - Increase the cros_ec acquiesce delay to manage additional reboots. - Only accept valid ASCII cabinet filenames. - Only require udevdir when gudev support is enabled. - Only show one PixArt receiver device per physical device. - Set the rts54hub version in more cases. - Speed up the daemon self tests by ~60%. - Use the bootloader build-timestamp as the fallback HWID BIOS version. + This release adds support for the following hardware: - Framework SD - Raspberry Pi 5 (unofficial) ==== gcc14 ==== Version update (14.1.1+git10335 -> 14.2.0+git10526) Subpackages: libasan8 libatomic1 libgcc_s1 libgfortran5 libgomp1 libhwasan0 libitm1 liblsan0 libobjc4 libstdc++6 libstdc++6-pp libtsan2 libubsan1 - Update to GCC 14.2.0 release, c035a7c30c310ff928988cbcf, git10526 - Add libquadmath0-devel-gcc14 sub-package to allow installing quadmath.h and SO link without installing the fortran frontend - Drop SLE11 compatibility %selfconflict wrapper, drop various conditions gating SLE11 build support - Update to gcc-14 branch head, a544898f6dd6a1689bb25abfd, git10504 * GCC 14.2 release candidate. ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Rebase gdm-restart-session-when-X-server-restart.patch. ==== gegl ==== Subpackages: gegl-0_4 libgegl-0_4-0 - Add normalize-gir.pl to strip details about build machines to achive reproducible builds ==== gettext-runtime ==== Subpackages: libtextstyle0 - Use %autosetup ==== ghostscript ==== Version update (10.03.0 -> 10.03.1) Subpackages: ghostscript-x11 - Version upgrade to 10.03.1: Highlights in this release include: See 'Recent Changes in Ghostscript' at Ghostscript upstream https://ghostscript.readthedocs.io/en/gs10.03.1/News.html * Fixes for CVE-2024-33869, CVE-2023-52722, CVE-2024-33870, CVE-2024-33871 and CVE-2024-29510 - Regarding CVE-2024-33869 see bsc#1226946 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=5ae2e3... https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f5336e... https://bugs.ghostscript.com/show_bug.cgi?id=707691 - Regarding CVE-2023-52722 see bsc#1223852 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=afd718... - Regarding CVE-2024-33870 see bsc#1226944 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=79aef1... https://bugs.ghostscript.com/show_bug.cgi?id=707686 - Regarding CVE-2024-33871 see bsc#1225491 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=714588... - Regarding CVE-2024-29510 see bsc#1226945 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=3b1735... ==== git ==== Version update (2.45.2 -> 2.46.0) Subpackages: git-core git-email git-svn git-web perl-Git - update to 2.46.0 UI, Workflows & Features * The "--rfc" option of "git format-patch" learned to take an optional string value to be used in place of "RFC" to tweak the "[PATCH]" on the subject header. * The credential helper protocol, together with the HTTP layer, have been enhanced to support authentication schemes different from username & password pair, like Bearer and NTLM. * Command line completion script (in contrib/) learned to complete "git symbolic-ref" a bit better (you need to enable plumbing commands to be completed with GIT_COMPLETION_SHOW_ALL_COMMANDS). * When the user responds to a prompt given by "git add -p" with an unsupported command, list of available commands were given, which was too much if the user knew what they wanted to type but merely made a typo. Now the user gets a much shorter error message. * The color parsing code learned to handle 12-bit RGB colors, spelled as "#RGB" (in addition to "#RRGGBB" that is already supported). * The operation mode options (like "--get") the "git config" command uses have been deprecated and replaced with subcommands (like "git config get"). * "git tag" learned the "--trailer" option to futz with the trailers in the same way as "git commit" does. * A new global "--no-advice" option can be used to disable all advice messages, which is meant to be used only in scripts. * Updates to symbolic refs can now be made as a part of ref transaction. * The trailer API has been reshuffled a bit. * Terminology to call various ref-like things are getting straightened out. * The command line completion script (in contrib/) has been adjusted to the recent update to "git config" that adopted subcommand based UI. * The knobs to tweak how reftable files are written have been made available as configuration variables. * When "git push" notices that the commit at the tip of the ref on the other side it is about to overwrite does not exist locally, it used to first try fetching it if the local repository is a partial clone. The command has been taught not to do so and immediately fail instead. * The promisor.quiet configuration knob can be set to true to make lazy fetching from promisor remotes silent. * The inter/range-diff output has been moved to the end of the patch when format-patch adds it to a single patch, instead of writing it before the patch text, to be consistent with what is done for a cover letter for a multi-patch series. * A new command has been added to migrate a repository that uses the files backend for its ref storage to use the reftable backend, with limitations. * "git diff --exit-code --ext-diff" learned to take the exit status of the external diff driver into account when deciding the exit status of the overall "git diff" invocation when configured to do so. * "git update-ref --stdin" learned to handle transactional updates of symbolic-refs. * "git format-patch --interdiff" for multi-patch series learned to turn on cover letters automatically (unless told never to enable cover letter with "--no-cover-letter" and such). * The "--heads" option of "ls-remote" and "show-ref" has been been deprecated; "--branches" replaces "--heads". * For over a year, setting add.interactive.useBuiltin configuration variable did nothing but giving a "this does not do anything" warning. The warning has been removed. * The http transport can now be told to send request with authentication material without first getting a 401 response. * A handful of entries are added to the GitFAQ document. * "git var GIT_SHELL_PATH" should report the path to the shell used to spawn external commands, but it didn't do so on Windows, which has been corrected. Performance, Internal Implementation, Development Support etc. * Advertise "git contacts", a tool for newcomers to find people to ask review for their patches, a bit more in our developer documentation. * In addition to building the objects needed, try to link the objects that are used in fuzzer tests, to make sure at least they build without bitrot, in Linux CI runs. * Code to write out reftable has seen some optimization and simplification. * Tests to ensure interoperability between reftable written by jgit and our code have been added and enabled in CI. * The singleton index_state instance "the_index" has been eliminated by always instantiating "the_repository" and replacing references to "the_index" with references to its .index member. * Git-GUI has a new maintainer, Johannes Sixt. * The "test-tool" has been taught to run testsuite tests in parallel, bypassing the need to use the "prove" tool. * The "whitespace check" task that was enabled for GitHub Actions CI has been ported to GitLab CI. * The refs API lost functions that implicitly assumes to work on the primary ref_store by forcing the callers to pass a ref_store as an argument. * Code clean-up to reduce inter-function communication inside builtin/config.c done via the use of global variables. * The pack bitmap code saw some clean-up to prepare for a follow-up topic. * Preliminary code clean-up for "git send-email". * The default "creation-factor" used by "git format-patch" has been raised to make it more aggressively find matching commits. * Before discovering the repository details, We used to assume SHA-1 as the "default" hash function, which has been corrected. Hopefully this will smoke out codepaths that rely on such an unwarranted ... changelog too long, skipping 233 lines ... in git_index_add (boo#1219660) ==== glib2 ==== Version update (2.80.3 -> 2.80.4) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.80.4: + Bugs fixed: - GLib unit tests fail on macOS runner due to localhost being out of addresses - Random failures to build glib 2.80.3 - Backport !4111 âgioerror: Map EADDRNOTAVAIL to G_IO_ERROR_CONNECTION_REFUSEDâ to glib-2-80 - Backport !3373 and !4117 âHandle files >4GB in g_file_load_contents()â to glib-2-80 - Backport !4020 and !4122: fixes to GIR install locations and build race fixes - Backport !4110 âgthreadedresolver: ref-sink returned records in lookup_records()â to glib-2-80 ==== glslang ==== Version update (14.2.0 -> 14.3.0) - Update to release 14.3 * Generate vector constructions more efficiently when sizes match * Skip identity conversions for 8-bit and 16-bit types * Emit debug info for buffer references * Add support for OpExtInstWithForwardRefsKHR * Generate SPV_EXT_replicated_compisites when requested by pragma * Add back layoutLocation to public API ==== gnome-control-center ==== Version update (46.2 -> 46.3) Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces gnome-control-center-users - Rebase gnome-control-center-info-never-use-gnome-software.patch and rename to gnome-control-center-system-never-use-gnome-software.patch - Rebase gnome-control-center-bring-back-firewall-zone.patch. - Update to version 46.3: + CI fixes + Mouse: Make Mouse test click indicator not respond for middle clicks + Network: Reference icon-name proper for wifi panel + Tests: Don't require Xvfb or setxkbmap for tests + Sharing: Make Orca read the "Add Folder" row in Media Sharing settings + Update translations. - Refresh patches with quilt. ==== gnome-keyring ==== Version update (46.1 -> 46.2) Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring - Update to version 46.2: + Don't use `bool` as variable name + autogoo: replace AC_HELP_STRING with AS_HELP_STRING + Default "automatically unlock" checkbox to false + build: Fix distcheck with systemd unit + rpc-layer: Fix undefined reference to g_strlcpy + Updated translations. ==== gnome-music ==== Version update (46.0 -> 46.1) - Update to version 46.1: + Fix search dropping the first character + Bugs fixed: - Handle bad image formats graciously - Fix first char dropping on search - Fix PyGObject change fallout - Incorrect/missing URLs in app metadata ==== gnome-online-accounts ==== Version update (3.50.2 -> 3.50.4) Subpackages: libgoa-1_0-0 libgoa-backend-1_0-2 - Update to version 3.50.4: + Allow editing the details for Exchange accounts when re-authenticating. + Correctly save and reset settings for TLS certificate errors. - Update to version 3.50.3: + WebDAV: minor fixes for accounts with app passwords + Fix libsoup error handling + Updated translations. ==== gnome-remote-desktop ==== Version update (46.2 -> 46.3) - Update to version 46.3: + Avoid crash when getting invalid PipeWire buffers + Updated translations. ==== gnome-shell ==== Version update (46.2 -> 46.4) Subpackages: gnome-extensions gnome-shell-calendar - Update to version 46.4: + Fix glitches in looking glass + Improve Persian on-screen keyboard layout + Make overview startup notification more reliable + Fix keyboard navigation in app folders + Fix connecting to WPA2 enterprise networks + Misc. bug fixes and cleanups + Updated translations. - Add CVE-2024-36472.patch: Show notification when detecting captive portal (glgo#GNOME/gnome-shell#7688 bsc#1225567 CVE-2024-36472). - Update to version 46.3.1: + Fix including gvc source in tarball - Changes from version 46.3: + Fix rendering artifacts of some rounded borders + Fix overview animation glitch when windows overlap workspaces + Misc. bug fixes and cleanups + Updated translations. - Add gvc (libgnome-volume-control) submodule to _service file and inject subproject into the source directory. This is not tracked as git submodules, so the regular 'git submodule' service parameter is ineffective here. ==== gnome-software ==== Version update (46.2 -> 46.3) Subpackages: gnome-software-plugin-packagekit - Update to version 46.3: + Show "Install All" button only for codecs + Prefer vendor name from os release in app origin + Updated translations. ==== gnome-sudoku ==== Version update (46.2 -> 46.3) - Update to version 46.3: + Fix GTK allocation warnings. + Remove option show-possible-values from --help. ==== gnutls ==== Version update (3.8.5 -> 3.8.6) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.6: * libgnutls: PBMAC1 is now supported as a MAC mechanism for PKCS#12 To be compliant with FIPS 140-3, PKCS#12 files with MAC based on PBKDF2 (PBMAC1) is now supported, according to the specification proposed in draft-ietf-lamps-pkcs12-pbmac1. * libgnutls: SHA3 extendable output functions (XOF) are now supported SHA3 XOF, SHAKE128 and SHAKE256, are now usable through a new public API gnutls_hash_squeeze. * API and ABI modifications: - gnutls_pkcs12_generate_mac3: New function - gnutls_pkcs12_flags_t: New enum - gnutls_hash_squeeze: New function * Rebase patches: - gnutls-FIPS-140-3-references.patch - gnutls-FIPS-jitterentropy.patch ==== gom ==== Version update (0.5.1 -> 0.5.2) - Update to version 0.5.2: + Fix a mismatched g_mutex_init()/g_mutex_clear() which caused an issue with MUSL-based systems. ==== google-noto-fonts ==== Version update (20240601 -> 20240801) Subpackages: google-noto-sans-fonts google-noto-sans-symbols-fonts google-noto-sans-symbols2-fonts - Update to 20240801 * Sans Mongolian has its shaping rules updated to match UTN#57 * Serif Balinese fixed some overlaps * Nastaliq Urdu has most of its issues fixed - Update to 20240701 * Sans Kaithi, Sans Psalter Pahlavi, Serif Toto, Sans Nag Mundari, Sans Old Italic, Sans Old Sogdian, Sans Old Turkic, Serif Old Uyghur, Sans Masaram Gondi, Sans Hebrew, Sans Math, Sans Limbu, Sans Mandaic, and Sans Marchen have all received updates ==== grantleetheme ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6GrantleeTheme6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== graphviz ==== Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4 - Add -fpermissive to optflags when compiling the addons flavor in order to prevent GCC 14 to throw errors upon encountering various C99 violations. [boo#1225776] ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix btrfs subvolume for platform modules not mounting at runtime when the default subvolume is the topmost root tree (bsc#1228124) * grub2-btrfs-06-subvol-mount.patch - Rediff * 0001-Unify-the-check-to-enable-btrfs-relative-path.patch - Switch to '--no-hostonly' when creating the ZIPL initrd in the KIWI build environment to avoid some potential issues due to the missing modules * grub2-s390x-set-hostonly.patch - Fix error in grub-install when root is on tmpfs (bsc#1226100) * 0001-grub-install-bailout-root-device-probing.patch - Fix incorrect Platform tag in rpm header (bsc#1217967) - Fix error if dash shell script is used (bsc#1226453) * 0007-grub-switch-to-blscfg-adapt-to-openSUSE.patch * 0009-10_linux-Some-refinement-for-BLS.patch - Fix input handling in ppc64le grub2 has high latency (bsc#1223535) * 0001-net-drivers-ieee1275-ofnet-Remove-200-ms-timeout-in-.patch ==== gsettings-desktop-schemas ==== Version update (46.0 -> 46.1) - Update to version 46.1: + Updated translations. ==== gstreamer ==== Version update (1.24.0 -> 1.24.6) Subpackages: gstreamer-utils libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Refresh patches with quilt. - Drop 0001-Canonicalize-the-library-path-returned-by-dladdr.patch and 0001-ptp-Dont-install-test-executable.patch: Fixed upstream. ==== gstreamer-plugins-bad ==== Version update (1.24.0 -> 1.24.6) Subpackages: libgstadaptivedemux-1_0-0 libgstanalytics-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstinsertbin-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstmse-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Drop 0001-Move-PROP_RATE_CONTROL-to-the-end-of-the-array.patch: Fixed upstream. ==== gstreamer-plugins-base ==== Version update (1.24.0 -> 1.24.6) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstAudio-1_0 typelib-1_0-GstPbutils-1_0 typelib-1_0-GstTag-1_0 typelib-1_0-GstVideo-1_0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Refresh patches with quilt. - Drop gst-plugins-base-audiobasesink-gap.patch and gstreamer-plugins-base-CVE-2024-4453.patch: Fixed upstream. ==== gstreamer-plugins-good ==== Version update (1.24.0 -> 1.24.5) Subpackages: gstreamer-plugins-good-gtk - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. ==== gstreamer-plugins-libav ==== Version update (1.24.0 -> 1.24.6) - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. ==== gstreamer-plugins-ugly ==== Version update (1.24.0 -> 1.24.6) - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. ==== gtk2 ==== Subpackages: gtk2-data gtk2-tools libgtk-2_0-0 - Add automake-1.17.patch to support Automake 1.17 in autogen.sh - Add CVE-2024-6655.patch: CVE-2024-6655 Stop looking for modules in cwd (bsc#1228120). ==== gtk3 ==== Version update (3.24.42 -> 3.24.43) Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.43: + Stop looking for modules in cwd (bsc#1228120 CVE-2024-6655). + Updated translations. ==== gtk4 ==== Version update (4.14.4 -> 4.15.4) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Add 0002-Revert-no-pointer-viewport.patch -- Fixes https://gitlab.gnome.org/GNOME/gtk/-/issues/6620 - Add missed optflags to CFLAGS. - Add -Wno-int-conversion to CFLAGS to enable compilation with GCC 14. - Update to version 4.15.4: + GtkPopover: Fix size allocation with wrapping labels + GtkColumnView: Check column visibility when measuring + CSS: - Fix fallout from recent changes - Make implementation of currentcolor inheritance match browsers + Gdk: - Introduce GdkColorState for encoding color space information. Currently, we support srgb, srgb-linear, rec2100-pq and rec2100-linear - Add color states to GdkTexture, as well as to the texture builder and downloader objects, and convert as necessary - Add GdkMemoryTextureBuilder - Attach color states when loading or saving textures - Add GdkCicpParams to create color state objects for cicp tuples - Drop GDK_DEBUG=vulkan-validate. Use VK_INSTEANCE_LAYERS=VK_LAYER_KHRONOS_validation instead + Gsk: - Improve caching of glyphs and textures - Remove the uber shader - Numerous bug fixes - Fix corner cases in offload handling - Implement occlusion culling for opaque content - Allow offloading (some) transformed textures - Take colorstate into account when compositing - Add GDK_DEBUG=linear to opt into linear compositing - Implement tiling for large textures - Stop using descriptors and go back to simpler texture management that should work better with older GL - Use correct shader clip mode for glyphs - Improve shadow rendering + Media: Attach color states to textures obtained from gstreamer + Wayland: - Allow offloading GL textures via dmabuf export - Suppot the xx-color-management-v4 protocol + Deprecations: GskGLShader and the render node + Tools: - Improve the rendernode tool extract command - Add an image tool that is about manipulating textures + Build: GTK now requires a C11 compiler + Updated translations. - Update to version 4.15.3: + Accessibility: - Only emit notifications when cursor positions change in GtkText. - Fix handling of help text properties. + CSS: Fix some crashes introduced in recent currentcolor changes. + DND: Avoid a critical. + Documentation: Fix many oversights and missing docs. - Changes from version 4.15.2: + GtkFileChooserWidget: - Plug some memory leaks. - Make Ctrl-Shift-N create a new folder. + GtkPopover: Handle resizing and position changes better. + CSS: - Support color(), oklab(). - Support color-mix() (https://www.w3.org/TR/css-color-5/). - Support relative colors (https://www.w3.org/TR/css-color-5/). - Support more colorspaces in color(). - Allow percentages for opacity. - Handle currentcolor more correctly. + Accessibility: Avoid markup when reading labels. + GSK: - Subset fonts when serializing node trees. - Make ngl export render_texture results as dmabufs. + Wayland: Use xdg-dialog protocol for attached dialogs. + Documentation: Widget shortcuts and actions are now described in the docs. + Debugging: Add GTK_DEBUG=css for warning about deprecated css syntax. + Tools: rendernode-tool: Add an extract command for data urls. + Deprecations: - CSS Color functions shade(), lighter(), darker(), alpha(), mix(). + Updated translations. - Update to version 4.15.1: + GtkGraphicsOffload: Don't crash without a child. + GtkSpinner: Don't animate when unmapped. + CSS: - Support the :root selector. - Support variables and custom properties. - Implement math functions. - Support modern syntax and calc in rgb() and hsl(). + Icontheme: - Make symbolic svg loading more efficient. - Handle color-free symbolics more efficiently. + Accessibility: - Make the gtk-demo sidebar search more accessible. - Stop emitting focus events. - Realize child contexts when necessary. + GDK: - Support XDG_ACTIVATION_TOKEN. ... changelog too long, skipping 20 lines ... + Updated translations. ==== guestfs-tools ==== Version update (1.52.0 -> 1.53.1) - Update to version 1.53.1 (jsc#PED-6305) * Add support for LoongArch. * Suppress false use-after-free warning generated by GCC 14 * m4/guestfs-c.m4: Re-add ./configure --enable-werror * make-fs: Use -S option with -z * sysprep: Make clearer that we do not support Windows * Fix bytecode compilation to output whole exe instead of using - custom * options: Allow nbd+unix:// URIs - Drop patches contained in new tarball Update-virt-customize-generated-files.patch Initialise-bar-fp-as-NULL.patch ==== gvfs ==== Version update (1.54.1 -> 1.54.2) Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse - Update to version 1.54.2: + ftp: - Change cwd to root before renaming to prevent failures - Use timegm instead of mktime to not shift dates by timezone - Preserve mtime when copying to local + udisks2: Ignore autofs mounts to prevent duplicated entries + build: - Add deprecated_apis option to control installation of headers - Disable burn backend by default + dav: Disable query_info_on_read method to fix mtime preservation + network: Disable usage of smbbrowse backend by default + smbbrowse: Don't enforce NT1 to fix mounting in certain cases + onedrive: Fix various memory leaks + Updated translations. - Pass burn=true to meson, we still want to build the burn backend, at least for now. ==== gwenview ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== harfbuzz ==== Version update (8.5.0 -> 9.0.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - update to version 9.0.0: + Speed up âAATâ shaping for short words by up to 4% + Ignore unknown âCFFâ operators + âhb_subset_input_keep_everything()â now keeps also non-unicode ânameâ table records. + Update the IANA and OpenType language tag registries + Support composite glyphs with very large number of points in hb-draw API + Various build fixes ==== hplip ==== Subpackages: hplip-hpijs hplip-sane hplip-udev-rules - Add hplip-pserror-c99.patch hplip-scan-hpaio-include.patch hplip-scan-orblite-c99.patch hplip-sclpml-strcasestr.patch hplip-hpaio-gcc14.patch to avoid C99 violations which prevent building with GCC 14. [boo#1225777] ==== hwdata ==== Version update (0.383 -> 0.384) - update to 0.384: * Update pci and vendor ids ==== ibus ==== Version update (1.5.29 -> 1.5.30) Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Upstream update to 1.5.30 * Fix Super key is not handled in GTK 4 applications * ui/gtk3: Fix SEGV with Super-space in Wayland * tools: Fix ibus start/restart in Plasma Wayland 5696033 * ui/gtk3: Fix ibus-daemon timeout in Plasma Wayland * ui/gtk3: Set Indicator status at launching time * Implement preedit color in Plasma Wayland * Implement ibus start/restart for Plasma Wayland * Show preferences menu item in activate menu * Fix control keys with game application * Fix typing freeze with barcode reader * Fix preedit issue with X applications * setup/enginedialog: Improve the search for engines - Refresh ibus-ui-gtk3-restart-via-systemd.patch - Drop patches merged by the upstream * ibus-complete-preedit-signals-for-postprocesskeyevent.patch * ibus-enginesimple-dont-commit-any-characters.patch ==== imlib2 ==== Version update (1.12.2 -> 1.12.3) Subpackages: imlib2-loaders libImlib2-1 - update to 1.12.3: * Y4M loader: add support for full range color and 10-bit 4:2:0 * XPM loader: Major overhaul and bug fixes * Add endbr32/64 instruction at the start of asm functions * Add missing CET (Control-flow Enforcement Technology) bits in asm code * Developer visible improvements in imlib2_view2 ==== incidenceeditor ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6IncidenceEditor6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== inkscape ==== Subpackages: inkscape-extensions-extra inkscape-extensions-gimp - added patches fix https://gitlab.com/inkscape/inkscape/-/commit/96ca7a6c215aa14336b52753f56244... + inkscape-poppler-24.05.0.patch fix https://gitlab.com/inkscape/inkscape/-/commit/877fc26483f74f951eab516f1b57b1... + inkscape-poppler-c++20-2.patch fix https://gitlab.com/inkscape/inkscape/-/commit/1798e9c13b786f3d077ba0132592c4... + inkscape-poppler-c++20.patch ==== irqbalance ==== Subpackages: irqbalance-ui - removed ProtectKernelTunables=yes from irqbalance.service to fix "Cannot change IRQ %d affinity: Read-only file system" errors. See https://github.com/Irqbalance/irqbalance/issues/308 ==== java-21-openjdk ==== Version update (21.0.3.0 -> 21.0.4.0) Subpackages: java-21-openjdk-headless - Update to upstream tag jdk-21.0.4+7 (July 2024 CPU) * Security fixes + JDK-8314794, CVE-2024-21131, bsc#1228046: Improve UTF8 String supports + JDK-8319859, CVE-2024-21138, bsc#1228047: Better symbol storage + JDK-8320097: Improve Image transformations + JDK-8320548, CVE-2024-21140, bsc#1228048: Improved loop handling + JDK-8323231, CVE-2024-21147, bsc#1228052: Improve array management + JDK-8323390: Enhance mask blit functionality + JDK-8324559, CVE-2024-21145, bsc#1228051: Improve 2D image handling + JDK-8325600: Better symbol storage + JDK-8327413: Enhance compilation efficiency * Other changes + JDK-7001133: OutOfMemoryError by CustomMediaSizeName implementation + JDK-8159927: Add a test to verify JMOD files created in the images do not have debug symbols + JDK-8185862: AWT Assertion Failure in ::GetDIBits(hBMDC, hBM, 0, 1, 0, gpBitmapInfo, 0) 'awt_Win32GraphicsDevice.cpp', at line 185 + JDK-8187759: Background not refreshed when painting over a transparent JFrame + JDK-8223696: java/net/httpclient/MaxStreams.java failed with didn't finish within the time-out + JDK-8259866: two java.util tests failed with "IOException: There is not enough space on the disk" + JDK-8266242: java/awt/GraphicsDevice/CheckDisplayModes.java failing on macOS 11 ARM + JDK-8278527: java/util/concurrent/tck/JSR166TestCase.java fails nanoTime test + JDK-8280056: gtest/LargePageGtests.java#use-large-pages failed "os.release_one_mapping_multi_commits_vm" + JDK-8281658: Add a security category to the java - XshowSettings option + JDK-8288936: Wrong lock ordering writing G1HeapRegionTypeChange JFR event + JDK-8288989: Make tests not depend on the source code + JDK-8293069: Make -XX:+Verbose less verbose + JDK-8293850: need a largest_committed metric for each category of NMT's output + JDK-8294699: Launcher causes lingering busy cursor + JDK-8294985: SSLEngine throws IAE during parsing of X500Principal + JDK-8295111: dpkg appears to have problems resolving symbolically linked native libraries + JDK-8299023: TestPLABResize.java and TestPLABPromotion.java are failing intermittently + JDK-8301183: (zipfs) jdk/jdk/nio/zipfs/ /TestLocOffsetFromZip64EF.java failing with ZipException:R0 on OL9 + JDK-8303525: Refactor/cleanup open/test/jdk/javax/rmi/ssl/SSLSocketParametersTest.java + JDK-8303773: Replace "main.wrapper" with "test.thread.factory" property in test code + JDK-8303891: Speed up Zip64SizeTest using a small ZIP64 file + JDK-8303959: tools/jpackage/share/RuntimePackageTest.java fails with java.lang.AssertionError missing files + JDK-8303972: (zipfs) Make test/jdk/jdk/nio/zipfs/ /TestLocOffsetFromZip64EF.java independent of the zip command line + JDK-8304839: Move TestScaffold.main() to the separate class DebugeeWrapper + JDK-8305645: System Tray icons get corrupted when Windows primary monitor changes + JDK-8305931: jdk/jfr/jcmd/TestJcmdDumpPathToGCRoots.java failed with "Expected chains but found none" + JDK-8306040: HttpResponseInputStream.available() returns 1 on empty stream + JDK-8308144: Uncontrolled memory consumption in SSLFlowDelegate.Reader + JDK-8308453: Convert JKS test keystores in test/jdk/javax/net/ssl/etc to PKCS12 + JDK-8309142: Refactor test/langtools/tools/javac/versions/ /Versions.java + JDK-8309752: com/sun/jdi/SetLocalWhileThreadInNative.java fails with virtual test thread factory due to OpaqueFrameException + JDK-8309757: com/sun/jdi/ReferrersTest.java fails with virtual test thread factory + JDK-8309763: Move tests in test/jdk/sun/misc/URLClassPath directory to test/jdk/jdk/internal/loader + JDK-8309871: jdk/jfr/api/consumer/recordingstream/ /TestSetEndTime.java timed out + JDK-8309890: TestStringDeduplicationInterned.java waits for the wrong condition + JDK-8310070: Test javax/net/ssl/DTLS/DTLSWontNegotiateV10.java timed out + JDK-8310228: Improve error reporting for uncaught native exceptions on Windows + JDK-8310234: Refactor Locale tests to use JUnit + JDK-8310355: Move the stub test from initialize_final_stubs() to test/hotspot/gtest + JDK-8310513: [s390x] Intrinsify recursive ObjectMonitor locking + JDK-8310731: Configure a javax.net.ssl.SNIMatcher for the ... changelog too long, skipping 516 lines ... (bsc#1227298) ==== javapackages-tools ==== Subpackages: javapackages-filesystem - Added patch: * 0008-Reproducible-builds-constant-timestamp-for-pom.prope.patch + use reproducible timestamp when post-processing jar files and adding there the pom.properties file. ==== kaccounts-integration ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkaccounts6-2 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix i18n domain ==== kaccounts-integration-kf5 ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix i18n domain ==== kaccounts-providers ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kactivitymanagerd6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - No code changes since 6.1.3 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - No code changes since 6.1.2 - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - No code changes since 6.1.1 ==== kaddressbook ==== Version update (24.05.1 -> 24.05.2) Subpackages: kaddressbook-doc libKPim6AddressbookImportExport6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kalgebra ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kamera ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kanagram ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kapptemplate ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kate ==== Version update (24.05.1 -> 24.05.2) Subpackages: kate-plugins - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kbruch ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kcachegrind ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kcalc ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add support for decimal numbers without integer part (kde#487659) * Chain result upon equal clicked (kde#487566) * Show result while editing input (kde#480607) * Add locale to round functionality ==== kcalutils ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6CalendarUtils6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kcharselect ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kcolorchooser ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kde-cli-tools6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kde-dev-utils ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kde-gtk-config6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: kde-gtk-config6-gtk3 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdecoration6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libkdecorations2-6 libkdecorations2private11 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdeedu-data ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdegraphics-mobipocket ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdegraphics-thumbnailers ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdenetwork-filesharing ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdepim-addons ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdepim-runtime ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add default destructor to TransferJob * Do not try to subscribe to an empty list of folders * Fix a memory leak in TransferJob * Google: explicitly request calendar.events scope in authentication ==== kdeplasma6-addons ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Enable the kameleon kded, service got whitelisted (boo#1226306) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdevelop5 ==== Version update (24.05.1 -> 24.05.2) Subpackages: kdevplatform libkdevplatform514 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdialog ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdump ==== Version update (2.0.7 -> 2.0.9) - upgrade to version 2.0.9 * start kdump-early earlier using DefaultDependencies=no * fadump: avoid re-registration if kernel is hotplug ready * mkdumprd: use pbl to get default kernel version (boo#1226676) ==== kernel-firmware ==== Version update (20240618 -> 20240728) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240728 (git commit bcd040c21dc9): * amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351 * Revert "iwlwifi: update ty/So/Ma firmwares for core89-58 release" (CVE-2023-47210, bsc#1225601, CVE-2023-38417, bsc#1225600) * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7922) * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * iwlwifi: add gl FW for core89-58 release * iwlwifi: update ty/So/Ma firmwares for core89-58 release * iwlwifi: update cc/Qu/QuZ firmwares for core89-58 release * mediatek: Update mt8195 SOF firmware and sof-tplg * ASoC: tas2781: fix the license issue for tas781 firmware * rtl_bt: Update RTL8852B BT USB FW to 0x048F_4008 * .gitignore: Ignore intermediate files * i915: Update Xe2LPD DMC to v2.21 * qcom: move signed x1e80100 signed firmware to the SoC subdir * qcom: add video firmware file for vpu-3.0 * intel: avs: Add topology file for I2S Analog Devices 4567 * intel: avs: Add topology file for I2S Nuvoton 8825 * intel: avs: Add topology file for I2S Maxim 98927 * intel: avs: Add topology file for I2S Maxim 98373 * intel: avs: Add topology file for I2S Maxim 98357a * intel: avs: Add topology file for I2S Dialog 7219 * intel: avs: Add topology file for I2S Realtek 5663 * intel: avs: Add topology file for I2S Realtek 5640 * intel: avs: Add topology file for I2S Realtek 5514 * intel: avs: Add topology file for I2S Realtek 298 * intel: avs: Add topology file for I2S Realtek 286 * intel: avs: Add topology file for I2S Realtek 274 * intel: avs: Add topology file for Digital Microphone Array * intel: avs: Add topology file for HDMI codecs * intel: avs: Add topology file for HDAudio codecs * Add a copy of Apache-2.0 * intel: avs: Update AudioDSP base firmware for APL-based platforms - Update aliases from 6.10.y and 6.11-rc1 - Add the Provides/Obsoletes for avs-topology-firmware, as now the firmware files are provided in this package - Update to version 20240712 (git commit ed874ed83cac): * amdgpu: update DMCUB to v0.0.225.0 for Various AMDGPU Asics * qcom: add gpu firmwares for x1e80100 chipset (bsc#1219458) * linux-firmware: add firmware for qat_402xx devices * amdgpu: update raven firmware * amdgpu: update SMU 13.0.10 firmware * amdgpu: update SDMA 6.0.3 firmware * amdgpu: update PSP 13.0.10 firmware * amdgpu: update GC 11.0.3 firmware * amdgpu: update vega20 firmware * amdgpu: update PSP 13.0.5 firmware * amdgpu: update PSP 13.0.8 firmware * amdgpu: update vega12 firmware * amdgpu: update vega10 firmware * amdgpu: update VCN 4.0.0 firmware * amdgpu: update SDMA 6.0.0 firmware * amdgpu: update PSP 13.0.0 firmware * amdgpu: update GC 11.0.0 firmware * amdgpu: update picasso firmware * amdgpu: update beige goby firmware * amdgpu: update vangogh firmware * amdgpu: update dimgrey cavefish firmware * amdgpu: update navy flounder firmware * amdgpu: update PSP 13.0.11 firmware * amdgpu: update GC 11.0.4 firmware * amdgpu: update green sardine firmware * amdgpu: update VCN 4.0.2 firmware * amdgpu: update SDMA 6.0.1 firmware * amdgpu: update PSP 13.0.4 firmware * amdgpu: update GC 11.0.1 firmware * amdgpu: update sienna cichlid firmware * amdgpu: update VPE 6.1.1 firmware * amdgpu: update VCN 4.0.6 firmware * amdgpu: update SDMA 6.1.1 firmware * amdgpu: update PSP 14.0.1 firmware * amdgpu: update GC 11.5.1 firmware * amdgpu: update VCN 4.0.5 firmware * amdgpu: update SDMA 6.1.0 firmware * amdgpu: update PSP 14.0.0 firmware * amdgpu: update GC 11.5.0 firmware * amdgpu: update navi14 firmware * amdgpu: update renoir firmware * amdgpu: update navi12 firmware * amdgpu: update PSP 13.0.6 firmware * amdgpu: update GC 9.4.3 firmware * amdgpu: update yellow carp firmware * amdgpu: update VCN 4.0.4 firmware * amdgpu: update SMU 13.0.7 firmware * amdgpu: update SDMA 6.0.2 firmware * amdgpu: update PSP 13.0.7 firmware * amdgpu: update GC 11.0.2 firmware * amdgpu: update navi10 firmware * amdgpu: update raven2 firmware * amdgpu: update aldebaran firmware * linux-firmware: Update AMD cpu microcode * linux-firmware: Add ISH firmware file for Intel Lunar Lake platform * amdgpu: update DMCUB to v0.0.224.0 for Various AMDGPU Asics * cirrus: cs35l41: Update various firmware for ASUS laptops using CS35L41 * amdgpu: Update ISP FW for isp v4.1.1 - Update to version 20240622 (git commit 7d931f8afa51): * linux-firmware: mediatek: Update MT8173 VPU firmware to v1.2.0 * qcom: Add AIC100 firmware files ==== kernel-firmware-nvidia-gspx-G06 ==== Version update (550.90.07 -> 550.100) - due to maintenance process we can switch to noarch only for new products; so do this only for sle15-sp7 or later - For CUDA update version to 555.42.6. - Use firmware for one arch only as firmware doesn't run on the CPU and therefore should be arch-independent. This has been confirmed by NVIDIA. Since the run file attempts to run binaries if these are not installed, 'BuildRequire:' zstd. - Update to 550.100 (boo#1227575) - Use macro which is set during build but not when running `osc service run download_files` to make sure both source versions are visible for download. This way, only the correct source tarball will be included in the source package of its respective flavor but both can be downloaded (updated) simultaniously. - make buildservice happy; all sources need to be mentioned as such in specfile - Add a second flavor to be used by the kernel module versions used by CUDA. The firmware targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics firmware. (bsc#1227417) ==== kernel-source ==== Version update (6.9.7 -> 6.10.3) - net: drop bad gso csum_start and offset in virtio_net_hdr (git-fixes). - commit ba01e0e - Linux 6.10.3 (bsc#1012628). - spi: spi-microchip-core: Fix the number of chip selects supported (bsc#1012628). - spi: atmel-quadspi: Add missing check for clk_prepare (bsc#1012628). - EDAC, i10nm: make skx_common.o a separate module (bsc#1012628). - rcu/tasks: Fix stale task snaphot for Tasks Trace (bsc#1012628). - md: fix deadlock between mddev_suspend and flush bio (bsc#1012628). - md/raid0: don't free conf on raid0_run failure (bsc#1012628). - md/raid1: don't free conf on raid0_run failure (bsc#1012628). - platform/chrome: cros_ec_debugfs: fix wrong EC message version (bsc#1012628). - ubd: refactor the interrupt handler (bsc#1012628). - ubd: untagle discard vs write zeroes not support handling (bsc#1012628). - block: initialize integrity buffer to zero before writing it to media (bsc#1012628). - dm: Call dm_revalidate_zones() after setting the queue limits (bsc#1012628). - io_uring: Fix probe of disabled operations (bsc#1012628). - cgroup/cpuset: Optimize isolated partition only generate_sched_domains() calls (bsc#1012628). - cgroup/cpuset: Fix remote root partition creation problem (bsc#1012628). - x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (bsc#1012628). - hfsplus: fix to avoid false alarm of circular locking (bsc#1012628). - x86/of: Return consistent error type from x86_of_pci_irq_enable() (bsc#1012628). - x86/pci/intel_mid_pci: Fix PCIBIOS_* return code handling (bsc#1012628). - x86/pci/xen: Fix PCIBIOS_* return code handling (bsc#1012628). - x86/platform/iosf_mbi: Convert PCIBIOS_* return codes to errnos (bsc#1012628). - x86/syscall: Mark exit[_group] syscall handlers __noreturn (bsc#1012628). - cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1012628). - hwmon: (adt7475) Fix default duty on fan is disabled (bsc#1012628). - block: Call .limit_depth() after .hctx has been set (bsc#1012628). - block/mq-deadline: Fix the tag reservation code (bsc#1012628). - xen-blkfront: fix sector_size propagation to the block layer (bsc#1012628). - perf: arm_pmuv3: Avoid assigning fixed cycle counter with threshold (bsc#1012628). - md: Don't wait for MD_RECOVERY_NEEDED for HOT_REMOVE_DISK ioctl (bsc#1012628). - md/raid5: recheck if reshape has finished with device_lock held (bsc#1012628). - hwmon: (ltc2991) re-order conditions to fix off by one bug (bsc#1012628). - pwm: stm32: Always do lazy disabling (bsc#1012628). - drm/bridge: adv7511: Fix Intermittent EDID failures (bsc#1012628). - arm64: smp: Fix missing IPI statistics (bsc#1012628). - nvmet-auth: fix nvmet_auth hash error handling (bsc#1012628). - drm/meson: fix canvas release in bind function (bsc#1012628). - pwm: atmel-tcb: Fix race condition and convert to guards (bsc#1012628). - drm/xe/display/xe_hdcp_gsc: Free arbiter on driver removal (bsc#1012628). - hwmon: (max6697) Fix underflow when writing limit attributes (bsc#1012628). - hwmon: (max6697) Fix swapped temp{1,8} critical alarms (bsc#1012628). - soc: qcom: socinfo: Update X1E PMICs (bsc#1012628). - arm64: dts: qcom: sc8180x: Correct PCIe slave ports (bsc#1012628). - arm64: dts: qcom: sc7280: Remove CTS/RTS configuration (bsc#1012628). - ARM: dts: qcom: msm8226-microsoft-common: Enable smbb explicitly (bsc#1012628). - arm64: dts: qcom: sc7180: drop extra UFS PHY compat (bsc#1012628). - arm64: dts: qcom: sc8180x: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sdm845: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm6115: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm6350: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8250: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8350: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8450: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: msm8996-xiaomi-common: drop excton from the USB PHY (bsc#1012628). - arm64: dts: qcom: sdm850-lenovo-yoga-c630: fix IPA firmware path (bsc#1012628). - arm64: dts: qcom: msm8998: enable adreno_smmu by default ... changelog too long, skipping 2174 lines ... - commit 3c2a141 ==== kf6-attica ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Attica6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-baloo ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-baloo-file kf6-baloo-imports kf6-baloo-kioslaves kf6-baloo-tools libKF6Baloo6 libKF6Baloo6-lang libKF6BalooEngine6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Revert "[Extractor] Change to QCoreApplication" (kde#487628) * Port QML modules to declarative type registration * CI: update clang-format image ==== kf6-bluez-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-bluez-qt-imports libKF6BluezQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add core/primary services for LE Audio: CSIS, MCS, BASS, PACS, CAS * Add comments to improve readability and maintainability * Bump TODO KF6 to TODO KF7 * Manager: Add list property for connectedDevices * Manager: Sort out property shorthand in tests ==== kf6-breeze-icons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6BreezeIcons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Use newly introduced ColorScheme-Accent (kde#446468) * Improve excalamation point placement in data-warning/dialog-warning icon (kde#487626) * Add generic translate icon, symlink crow-translate-tray * Add non-symbolic base version of network-wireless-bluetooth icons * mark as non gui executables to have output on Windows ==== kf6-frameworkintegration ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-frameworkintegration-plugin libKF6Style6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-karchive ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Archive6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Don't accept tar files with sizes < 0 * Fix crash with malformed files ==== kf6-kauth ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kauth-lang libKF6AuthCore6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * move dbus dep to backend & tests * gitignore: add VS Code dir ==== kf6-kbookmarks ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Bookmarks6 libKF6BookmarksWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kcalendarcore ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing QtCore dependency to QML module * Add QML bindings for CalendarListModel and CalendarPluginLoader * Add CalendarListModel ==== kf6-kcmutils ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kcmutils-imports libKF6KCMUtils6 libKF6KCMUtilsCore6 libKF6KCMUtilsQuick6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * plugins: Use help-about icons instead of dialog-information * SettingHighlighterPrivate: Optimize connections * plugins: Use symbolic versions of the icons * Declare missing QML module dependency * Properly declare KQuickConfigModule as having attached properties * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir * Ensure KCM load function is called only once (kde#487388) ==== kf6-kcodecs ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Codecs6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove unused static tables ==== kf6-kcolorscheme ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ColorScheme6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kcompletion ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Completion6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kconfig ==== Version update (6.3.0 -> 6.4.0) Subpackages: kconf_update6 kf6-kconfig-imports libKF6ConfigCore6 libKF6ConfigGui6 libKF6ConfigQml6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix two cmakelint types of issue * Fix KCONFIG_USE_QML=OFF by moving ECMQmlModule behind the conditional * kconfig_compiler: Don't generate .moc include * kconfig_compiler: Allow generating QML type registration macros * kconfig_compiler: Use automoc for GENERATE_MOC * Avoid unused variable definition * Allow desktop files to be a symbolic link * Fix compile * KStandardActions: Use C++11 for loop * fix compile dependencies for windows * Register KCoreConfigSkeleton to QML * provide a generic named USE_DBUS option to allow to choose if to use it * don't warn if no dbus enabled ==== kf6-kconfigwidgets ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ConfigWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use ==== kf6-kcontacts ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Contacts6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kcoreaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kcoreaddons-imports libKF6CoreAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Rename deprecated argument CLASSNAME to CLASS_NAME in ecm_add_qml_module() for KCoreAddonsPlugin * kurlmimedata: warn about problems while retrieving files from portal * decode os-release as UTF-8 * use REQUIRED_QT_VERSION for dbus, too * provide USE_DBUS option to allow to turn on/off dbus parts ==== kf6-kcrash ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Crash6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing QtOpenGL dependency ==== kf6-kdav ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6DAV6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdbusaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kdbusaddons-tools libKF6DBusAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kdeclarative ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kdeclarative-imports libKF6CalendarEvents6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing copyright to KeySequenceItem ==== kf6-kded ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdesu ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Su6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdnssd ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdoctools ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6DocTools6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * remove silly goose from template * gitignore: add VS Code dir ==== kf6-kfilemetadata ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6FileMetaData3 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kglobalaccel ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6GlobalAccel6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix cmakelint issues * gitignore: add VS Code dir ==== kf6-kguiaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6GuiAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * KColorSchemeWatcherMac: update name in copyright * clipboard: Add roundtrip when setting clipboard (kde#466414) * support USE_DBUS option to enable/disable dbus use ==== kf6-kholidays ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kholidays-imports libKF6Holidays6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add holidays for Germany, Bremen and Germany, Hamburg * Add public holidays for Uzbekistan * holiday_pe_es - add Peru holidays per "Decreto Legislativo 713" (kde#488513) * Update russian holidays substitution for 2021, 2022, 2023, 2024 * Update holiday_ph_en - fix syntax error "of august" should be "in august" * Change optional name to Philippines * Introduce a holidays file for Philippines (kde#487468) ==== kf6-ki18n ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6I18n6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Make country name detection substring matching more strict ==== kf6-kiconthemes ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kiconthemes-imports libKF6IconThemes6 libKF6IconWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Flip logic when to use Accent/HighlightedText * support USE_DBUS option to enable/disable dbus use ==== kf6-kidletime ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kidletime-plugins libKF6IdleTime6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Port towards QNativeInterface::QWaylandApplication * gitignore: add VS Code dir ==== kf6-kimageformats ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fixed wrong plugin options behaviour * EXR: Full support for gray image/colorspace * Disable JXR plugin due to crashes in JXRLIB * PFM: Portable FloatMap read only support * PXR: Pixar raster read only support * Sanity checks (fuzzer) * XCF: fixed wrong composite on Grayscale images * Fix compilation * Use of metadata macro definitions * JXR: added CMYK image to read test * XCF: Increased maximum property size * JXR support * PSD: support native CMYK introduced by Qt 6.8 ==== kf6-kio ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6KIO6 - Add patch to fix issues with dropping files (kde#490183, boo#1228053): * 0001-Remove-parent-for-DropMenu.patch - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * core: use QString to format number * Remove unnecessary space character in empty text file template (kde#487768) * Port DropJob to KJobWidgets::windowHandle() * Use resolved executable in KProcessRunner::fromExecutable * Handle using parent environment correctly in SystemdProcessRunner * Prepare environment for systemd in SystemdProcessRunner * Enable CommandLauncherJob tests (modulo _KDE_APPLICATIONS_AS_SERVICE on CI) * kmountpoint: use advised call params when possible for libmount * Remove unused includes * Drop unused modifiers support from user agent code * [kprotocolmanager] Remmove unused http_config * Remove unused includes * Don't pass proxy config to workers * Drop protocol proxying * Deprecate KProtocolInfo::proxiedBy * [ftp] Drop ProxiedBy=http * kfileitem.cpp: If fileMode is not unknown, set InitCalled to true in readUDSEntry (kde#485771) * support USE_DBUS option to enable/disable dbus use * [webdav] emit ERR_UNSUPPORTED_ACTION when performing fileSystemFreeSpace on a file * Add desktop file for kiod (kde#459054) * gitignore: add VS Code dir * kfileitemtest: testBasicDirectory relax size assertion * commandlauncherjob: emit error when no executable ==== kf6-kirigami ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kirigami-imports libKirigamiPlatform6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add Kirigmai.Action unit tests * Fix static build * Allow initializing a Kirigami.Action from a QAction * NavigationTabButton: improve text legibility (kde#489573) * Dialog: Add horizontal padding to prevent content from leaking onto borders * ActionTextField: de-duplicate action icon code * dialogs/Dialog.qml: removed colorSet * ActionTextField: fix QML errors * Update build.gradle in application template to Qt 6 * Remove unused KItemModels import * Fix: The issue of abnormal touch events * Relax property types to QtQuick.Templates counterparts * Units: decouple grid unit from font metrics * Fix typo * support USE_DBUS option to enable/disable dbus use * PlaceholderMessage: Announce the text and description to a11y (kde#482753) * fix: install KirigamiPrivate soversion ==== kf6-kitemmodels ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kitemmodels-imports libKF6ItemModels6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * kdescendantsproxymodel: fix nested signals on source model reset * kdescendantsproxymodeltest: use model tester in the tests where it passes * Port kdescendantsproxymodeltest to std::unique_ptr ==== kf6-kitemviews ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ItemViews6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Relicense files from LGPL-2.0-only to LGPL-2.0-or-later * gitignore: add VS Code dir * KWidgetItemDelegateEventListener: remove useless destroy event sending ==== kf6-kjobwidgets ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6JobWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-knewstuff ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-knewstuff-imports libKF6NewStuffCore6 libKF6NewStuffWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove Icons view * Remove user-facing view switcher * Use Tiles view by default * Add punctuation to warning * BigPreviewDelegate: Fix "Update" action * Action: Remove dead code * gitignore: add VS Code dir ==== kf6-knotifications ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-knotifications-imports libKF6Notifications6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * fix missing HAVE_DBUS usages * support USE_DBUS option to enable/disable dbus use * Adapt Android default notifications and documentations to KF6 search path ==== kf6-knotifyconfig ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6NotifyConfig6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * Port to KStandardActions ==== kf6-kpackage ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Package6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * remove stray lib * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-kparts ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Parts6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * PartLoader: Allow reading of InitialPreference from KParts object * PartLoader: Add mechanism to provide capabilities standardized in JSON metadata ==== kf6-kplotting ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix cmakelint issues ==== kf6-kpty ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Pty6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Apply 2 suggestion(s) to 1 file(s) * Fix "Connecting from COMPAT signal" warning ==== kf6-kquickcharts ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * controls: Don't use visible for hiding text in LegendDelegate * controls/legenddelegate: Always hide name if its width is 0 ==== kf6-krunner ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Runner6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix build with `QT_NO_CAST_FROM_ASCII` ==== kf6-kservice ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Service6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir * Fix description in metainfo * Fix tier information ==== kf6-kstatusnotifieritem ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6StatusNotifierItem6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-ksvg ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-ksvg-imports libKF6Svg6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix masks of completely black mask frames * Restore proper devicepixelratio when extracting from cache (kde#488295) * Fix description in metainfo * Remove explicit maintainer from metainfo - Drop patch, merged upstream: * 0001-Restore-proper-devicepixelratio-when-extracting-from.patch ==== kf6-ktexteditor ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6TextEditor6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * add a tool to test javascript scripts * fix JS API result of view.executeCommand() * kateregexpsearch: fix FAST_DEBUG * API documentation: fix typo on kte_design page * add action to popy the current file name and line (kde#488027) * prefer even indent sizes (kde#474505) * try different way to read file for digest * remove gradient, looks ugly * add missing :, are there for all other entries * don't remember encoding if known to be broken (kde#445015) * ensure we don't keep old session config keys (kde#486648) ==== kf6-ktexttemplate ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6TextTemplate6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-ktextwidgets ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kunitconversion ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6UnitConversion6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kuserfeedback ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kuserfeedback-imports kf6-kuserfeedback-lang libKF6UserFeedbackCore6 libKF6UserFeedbackWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kwallet ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kwallet-tools kwalletd6 libKF6Wallet6 libKF6WalletBackend6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kwidgetsaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6WidgetsAddons6 - Add upstream fix: * 0001-Partially-revert-cccaa8.patch - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix the since version of KJobWidgets::windowHandle,setWindowHandle * kjobwidgets: Force setWindow() creating a window handle * kjobwidgets: Add functions to associate QWindow with a KJob * KTitleWidget: restore size policies to Preferred & vertical centering (kde#488319) * KTitleWidget: do not autoFillBackground by default, drop StyledPanel frame (kde#) * Make compile fine without qt6.7 deprecated methods ==== kf6-kwindowsystem ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kwindowsystem-imports libKF6WindowSystem6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix compiler error when memfd is absent * gitignore: add VS Code dir ==== kf6-kxmlgui ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6XmlGui6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove old dead code from KDE4 * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-modemmanager-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ModemManagerQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-networkmanager-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-networkmanager-qt-imports libKF6NetworkManagerQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing find_dependency call on Qt6Network. (kde#489094) * Fixed occasional lag issue with ActiveConnection. * Recognize OWE in AP capabilities and connection security * Add VRF and loopback device types * Recognize the "loopback" connection type * Fix check for device and AP cipher compatibility ==== kf6-prison ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-prison-imports libKF6Prison6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Adjust scanner-qt6.qml for newer QtMultimedia ==== kf6-purpose ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-purpose-services libKF6Purpose6 libKF6PurposeWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * JobView: Fix switch-case: add default branch * plugins/barcode: Fix up QML * widgets: Rework type registration and property initialization, improve QML * Don't let the Heading overflow * AlternativesModel: Use logging category * AlternativesModel: Drop unused header * tests: Rework testing share tool * tests: Set initial properties instead of introspecting objects later * tests: Correctly check for additional positional arguments * tests: Remove duplicating calls to add help and version CLI options * tests: Add missing translation domain * Drop QML import versions * Fix some QML and C++ code style * Use ellipses instead of triple period * AlternativesModel: Use correct role for a tooltip * kdeconnect: Don't let the Heading overflow * Namespace embedded resources * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-qqc2-desktop-style ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * combobox: Set focus on text field within combobox * Delegates: Use inset to control spacing around hover/selection highlight * Limit focus workaround to affected versions * itembranchindicators: Store QPersistentModelIndex instead of QModelIndex * itemindicators: Don't access thread-unsafe data from the render thread (kde#487850) * Implement baselineOffset for more controls * KQuickStyleItem: Mark baselineOffset method as const * Implement SplitView with splitter handles * support USE_DBUS option to enable/disable dbus use ==== kf6-solid ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-solid-tools libKF6Solid6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix "Connecting from COMPAT signal" warning * support USE_DBUS option to enable/disable dbus use * Narrow down types of backend objects to Ifaces::DeviceManager * Doc: Port 0 to nullptr * Drop a reference to non-existent interface class * Add missing forward declaration * gitignore: add VS Code dir ==== kf6-sonnet ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-sonnet-imports libKF6SonnetCore6 libKF6SonnetUi6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-syndication ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Syndication6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * dublincore.h "organisation" -> "organization" (prefer en_US) * gitignore: add VS Code dir ==== kf6-syntax-highlighting ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-syntax-highlighting-imports libKF6SyntaxHighlighting6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add CustomType highlighting and improve import highlighting * Corrected Gleam syntax * Add Gleam syntax * OrgMode: add header-item folding, properties folding, more todo keywords * avoid that we try to open files without name * [dracula.theme] Fix "ISO/Delphi Extended" for Pascal. * nginx: update for new directives and variables * systemd unit: update to systemd v256 * Add basic syntax highlighting rules for opsi-script * [dracula.theme] Fix "Special Variable" for PHP. * Add Typst highlighter ==== kf6-threadweaver ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kgamma6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Fix wrong types/obsolete keys for kcm_kgamma.json file - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kgeography ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kglobalacceld6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKGlobalAccelD6-0 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * explicitly process invalid keycodes (kde#489001) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== khangman ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== khelpcenter ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kidentitymanagement ==== Version update (24.05.1 -> 24.05.2) Subpackages: kidentitymanagement-lang libKPim6IdentityManagementCore6 libKPim6IdentityManagementWidgets6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kig ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kimap ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6IMAP6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kinfocenter6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kio-extras ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkioarchive6-6 trash_kcm - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kio_audiocd ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kipi-plugins ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kirigami-addons6 ==== Version update (1.3.0 -> 1.4.0) - Update to 1.4.0 https://carlschwan.eu/2024/07/23/kirigami-addons-1.4/ * New module to manage actions similar to that we can find in the QtWidgets world * The FormCard design was tweaked a bit more when using a dark theme * New component to the FormCard collection: FormTextAreaDelegate ==== kiten ==== Version update (24.05.1 -> 24.05.2) Subpackages: fonts-KanjiStrokeOrders - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kitinerary ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6Itinerary6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add extractor for Georgian Railway (á¡áá¥áá áááááá¡ á ááááááá) * If country name resolution failed, use the coordinate based lookup * Normalize whitespaces before doing anything with the country name * Add extractor for TCDD TaÅımacılık (Turkish Railways) * Ignore creation date for PDFsharp PDFs * Add extractor script for Iberia reservation PDFs * Create airports as places rather than simple objects in the flight template * Add RCT2 IRT detection pattern for Snälltâget * Deal with Snälltâget having a typo in the U_TLAY type field * Accommodate TCDD's barcode padding * Make the 12go extractor more robust and handle more variants * Add basic hotels.com fallback extractors for emails without schema.org data * Add a sanity check for company capital notes in the price extractor * Extract RegioJet pkpass bus tickets * Add tobilet.pl event ticket extractor script ==== kldap ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6LdapCore6 libKPim6LdapWidgets6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kleopatra ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * We want to save the logs as plain text without special Unicode characters ==== kmag ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmahjongg ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmail ==== Version update (24.05.1 -> 24.05.2) Subpackages: kmail-application-icons ktnef - Add patch to fix crash on opening mails for editing (kde#486283): * 0001-Fix-crash-due-to-deleteLater-nested-event-loop.patch - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmail-account-wizard ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmailtransport ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6MailTransport6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmbox ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6Mbox6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmenuedit6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kmime ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6Mime6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmines ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmousetool ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kmplot ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== knotes ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== konsole ==== Version update (24.05.1 -> 24.05.2) Subpackages: konsole-part konsole-part-lang konsole-zsh-completion - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kontact ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kontactinterface ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6KontactInterface6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== konversation ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== korganizer ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add obviously missing '!' in if() statement ==== kpat ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kpimtextedit ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6TextEdit6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kpipewire6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * sourcestream: make resilient against pipewire restarts * Add encoder using libopenh264 (kde#476187) - Drop patches, now upstream: * 0001-Simpler-yet-more-useful-handling-of-KPIPEWIRE_FORCE_.patch * 0002-Add-encoder-using-libopenh264.patch - Add patches to support libopenh264 for encoding (boo#1227461, kde#476187): * 0001-Simpler-yet-more-useful-handling-of-KPIPEWIRE_FORCE_.patch * 0002-Add-encoder-using-libopenh264.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * produce: Properly cleanup on deactivate in all cases (kde#488687) * produce: Destroy PipeWireSourceStream on the right thread (kde#489434) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kpkpass ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6PkPass6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kqtquickcharts ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== krb5 ==== Version update (1.21.2 -> 1.21.3) Subpackages: krb5-client - Update to 1.21.3 * Fix vulnerabilities in GSS message token handling: * CVE-2024-37370, bsc#1227186 * CVE-2024-37371, bsc#1227187 * Fix a potential bad pointer free in krb5_cccol_have_contents() * Fix a memory leak in the macOS ccache type - Update patch 0009-Fix-three-memory-leaks.patch ==== kreversi ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== ksanecore ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kscreen6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Emit OrientationSensor::availableChanged() when needed (kde#488764) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * kcm: use ContextualHelpButton from Kirigami * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kscreenlocker6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKScreenLocker6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * greeter/pamauthenticators: also consider non-interactive info messages a "prompt" (kde#490547) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * greeter/authenticators: add a property for if a prompt was shown in the past * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ksmtp ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6SMTP6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== ksshaskpass6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ksudoku ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== ksystemstats6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ktnef ==== Version update (24.05.1 -> 24.05.2) Subpackages: ktnef-debug-categories libKPim6Tnef6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== ktouch ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kwayland-integration6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kwayland6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKWaylandClient6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kwin6 ==== Version update (6.1.1.2 -> 6.1.4) Subpackages: kwin6-x11 libkwin6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * activation: fix X11 windows being stuck in should_get_focus more properly * plugins/buttonrebinds: correctly handle level 1 keys (kde#484367) * backends/drm: don't block direct scanout if color profile source isn't set to ICC * Fix checking whether GraphicsBufferView is null * backends/drm: don't apply the brightness factor without HDR * activation: don't add the active window to should_get_focus list (kde#484155) * core/renderloop: don't move the target presentation timestamp back when rescheduling (kde#488843) * core/renderloop: fix triple buffering hysteresis * scene/itemrenderer_opengl: reset OpenGL state for YUV conversion back to RGB * autotests: test placement to always put the titlebar on the screen * placement: keep the titlebar in the screen with centered placement (kde#489500) * placement: don't overwrite scheduled position change in cascadeIfCovering * Make Workspace::desktopResized() reassign outputs of uninitialized windows * wayland: Avoid klipper loop with existing but empty clipboards (kde#469644) * backends/drm: Fix a crash in DrmGpu::releaseBuffers() * wayland: Ignore plasma shell reposition requests during interactive move resize (kde#481829) * backends/drm: limit max_bpc to 8 by default with docks * compositor_wayland: count rendering time for all steps of compositing * xdgshellwindow: never request clients to resize to a negative size (kde#489983) * backends/libinput: Ignore redundant events for pointer buttons and keyboard keys when pressed/released on multiple devices (kde#486034) * backends/x11: Fix crash that happens when toggling compositing * plugins/stickykeys: Unlatch modifiers when locking * Fix sticky keys for AltGr * Test locking sticky keys for all modifiers * Release key in sticky key test * utils: Fix gaining realtime scheduling with musl (kde#487996) * core/renderloop: add some hysteresis to triple buffering - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * plugins/nightlight: Relax custom times constraints (kde#489366) * wayland: Simplify XdgPopupWindow::sendRoleConfigure() * wayland: Dismiss XdgPopupWindow when the parent window is closed (kde#472013) * tiling: Don't put maximized windows in tile (kde#489463) * Input method window should not break showing desktop (kde#489057) * plugins/fadingpopups: don't block direct scanout (kde#487780) * backends/drm: test and apply all mode changes at once * autotests/drm: add test for vrr capability changing without a hotunplug * backends/drm: update output properties after they're created too (kde#486149) * use separation dep_version to build against, updated by release scripts * plugins/screencast: Don't download texture data if target size and texture size mismatch * plugins/screencast: Allocate offscreen texture in WindowScreenCastSource::render(QImage) as big as the memfd buffer (kde#489764) * autotests: Skip testScreencasting in CI * Foward modifiers after disabling sticky keys * plugins/screenshot: Port blitScreenshot() to glReadnPixels() * wayland: add error handling for QFile::open failure in org_kde_plasma_window_get_icon * placement: ignore the active output with place under mouse (kde#488110) * opengl: Add OpenGlContext::glGetnTexImage() * plugins/screencast: Prefer glReadnPixels() and glGetnTexImage() * WindowHeapDelegate: label topMargin to small, remove height padding (kde#489595) * plugins/glide: drop references to closed windows if they're not animated * update version for new release * plugins/screencast: Handle frame rate throttling timer firing a bit earlier * backends/drm: disable triple buffering on NVidia (kde#487833) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1.2: * Don't assert on null output * quicktiling: Reset layout when last quicktile ceases to exist (kde#465937) * wayland: Bump default max buffer size to 1 MiB * plugins/qpa: set deprecated functions option correctly * plugins/kdecoration: Fix MenuButton not accepting button press events (kde#488993) * plugins/colorcorrection: simplify the effect, merge the shader files and support color management * opengl: Reset OpenGlContext::currentContext() if it's destroyed (kde#488830) * window: adhere to window rules in checkWorkspacePosition (kde#489117) * plugins/hidecursor: show the cursor on tablet events (kde#489009) ==== kwordquiz ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kwrited6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== lapack ==== Subpackages: libblas3 libcblas3 liblapack3 - Add fix-lapack-testing.patch to fix tests gh#Reference-LAPACK/lapack@5b0687f429cf ==== layer-shell-qt6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libLayerShellQtInterface6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ldb ==== Version update (2.9.0 -> 2.9.1) Subpackages: libldb2 python3-ldb - Update to 2.9.1 * Many qsort() comparison functions are non-transitive, which can lead to out-of-bounds access in some circumstances; (bso#15569). ==== ldns ==== Subpackages: libldns3 - Added ldns-swig-4.2.patch and ldns-swig-32bit.patch in order to avoid C99 viloations which are compile time errors by default with GCC 14. [boo#1225794] ==== less ==== Version update (656 -> 661) - Update to 661: * fix crash - buffer overflow by one in fexpand * fix free(): double free detected in tcache 2 * fix segmentation fault on line-num-width & -N ==== libX11 ==== Version update (1.8.9 -> 1.8.10) Subpackages: libX11-6 libX11-data libX11-xcb1 - Update to 1.8.10; this release includes: * Re-fix XIM input sometimes jumbled (#205, #206, #207, #208, !246) * Fix various static analysis errors (!250) * Add compose sequences for Arabic hamza (!218), Ezh (!221), and hryvnia currency (!259) * Make colormap private interfaces thread safe (#215, !254) * Fix deadlock in XRebindKeysym() (!256) * Assorted memory handling cleanups (!251, !258) * Restore VAX support still in use by NetBSD (!257) ==== libXfont2 ==== Version update (2.0.6 -> 2.0.7) - Update to version 2.0.7 * This release cleans out remnants of support for archiac platforms, improves handling of font server reconnection, fixes several issues found by static analysis, and updates some build checks. ==== libXtst ==== Version update (1.2.4 -> 1.2.5) - Update to version 1.2.5 * This release fixes issues found by Coverity & gcc -fanalyzer ==== libadwaita ==== Version update (1.5.1 -> 1.5.2) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.5.2: + AdwAlertDialog: - Fix unmatched va_start() - Fix setting default widget when removing a response + AdwBreakpointCondition: Fix leaks when parsing + AdwBreakpointBin: Fix a leak + AdwDialog: - Fix toggling presentation mode - Fix close button ignoring :can-close - Fix ::close-attempt not emitting in some cases - Fix swipe area for bottom sheets - Leak fixes + AdwHeaderBar: - Fix initial focus for the back button - Fix split view links in docs + AdwMessageDialog: Fix unmatched va_start() + AdwSpinRow: Fix ::input handling + AdwTabButton: Fix needs-attention badge on RTL + AdwTabView: Accessibility fixes + AdwViewStack: Accessibility fixes + Updated translations. ==== libapparmor ==== Version update (4.0.1 -> 4.0.2) - update to AppArmor 4.0.2 - bugfix release with lots of fixes in all areas - add new userns profiles for balena-etcher, chromium and wike - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_4.0.2 for the detailed upstream changelog - drop upstream(ed) patches: - aa-remove-unknown-fix-unconfined.diff - logprof-mount-empty-source.diff - plasmashell.diff - sampa-rpcd-witness.diff - sddm-xauth.diff - teardown-unconfined.diff - test-aa-notify.diff - tools-fix-redefinition.diff - utils-relax-mount-rules-2.diff - utils-relax-mount-rules.diff - refresh GPG key (was expired) ==== libblockdev ==== Version update (3.1.0 -> 3.1.1) Subpackages: libbd_btrfs3 libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3 - update to 3.1.1: * Use glib2 G_GNUC_UNUSED in place of UNUSED locally defined * Port to G_GNUC_INTERNAL for controlling symbols visibility * Fix some more occurrences of missing port to G_GNUC_UNUSED * dm_logging: Annotate redirect_dm_log() printf format * tests: Add NVMe persistent discovery controller tests * tests: Add NVMe controller type checks * Makefile: Fix bumpver to work with micro versions * tests: Manually remove removed PVs from LVM devices file * tests: Ignore LVM devices file for non-LVM tests * tests: Fix removing custom LVM devices file * nvme: Add bd_nvme_is_tech_avail to the API file * lvm-dbus: Fix passing size for pvresize over DBus ==== libbpf ==== Version update (1.4.3 -> 1.4.5) - update to 1.4.5: * Another small bug fix release backporting https://github.com/ libbpf/libbpf/commit/d9f9fd5b22223ae69c62e083da6093d95a0db799 which works around kernel-side bug with USDT PID filtering on kernels that support multi-uprobe (but have broken PID filtering). ==== libcdio ==== - Add c99.patch fixing implicit declaration of a function error so that the 32bit version of this package can be built with GCC 14. ==== libdb-4_8 ==== Subpackages: db48-utils - Security fix: [bsc#1174414, CVE-2019-2708] * libdb: Data store execution leads to partial DoS * Backport the upsteam commits: - Fixed several possible crashes when running db_verify on a corrupted database. [#27864] - Fixed several possible hangs when running db_verify on a corrupted database. [#27864] - Added a warning message when attempting to verify a queue database which has many extent files. Verification will take a long time if there are many extent files. [#27864] * Add libdb-4_8-CVE-2019-2708.patch ==== libdecor ==== Version update (0.2.0 -> 0.2.2) Subpackages: libdecor-0-0 - Update to version 0.2.2: * gtk: fix memory leak when destroying the gtk plugin * gtk: fix memory leak when freeing seats * gtk: Make resize corner region larger * cairo: Make resize corner region larger * cursor-settings: Get theme/size from env if D-Bus call fails * gtk: Use g_clear_pointer() in a couple of places * gtk: Don't early out of frame free function Includes changes from 0.2.1: * gtk: Don't report errors during construction * Handle NULL wl_output as argument * gtk: Optionally use wl_output_release * cairo: Optionally use wl_output_release * libdecor: fix leak of DBusError in get_setting_sync * gtk: use error notification with string formatting * gtk: disable setlocale() * build: Use `gnu_symbol_visibility` everywhere ==== libdv ==== - Add -Wno-incompatible-pointer-types to CFLAGS to enable building for 32bit with GCC 14. ==== libgcrypt ==== Version update (1.10.3 -> 1.11.0) - Update to 1.11.0: * New and extended interfaces: - Add an API for Key Encapsulation Mechanism (KEM). [T6755] - Add Streamlined NTRU Prime sntrup761 algorithm. [rCcf9923e1a5] - Add Kyber algorithm according to FIPS 203 ipd 2023-08-24. [rC18e5c0d268] - Add Classic McEliece algorithm. [rC003367b912] - Add One-Step KDF with hash and MAC. [T5964] - Add KDF algorithm HKDF of RFC-5869. [T5964] - Add KDF algorithm X963KDF for use in CMS. [rC3abac420b3] - Add GMAC-SM4 and Poly1305-SM4. [rCd1ccc409d4] - Add ARIA block cipher algorithm. [rC316c6d7715] - Add explicit FIPS indicators for MD and MAC algorithms. [T6376] - Add support for SHAKE as MGF in RSA. [T6557] - Add gcry_md_read support for SHAKE algorithms. [T6539] - Add gcry_md_hash_buffers_ext function. [T7035] - Add cSHAKE hash algorithm. [rC065b3f4e02] - Support internal generation of IV for AEAD cipher mode. [T4873] * Performance: - Add SM3 ARMv8/AArch64/CE assembly implementation. [rCfe891ff4a3] - Add SM4 ARMv8/AArch64 assembly implementation. [rCd8825601f1] - Add SM4 GFNI/AVX2 and GFI/AVX512 implementation. [rC5095d60af4,rCeaed633c16] - Add SM4 ARMv9 SVE CE assembly implementation. [rC2dc2654006] - Add PowerPC vector implementation of SM4. [rC0b2da804ee] - Optimize ChaCha20 and Poly1305 for PPC P10 LE. [T6006] - Add CTR32LE bulk acceleration for AES on PPC. [rC84f2e2d0b5] - Add generic bulk acceleration for CTR32LE mode (GCM-SIV) for SM4 and Camellia. [rCcf956793af] - Add GFNI/AVX2 implementation of Camellia. [rC4e6896eb9f] - Add AVX2 and AVX512 accelerated implementations for GHASH (GCM) and POLYVAL (GCM-SIV). [rCd857e85cb4, rCe6f3600193] - Add AVX512 implementation for SHA512. [rC089223aa3b] - Add AVX512 implementation for Serpent. [rCce95b6ec35] - Add AVX512 implementation for Poly1305 and ChaCha20. [rCcd3ed49770, rC9a63cfd617] - Add AVX512 accelerated implementation for SHA3 and Blake2. [rCbeaad75f46,rC909daa700e] - Add VAES/AVX2 accelerated i386 implementation for AES. [rC4a42a042bc] - Add bulk processing for XTS mode of Camellia and SM4. [rC32b18cdb87, rCaad3381e93] - Accelerate XTS and ECB modes for Twofish and Serpent. [rCd078a928f5,rC8a1fe5f78f] - Add AArch64 crypto/SHA512 extension implementation for SHA512. [rCe51d3b8330] - Add AArch64 crypto-extension implementation for Camellia. [rC898c857206] - Accelerate OCB authentication on AMD with AVX2. [rC6b47e85d65] * Bug fixes: - For PowerPC check for missing optimization level for vector register usage. [T5785] - Fix EdDSA secret key check. [T6511] - Fix decoding of PKCS#1-v1.5 and OAEP padding. [rC34c2042792] - Allow use of PKCS#1-v1.5 with SHA3 algorithms. [T6976] - Fix AESWRAP padding length check. [T7130] * Other: - Allow empty password for Argon2 KDF. [rCa20700c55f] - Various constant time operation imporvements. - Add "bp256", "bp384", "bp512" aliases for Brainpool curves. - Support for the random server has been removed. [T5811] - The control code GCRYCTL_ENABLE_M_GUARD is deprecated and not supported any more. Please use valgrind or other tools. [T5822] - Logging is now done via the libgpg-error logging functions. [rCab0bdc72c7] * Remove patches fixed upstream: - libgcrypt-no-deprecated-grep-alias.patch - libgcrypt-Chacha20-poly1305-Optimized-chacha20-poly1305.patch - libgcrypt-ppc-enable-P10-assembly-with-ENABLE_FORCE_SOF.patch * Rebase patches: - libgcrypt-FIPS-jitter-errorcodes.patch - libgcrypt-FIPS-jitter-whole-entropy.patch - FIPS: Make sure that Libgcrypt makes use of the built-in Jitter RNG for the whole length entropy buffer in FIPS mode. [bsc#1220893] * Add libgcrypt-FIPS-jitter-whole-entropy.patch - FIPS: Set the FSM into error state if Jitter RNG is returning an error code to the caller when an health test error occurs when random bytes are requested through the jent_read_entropy_safe() function. [bsc#1220895] * Add libgcrypt-FIPS-jitter-errorcodes.patch - FIPS: Replace the built-in jitter rng with standalone version * Remove the internal jitterentropy copy [bsc#1220896] * Add libgcrypt-FIPS-jitter-standalone.patch * Remove not needed libgcrypt-jitterentropy-3.4.0.patch - Update upstream libgcrypt.keyring ==== libgee ==== - Trigger Vala compilation during build, for GCC 14 compatibility. - Add ce8461ff6ea8ed79ce06b4241cb4fbb6d3d314f1.patch: Drop unsupported inline modifier on constructor and destructor declarations. ==== libgexiv2 ==== Version update (0.14.2 -> 0.14.3) - Update to version 0.14.3: + Prevent std::exception escaping from exiv2 + Declare gexiv2_metadata_open_stream and _save_stream as deprecated + Documentation updates + Bugs fixed: https://gitlab.gnome.org/GNOME/gexiv2/issues/81 ==== libgnomesu ==== Version update (2.0.7 -> 2.0.8) Subpackages: libgnomesu0 - Update to version 2.0.8: * Builds with GCC 14 (boo#1225852, obsoletes libgnomesu-configure-C99.diff). * Updated translations. - Added libgnomesu-configure-C99.diff to make malloc and realloc configure script snippets compliant with C99 so that the same features are also configured even with GCC 14. [boo#1225852] ==== libgpod ==== Subpackages: libgpod-tools libgpod4 - fix build with gcc14 - added patches + 0004-gcc14.patch ==== libgravatar ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6Gravatar6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libguestfs ==== Version update (1.52.1 -> 1.53.5) Subpackages: libguestfs-appliance libguestfs-winsupport libguestfs-xfs libguestfs0 - Update to version 1.53.5 (jsc#PED-6305) * generator/customize.ml: Split --chown parameter on ':' character * daemon: Add gost checksum command support * Add detection support for Circle Linux * Add support for LoongArch. * daemon: Fix file architecture translation for LoongArch * options: Allow nbd+unix:// URIs * daemon/parted: Assume sfdisk --part-type exists * daemon: Reimplement partition GPT functions using sfdisk * appliance: only wait for resolv.conf update if dhcpcd succeeded * generator/customize.ml: Add virt-customize --inject-blnsvr operation * lib: libvirt: Stop recommending LIBGUESTFS_BACKEND=direct * daemon: cryptsetup_open: Add --cipher * rust: Handle null pointer when creating slice * Remove gluster support * Remove sheepdog support * Remove tftp drive support * generator/daemon: Don't truncate 64 bit results from OCaml functions * daemon: Fix parsing in part_get_gpt_attributes * New APIs: findfs_partuuid and findfs_partlabel * inspection: Resolve PARTUUID= and PARTLABEL= in /etc/fstab * generator/actions_core.ml: Fix version field for new APIs * Kylin is centos derivative ==== libgusb ==== Version update (0.4.8 -> 0.4.9) - update to 0.4.9: * Allow reading HID descriptors larger than 255 bytes * Close the libusb handle if returning open failure * Fix a buffer over-read when emulating devices * Only request the BOS descriptor when bcdUSB is new enough ==== libheif ==== Version update (1.17.6 -> 1.18.1) Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif-svtenc libheif1 - update to 1.18.1: * Fix libbrotlidec pkg-config requires * tiff: Fix wrong type for "seekTIFF" function. * fix 32bit compiler warnings in box.cc * fix memory leaks in Brotli decoder - update to 1.18.0: * now reads images generated by iOS 18 * heif-convert has been renamed to heif-dec * encoding: property item boxes with identical content are reused * support ISO 23001-17 version 1 uncC minimized headers * support ISO 23001-17 images with 'deflate', 'zlib' and Brotli compression * heif-enc can read TIFF images * API functions to read/write raw items and item properties * many bug fixes and smaller enhancements - Remove libheif-svtav1.patch: no longer needed ==== libjxl ==== Version update (0.10.2 -> 0.10.3) - Update to release 0.10.3 * fix bug in huffman-rle-gradient (e1) specialized decode path ==== libjxl-gtk ==== Version update (0.10.2 -> 0.10.3) Subpackages: gdk-pixbuf-loader-jxl gimp-plugin-jxl - Update to release 0.10.3 * fix bug in huffman-rle-gradient (e1) specialized decode path ==== libkcddb-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKCddb5 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkcompactdisc-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKCompactDisc6-5 libkcompactdisc-lang - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkdcraw-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKDcrawQt6-5 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkdegames ==== Version update (24.05.1 -> 24.05.2) Subpackages: kdegames-carddecks-default libKDEGames6 libkdegames-imports - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkdepim ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6Libkdepim6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkeduvocdocument ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkexiv2-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKExiv2Qt6-0 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkgapi6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6GAPICalendar6 libKPim6GAPICore6 libKPim6GAPIPeople6 libKPim6GAPITasks6 libkgapi6-lang libkgapi6-sasl2-kdexoauth2 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkipi ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKF5Kipi32_0_0 libkipi-data - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkleo ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6libkleo6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkmahjongg ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKMahjongg6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libksane ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKSaneWidgets6 libksane-icons libksane-lang - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libksba ==== Version update (1.6.6 -> 1.6.7) - Update to 1.6.7: * Allow for an empty Subject in certs. [T7171] * Release-info: https://dev.gnupg.org/T7173 * Rebase libksba-nobetasuffix.patch ==== libkscreen6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKF6Screen8 libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * Destroy the registry when WaylandConfig gets deleted (kde#482768) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== libksieve ==== Version update (24.05.1 -> 24.05.2) Subpackages: libksieve6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libksysguard6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports libksysguard6-plugins - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== libmaxminddb ==== Version update (1.9.1 -> 1.10.0) - update to 1.10.0: * The reader can now lookup records on a database with a search tree that is greater than 4 gigabytes without sometimes returning erroneous results due to an integer overflow. ==== libnbd ==== Version update (1.18.4 -> 1.20.2) Subpackages: libnbd0 - Update to version 1.20.2: * CVE-2024-7383 (bsc#1228872) * Version 1.20.2. * docs: security: Add link to TLS server certificate checking announcement * lib/uri.c: Allow tls-verify-peer to be overridden in URIs * interop: Test interop with a bad system CA * interop: Add -DEXPECT_FAIL=1 where we expect the test to fail * interop: Pass -DCERTS and -DPSK as strings * lib/crypto.c: Allow CA verification even if h->hostname is not set * lib/crypto.c: Check server certificate even when using system CA * build: Move to minimum gnutls >= 3.5.18 * nbdfuse: Can't use ?tls-certificates or ?tls-psk-file * ci: Fix MacOS builds * tests: Fix CI on Fedora 40 * Version 1.20.1. * tests: Add some code quality checks (mainly for maintainers) * common/utils/device-size.c: Include <stdint.h> * copy: Use device_size to get size of block devices * copy: Refactor the internal file_create API * common/utils: Add a function to find the size of a file or block device * Include <stdint.h> in code which uses standard C int types * common/include, ublk: Include <inttypes.h> in code which uses PRI* or SCN* * Include <stdbool.h> in code which uses bool/true/false * copy: Detect <sys/ioctl.h> * copy: Detect <linux/fs.h> at configure time * configure.ac: Indent AC_CHECK_HEADERS consistent with nbdkit * ublk/nbdublk.c: Include <errno.h> * copy, lib, ublk: Include <assert.h> which was missing in a few places * tests: Remove extra whitespace * copy/copy-nbd-to-small-block-error.sh: Use different pidfiles * copy: Use verbose nbdcopy in test * copy: Fix "destination size is smaller than source size" error * ci: refresh with latest 'lcitool manifest' * ci: import lcitool project package list definitions * podwrapper: nbd-server(1), nbd-client(8) are not local man pages * Version 1.20.0. * tests/connect-uri.c: Don't call strlen on each loop iteration * tests/connect-uri: Remove -DPIDFILE, generate it implicitly * lib/uri: Make parsing URIs more case insensitive * rust: Make the struct Cookie internal field fully public * interop/block-status-64.c: Fix skip path under valgrind * Revert "valgrind: Add suppression for liblzma bug" * docs: Add outline release notes for forthcoming libnbd 1.20 * lib/handle.c: Invalidate h->magic field just before freeing * Version 1.19.11. * ocaml: Add ocamlfind -package to ocamldoc invocation * ocaml: Mention bigstring and bigstringaf libraries * ocaml/tests: Add a test of the buffer lifecycle * ocaml: Update META so we link programs with bigarray on OCaml < 5 * ocaml: Use Bigarray to link examples and tests on OCaml < 5 * ocaml/tests: Modify the tests to use the new NBD.Buffer.t * ocaml: Add NBD.Buffer to/from string functions * ocaml: Reimplement NBD.Buffer.t using Bigarray for zero-copy * Version 1.19.10. * info: Add --isnt & --cannot to --help output * info: Implement --cannot and synonyms * info/can.c: Assert that 'can' variable is set * info: Fix error message * info: Add note that --can/--is/--has are synonyms * Version 1.19.9. * info: --uri: Free URI after printing it * lib/uri.c: Add better comments to nbd_get_uri function * info: Add --uri parameter * docs: Link from nbd_get_size to nbdinfo --size option * info: Handle failure of call to file * copy, fuse: Use vector_reserve_exactly in a few places * common/utils: Make vector_reserve_page_aligned allocate exactly * common/utils: Add vector_reserve_exactly function * fuzzing: Add a comment that the libfuzzer test is unmaintained * Version 1.19.8. * tests/opt-info.c: Free string returned by nbd_get_export_name * valgrind: Add suppression for liblzma bug * info: Try harder to report contents from nbd-server * copy: Add test for server without meta context support * api: Fix nbd_can_meta_context for server that lacks meta contexts * copy, info: Treat can_meta_context failures as unsupported * configure: Copy bash-completions test from nbdkit * Version 1.19.7. * podwrapper: Ignore check on older versions of Perl * podwrapper: Allow = (POD directive) followed by bare URL * podwrapper: Check for bare URLs and suggest replacement with L<> links * podwrapper: Move long lines and cross-reference checks earlier * contrib: Add suggested autoconf CHECK_LIBNBD macro * Version 1.19.6. * tests: Missed another C test which didn't use NBDKIT * tests: Use $NBDKIT instead of plain 'nbdkit' * tests: Use 'source ./function.sh' consistently in this directory * ocaml/tests: Add replacement for Bytes.set_int64_be * ocaml/tests: Add explicit dependency on ocaml_test_config.cm{o,x} * build: Define the minimum required version of OCaml as 4.05 * generator: Remove definition of sort_uniq * configure: Annotate OCaml tests by version of OCaml * ci: Skip certain deadlocking nbd-server tests on Alpine 3.19 * docs: Clarify description of block size constraints * ocaml: tests: Compute srcdir centrally in Ocaml_test_config module * ocaml: tests: Use @NBDKIT@ instead of hard coding nbdkit * python: tests: Use $NBDKIT instead of hard coding nbdkit * python: Various fixes to the Python tests and test wrapper * Version 1.19.5. ... changelog too long, skipping 51 lines ... * info: Try harder for graceful disconnect from server ==== libndp ==== - Add libndp-CVE-2024-5564.patch: add a check on the route information option length field (bsc#1225771 CVE-2024-5564). ==== libnl3 ==== Version update (3.9.0 -> 3.10.0) Subpackages: libnl-config libnl3-200 - Update to release 3.10 * route: support for setting ageing time for dynamic bridge table entries * route: support for VLAN filtering on bridge ports * route: support for layer 3 filtering on bridges ==== libnvme ==== Version update (1.9+0.g80c5cf2 -> 1.10+0.gdd51fa8) Subpackages: libnvme-mi1 libnvme1 - Update to version 1.10: * linux: update TLS version 1 PSK derivation (bsc#1228376) * tree: fix nvme_read_config() to not set errno if return 0 * types: add new fields added in TP4165 * types: Changed the space into tap space * tree: handle no address phy slot dirs * linux: Remove the use of OpenSSL Engine API * types: Added new controller attribute as per TP4104 * tree: add helper to lookup hostnqn/hostid (bsc#1226216) * fabrics: extend hostnqn/hostid variable inject interface (bsc#1226216) * json: filter out pcie transport (bsc#1226216) * tree: preserve parsing order of a config file (bsc#1226216) * types: add new field added in TP4099 * types: add new field added in TP4090 * linux: add nvme_revoke_tls_key (bsc#1226197) * tree: fix segfault in nvme_free_tree() * types: add PEL vendor specific and TCG defined events definitions * mi-mctp: initialize the rc variable in handle_mctp_endpoint() * linux: avoid potential null pointer dereference * linux: add nvme_get_ana_log_len_from_id_ctrl() * libnvme: export nvme_mi_admin_get_ana_log_atomic() * ioctl: add support for atomic, piecewise ANA log fetch * ioctl: replace nvme_ana_rsp_hdr in doc comments * ioctl: respect rae in nvme_get_log_ana() * ioctl: fix nvme_get_log_ana_groups() pointer type * types: add new filed added in TP4141a * mi: Probe quirks on first command submission * tree: optionally skip namespaces during scanning * ioctl: update nvme_set_var_size_tags() to properly use reftag * types: add enum for Protection Information Format * libnvme: Introduce functions to generate host identifier and host NQN (bsc#1226216) * fabrics: Unescape URI elements * tests: Add uriparser tests * fabrics: Introduce simple URI parser * linux: default init cleanup variable * linux: Fix uninitialized variables * types: add the nvme Cancel command opcode * log: split log variables from root object * log: keep log level logic in one place * mi: restore default ep timeout during admin_passthru * mi: fix the rc for nvme_mi_scan_ep * ccan/endian.h: Only define __{BIG,LITTLE}_ENDIAN if undefined. * Use C99 types for uint32_t * mi: fix the return error code. ==== libopenmpt ==== Version update (0.7.8 -> 0.7.9) - Update to 0.7.9: * [Sec] Potential division by 0 when seeking in the module with seek.sync_samples enabled (r21167). * [Change] The work-around for https://gcc.gnu.org/bugzilla/show_bug.cgi?id=115049 has been changed from forcing -O1 on GCC 14 to setting - fno-ipa-ra on all GCC versions on non-ELF platforms. * MOD: Allow sample swapping to work when swapping from a non-looping, stopped sample back to a looping sample (fixes MOD.energy). * DBM: Import second sustain point in case the first sustain point is not set, or if it has a lower index than the first. * DBM: When several instruments referenced the same sample with different properties (volume, loop points, etc.), only one set of properties was imported (fixes DBM.Supernova). * DBM: Prioritize effects more correctly when the same effect is encountered in both effect columns of a cell (fixes DBM.143_Gnoj). * DBM: Donât import offset effects when thereâs a tone portmento next to them. * DBM: A few IT-specific playback quirks are disabled for more accurate playback (e.g. in âAre You Flying With Me?â by Jazzcat). * DIGI: Sample play direction was reset if adjacent channel contained a Note Cut note. * AMF: When running out of sample slots, file reading became be misaligned because the sample name was not skipped. * MED: Command 0F was not imported. * MED: Upper frequency limits should be more accurate now. * MED: Channel panning is now only applied in MMD2 files if the free pan flag is set. * MED: Volume command resolution was incorrect for pre-MMD3 files. * XM: oggmod does not support stereo samples but keeps the stereo flag when encoding such samples. Such samples are now imported as mono samples instead of not importing them at all. * XM: For files saved with registered MadTracker 2 versions, do not put binary garbage (the user ID) in the tracker metadata field. It is replaced with âregisteredâ instead. * For some truncated files, the used tracker was not identified correctly. * S3M: Identify files saved with early Impulse Tracker versions, Sound Club 2, Liquid Tracker, NESMusa, UNMO3, deMODifier, Kosmic To-S3M, and better tell old ModPlug Tracker versions apart. * S3M: When skipping sample loading, some tracker identifications were not working as intended. * IT: Identify files saved with itwriter. * DTM: Identify files saved with Digital Tracker 2.3. * xmp-openmpt: If there is only one subsong, set the song title to the âglobalâ song title instead of the name of that subsong. * xmp-openmpt: Sample and instrument names were not sanitized, sometimes showing on multiple rows. ==== liborcus ==== - On 32bit x86 architectures, compile with option -ffloat-store. This mitigates the unfortunate fact that the test-suite of the package expects the precision of FP operations to be lower than that of internal representation of 80387. ==== libostree ==== Version update (2024.6 -> 2024.7) Subpackages: libostree-1-1 - update to 2024.7: + bugfix for "transient-etc" users + a new ostree.prepare-root.composefs kernel option that allows dynamic overrides for the composefs state + new API to directly create a composefs from an ostree commit ==== libphonenumber ==== Version update (8.13.30 -> 8.13.40) - Update to version 8.13.40: * Updated metadata - Use mode="manual" in _service ==== libplasma6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasma6 libplasma6-components libplasma6-desktoptheme - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * containmentitem.cpp: Do not set dropJob parent to m_dropMenu (kde#484674) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * On applet destroyed go out of configure mode (kde#488977) * Workaround to possible infinite reize loops (kde#488974) * quick/dialogbackground: Ensure we delete the SVG item (kde#486743) * update version for new release ==== libqt5-qtbase ==== Version update (5.15.14+kde140 -> 5.15.14+kde143) Subpackages: libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3 - Update to version 5.15.14+kde143: * HTTP2: Delay any communication until encrypted() can be responded to (bsc#1227426, CVE-2024-39936) * Add missing line continuations for memory_resource opt-out on Apple systems * a11y atspi: Add null checks in table iface methods ==== libreoffice ==== Version update (24.2.4.2 -> 24.2.5.2) Subpackages: libreoffice-base libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-en libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt6 libreoffice-writer libreofficekit - Add reproducible-clucene.patch to use new clucene function to make index files reproducible (boo#1047218) - Normalize .jar and .zip mtimes with strip-nondeterminism - Update to 24.2.5.2 (24.2.5 final) https://wiki.documentfoundation.org/Releases/24.2.5/RC1 and https://wiki.documentfoundation.org/Releases/24.2.5/RC2 - Added patch: * pdfium-optional.patch + fix build of pdfium with system abseil-cpp - Remove recommendation on libreoffice-qt5 to keep the same behaviour as we do for libreoffice-qt6, which is not recommending it by default (bsc#1227145). - Add patch for CVE-2024-5261 (bsc#1226975): * cve-2024-5261.patch - This patch won't be needed when LibreOffice 24.8 is released, as it's been merged upstream. - libreoffice no longer recommends libreoffice-qt6 (bsc#1227145). Add libreoffice-kdeintegration: a common package for KDE integration, depended upon by both libreoffice-qt6 and libreoffice-qt5. - Re-enable Firebird support for Leap 15.X and SLE-15 (bsc#1225597). ==== librsvg ==== Version update (2.58.1 -> 2.58.2) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.58.2: + Don't leak XML entities when the XML document fails to parse. + Fix stack overflow in <use> reference cycle. ==== libselinux ==== Version update (3.6 -> 3.7) Subpackages: libselinux1 selinux-tools - Fix segfault caused by upstream changes in selabel_open(): libselinux-set-free-d-data-to-NULL.patch Can be removed once it is upstream. - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes * libselinux/utils/selabel_digest: drop unsupported option -d * libselinux/utils: improve compute_av output * libselinux: fail selabel_open(3) on invalid option * Improved man pages * Improvements * libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks * libselinux: enable usage with pedantic UB sanitizers * libselinux: support huge passwd/group entries * Bugfixes: * libselinux/utils/selabel_digest: avoid buffer overflow * libselinux: avoid pointer dereference before check * libselinux/utils/selabel_digest: pass BASEONLY only for file backend * libselinux: free empty scandir(3) result * libselinux: free data on selabel open failure * libselinux: use reentrant strtok_r(3) ==== libselinux-bindings ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes * libselinux/utils/selabel_digest: drop unsupported option -d * libselinux/utils: improve compute_av output * libselinux: fail selabel_open(3) on invalid option * Improved man pages * Improvements * libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks * libselinux: enable usage with pedantic UB sanitizers * libselinux: support huge passwd/group entries * Bugfixes: * libselinux/utils/selabel_digest: avoid buffer overflow * libselinux: avoid pointer dereference before check * libselinux/utils/selabel_digest: pass BASEONLY only for file backend * libselinux: free empty scandir(3) result * libselinux: free data on selabel open failure * libselinux: use reentrant strtok_r(3) ==== libsemanage ==== Version update (3.6 -> 3.7) Subpackages: libsemanage-conf libsemanage2 - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * Bugfixes: * libsemanage: support huge passwd entries ==== libsepol ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes: * libsepol: improve policy lookup failure message * libsepol: include prefix for module policy versions * libsepol: validate type-attribute-map for old policies * libsepol: only exempt gaps checking for kernel policies * Bugfixes: * libsepol/src/Makefile: fix reallocarray detection * libsepol/cil: Fix detected RESOURCE_LEAK (CWE-772) * libsepol: ensure transitivity in compare functions * oss-fuzz fixes: * libsepol: check scope permissions refer to valid class * libsepol: validate attribute-type maps * libsepol: reject self flag in type rules in old policies * libsepol: validate class permissions * libsepol: validate access vector permissions * libsepol: reject MLS support in pre-MLS policies * libsepol: Fix buffer overflow when using sepol_av_to_string() * libsepol: Use a dynamic buffer in sepol_av_to_string() ==== libsolv ==== Version update (0.7.29 -> 0.7.30) Subpackages: libsolv-tools-base ruby-solv - removed dependency on external find program in the repo2solv tool - bindings: fix return value of repodata.add_solv() - new SOLVER_FLAG_FOCUS_NEW flag - bump version to 0.7.30 ==== libstorage-ng ==== Version update (4.5.215 -> 4.5.219) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#1001 - added unit test - 4.5.219 - merge gh#openSUSE/libstorage-ng#1000 - coding style - 4.5.218 - merge gh#openSUSE/libstorage-ng#999 - use cryptsetup to get uuid of newly created luks - 4.5.217 - merge gh#openSUSE/libstorage-ng#998 - added documentation - 4.5.216 ==== liburing ==== Version update (2.5 -> 2.6) - Fix buf-ring-nommap.t test failure * test-buf-ring-nommap-zero-the-ringbuf-memory.patch - Update to 2.6: * Add getsockopt and setsockopt socket commands * Add test cases to test/hardlink * Man page fixes * Add futex support, and test cases * Add waitid support, and test cases * Add read multishot, and test cases * Add support for IORING_SETUP_NO_SQARRAY * Use IORING_SETUP_NO_SQARRAY as the default * Add support for IORING_OP_FIXED_FD_INSTALL * Add io_uring_prep_fixed_fd_install() helper * Support for napi busy polling * Improve/add test cases * Man page fixes * Add sample 'proxy' example - Remove (they are upstream) * test-no-mmap-inval-0-return-is-fine-too.patch * test-recv-multishot-wait-for-the-right-amount-of-CQE.patch - exclude buf-ring-nommap.t test (crashes) ==== libva ==== Version update (2.21.0 -> 2.22.0) Subpackages: libva-drm2 libva-wayland2 libva-x11-2 libva2 - Update to version 2.22.0: * va:Add VVC decode LibVA interface. * va: fix --version-script detection for lld >= 17 * wayland: add support for linux-dmabuf * meson:remove autogen.sh from the meson script * trace: Add bit_depth capturing in trace log ==== libva-gl ==== Version update (2.21.0 -> 2.22.0) - Update to version 2.22.0: * va:Add VVC decode LibVA interface. * va: fix --version-script detection for lld >= 17 * wayland: add support for linux-dmabuf * meson:remove autogen.sh from the meson script * trace: Add bit_depth capturing in trace log ==== libvirt ==== Version update (10.4.0 -> 10.6.0) Subpackages: libvirt-client libvirt-daemon-common libvirt-daemon-config-network libvirt-daemon-driver-interface libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lock libvirt-daemon-log libvirt-daemon-plugin-lockd libvirt-daemon-qemu libvirt-libs - Update to libvirt 10.6.0 - jsc#PED-8909 - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v10-6-0-2024-08-05 - Update to libvirt 10.5.0 - Introduce SEV-SNP support - Many incremental improvements and bug fixes, see https://libvirt.org/news.html#v10-5-0-2024-07-01 ==== libvisual ==== - Imported C99 compatibility fixes from Fedora project: https://src.fedoraproject.org/rpms/libvisual/c/bcffd8eddbbcab5b00f930805396b... it fixes build error when using GCC14 (boo#1225859) (added libvisual-configure-c99.patch and libvisual-c99.patch). ==== libvpx ==== Version update (1.14.0 -> 1.14.1) - Limit explicit GCC13 usage to suse_version < 1600, i.e to Leap 15.x. Future versions are supposed to have a recent enough GCC version. - Update to version 1.14.1: * Added buffer bounds checks to vpx_writer and vpx_write_bit_buffer. * Fix to GetSegmentationData() crash in aq_mode=0 for RTC rate control. * Fix to alloc for row_base_thresh_freq_fac. * Free row mt memory before freeing cpi->tile_data. * Fix to buffer alloc for vp9_bitstream_worker_data. * Fix to VP8 race issue for multi-thread with pnsr_calc. * Fix to uv width/height in vp9_scale_and_extend_frame_ssse3. * Fix to integer division by zero and overflow in calc_pframe_target_size(). * Fix to integer overflow in vpx_img_alloc() & vpx_img_wrap()(CVE-2024-5197). * Fix to UBSan error in vp9_rc_update_framerate(). * Fix to UBSan errors in vp8_new_framerate(). * Fix to integer overflow in vp8 encodeframe.c. * Handle EINTR from sem_wait(). ==== libxml2 ==== Version update (2.12.8 -> 2.12.9) Subpackages: libxml2-2 libxml2-tools - Update to version 2.12.9: + Security: (CVE-2024-40896) Fix XXE protection in downstream code. + Improvements: Undeprecate xmlKeepBlanksDefault. ==== libxml2-python ==== Version update (2.12.8 -> 2.12.9) - Update to version 2.12.9: + Security: (CVE-2024-40896) Fix XXE protection in downstream code. + Improvements: Undeprecate xmlKeepBlanksDefault. ==== libyui ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libyui-ncurses ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libyui-ncurses-pkg ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libyui-qt ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libyui-qt-graph ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libyui-qt-pkg ==== Version update (4.6.1 -> 4.6.2) - Fix build failure with gcc-14 / C++20: template-id-cdtor error (bsc#1225861) - 4.6.2 ==== libzypp ==== Version update (17.34.1 -> 17.35.9) - single_rpmtrans: fix installation of .src.rpms (bsc#1228647) - version 17.35.9 (35) - Make sure not to statically linked installed tools (bsc#1228787) - version 17.35.8 (35) - MediaPluginType must be resolved to a valid MediaHandler (bsc#1228208) - version 17.35.7 (35) - Export CredentialManager for legacy YAST versions (bsc#1228420) - version 17.35.6 (35) - Export asSolvable for YAST (bsc#1228420) - Fix 4 typos in zypp.conf. - version 17.35.5 (35) - Fix typo in the geoip update pipeline (bsc#1228206) - Export RepoVariablesStringReplacer for yast2 (bsc#1228138) - version 17.35.4 (35) - Translation: updated .pot file. - Conflict with python zypp-plugin < 0.6.4 (bsc#1227793) Older zypp-plugins reject stomp headers including a '-'. Like the 'content-length' header we may send. - Fix int overflow in Provider (fixes #559) This patch fixes an issue in safe_strtonum which caused timestamps to overflow in the Provider message parser. - Fix error reporting on repoindex.xml parse error (bsc#1227625) - version 17.35.3 (35) - Keep UrlResolverPlugin API public (fixes #560) - Blacklist /snap executables for 'zypper ps' (bsc#1226014) - Fix handling of buddies when applying locks (bsc#1225267) Buddy pairs (like -release package and product) internally share the same status object. When applying locks from query results the locked bit must be set if either item is locked. - version 17.35.2 (35) - Install zypp/APIConfig.h legacy include (fixes #557) - version 17.35.1 (35) - Update soname due to RepoManager refactoring and cleanup. - version 17.35.0 (35) - Workaround broken libsolv-tools-base requirements (fixes openSUSE/zypper#551) - Strip ssl_clientkey from repo urls (bsc#1226030) - Remove protobuf build dependency. - Lazily attach medium during refresh workflows (bsc#1223094) - Refactor RepoManager and add Service workflows. - version 17.34.2 (34) ==== lightdm ==== Subpackages: liblightdm-gobject-1-0 lightdm-bash-completion lightdm-lang - Add typecasts to avoid passing incompatible pointer types to opensuse_sysconfig_get_string and opensuse_sysconfig_get_boolean to our patch lightdm-sysconfig-support.patch so that the package compiles with compilers which by default enforce C99 standard such as GCC 14. [boo#1221704] ==== linux-atm ==== - Add linux-atm-C99.patch to fix a wrong type being passed to functionaccept which violates C99 rules and causes compilation to fail with GCC 14 (and IMHO can cause wrong behavior on big-endian systems). [boo#1221006] ==== linux-glibc-devel ==== Version update (6.9 -> 6.10) - Update to kernel headers 6.10 ==== live555 ==== Version update (2023.11.30 -> 2024.06.26) Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 libliveMedia112 - update to 2024-06-26: * Updated the "OnDemandServerMediaSubsession" implementation to output an error message if the "sink->startPlaying()" call failed (e.g., due to its source not being compatible with the sink). This makes some common errors (e.g, a proper 'framer' not being used) easier to detect. - update to 2024-05-30: * Fixed a mistake that caused the config file "config.raspberrypi" to not appear in the distribution. - update to 2024-05-15: * Added a new config file "config.raspberrypi" that is known to work for building the code on/for a Raspberry Pi 5. - update to 2024-05-05: * Updated "QuickTimeFileSink" to add support for recording H.265 video streams. (This is not fully working yet; it appears to have some bugs.) - update to 2024-04-19: * Updated "MPEG2TransportStreamFramer" to ignore big jumps (2x or more) in the estimate for the duration of each Transport packet. This is likely caused by an unexpected jump in the PCR (not indicated by "discontinuity_indicator"). - update to 2024-03-08: * Changed "ServerTLSState::setup()" (in "TLSState.cpp") to call "SSL_CTX_use_certificate_chain_file()" instead of "SSL_CTX_use_certificate_file()", to allow the server operator to specify a chain of certificates, rather than just one. - update to 2024.02.28: * Updated the code for "dateHeader()" (in "RTSPCommon.cpp") to avoid using "strftime()", because that can produce a localized date string that violates the RTSP specification (which uses section 3.3.1 of RFC 2068 (the HTTP/1.1 specification) to define the "Date:" header). - update to 2024.02.23: * Updated the code for "dateHeader()" (in "RTSPCommon.cpp") to use "NULL" instead of "nullptr"; the latter was causing compilation problems for someone. - update to 2024.02.15: * Updated the RTCP implementation so that reception stats for a SSRC are no longer deleted, even if a SSRC is reaped due to RTCP inactivity (no RTCP "SR" reports received recently). - update to 2024. ==== llvm18 ==== Version update (18.1.6 -> 18.1.8) Subpackages: clang-tools clang18 libLLVM18 libclang-cpp18 libclang13 llvm18-gold - Update to version 18.1.8. * Fix a regression from the 18.1.6 release, which could result in compiler crashes in the PPCMergeStringPool pass when compiling for PowerPC targets. * Fixes clang-format regressions (since 18.1.1) on breaking before a stream insertion operator (<<) when both operands are string literals. * Fixes a clang-format regression (since 17.0.6) on formatting goto labels in macro definitions. - Rebase llvm-do-not-install-static-libraries.patch. ==== lokalize ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== lua54 ==== Version update (5.4.6 -> 5.4.7) - Update to version 5.4.7: * Fixed 11 bugs from 5.4.6 * Tests now run on shared libraries - Removed skip-tests_big-endian.patch: fixed upstream ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - enable devices file feature by default - see lvmdevices(8) * enable '--with-default-use-devices-file=1' in lvm2.spec * update commented default value of 'use_devicesfile' in lvm2.conf ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - enable devices file feature by default - see lvmdevices(8) * enable '--with-default-use-devices-file=1' in lvm2.spec * update commented default value of 'use_devicesfile' in lvm2.conf ==== lz4 ==== Version update (1.9.4 -> 1.10.0) - Update to release 1.10.0 * Support for multithreading * Full support for dictionary compression * New compression level 2 ==== mailcommon ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6MailCommon6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== mailimporter ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6MailImporter6 libKPim6MailImporterAkonadi6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== makedumpfile ==== - add (bsc#1228388): * 0001-PATCH-Fix-failure-of-hugetlb-pages-exclusion-on-Linu.patch * 0002-PATCH-Fix-wrong-exclusion-of-Slab-pages-on-Linux-6.1.patch ==== mariadb ==== Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Remove func_math_tests_MDEV-26645.diff as patch for s390x/ppc64le - Add s390x to the constraints file ==== mariadb-connector-c ==== Version update (3.3.8 -> 3.3.10) - Explicitly enable zstd support (new curl brings it in, and we want to ensure it to not be random): + Add pkgconfig(libzstd) BuildRequires: allow cmake to detect it. - Update to 3.3.10: * https://mariadb.com/kb/en/mariadb-connector-c-3-3-10-release-notes/ - Remove fix-build-gcc14.patch (fixed upstream) ==== markdownpart ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== mbox-importer ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== messagelib ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== microos-tools ==== Version update (2.21+git12 -> 2.21+git13) - Update to version 2.21+git13: * Don't run in the zipl initrd "initgrub" mode ==== milou6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== mimetreeparser ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6MimeTreeParserCore6 libKPim6MimeTreeParserWidgets6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== mozilla-nss ==== Version update (3.100 -> 3.102.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs mozilla-nss-sysinit mozilla-nss-tools - update to NSS 3.102.1 * bmo#1905691 - ChaChaXor to return after the function - update to NSS 3.102 * bmo#1880351 - Add Valgrind annotations to freebl Chacha20-Poly1305. * bmo#1901932 - missing sqlite header. * bmo#1901080 - GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. * bmo#1615298 - improve certutil keyUsage, extKeyUsage, and nsCertType keyword handling. * bmo#1660676 - correct length of raw SPKI data before printing in pp utility. - Require `sed` for mozilla-nss-sysinit, as setup-nsssysinit.sh depends on it and will create a broken, empty config, if sed is missing (bsc#1227918) - Added nss-fips-safe-memset.patch, fixing bsc#1222811. - Removed some dead code from nss-fips-constructor-self-tests.patch. - Rebased nss-fips-approved-crypto-non-ec.patch on above changes. - Added nss-fips-aes-gcm-restrict.patch, fixing bsc#1222830. - Updated nss-fips-approved-crypto-non-ec.patch, fixing bsc#1222813, bsc#1222814, bsc#1222821, bsc#1222822, bsc#1224118. - Updated nss-fips-approved-crypto-non-ec.patch and nss-fips-constructor-self-tests.patch, fixing bsc#1222807, bsc#1222828, bsc#1222834. - Updated nss-fips-approved-crypto-non-ec.patch, fixing bsc#1222804, bsc#1222826, bsc#1222833, bsc#1224113, bsc#1224115, bsc#1224116. - update to NSS 3.101.1 * bmo#1901932 - missing sqlite header. * bmo#1901080 - GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. - update to NSS 3.101 * bmo#1900413 - add diagnostic assertions for SFTKObject refcount. * bmo#1899759 - freeing the slot in DeleteCertAndKey if authentication failed * bmo#1899883 - fix formatting issues. * bmo#1889671 - Add Firmaprofesional CA Root-A Web to NSS. * bmo#1899593 - remove invalid acvp fuzz test vectors. * bmo#1898830 - pad short P-384 and P-521 signatures gtests. * bmo#1898627 - remove unused FreeBL ECC code. * bmo#1898830 - pad short P-384 and P-521 signatures. * bmo#1898825 - be less strict about ECDSA private key length. * bmo#1854439 - Integrate HACL* P-521. * bmo#1854438 - Integrate HACL* P-384. * bmo#1898074 - memory leak in create_objects_from_handles. * bmo#1898858 - ensure all input is consumed in a few places in mozilla::pkix * bmo#1884444 - SMIME/CMS and PKCS #12 do not integrate with modern NSS policy * bmo#1748105 - clean up escape handling * bmo#1896353 - Use lib::pkix as default validator instead of the old-one * bmo#1827444 - Need to add high level support for PQ signing. * bmo#1548723 - Certificate Compression: changing the allocation/freeing of buffer + Improving the documentation * bmo#1884444 - SMIME/CMS and PKCS #12 do not integrate with modern NSS policy * bmo#1893404 - Allow for non-full length ecdsa signature when using softoken * bmo#1830415 - Modification of .taskcluster.yml due to mozlint indent defects * bmo#1793811 - Implement support for PBMAC1 in PKCS#12 * bmo#1897487 - disable VLA warnings for fuzz builds. * bmo#1895032 - remove redundant AllocItem implementation. * bmo#1893334 - add PK11_ReadDistrustAfterAttribute. * bmo#215997 - Clang-formatting of SEC_GetMgfTypeByOidTag update * bmo#1895012 - Set SEC_ERROR_LIBRARY_FAILURE on self-test failure * bmo#1894572 - sftk_getParameters(): Fix fallback to default variable after error with configfile. * bmo#1830415 - Switch to the mozillareleases/image_builder image - Follow upstream changes in nss-fips-constructor-self-tests.patch (switch from ec_field_GFp to ec_field_plain) - Remove part of nss-fips-zeroization.patch that got removed upstream ==== mpg123 ==== Version update (1.32.6 -> 1.32.7) Subpackages: libmpg123-0 mpg123-openal - Update to version 1.32.7 * Fix some laziness (func() to func(void)) for standards conformance. ==== mtools ==== Version update (4.0.43 -> 4.0.44) - version update to 4.0.44 * Added documentation for size parameters * Fix parsing of fat_start (reserved sectors) in mformat.c so as to allow more than 255 * Rewrite autorename in vfat.c such that it doesn't (temporarily) overwrite byte after name string * Switch statement fall-through fixes (size parsing, and bios disk in mformat.c) * Compilation warning fixes, mostly for CLANG - deleted sources - mtools-4.0.43.tar.bz2.sig (not needed) - added sources + mtools-4.0.44.tar.bz2.sig ==== multipath-tools ==== Version update (0.9.9+90+suse.f1d2f20 -> 0.9.9+161+suse.0c835ef) Subpackages: kpartx libmpath0 - Update to version 0.9.9+161+suse.0c835ef: * Update to upstream reviewed code path (787e00d) * Added hardware defaults for Huawei storage arrays and XSG1 vendors * Refactored and improved the libultipath / libdevmapper interface * Fixed bug that caused queueing to be always disabled if flushing a map failed (bug introduced in 0.9.8). * Fixed failure to remove maps even with `deferred_remove` (bug introduced in 0.9.9). * CI improvements * Documentation fixes ==== mutter ==== Version update (46.2 -> 46.4) - Update to version 46.4: + Fix nested popovers on wayland. + Misc. bug fixes and cleanups. + Updated translations. - Drop mutter-fix-x11-restart.patch: fixed upstream. - Rebase mutter-SLE-relax-some-constraints-on-CSD-windows.patch. - Update to version 46.3.1: + Fix visibility of Xwayland windows + Misc. bug fixes - Update to version 46.3: + Fix performance issues with second virtual monitor + Fix missing unmap animation of some windows + Fix placement/resizing regression + Fix possible out of sync primary selections and clipboard + Fix ibus support in popups + Fix hardware accelerated rendering when headless + Add back support for legacy X11 cursor themes + Fix preedit offsets + Use character offsets to specify surrounding text + Don't force titlebar on screen on all interactive resizes + Fixed crashes + Misc. bug fixes and cleanups + Updated translations. - Rebase patches with quilt. ==== nano ==== Version update (8.0 -> 8.1) - GNU nano 8.1: * The idiom nano filename:linenumber is understood only when the option --colonparsing (or 'set colonparsing') is used * Modern bindings are not activated when nano's invocation name starts with "e", as it jars with Debian's alternatives system * New bindable function 'cycle' first centers the current row, then moves it to the top of the viewport, then to the bottom * It is bound by default to ^L. * Option --listsyntaxes/-z lists the names of available syntaxes ==== nbdkit ==== Version update (1.36.5 -> 1.40.1) Subpackages: nbdkit-basic-filters nbdkit-basic-plugins nbdkit-curl-plugin nbdkit-nbd-plugin nbdkit-python-plugin nbdkit-server nbdkit-ssh-plugin - Update to version 1.40.1: * Version 1.40.1. * tests/test-ext2-exportname.sh: Ignore libnbd < 1.8 for this test * server: Send the last error to the NBD client * server: Take a thread-local copy of the last call to nbdkit_error * server: Introduce threadlocal_{set,get}_last_error * server: Rename threadlocal_{set,get}_error to .._errno * server: log: Move preserve errno to log_verror function * server/crypto.c: Fix fallback functions used when gnutls is unavailable * Version 1.40.0. * tests/test-tar-info-xz.sh: Check plugin and filters required * README.md: Describe captive use of nbdkit as a key feature * curl: Add CURLPROTO_GOPHERS to list * tests: bzip2: Add disk.bz2 to CLEANFILES * tests: bzip2: Don't keep recreating disk.bz2 * curl: Enhance --dump-plugin output * curl: Add --dump-plugin output * docs: Copy-edit and fix typo in release notes for nbdkit 1.40 * docs: Add outline release notes for nbdkit 1.40 * ci: Drop Alma Linux 8 * file: Add file_block_size & file_blkrotational to --dump-plugin * Version 1.39.10. * file: Rethink calculation of block device I/O size preferences * file: Return minimum and preferred I/O size for block devices * server: Add a note about asynch-signal unsafety * ip: Fix version number where we started to deny unknown socket families * Version 1.39.9. * server: Add nbdkit_peer_tls_issuer_dn to read the CA DN * spinner: Small clarification for diagram of separate-heads property * vddk: Tested VDDK 8.0.3 * scan: Use superscript instead of asterisk for footnote * readahead, scan: Fix documentation referring to parallel thread model * ip: Revise filter documentation * ocaml, python: Implement bindings for nbdkit_peer_tls_dn * Version 1.39.8. * docs: Add nbdkit_peer_tls_dn.pod to EXTRA_DIST * ip: Allow matching on the TLS Distinguished Name * server: Add nbdkit_peer_tls_dn to read the TLS Distinguished Name * ip: Move fetching peer_name into check_if_allowed * ip: Move 'check_if_allowed' function closer to use * ip: Remove implicit allow for non-IP/-Unix/-vsock sockets * ip: Fix parsing of "security:" rule * server/crypto.c: Check <gnutls/socket.h> works before including it * server: Use '(void)' instead of '()' for a few function definitions * server/crypto.c: Fix spelling mistake in function name * docs: tls: Remove incorrect assertion that nbdkit checks the client's CN * build: Move to minimum gnutls >= 3.5.18 * maint: Fix logic bug in previous commit * tests: Fix CI on Fedora 40 * tests: Require bzip2 on OpenSUSE * bzip2: Fix mingw build * ci: Pull in bzip2 development for CI * xz: Add cross-reference to gzip filter. * gzip, xz: Add cross-references to new nbdkit-bzip2-filter * bzip2: Add cross-references to tar and xz filters * bzip2: Fix extension in description * Version 1.39.7. * docs: Mention bzip2 in README.md * New filter: bzip2 * .gitignore: add .swp * build: Fix sorting of 'evil' filter * Revise README.md file * .gitignore: Ignore various gcov files * captive: Use $uri instead of $nbd consistently * Version 1.39.6. * tests/test-tls.sh: Use $uri instead of constructing the URI * server: Set $tls_certificates and $tls_psk variables in --run command * server/uri.c: Append tls-certificates or tls-psk-key parameter to $uri * tests/test-tls.sh, tests/test-tls-psk.sh: Use captive nbdkit * server/uri.c: Refactor URI scheme creation * server/uri.c: Move URI debug statement into make_uri * server/uri.c: Single return from function * server/uri.c: Improve error messages * server/uri.c: Use close_memstream instead of fclose * server: Move URI code to a new file server/uri.c * tests: Fix comment in tests * tests/test-tls.sh: Skip on RHEL 8 * tests: Rework TLS tests to use nbdinfo instead of qemu-img info * tests: Test --print-uri + TLS * server: Make the --print-uri option easier to machine parse * docs/nbdkit-captive.pod: Refer to --print-uri section in main doc * server: Add --print-uri option * tests: Sort lines in list of tests * server/main.c: Sort options into order * tests: More debug output in test-blocksize-sharding.sh * Version 1.39.5. * tests: Add tests/test-gcs/google/api_core/__init__.py to EXTRA_DIST * common/utils/device-size.c: Include <stdint.h> * plugins: Use new device_size function * tests: Add and enhance some tests to cover device_size function * common/utils: Add a function to find the size of a file or block device * sh: Abstract the eval and sh plugins * docs: Fix references to nbdkit-sh-plugin(3) * cc, eval: Comma-separate SEE ALSO section of docs correctly * ci: refresh with latest lcitool manifest * ci: import lcitool project package list definitions * podwrapper: nbd-server(1), nbd-client(8) are not local man pages * tests/test-gcs: Skip tests if google.cloud.storage is installed * tests/test-gcs: Add __init__.py to mark package ... changelog too long, skipping 194 lines ... * python: Implement nbdkit.is_tls, nbdkit.stdio_safe and nbdkit.nanosleep ==== ncurses ==== Version update (6.5.20240608 -> 6.5.20240713) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20240713 + modify misc/ncurses-config.in, improved match with pkg-config output. - Add ncurses patch 20240706 + update configure script to use macro changes from dialog. + modify CF_NCURSES_PTHREADS to avoid equating package and library names. - Add ncurses patch 20240629 + build-fix for ncurses-examples with newer PDCurses, which no longer has stubs for unimplemented features. + add help-popup for test_instr.c, test_inwstr.c + modify checks in delwin to avoid checking if the window is a pad until first checking if it is still on the active window-list (cf: 20211115). + improve -t option of test/gdc.c, allowing hours only, or hours and minutes only. - Update to tack 1.10 (patch 20240501) * init.c, edit.c: gcc warning (NetBSD) * edit.c: check to avoid printing a non-printable character, per Coverity * tack.c: initialize variables, per Coverity * tack.1: change limit for SGR tool to allow for aixterm's colors * ansi.c: change the SGR tool to show up to 120 (past aixterm's 108) * color.c: when reloading the colors 0-7, use the index for the named color rather than just the array-index (fixing an interchanged red/blue for instance). Also, initialize the palette using the ANSI codes if the terminal supports setaf/setab. * color.c, charset.c, ansi.c, edit.c, crum.c, pad.c, tack.c, tack.h: use "const" in a few places reported by cppcheck * tack.1: improve formatting/style - Add ncurses patch 20240622 + improve test/gdc.c (patch by Branden Robinson). + improve formatting/style of manpages (patches by Branden Robinson). + adjust naming of mingw *-config scripts to match the pkg-config names + widen pattern in pc/*-config scripts to disallow more linker options + add --cflags-only-I and --cflags-only-other options to misc/ncurses-config.in + revert change to CF_BUILD_CC macro (report by Vassili Courzakis, cf: 20240518). - Port patch ncurses-6.4.dif - Port edit.sed script to new ncurses-config - Add ncurses patch 20240615 + improve formatting/style of manpages (patches by Branden Robinson). + review/update modules files. + improve install-rules in Ada95 makefiles (report by Branden Robinson). + improve formatting/style of manpages in test-directory. ==== netpbm ==== Version update (11.5.2 -> 11.7.0) Subpackages: libnetpbm11 - fix CVE-2024-38526 [bsc#1227693] Polyfill Supplay Chain Attack - version update to 11.7.0 * Release 11.07.00 + libnetpbm: Fix double free crash when memory allocation via REALLOCARRAY fails. Introduced in Netpbm 10.40 (September 2007). + libnetpbm: Allow color dictionary with more than 1000 entries. + ppmhist, ppmtoxpm: Work with color dictionary with more than 1000 color entries. + rgb.txt: Add Resene paint colors, 2010. * Release 11.06.00 + pamcut: add -reportonly. + infotopam: Add input validation. + infotopam: Remove input file name from messages. Add -verbose and issue informational message only if it is specified. + libnetpbm: Don't ignore garbage at the end of a color specifier (e.g. rgbi:0/.5/1xyz). + color database: change names of "Spring Green", "Lamp Black", and "light grey" to "SpringGreen", "LampBlack", and "LightGrey" to be consistent with other color names. + pamcut: fix incorrect output when rectangle to cut is entirely above the input image. Invisible junk after image. Always broken. (The ability to cut outside the input image was new in pamcut's predecessor pnmcut in Netpbm 9.7 (August 2000). + pamcut: fix incorrect output with PBM input when rectangle to cut is entirely below the input image. Invisible junk after image. Broken in Netpbm 10.44 (September 2008). + ppmtowinicon: fix array overrun with 4 and 8 bits per pixel. Broken in Netpbm 11.05 (December 2023). + infotopam: fix incorrect output -- columns always in wrong place. Always broken. (infotopam was new in Netpbm 10.22 (May 2004)). + pamseq: fix typo in error message. + build: makeman: fix warning about backslashes in strings. - modified patches % netpbm-gcc-warnings.patch (refreshed) % netpbm-security-code.patch (refreshed) ==== newt ==== - Add -D_GNU_SOURCE to compilation flags because it is a required feature macro for function setlinebuf to be declared. [boo#1225864] ==== nvidia-open-driver-G06-signed ==== Version update (550.90.07_k6.9.7_1 -> 550.100_k6.10.3_1) - Update to version 555.42.06 for CUDA. This tag has become available in github, now. - Update to 550.100 (boo#1227575) * Fixed a bug that caused OpenGL triple buffering to behave like double buffering. - Use macro which is set during build but not when running `osc service run download_files` to make sure both source versions are visible for download. This way, only the correct source tarball will be included in the source package of its respective flavor but both can be downloaded (updated) simultaniously. - make buildservice happy; all sources need to be mentioned as such in specfile - To avoid issues with missing dependencies when no CUDA repo is present make the dependecy to nvidia-compute-G06 conditional. - CUDA is not available for Tumbleweed, exclude the build of the cuda flavor. - preamble: let the -cuda flavor KMP require the -cuda flavor firmware - Add a second flavor for building the kernel module versions used by CUDA. The kmp targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics kmp. (bsc#1227417) - Provide the meta package nv-prefer-signed-open-driver to make sure the latest available SUSE-build open driver is installed - independent of the latest available open driver version in he CUDA repository. Rationale: The package cuda-runtime provides the link between CUDA and the kernel driver version through a Requires: cuda-drivers >= %version This implies that a CUDA version will run withany kernel driver version equal or higher than a base version. nvidia-compute-G06 provides the glue layer between CUDA and a specific version of he kernel driver both by providing a set of base libraries and by requiring a specific kernel version. 'cuda-drivers' (provided by nvidia-compute-utils-G06) requires an unversioned nvidia-compute-G06. With this, the resolver will install the latest available and applicable nvidia-compute-G06. nv-prefer-signed-open-driver then represents the latest available open driver version and restricts the nvidia-compute-G06 version to it. (bsc#1227419) ==== nvme-cli ==== Version update (2.9.1 -> 2.10) Subpackages: nvme-cli-bash-completion nvme-cli-zsh-completion - Update to version 2.10: * sed: Fix parsing of Discovery0 features * fabrics: avoid potential segfault in nvmf_dim() * nvme: avoid segfault in show-topology (bsc#1226197) * fabrics: do not leak nvme_ctrl_t object on connect * nvme: extend help message when mmap regs fails * nvme: return -ENXIO value to open device if errno not set * wdc: OCP 2.5 Log Page Updates * fabrics: drop --quiet alias -S * fabrics: drop --disable-sqflow alias -d * fabrics: check if json config is existing * plugins/ocp: fix UAF when printing telemetry log * nvme-print-stdout: fix persistent-event-log set feature event output * fabrics: do not report error when no modules are loaded when disconnecting * fabrics: use cleanup helper where possible * fabrics: print an error for ENOENT too * plugins/virtium: use time_t for time_stamp values * completions: add ocp set-error-injection command * doc: add ocp set-error-injection command * ocp: add set-error-injection command * nvme: use argconfig_parse_seen to check conditions * nvme: use proper mask to get correct lbafu value * utils: fix print formatting option * utils: cleanup includes in utils.h * utils: add missing header * nvme-print: Added print for two new fields for HMB feature * plugins/micron: Move OCP internal log parsing from Micron to OCP Plugin. * fabrics: remove unused _discover_from_json_config_file() argument * nvme: avoid unnecessary dup() + close() in io_mgmt_send() * util: remove unnecessary NULL check in cleanup_nvme_root() * nvme: use argconfig_parse_comma_sep_array_u16() in attach-ns * util: avoid duplication in argconfig_parse_comma_sep_array*() * util: remove redundant loop condition in argconfig_parse() * util: introduce is_null_or_empty() to avoid strlen() * util: reduce allocation sizes in argconfig_parse() * util: consolidate call paths to argconfig_parse_type() * util: reduce complexity of argconfig_parse_val() * util: reduce arguments passed to argconfig_parse_type() * util: remove empty default case in argconfig functions * util: remove unnecessary parentheses in argconfig_parse_type() * util: remove redundant cast in argconfig_parse_type() * util: inline argconfig_parse_byte() * util: remove redundant NULL check in argconfig_print_help() * util: use cleanup to avoid goto in argconfig_parse() * util: make argconfig_set_opt_val() a void function * util: remove argconfig_parse_val() declaration * util: remove argconfig CFG_SIZE type * wdc: Update and refactor the C0h log page parsing * ccan: Add freed pointer checking to delete strset member * fabrics: connect all hosts in config.json (bsc#1226216) * fabrics: refactore discover from json config (bsc#1226216) * fabrics: first read config before topology scanning (bsc#1226216) * fabrics: use helper to lookup default hostnqn/hostid (bsc#1226216) * fabrics: extend already connected message (bsc#1226216) * fabrics: use cleanup helper to free nvme root object * nvme: check MD size with PI size when PRACT set to 1 * nvme-print: add new field added in TP4090 * nvme-print-binary: add effects-log command output missed * completions: add ocp get-error-injection command * doc: add ocp get-error-injection command * ocp: add get-error-injection command * ocp: fix eol-plp-failure-mode command sel option value * doc: fix ocp eol-plp-failure-mode select short option * ocp: set UUID index for eol-plp-failure-mode command to get * nvme: fix verbose logging * doc: fix micron ocp telemetry log parse title * nvme-rpmb: send RPMB_REQ_READ_RESULT for authentication key programming * plugins/micron: Add support for OCP telemetry log parsing * ocp: Update Plugin Version * nvme: fix lbaf inuse to use 6:5 bits * ocp: use NVME_ARGS macro definition by eol-plp-failure-mode command * nvme: extern NVME_ARGS macro definition * nvme: use _cleanup_free_ type buffer for get-feature command * plugins/ocp: Update telemetry string log page (C9h) * nvme-print-json: add get-feature command fahrenheit temperature output * nvme: add get-feature and id-ctrl commands fahrenheit outputs * nvme: delete smart-log command fahrenheit option * nvme-print: check locale to use temperatures in degrees fahrenheit * completion: add support for tls-key (bsc#1226197) * doc: add tls-key --revoke documentation (bsc#1226197) * doc: fix tls-key --keyfile shorthand (bsc#1226197) * nvme: add support to revoke TLS key (bsc#1226197) * nvme: return error code/message for TLS commands (bsc#1226197) * nvme: factor out import key function (bsc#1226197) * nvme: use cleanup helper to close file descriptor (bsc#1226216) * nvme-rpmb: use cleanup helper for STREAM objects * fabrics: use cleanup helper for STREAM objects * nvme: use cleanup helper for STREAM objects (bsc#1226216) * nvme: strip newline when parsing TLS key files (bsc#1226197) * nvme: use stdout for exporting TLS keys (bsc#1226197) * nvme: change _cleanup_file_ to _cleanup_fd_ (bsc#1226197) * common.h: Avoid using unsupported load/store instructions in arm64 VMs * ocp: OCP 2.5 Telemetry DA 1 and 2 Parsing Updates * nvme-print-stdout: refactor subsys config * wdc: Fix compiler warning. * nvme: add flags type nvme_print_flags_t * nvme-print: Use 'unsigned int' instead of 'unsigned' * nvme: update parse_args() return value handling * nvme-print: Fix nvme_show_smart_log indentation error ... changelog too long, skipping 69 lines ... * add 0001-docs-rename-ocp-unsupported-req-log-file.patch ==== ocean-sound-theme6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * Create bell.oga symlinked to the existing bell sound (kde#489231) * update version for new release ==== okular ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix crash on certain pdf actions ==== open-vm-tools ==== Version update (12.4.0 -> 12.4.5) Subpackages: libvmtools0 open-vm-tools-desktop - Update to 12.4.5 (build 23787635) (boo#1227181) - There are no new features in the open-vm-tools 12.4.5 release. This is primarily a maintenance release that addresses a few critical problems, including: - A Github pull request and associated issue has been handled. Please see the Resolved Issues section of the Release Notes. - A number of issues flagged by Coverity and ShellCheck have been addressed. - A vmtoolsd process hang related to nested logging from an RPC Channel error has been fixed. For a more complete list of issues resolved in this release, see the Resolved Issues section of the Release Notes. For complete details, see: https://github.com/vmware/open-vm-tools/releases/tag/stable-12.4.5 Release Notes are available at: https://github.com/vmware/open-vm-tools/blob/stable-12.4.5/ReleaseNotes.md The granular changes that have gone into the 12.4.5 release are in the ChangeLog at: https://github.com/vmware/open-vm-tools/blob/stable-12.4.5/open-vm-tools/Cha... ==== openSUSE-release ==== Version update (20240629 -> 20240808) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== openblas_openmp ==== - Duplicate all options passed to `make` also to `make install`: The openblas build output suggests this: 'Note that any flags passed to make during build should also be passed to make install to circumvent any install errors'. This also makes sure that minimum CPU requirement is set in the pkgconfig file is the same one as used for building. This helps to maintain a reproducible build (boo#1228177). ==== openblas_pthreads ==== - Duplicate all options passed to `make` also to `make install`: The openblas build output suggests this: 'Note that any flags passed to make during build should also be passed to make install to circumvent any install errors'. This also makes sure that minimum CPU requirement is set in the pkgconfig file is the same one as used for building. This helps to maintain a reproducible build (boo#1228177). ==== openldap2 ==== Version update (2.6.7 -> 2.6.8) Subpackages: libldap-data libldap2 openldap2-client - Update to relese 2.6.8 * slapd: ability to log directly to a file bypassing syslog * back-ndb has been retired * back-sql and back-perl have been deprecated * lloadd enhancments: * Additional load balancing strategies * Additional options to improve coherence with certain controls and extended operations * Ability to log directly to a file bypassing syslog - Delete gcc14.patch, openldap2-fb9e6a81bbee.patch (merged) - Drop rcslapd symlink - Backported one hunk from upstream commit fb9e6a81bbee as openldap2-fb9e6a81bbee.patch to fix incompatible pointer type being passed to a function which is diagnosed as an error by GCC 14. ==== openldap2-contrib-src ==== Version update (2.6.7 -> 2.6.8) - Update to relese 2.6.8 * slapd: ability to log directly to a file bypassing syslog * back-ndb has been retired * back-sql and back-perl have been deprecated * lloadd enhancments: * Additional load balancing strategies * Additional options to improve coherence with certain controls and extended operations * Ability to log directly to a file bypassing syslog - Delete gcc14.patch, openldap2-fb9e6a81bbee.patch (merged) - Drop rcslapd symlink - Backported one hunk from upstream commit fb9e6a81bbee as openldap2-fb9e6a81bbee.patch to fix incompatible pointer type being passed to a function which is diagnosed as an error by GCC 14. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add patch from upstream to fix proxy multiplexing mode: * 0001-upstream-fix-proxy-multiplexing-mode_-broken-when-keystroke.patch - Add patch from upstream to restore correctly sigprocmask * 0001-upstream-correctly-restore-sigprocmask-around-ppoll.patch - Add patch from upstream to fix a logic error in ObscureKeystrokeTiming that rendered this feature ineffective, allowing a passive observer to detect which network packets contained real keystrokes (bsc#1227318, CVE-2024-39894): * 0001-upstream-when-sending-ObscureKeystrokeTiming-chaff-packets_.patch - Add obsoletes for openssh-server-config-rootlogin since that package existed for a brief period of time during SLE 15 SP6/ Leap 15.6 development but even if it was removed from the repositories before GM, some users might have it in their systems from having tried a beta/RC release (boo#1227350). - Add patch to fix a race condition in a signal handler by removing the async-signal-unsafe code (CVE-2024-6387, bsc#1226642): * fix-CVE-2024-6387.patch ==== openssl-3 ==== Subpackages: libopenssl3 - Build with no-afalgeng [bsc#1226463] - Security fix: [bsc#1227138, CVE-2024-5535] * SSL_select_next_proto buffer overread * Add openssl-CVE-2024-5535.patch - Build with enabled sm2 and sm4 support [bsc#1222899] - Add reproducible.patch to fix bsc#1223336 aes-gcm-avx512.pl: fix non-reproducibility issue - Apply "openssl-CVE-2024-4741.patch" to fix a use-after-free security vulnerability. Calling the function SSL_free_buffers() potentially caused memory to be accessed that was previously freed in some situations and a malicious attacker could attempt to engineer a stituation where this occurs to facilitate a denial-of-service attack. [CVE-2024-4741, bsc#1225551] ==== orc ==== Version update (0.4.38 -> 0.4.39) - Update to version 0.4.39: - Security: Fix error message printing buffer overflow leading to possible code execution in orcc with specific input files (CVE-2024-40897). This only affects developers and CI environments using orcc, not users of liborc (boo#1228184) - div255w: fix off-by-one error in the implementations - x86: only run AVX detection if xgetbv is available - x86: fix AVX detection by implementing the check recommended by Intel - Only enable JIT compilation on Apple arm64 if running on macOS, fixes crashes on iOS - Fix potential crash in emulation mode if logging is enabled - Handle undefined TARGET_OS_OSX correctly - orconce: Fix typo in GCC __sync-based implementation - orconce: Fix usage of __STDC_NO_ATOMICS__ - Fix build with MSVC 17.10 + C11 - Support stack unwinding on Windows - Major opcode and instruction set code clean-ups and refactoring - Refactor allocation and chunk initialization of code regions - Fall back to emulation on Linux if JIT support is not available, e.g. because of SELinux sandboxing or noexec mounting) ==== orca ==== Version update (46.1 -> 46.2) - Update to version 46.2: + Web: Eliminate chattiness from page-load events from embedded ads. + Web: Fix bug causing Orca to not present certain ARIA dialog titles. + Map xfce4-notifyd to notification-daemon script so that notifications are presented. + Table Navigator: Ensure we set the caret in Writer tables. + LibreOffice: Fix presentation of editable combobox value changes. + General: Fix bug that could cause Orca to not present the new caret location. + Updated translations. ==== osinfo-db ==== Version update (20240510 -> 20240701) - Update the release dates in the definitions for the following products openSUSE leap 15.6, SLE 15-SP6, SLEM 5.5, SLEM 6.0 - Update to database version 20240701 osinfo-db-20240701.tar.xz - Adjust some default hardware requirements (bsc#1227231) adjust-tumbleweed-hardware-requirements.patch add-opensuse-leap-15.6-support.patch add-sle15sp6-support.patch - bsc#1227116 - osinfo still uses deprecated SL-Micro name Reverse prior decision to drop the use of "Enterprise" in the name of the SUSE Linux Micro product. add-slem6.0-support.patch Drop add-slm6.0-support.patch ==== ovmf ==== Version update (202311 -> 202402) Subpackages: qemu-uefi-aarch64 - Update to edk2-stable202402 - Features (https://github.com/tianocore/edk2/releases): NetworkPkg: Packet->Length is not updated before being used by Dhcp6AppendIaAddrOption to safely know it can append. NetworkPkg: Out-of-bounds read when processing IA_NA/IA_TA options in a DHCPv6 Advertise message Heap Buffer Overflow in Tcg2MeasureGptTable() Add LoongArch help functions and defines in MdePkg and move some ArmVirtPkg libraries and PCDs to OvmfPkg Add NVMe Sanitize command support to Nvme.h Remove CSM support from OvmfPkg MAT Logic Incorrectly Reports Runtime Images - Patches (git log --oneline --date-order edk2-stable202311..edk2-stable202402): edc6681206 UefiCpuPkg/PiSmmCpuDxeSmm: fix NULL deref when gSmmBaseHobGuid is missing 72c441df36 UefiCpuPkg/PiSmmCpuDxeSmm: distinguish GetSmBase() failure modes 5fd3078a2e NetworkPkg: : Updating SecurityFixes.yaml 75deaf5c3c NetworkPkg: Dhcp6Dxe: Packet-Length is not updated before appending af3fad99d6 NetworkPkg: Dhcp6Dxe: Removes duplicate check and replaces with macro 1c440a5ece NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Related Patch a1c426e844 UnitTestFrameworkPkg: Add DSC and host tests that always fail 0a989069df UnitTestFrameworkPkg/SampleGoogleTest: Use EXPECT_ANY_THROW() 2d144d7e14 UnitTestFrameworkPkg/UnitTestDebugAssertLib: Add GoogleTest support 312ccaf81b UnitTestFrameworkPkg/UnitTestLib: GetActiveFrameworkHandle() no ASSERT() 81b69f306f UnitTestFrameworkPkg: Expand host-based exception handling and gcov 46c6de57b0 UnitTestFrameworkPkg: MSFT CC_FLAGS add /MT to for host builds ded41a64bd MdePkg/Include: Rename _DEBUG() to address name collision 8801c75b4d OvmfPkg: Align XenRealTimeClockLib function headers with return values dcdc6f8e3f ArmPlatformPkg: Align PL031 library function headers with return values 844ead5bce EmbeddedPkg: Align RealTimeClock function headers with return values ef4d35d4ed MdeModulePkg: Align RuntimeDxe function headers with UEFI return values e4ceae5c18 MdePkg: Add EFI_UNSUPPORTED return for some Runtime Service functions dcf2e39dce EmbeddedPkg: compiler error due to arithmetic operation on void pointer e32b58ab5a BaseTools: Remove Duplicate sets of SkuName and SkuId from allskuset 8f316e99ec BaseTools: Optimize GenerateByteArrayValue and CollectPlatformGuids APIs 4d1f0babe2 MdePkg: Add SynchronizationLib to MdeLibs.dsc.inc 1d0b95f645 NetworkPkg: : Adds a SecurityFix.yaml file ff2986358f NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45235 Unit Tests fac297724e NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45235 Patch 7f04c7a253 MdePkg: Test: Add gRT_GetTime Google Test Mock 458c582685 NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45234 Unit Tests 1b53515d53 NetworkPkg: UefiPxeBcDxe: SECURITY PATCH CVE-2023-45234 Patch c9c87f08dd NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45232 Unit Tests 4df0229ef9 NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45232 Patch 6f77463d72 NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45231 Unit Tests bbfee34f41 NetworkPkg: Ip6Dxe: SECURITY PATCH CVE-2023-45231 Patch 07362769ab NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Unit Tests 1dbb10cc52 NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45229 Patch 5f3658197b NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45230 Unit Tests 8014ac2d7b NetworkPkg: : Add Unit tests to CI and create Host Test DSC f31453e8d6 NetworkPkg: Dhcp6Dxe: SECURITY PATCH CVE-2023-45230 Patch 959f71c801 MdeModulePkg: Optimize CoreConnectSingleController 9eddbab650 MdeModulePkg: Remove handle validation check in CoreGetProtocolInterface 62b43ec896 ArmVirtPkg: Move PlatformBootManagerLib to OvmfPkg 6bbce86d21 ArmVirtPkg: Move two PCD variables into OvmfPkg 0cca97e0a8 ArmVirtPkg: Move the FdtSerialPortAddressLib to OvmfPkg 5a3788bfca OvmfPkg/RiscVVirt: Remove PciCpuIo2Dxe from RiscVVirt 010f7298ce OvmfPkg/RiscVVirt: Enable CpuMmio2Dxe 147beaa5e7 ArmVirtPkg: Enable CpuMmio2Dxe 55a0cdb61c UefiCpuPkg: Add a new CPU IO 2 driver named CpuMmio2Dxe 54c2cdb241 ArmVirtPkg: Move PCD of FDT base address and FDT padding to OvmfPkg 3db49a6ca8 EmbeddedPkg: Add PcdPrePiCpuIoSize width for LOONGARCH64 f560c5d112 MdePkg: Add some comments for LoongArch exceptions 3f8fb8aeb9 MdePkg: Add a new library named PeiServicesTablePointerLibKs0 bc0b418cba MdePkg: Add IOCSR operation for LoongArch 0565a8e885 MdePkg: Add CSR operation for LoongArch 414ad233a5 MdePkg: Add read stable counter operation for LoongArch 344dc4b9d3 MdePkg: Add LoongArch Cpucfg function 2ff435b264 MdePkg: Add LoongArch64 local interrupt function set into BaseLib 57684402e4 MdePkg: Add LoongArch64 exception function set into BaseLib e5b5073153 MdePkg: Add LoongArch64 FPU function set into BaseCpuLib 9e1576bc10 MdePkg: Add the header file named Csr.h for LoongArch64 ae59b8ba41 UefiCpuPkg/PiSmmCpuDxeSmm:Map SMRAM in 4K page granularity 397a084b9b UefiCpuPkg: Add more Paging mode enumeration 30a25f2778 UefiCpuPkg: Reduce and optimize access to attribute 056b4bf74b BaseTools/Scripts/PatchCheck.py: Check for Change-id 141dcaed6c UefiCpuPkg: Add cache operations support for Arch proto cd6f215223 OvmfPkg/ResetVector: Fix SNP CPUID table processing results for ECX/EDX a1b98c8f84 StandaloneMmPkg/Core: Output status in MMI handler assertion 927ea1364d ShellPkg: Update smbiosview for LoongArch a3aab12c34 MdeModulePkg: Dxe: add LOONGARCH64 to mMachineTypeInfo 3656352675 UefiPayloadPkg/Crypto: Support external Crypto drivers. 97c3f5b8d2 OvmfPkg/IoMmuDxe: Provide an implementation for SetAttribute 0e9b124f9c UefiCpuPkg/BaseXApic[X2]ApicLib: Implements AMD extended cpu topology d14526372d MdePkg: Adds AMD Extended CPU topology CPUID 40a45b5a2b Basetools: Include PCD declarations from Library Instance af6e0e728f MdeModulePkg/Core/Dxe: Set MemoryTypeInfo bin range from HOB c5e702e45a MdeModulePkg/Core/Dxe: Initialize GCD before RT memory allocations 909a9a5ae4 ArmPkg: Disable watchdog interaction after exiting boot services 9ac93da5b5 ArmPkg: Introduce global mTimerPeriod and remove calculation beefa753f3 ArmPkg: Update GenericWatchdogDxe to allow setting full 48-bit offset 98c7cb3be7 OvmfPkg/ResetVector: send post codes to qemu debug console a6013625a3 PcAtChipsetPkg/HpetTimerDxe: Fix nested interrupt time accuracy dc33394701 DynamicTablesPkg: Exempt some _CPC field from checks dec9d35738 DynamicTablesPkg: Add PcdDevelopmentPlatformRelaxations Pcd b2c4916344 DynamicTablesPkg: Add DynamicTablesScmiInfoLib fc04cfd119 DynamicTablesPkg: Generate _PSD in SsdtCpuTopologyGenerator 3344495489 DynamicTablesPkg: Add AmlCreatePsdNode() to generate _PSD 0a9060b259 DynamicTablesPkg: Add PsdToken field to CM_ARM_GICC_INFO object 71ec5d3415 DynamicTablesPkg: Add CM_ARM_PSD_INFO object e3992e40c7 DynamicTablesPkg: Rename AmlCpcInfo.h to AcpiObjects.h ec15e345ae DynamicTablesPkg: Use new CPC revision macro 9f0ebabb57 ArmPkg/ArmScmiDxe: Add PERFORMANCE_DESCRIBE_FASTCHANNEL support ... changelog too long, skipping 305 lines ... * No longer build and package EnrollDefaultKeys.efi and Shell.efi ==== p11-kit ==== Subpackages: libp11-kit0 p11-kit-tools - Added a backport of an upstream commit in p11-kit-d938f4a8a3a2.patch to avoid passing an incompatible pointer type to a function which is an error by default in GCC 14. ==== pam ==== - Prevent cursor escape from the login prompt [bsc#1194818] * Added: pam-bsc1194818-cursor-escape.patch ==== pam-full-src ==== - Prevent cursor escape from the login prompt [bsc#1194818] * Added: pam-bsc1194818-cursor-escape.patch ==== pam_kwallet6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: pam_kwallet6-common - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * Switch to pkgconfig to find libgcrypt (allows building with libgcrypt 1.11) (kde#489303) * update version for new release ==== parley ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== pciutils ==== Version update (3.12.0 -> 3.13.0) Subpackages: libpci3 - Synchronize SLE-15 and openSUSE:Factory [PED-8393, bsc#1224138]. The following patches are now obsolete in version 3.13.0: * lspci-Fixed-buffer-overflows-in-ls-tree.c.patch * pciutils-Add-PCIe-5.0-data-rate-32-GT-s-support.patch * pciutils-Add-PCIe-6.0-data-rate-64-GT-s-support.patch * pciutils-Add-decoding-of-vendor-specific-VPD-fields.patch * pciutils-VPD-Cleanup.patch * pciutils-VPD-When-printing-item-IDs-escape-non-ASCII-characte.patch - update to 3.13.0: * lspci decodes CXL 1.1 device link status information. * Further development of the pcilmr (the link margining utility) * Dump parsing supports 6-digit domain numbers. * Bug fixes in PCIe link state reporting. * Decode more fields in PCIe AER capability. * Fixed build on Linux systems with musl libc. * Updated pci.ids. ==== perl ==== Version update (5.38.2 -> 5.40.0) Subpackages: perl-base - Insert manual provide for perl(Getopt::Long) until new version transition is done - move UNIVERSAL.pm into perl-base - update to 5.40.0 * New __CLASS__ Keyword * :reader attribute for field variables * Permit a space in -M command-line option * Restrictions to use VERSION declarations * New builtin::inf and builtin::nan functions (experimental) * New ^^ logical xor operator * try/catch feature is no longer experimental * for iterating over multiple values at a time is no longer experimental * builtin module is no longer experimental * The :5.40 feature bundle adds try * use v5.40; imports builtin functions * CVE-2023-47038 - Write past buffer end via illegal user-defined Unicode property * CVE-2023-47039 - Perl for Windows binary hijacking vulnerability * reset EXPR now calls set-magic on scalars * Calling the import method of an unknown package produces a warning * return no longer allows an indirect object * Class barewords no longer resolved as file handles in method calls under no feature "bareword_filehandles" * Using goto to jump from an outer scope into an inner scope is deprecated and will be removed completely in Perl 5.42. [GH #21601] * The negation OPs have been modified to support the generic TARGMY optimization. [GH #21442] - Refresh perl-5.38.0.diff - Drop perl-5.18.2-overflow.diff (no longer applicable) - Drop perl-locale-backport.diff (proper fix in new version) - Drop old manual package name based perl provides ==== perl-Bootloader ==== Version update (1.13 -> 1.14) - merge gh#openSUSE/perl-bootloader#169 - support grub2-bls (bsc#1226676, bsc#1208135) - better config file reading - add check whether bootloader is supported - unit test output changed, adjust reference data - adjust GRUB_ENABLE_BLSCFG when setting grub2-bls - add config, install, add-kernel, remove-kernel for grub2-bls - support --default option for grub2* - unify cmdline parsing code and move to library - add missing options for bls conforming loaders - updated tests - unify test case names - adjust documentation - 1.14 ==== perl-HTML-Parser ==== Version update (3.820.0 -> 3.830.0) - updated to 3.830.0 (3.83) see /usr/share/doc/packages/perl-HTML-Parser/Changes 3.83 2024-07-30 - fix '$\/]' in HTML::Entities::encode_entities (GH#45) (mauke) ==== perl-IO-Socket-SSL ==== Version update (2.85.0 -> 2.88.0) - Remove patches 80315ed1a6a0b7968ce26284ed81b56c0ab288d9.patch, perl-IO-Socket-SSL-use-system-default-cipher-list.patch (fixed upstream) - updated to 2.88.0 (2.088) see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.088 2024/07/14 - minor fixes for use on ancient versions of perl and for building with newer versions of openssl - add 80315ed1a6a0b7968ce26284ed81b56c0ab288d9.patch to fix a error introduced in version 2.087 - updated to 2.87.0 (2.087) see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.087 2024/07/08 - support for PSK, see SSL_psk in documentation - updated to 2.86.0 (2.086) see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes 2.086 2024/07/03 - internal optimzation: implement _touch_entry in session cache instead of using del+add. ==== php8 ==== Version update (8.3.8 -> 8.3.9) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.3.9 Core: Fixed bug GH-14315 (Incompatible pointer type warnings). Fixed bug GH-12814 (max_execution_time reached too early on MacOS 14 when running on Apple Silicon). Fixed bug GH-14387 (Crash when stack walking in destructor of yielded from values during Generator->throw()). Fixed bug GH-14456 (Attempting to initialize class with private constructor calls destructor). Fixed bug GH-14510 (memleak due to missing pthread_attr_destroy()-call). Fixed bug GH-14549 (Incompatible function pointer type for fclose). BCMatch: Fixed bug (bcpowmod() with mod = -1 returns 1 when it must be 0). Curl: Fixed bug GH-14307 (Test curl_basic_024 fails with curl 8.8.0). DOM: Fixed bug GH-14343 (Memory leak in xml and dom). FPM: Fixed bug GH-14037 (PHP-FPM ping.path and ping.response config vars are ignored in status pool). GD: Fix parameter numbers for imagecolorset(). Intl: Fix reference handling in SpoofChecker. MySQLnd: Partially fix bug GH-10599 (Apache crash on Windows when using a self-referencing anonymous function inside a class with an active mysqli connection). Opcache: Fixed bug GH-14267 (opcache.jit=off does not allow enabling JIT at runtime). Fixed TLS access in JIT on FreeBSD/amd64. Fixed bug GH-11188 (Error when building TSRM in ARM64). PDO ODBC: Fixed bug GH-14367 (incompatible SDWORD type with iODBC). PHPDBG: Fixed bug GH-13681 (segfault on watchpoint addition failure). Soap: Fixed bug #47925 (PHPClient can't decompress response). Fix missing error restore code. Fix memory leak if calling SoapServer::setObject() twice. Fix memory leak if calling SoapServer::setClass() twice. Fix reading zlib ini settings in ext-soap. Fix memory leaks with string function name lookups. Fixed bug #69280 (SoapClient classmap doesn't support fully qualified class name). Fixed bug #76232 (SoapClient Cookie Header Semicolon). Fixed memory leaks when calling SoapFault::__construct() twice. Sodium: Fix memory leaks in ext/sodium on failure of some functions. SPL: Fixed bug GH-14290 (Member access within null pointer in extension spl). Standard: Fixed bug GH-14483 (Fixed off-by-one error in checking length of abstract namespace Unix sockets). Streams: Fixed bug GH-11078 (PHP Fatal error triggers pointer being freed was not allocated and malloc: double free for ptr errors). ==== pim-data-exporter ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== pim-sieve-editor ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== pimcommon ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6PimCommon6 libKPim6PimCommonAkonadi6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== pinentry ==== Version update (1.2.1 -> 1.3.1) - update to 1.3.1: * qt: Install and use pinentry icon. [rPf9c252a8d9] * qt: Small fix for Qt5. [rP844360c9c9] * qt: Fix Windows build of Qt6. [rP34019f954a] * New envvar PINENTRY_KDE_USE_WALLET to enable the secret storage integration on KDE. [rP23753cfb03] - update to 1.3.0: * qt: Add new Qt6 frontend. [rP1e79123c38] * qt: Set parent window on Wayland. [T6930] * qt: Fix capslock detection on Wayland. [rP7dfc60a70d] * qt: Fix window icon on Wayland. [T6887] * qt: Add support for external password manager with libsecret. * qt: Remove focus indication by text selection. [T5863] * qt: Use same focus indication for labels as Kleopatra. * qt: Improve accessibility. [T5863] * gnome3: Prefer gcr-4. [rP069c219223] * curses: Fix timeout handling. [rP08408498b3] * curses: Add SETREPEATOK and quality bar colors. * curses: Add password quality meter. [rP2923707e75] * curses,tty: Upon SIGINT, let pinentry exit gracefully. * w32: Fix non-focused window and simplify code. * Disable secret storage integration when running on KDE Plasma. * The Windows CE support has been removed. ==== pinentry-gui ==== Version update (1.2.1 -> 1.3.1) Subpackages: pinentry-gnome3 pinentry-gtk2 - update to 1.3.1: * qt: Install and use pinentry icon. [rPf9c252a8d9] * qt: Small fix for Qt5. [rP844360c9c9] * qt: Fix Windows build of Qt6. [rP34019f954a] * New envvar PINENTRY_KDE_USE_WALLET to enable the secret storage integration on KDE. [rP23753cfb03] - update to 1.3.0: * qt: Add new Qt6 frontend. [rP1e79123c38] * qt: Set parent window on Wayland. [T6930] * qt: Fix capslock detection on Wayland. [rP7dfc60a70d] * qt: Fix window icon on Wayland. [T6887] * qt: Add support for external password manager with libsecret. * qt: Remove focus indication by text selection. [T5863] * qt: Use same focus indication for labels as Kleopatra. * qt: Improve accessibility. [T5863] * gnome3: Prefer gcr-4. [rP069c219223] * curses: Fix timeout handling. [rP08408498b3] * curses: Add SETREPEATOK and quality bar colors. * curses: Add password quality meter. [rP2923707e75] * curses,tty: Upon SIGINT, let pinentry exit gracefully. * w32: Fix non-focused window and simplify code. * Disable secret storage integration when running on KDE Plasma. * The Windows CE support has been removed. ==== pipewire ==== Version update (1.2.0 -> 1.2.1) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.2.1: * Highlights - Fix a regression in the node activation counters that would break audio when using KODI. - Fix a regression in ardour export because of mishandling of sync groups. - Fix a regression in KDE screen preview because of the new async scheduling. - Fix a regression in context.exec argument parsing that would break some existing scripts. - More small bug fixes and improvements. * PipeWire - Fix a regression in the node activation counters that would break audio when using KODI. (#4087) - Fix a regression in ardour export because of mishandling of sync groups. (#4083) - Fix a regression in KDE screen preview because of the new async scheduling. Disable async for driver nodes. (#4092) - Slightly improve node shutdown to cause less xruns. - Fix a regression in context.exec argument parsing that would break some existing scripts. - Support custom thread create functions. * Modules - Improve snapcast address parsing. (#4093) * SPA - Fix multiple %f parsing in ACP for the new plug+a52 profiles. - Improve v4l2 param generation. Improve recovery when framesize or rates are unknown, support vivid. (#4063) * JACK - Use the custom thread create function to correctly let module-rt kit manage threads so that we don't end up with priorities on the wrong threads. (#4099) * GStreamer - Fix a crash when destroying a stream. ==== plasma5support6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasma5Support6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-activities ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasmaActivities6 plasma6-activities-imports - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-activities-stats ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasmaActivitiesStats1 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-browser-integration ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-desktop ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-desktop-emojier - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Make X-KDE-Init-Phase a proper in in JSON and remove obsolete X-KDE-Init-Symbol values * Folder View: hide existing label while renaming (kde#482802) * Folder View: re-transfer focus to grid view after rename (kde#491088) * Use bindings for anchors (kde#489492) * Restore the folderview title config * applets/taskmanager: fix size of textual list popup * applets/taskmanager: Fix applet's layout size with multiple rows (kde#490319) * [kcms/access] Set range for visual bell duration selector - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * Fix kcm_clock save on non-systemd distros * KeyboardButton: Check if longName is undefined * Use a shared QQmlEngine when possible (kde#488326) * lockscreen: fix the check for authentication prompts (kde#485520) * update version for new release * Edit Mode: Fix for blurry icons (kde#488920) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * [kcm/keyboard] Add missing GENERATE_MOC to kconfig_add_kcfg_files * update version for new release * kcms/keyboard: fix width and immutability of layout table headers (kde#488957) * Make panel config tooltips ask for focus after each applet change (kde#487640) * kcms/access: Bump the minimum cursor magnification factor (kde#489333) * kcms/access: fix list item highlighting (kde#489206) * Always center "Add Widgets" button on empty panels (kde#488789) * update version for new release ==== plasma6-disks ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-integration ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-nm ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-nm-openconnect plasma6-nm-openvpn plasma6-nm-pptp plasma6-nm-vpnc - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * Use a shared QQmlEngine when possible (kde#488326) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-openSUSE ==== Subpackages: plasma6-branding-openSUSE plasma6-sddm-theme-openSUSE plasma6-theme-openSUSE - Update to 6.1.4 - Update to 6.1.3 - Update to 6.1.2 ==== plasma6-pa ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * volumemonitor: don't crash when there is no pa_context * kcm/SpeakerTest: Fix the minimum layout for Mono channel (kde#476096) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-print-manager ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * plasmoid: Remove dead code (JobsModel) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-systemmonitor ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * TableViewHeader: remove from tab chain - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-thunderbolt ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - No code changes since 6.1.3 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - No code changes since 6.1.2 - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - No code changes since 6.1.1 ==== plasma6-workspace ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-libs sddm-qt6-branding-openSUSE - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Watch for Look and Feel changed * applets/batterymonitor: Fix property names to show the right tool-tip text * applets/mediacontroller: Fix label width overflow in horizontal panel * Track screen change * Respect centered images size (kde#490425,kde#489250) * xembed-sni-proxy: Check if descendant windows want button events * freespacenotifier: Rework to not warn for read only partitions * startplasma: Also set environment variable when it is not currently set (kde#490432) * notifications: When doing a drag and drop, set the supported action to cpoy (kde#469644) * krunner: Fix icon property name for additionalActions list * kastatsfavoritesmodel: Fix a crash - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * klipper: Avoid incorrect wayland roundtrips (kde#489096) * klipper: Fix a potential null dereferencing (kde#489096) * kcm/users: decode URI-encoded file for avatar image * kastatsfavoritesmodel.cpp: prefer .value() over operator[] (kde#482887) * xembedsniproxy: Warp pointer to click location on wayland (kde#489286) * klipper: add missing static keyword in `SystemClipboard` * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * libtaskmanager: improve efficiency when window icon frequently changes (kde#487390) * Do not hide panel settings when a panel-parented dialog takes focus (kde#487161) * update version for new release ==== polari ==== - Change telepathy-logger runtime Requires to Recommends. Version 46.0 replaced it with a private tracker database, it is now only needed for import of the old telepathy database. ==== policycoreutils ==== Version update (3.6 -> 3.7) Subpackages: policycoreutils-python-utils python311-policycoreutils - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 User-visible changes: * audit2allow -C for CIL output mode * sepolgen: adjust parse for refpolicy * Bugfixes: * fixfiles: drop unnecessary \ line endings * setfiles: avoid unsigned integer underflow * python/semanage: Do not sort local fcontext definitions * python/semanage: Allow modifying records on "add" - Refresh get_os_version.patch ==== polkit ==== Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0 - Add -Wno-error=implicit-function-declaration to %optflags to work-around an issue in mocklibc (which has been meanwhile removed by upstream) with exactly this kind of issue. ==== polkit-default-privs ==== Version update (1550+20240620.095c860 -> 1550+20240708.7e0e3f4) - Update to version 1550+20240708.7e0e3f4: * profile: whitelist kdeplasma-addons-kameleon helper (bsc#1226306) ==== polkit-kde-agent-6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== poppler ==== Version update (24.03.0 -> 24.07.0) Subpackages: libpoppler-glib8 poppler-tools - Use correct version for freetype BuildRequires. - update to 24.07.0: core: * Fix crashes in broken files * Internal code improvements qt6: * Add getters for document additional actions * Implement reset forms link qt5: * Add getters for document additional actions * Implement reset forms link utils: * pdfinfo: Fix crash in broken documents when using -dests build system: * Mark glib-mkenums as required - drop poppler-CVE-2024-6239.patch (upstream) - version update to 24.06.1 Release 24.06.1: Re-release 24.06.0 with increased SOVERSION of poppler internal library Release 24.06.0: core: * Performance improvements in some files * Fix some issues with files bigger than 2^31 bytes * Remove all cairo include guards for cairo < 1.16 * Fix MSVC build * Internal code improvements qt6: * Update Qt6 doc example * Use the non deprecated version of QString::fromUcs4 glib: * properly document return value from poppler_font_info_scan Release 24.05.0: core: * Fix signing not being totally correct in some kind of PDF files * Assume "Adobe-Identity" for character collection. Issue #1465 * Small improvements in annotation font rendering * Remove some GooString methods, use std::string ones instead * Move some GooString methods to UTF.h * Fix crash in broken files cpp: * cpp: Fix crash extracting text and font in some files. Issue #1477 * Change base class of ustring to char16_t qt6: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages qt5: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages utils: * pdfdetach: Small code improvements * pdftops: Write compliant ps header build system: * Increase minimum supported base to that provided by Ubuntu 22.04 Release 24.04.0: core: * Optimize page text extraction speed * Fix clipping path handling in some files. Issue #739 * Fix regression in text selection * Fix text search across lines between paragraphs qt6: * Fix crash in SoundObject::data utils: * pdfsig: Add Catalan translation build system: * Build code as C++20 - modified patches % reduce-boost-required-version.patch (refreshed) % reduce-libtiff-required-version.patch (refreshed) - added patches fix CVE-2024-6239 [bsc#1226916], crash when using pdfinfo with -dests parameter on malformed input files + poppler-CVE-2024-6239.patch ==== poppler-qt6 ==== Version update (24.03.0 -> 24.07.0) - Use correct version for freetype BuildRequires. - update to 24.07.0: core: * Fix crashes in broken files * Internal code improvements qt6: * Add getters for document additional actions * Implement reset forms link qt5: * Add getters for document additional actions * Implement reset forms link utils: * pdfinfo: Fix crash in broken documents when using -dests build system: * Mark glib-mkenums as required - drop poppler-CVE-2024-6239.patch (upstream) - version update to 24.06.1 Release 24.06.1: Re-release 24.06.0 with increased SOVERSION of poppler internal library Release 24.06.0: core: * Performance improvements in some files * Fix some issues with files bigger than 2^31 bytes * Remove all cairo include guards for cairo < 1.16 * Fix MSVC build * Internal code improvements qt6: * Update Qt6 doc example * Use the non deprecated version of QString::fromUcs4 glib: * properly document return value from poppler_font_info_scan Release 24.05.0: core: * Fix signing not being totally correct in some kind of PDF files * Assume "Adobe-Identity" for character collection. Issue #1465 * Small improvements in annotation font rendering * Remove some GooString methods, use std::string ones instead * Move some GooString methods to UTF.h * Fix crash in broken files cpp: * cpp: Fix crash extracting text and font in some files. Issue #1477 * Change base class of ustring to char16_t qt6: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages qt5: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages utils: * pdfdetach: Small code improvements * pdftops: Write compliant ps header build system: * Increase minimum supported base to that provided by Ubuntu 22.04 Release 24.04.0: core: * Optimize page text extraction speed * Fix clipping path handling in some files. Issue #739 * Fix regression in text selection * Fix text search across lines between paragraphs qt6: * Fix crash in SoundObject::data utils: * pdfsig: Add Catalan translation build system: * Build code as C++20 - modified patches % reduce-boost-required-version.patch (refreshed) % reduce-libtiff-required-version.patch (refreshed) - added patches fix CVE-2024-6239 [bsc#1226916], crash when using pdfinfo with -dests parameter on malformed input files + poppler-CVE-2024-6239.patch ==== postfix ==== - postfix gives warnings about deprecated parameters (bsc#1225397) ==== powerdevil6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * daemon: Don't leave dangling Action pointers in idle-time containers (kde#490356,kde#490421) - Drop patches, now upstream: * 0001-daemon-Don-t-leave-dangling-Action-pointers-in-idle-.patch - Add patch to fix crash on display wake up (kde#490356, kde#490421): * 0001-daemon-Don-t-leave-dangling-Action-pointers-in-idle-.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Drop patch to enable battery conservation mode control after whitelisting (boo#1226424): * 0001-Revert-Added-setting-for-battery-conservation-mode-L.patch - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * daemon/controllers: Reintroduce a mutex around ddca_open_display2() (kde#489169) * update version for new release * ddcutildisplay: give some time before changing brightness after the monitor resumes * core: reload actions on brightness controller changes * update version for new release - Rebase 0001-Revert-Added-setting-for-battery-conservation-mode-L.patch ==== ppp ==== - drop support for PPPoATM and the dependency on linux-atm-devel ==== procps ==== Subpackages: libproc2-0 - Switch to procps 4 branch, absorbing the former procps4 package: + Add provides/obsoletes procps4: make zypper replace procps4 with the main package for users that manually switched. - Aligning to the existing procps4 package, drop/add/modify patches: A 79042e07.patch A procps-ng-4.0.0-integer-overflow.patch A procps-ng-4.0.4-ignore-sysctl_conf.patch A procps-ng-4.0.4-pmapX-not-twice-anymore.patch A procps-ng-4.0.0-floats.dif D CVE-2023-4016.patch D bsc1195468-23da4f40.patch D procps-3.3.17-bsc1181976.patch D procps-3.3.17-ignore-sysctl_conf.patch D procps-3.3.17-library-bsc1181475.patch D procps-3.3.17-top-bsc1181475.patch D procps-ng-3.3.10-integer-overflow.patch D procps-ng-3.3.10-large_pcpu.patch D procps-ng-3.3.17-logind.patch D procps-ng-3.3.8-bnc634840.patch D procps-ng-3.3.9-watch.patch D procps-ng-3.3.8-accuracy.dif D procps-ng-3.3.10-bnc634071_procstat2.diff D procps-ng-3.3.10-fdleak.dif M procps-ng-3.3.10-errno.patch M procps-ng-3.3.10-slab.patch M procps-ng-3.3.11-pmap4suse.patch M procps-ng-3.3.8-ignore-scan_unevictable_pages.patch M procps-ng-3.3.8-petabytes.patch M procps-ng-3.3.8-readeof.patch M procps-v3.3.3-pwdx.patch - Use %patch -P N instead of deprecated %patchN. ==== publicsuffix ==== Version update (20240603 -> 20240722) - Update to version 20240722: * PSL Private Section Domains WHOIS Checker (#2014) * Add servebolt.cloud to PLS (#2026) * Add `p.tawk.email` and `p.tawkto.email` domains (#2016) * Remove domain no longer under Supabase control. (#2037) * tools/internal/parser: implement automatic reformatting (#2036) * util: gTLD data autopull updates for 2024-07-12T15:14:39 UTC (#2034) * Add dhosting.pl Sp. z o.o. shared domains: dfirma.pl, dkonto.pl, you2.pl (#2024) * tools/internal/parser: rework metadata extraction for more accurate reformatting (#2027) * AWS Submissions to the Public Suffix List - Q2 2024 (#1954) * aero: remove extra word between TLD name and URL (#2029) * tools/internal/parser: rewrite parser to output a syntax tree (#2025) * Add removal notice to PR template (#2023) * remove Rakuten Games, Inc related entries (#2022) * add `hatenablog.com` etc (#1948) * Add cyber_Folks S.A. shared domain - cfolks.pl (#2017) * tools/internal/parser: minor parser cleanups (#2021) * Add Craft Docs Domain (#2006) * util: gTLD data autopull updates for 2024-06-29T15:13:33 UTC (#2020) * Merge WebPros domains in the same section (#2013) * Add `durumis.com` (#1978) * tools/internal/parser: validate the sort order of the private section (#2012) * Update comments on aland.fi (#2019) * Remove instantcloud.cn (#2015) * tools/internal/parser: detect and report section markers within suffix blocks (#2011) * tools/internal/parser: remove workarounds for fixed PSL blocks (#2010) * Add Raidboxes GmbH to the list (#2004) * Add missing URL schemes to URLs (#2008) * Add closing chevron to contact email address. (#2007) * tool/internal/parser: sanitize input to clean, valid UTF-8 (#2005) * Add `obl.ong` (#1830) * Salesforce crm dev (#1941) * Add wpsquared.site and wp2.host to private section (#1957) (#1957) * Add netfy.app (#1991) * Remove expired domains: `ro.im`, `cn.vu` (#2003) * tools/internal/parser: refactor to separate text processing from parser main logic (#1999) * Replace unicode fullwidth colon with a regular ascii colon. (#2001) * Add missing spaces after '//' on prequalifyme.today block (#2000) * Add `as.sh.cn` (#1992) * tools: add a validating parser for PSL files (#1987) * Clarify request to list third-party limits in PR template * util: gTLD data autopull updates for 2024-06-13T15:15:16 UTC (#1994) * Reattach of.by to the Belarus ccTLD block (#1995) * add madethis.site (#1979) * mytuleap.com, tuleap-partners.com: update contact information (#1845) * Add Strapi domains (#1982) * Add relay.evervault.app and relay.evervault.dev (#1959) * add .ind.mom (#1984) * Add 6 new domains to Lukanet Ltd Private domains (#1977) * Add heiyu.space (#1980) ==== python-Babel ==== Version update (2.14.0 -> 2.15.0) - Update to 2.15.0 * Babel 2.15.0 will require Python 3.8 or newer * CLDR: Upgrade to CLDR 44 * Dates: Support for the "fall back to short format" logic for time delta formatting * Message: More versatile .po IO functions * Numbers: Improved support for alternate spaces when parsing numbers * Upgrade GitHub Actions * The Unicode license is now included in `locale-data` and in the documentation - Adjust upstream source name in spec file ==== python-Jinja2 ==== - Cherry-pick patch from Fedora to fix FTBFS with Python 3.13 * fix-ftbfs-with-python313.patch - Add new build dependency python-trio to BuildRequires ==== python-Pillow ==== Version update (10.3.0 -> 10.4.0) - Update to 10.4.0 * Raise FileNotFoundError if show_file() path does not exist #8178 [radarhere] * Improved reading 16-bit TGA images with colour #7965 [Yay295, radarhere] * Deprecate non-image ImageCms modes #8031 [radarhere] * Fixed processing multiple JPEG EXIF markers #8127 [radarhere] * Do not preserve EXIFIFD tag by default when saving TIFF images #8110 [radarhere] * Added ImageFont.load_default_imagefont() #8086 [radarhere] * Added Image.WARN_POSSIBLE_FORMATS #8063 [radarhere] * Remove zero-byte end padding when parsing any XMP data #8171 [radarhere] * Do not detect Ultra HDR images as MPO #8056 [radarhere] * Raise SyntaxError specific to JP2 #8146 [Yay295, radarhere] * Do not use first frame duration for other frames when saving APNG images #8104 [radarhere] * Consider I;16 pixel size when using a 1 mode mask #8112 [radarhere] * When saving multiple PNG frames, convert to mode rather than raw mode #8087 [radarhere] * Added byte support to FreeTypeFont #8141 [radarhere] * Allow float center for rotate operations #8114 [radarhere] * Do not read layers immediately when opening PSD images #8039 [radarhere] * Restore original thread state #8065 [radarhere] * Read IM and TIFF images as RGB, rather than RGBX #7997 [radarhere] * Only preserve TIFF IPTC_NAA_CHUNK tag if type is BYTE or UNDEFINED #7948 [radarhere] * Clarify ImageDraw2 error message when size is missing #8165 [radarhere] * Support unpacking more rawmodes to RGBA palettes #7966 [radarhere] * Removed support for Qt 5 #8159 [radarhere] * Improve ``ImageFont.freetype`` support for XDG directories on Linux #8135 [mamg22, radarhere] * Improved consistency of XMP handling #8069 [radarhere] * Use pkg-config to help find libwebp and raqm #8142 [radarhere] * Accept 't' suffix for libtiff version #8126, #8129 [radarhere] * Deprecate ImageDraw.getdraw hints parameter #8124 [radarhere, hugovk] * Added ImageDraw circle() #8085 [void4, hugovk, radarhere] * Add mypy target to Makefile #8077 [Yay295] * Added more modes to Image.MODES #7984 [radarhere] * Deprecate BGR;15, BGR;16 and BGR;24 modes #7978 [radarhere, hugovk] * Fix ImagingAccess for I;16N on big-endian #7921 [Yay295, radarhere] * Support reading P mode TIFF images with padding #7996 [radarhere] * Deprecate support for libtiff < 4 #7998 [radarhere, hugovk] * Corrected ImageShow UnixViewer command #7987 [radarhere] * Use functools.cached_property in ImageStat #7952 [nulano, hugovk, radarhere] * Add support for reading BITMAPV2INFOHEADER and BITMAPV3INFOHEADER #7956 [Cirras, radarhere] * Support reading CMYK JPEG2000 images #7947 [radarhere] ==== python-PyYAML ==== - add build-with-cython3.patch from 6.0.2rc1 to build with cython3 (needed for python 3.13+) ==== python-Twisted ==== Version update (23.10.0 -> 24.3.0) Subpackages: python311-Twisted python311-Twisted-tls - Add a couple of upstream patches to fix http process information disclosure (CVE-2024-41671, bsc#1228549) and XSS via html injection (CVE-2024-41810, bsc#1228552): * CVE-2024-41671.patch gh#twisted/twisted@4a930de12fb6 * CVE-2024-41810.patch gh#twisted/twisted@046a164f89a0 - update to 24.3.0: * twisted.logger.formatEvent now honors dotted method names, not just flat function names, in format strings, as it has long been explicitly documented to do. So, you will now get the expected result from formatEvent("here's the result of calling a method at log-format time: {obj.method()}", obj=...) * twisted.web.http.HTTPChannel now ignores the trailer headers provided in the last chunk of a chunked encoded response, rather than raising an exception. * twisted.protocols.tls.BufferingTLSTransport, used by default by twisted.protocols.tls.TLSMemoryBIOFactory, was refactored for improved performance when doing a high number of small writes. * twisted.python.failure.Failure now throws exception for generators without triggering a deprecation warnings on Python 3.12. * twisted.internet.process.Process, used by reactor.spawnProcess, now copies the parent environment when the env=None argument is passed on Posix systems and os.posix_spawnp is used internally. * twisted.internet.defer.inlineCallbacks.returnValue's stack introspection was adjusted for the latest PyPy 7.3.14 release, allowing legacy @inlineCallbacks to run on new PyPY versions. * twisted.trial.reporter.TestRun.startTest() is no longer called for tests with skip annotation or skip attribute for Python 3.12.1 or newer. This is the result of upstream Python gh-106584 change. The behavior is not change in 3.12.0 or older. - drop twisted-pr12054-testinvokationpy3.12.1.patch, stop-using-3-arg-throw.patch (upstream) ==== python-argcomplete ==== Version update (3.3.0 -> 3.4.0) - Update to 3.4.0 * No stdin for python calls from bash completion functions (#488) - Prevents usage of stdin by (python) executables that are called during completion generation. This prevents the completion locking up the entire shell when the python script is broken i.e. it enters an interactive mode (REPL) instead of generating the completions, as expected. * Localize shell variable REPLY to avoid overwriting usersâ value (#489) - The variable REPLY is used by default by the ``read`` shell builtin to store the return value, and like all bash/zsh variables, is scoped globally. This change allows this variable to be used for other needs by appropriately scoping its internal use by an argcomplete utility function that uses ``read``. - Drop patches for issued fixed upstream * bash-repl.patch ==== python-certifi ==== Version update (2023.11.17 -> 2024.7.4) - Refresh patches python-certifi-shipped-requests-cabundle.patch and two-basic-unit-tests.patch - Remove executable bit from core.py file - Update to 2024.7.4 (CVE-2024-39689, bsc#1227519): Removed certs: * Subject: CN=GLOBALTRUST 2020 O=e-commerce monitoring GmbH - 2024.06.02 Added certs: * Subject: CN=FIRMAPROFESIONAL CA ROOT-A WEB O=Firmaprofesional SA - 2024.02.02 Added certs: * Subject: CN=Telekom Security TLS ECC Root 2020 O=Deutsche Telekom Security GmbH * Subject: CN=Telekom Security TLS RSA Root 2023 O=Deutsche Telekom Security GmbH Removed certs: * Subject: O=SECOM Trust.net OU=Security Communication RootCA1 * Fix leaking certificate issue ==== python-cffi ==== - add py313-compat.patch py313-use-format-unraisable.patch py313-use-hashpointer.patch: add upstream patches for py3.13 support ==== python-cryptography ==== Version update (42.0.8 -> 43.0.0) - update to 43.0.0: * BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e has been removed. Users on older version of OpenSSL will need to upgrade. * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1. * Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0. * :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generat e_private_key` now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still considered insecure, users should generally use a key size of 2048-bits. * :func:`~cryptography.hazmat.primitives.serialization.pkcs7.se rialize_certificates` now emits ASN.1 that more closely follows the recommendations in RFC 2315. * Added new :doc:`/hazmat/decrepit/index` module which contains outdated and insecure cryptographic primitives. :class:`~cryp tography.hazmat.primitives.ciphers.algorithms.CAST5`, :class: `~cryptography.hazmat.primitives.ciphers.algorithms.SEED`, :c lass:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA `, and :class:`~cryptography.hazmat.primitives.ciphers.algori thms.Blowfish`, which were deprecated in 37.0.0, have been added to this module. They will be removed from the cipher module in 45.0.0. * Moved :class:`~cryptography.hazmat.primitives.ciphers.algorit hms.TripleDES` and :class:`~cryptography.hazmat.primitives.ci phers.algorithms.ARC4` into :doc:`/hazmat/decrepit/index` and deprecated them in the cipher module. They will be removed from the cipher module in 48.0.0. * Added support for deterministic :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (RFC 6979) * Added support for client certificate verification to the :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the form of :class:`~cryptography.x509.verification.ClientVerifier`, :class:`~cryptography.x509.verification.VerifiedClient`, and PolicyBuilder :meth:`~cryptography.x509.verification.PolicyBu ilder.build_client_verifier`. * Added Certificate :attr:`~cryptography.x509.Certificate.publi c_key_algorithm_oid` and Certificate Signing Request :attr:`~ cryptography.x509.CertificateSigningRequest.public_key_algori thm_oid` to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID` Object Identifier of the public key found inside the certificate. * Added :attr:`~cryptography.x509.InvalidityDate.invalidity_dat e_utc`, a timezone-aware alternative to the naïve datetime attribute :attr:`~cryptography.x509.InvalidityDate.invalidity_date`. * Added support for parsing empty DN string in :meth:`~cryptography.x509.Name.from_rfc4514_string`. * Added the following properties that return timezone-aware datetime objects: :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_u tc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_ time_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse. this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleRe sponse.next_update_utc`, These are timezone-aware variants of existing properties that return naïve datetime objects. * Added :func:`~cryptography.hazmat.primitives.asymmetric.rsa.r sa_recover_private_exponent` * Added :meth:`~cryptography.hazmat.primitives.ciphers.CipherCo ntext.reset_nonce` for altering the nonce of a cipher context without initializing a new instance. See the docs for additional restrictions. * :class:`~cryptography.x509.NameAttribute` now raises an exception when attempting to create a common name whose length is shorter or longer than RFC 5280 permits. * Added basic support for PKCS7 encryption (including SMIME) via :class:`~cryptography.hazmat.primitives.serialization.pkc s7.PKCS7EnvelopeBuilder`. - add use-offline-build.patch ==== python-libvirt-python ==== Version update (10.4.0 -> 10.6.0) - Update to 10.6.0 - Add all new APIs and constants in libvirt 10.6.0 - jsc#PED-8909 - Update to 10.5.0 - Add all new APIs and constants in libvirt 10.5.0 ==== python-msgpack ==== Version update (1.0.7 -> 1.0.8) - Update to 1.0.8 * Update Cython to 3.0.8. This fixes memory leak when iterating ``Unpacker`` object on Python 3.12. * Do not include C/Cython files in binary wheels. - Drop removal of C/Cython files from %install section ==== python-psutil ==== Version update (5.9.7 -> 6.0.0) - Update to version 6.0.0 * 2109_: ``maxfile`` and ``maxpath`` fields were removed from the namedtuple returned by `disk_partitions()`_. Reason: on network filesystems (NFS) this can potentially take a very long time to complete. * 2366_, [Windows]: log debug message when using slower process APIs. * 2375_, [macOS]: provide arm64 wheels. (patch by Matthieu Darbois) * 2396_: `process_iter()`_ no longer pre-emptively checks whether PIDs have been reused. This makes `process_iter()`_ around 20x times faster. * 2396_: a new ``psutil.process_iter.cache_clear()`` API can be used the clear `process_iter()`_ internal cache. * 2401_, Support building with free-threaded CPython 3.13. (patch by Sam Gross) * 2407_: `Process.connections()`_ was renamed to `Process.net_connections()`_. The old name is still available, but it's deprecated (triggers a ``DeprecationWarning``) and will be removed in the future. * 2425_: [Linux]: provide aarch64 wheels. (patch by Matthieu Darbois / Ben Raz) * 2250_, [NetBSD]: `Process.cmdline()`_ sometimes fail with EBUSY. It usually happens for long cmdlines with lots of arguments. In this case retry getting the cmdline for up to 50 times, and return an empty list as last resort. * 2254_, [Linux]: offline cpus raise NotImplementedError in cpu_freq() (patch by Shade Gladden) * 2272_: Add pickle support to psutil Exceptions. * 2359_, [Windows], [CRITICAL]: `pid_exists()`_ disagrees with `Process`_ on whether a pid exists when ERROR_ACCESS_DENIED. * 2360_, [macOS]: can't compile on macOS < 10.13. (patch by Ryan Schmidt) * 2362_, [macOS]: can't compile on macOS 10.11. (patch by Ryan Schmidt) * 2365_, [macOS]: can't compile on macOS < 10.9. (patch by Ryan Schmidt) * 2395_, [OpenBSD]: `pid_exists()`_ erroneously return True if the argument is a thread ID (TID) instead of a PID (process ID). * 2412_, [macOS]: can't compile on macOS 10.4 PowerPC due to missing `MNT_` constants. * 2109_: the namedtuple returned by `disk_partitions()`_' no longer has ``maxfile`` and ``maxpath`` fields. * 2396_: `process_iter()`_ no longer pre-emptively checks whether PIDs have been reused. If you want to check for PID reusage you are supposed to use `Process.is_running()`_ against the yielded `Process`_ instances. That will also automatically remove reused PIDs from `process_iter()`_ internal cache. * 2407_: `Process.connections()`_ was renamed to `Process.net_connections()`_. The old name is still available, but it's deprecated (triggers a ``DeprecationWarning``) and will be removed in the future. - from version 5.9.8 * 2343_, [FreeBSD]: filter `net_connections()`_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned. * 2342_, [NetBSD]: same as above (#2343) but for NetBSD. * 2349_: adopted black formatting style. * 930_, [NetBSD], [critical]: `net_connections()`_ implementation was broken. It could either leak memory or core dump. * 2340_, [NetBSD]: if process is terminated, `Process.cwd()`_ will return an empty string instead of raising `NoSuchProcess`_. * 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN. * 2222_, [macOS]: `cpu_freq()` now returns fixed values for `min` and `max` frequencies in all Apple Silicon chips. - Drop obsolete patch to skip tests on Python 2 * skip_rlimit_tests_on_python2.patch - Update patch to skip failing tests for new version * skip_failing_tests.patch ==== python-ptyprocess ==== - Cherry-pick upstream patch to fix tests with Python 3.13. * remove-old-unittest-functions.patch ==== python-pyOpenSSL ==== Version update (24.1.0 -> 24.2.1) - 24.2.1: * Deprecated OpenSSL.crypto.X509Req, OpenSSL.crypto.load_certificate_request, OpenSSL.crypto.dump_certificate_request. Instead, cryptography.x509.CertificateSigningRequest,s cryptography.x509.CertificateSigningRequestBuilder,s cryptography.x509.load_der_x509_csr,s or cryptography.x509.load_pem_x509_csr should be used. * Added type hints for the SSL module. #1308. * Changed OpenSSL.crypto.PKey.from_cryptography_key to accept public and private EC, ED25519, ED448 keys ==== python-pycairo ==== Version update (1.26.0 -> 1.26.1) - Update to 1.26.1 * Fix Surface.set_mime_data() with Python 3.13 :pr:`366` This also fixes the test suite with Python 3.13b2. * Update vendored Windows wheel dependencies :pr:`370` ==== python-pygit2 ==== Version update (1.15.0 -> 1.15.1) - Update to 1.15.1 * New `Repository.revert(...)` * New optional `depth` argument in submodules `add()` and `update()` methods * Now `Submodule.url` returns `None` when the submodule does not have a url * Fix use after free bug in error reporting * Fix `Submodule.head_id` when the submodule is not in the current HEAD tree * Fix `Submodule.open()` when subclassing `Repository` * Fix error in the test suite when running with address sanitizer * Annotations and documentation fixes - Fix version number for previous changelog entry ==== python-semanage ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * Bugfixes: * libsemanage: support huge passwd entries ==== python-setuptools ==== Version update (70.0.0 -> 70.1.1) - update to 70.1.1: * Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* * Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg * Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* * Migrated Setuptools' own config to pyproject.toml * Prevent a TypeError: 'NoneType' object is not callable when shutil_rmtree is called without an onexc parameter on Python<=3.11 * Replace use of mktemp with can_symlink from the stdlib test suite. * Improvement for attr: directives in configuration to handle more edge cases related to complex package_dir. * Fix accidental implicit string concatenation. ==== python-tornado6 ==== Version update (6.4 -> 6.4.1) - Update to version 6.4.1: + Security Improvements: - Parsing of the ``Transfer-Encoding`` header is now stricter. Unexpected transfer-encoding values were previously ignored and treated as the HTTP/1.0 default of read-until-close. This can lead to framing issues with certain proxies. We now treat any unexpected value as an error. - Handling of whitespace in headers now matches the RFC more closely. Only space and tab characters are treated as whitespace and stripped from the beginning and end of header values. Other unicode whitespace characters are now left alone. This could also lead to framing issues with certain proxies. - `tornado.curl_httpclient` now prohibits carriage return and linefeed headers in HTTP headers (matching the behavior of `simple_httpclient`). These characters could be used for header injection or request smuggling if untrusted data were used in headers. + General Changes: - `tornado.iostream`: `SLIOStream` now understands changes to error codes from OpenSSL 3.2. The main result of this change is to reduce the noise in the logs for certain errors. - `tornado.simple_httpclient`: `simple_httpclient` now prohibits carriage return characters in HTTP headers. It had previously prohibited only linefeed characters. - `tornado.testing`: `.AsyncTestCase` subclasses can now be instantiated without being associated with a test method. Improves compatibility with test discovery in Pytest 8.2. - Drop support-pytest-8.2.patch: fixed upstream. - Drop openssl-3.2.patch: fixed upstream. ==== python311 ==== Subpackages: python311-curses python311-dbm - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). - Update F00251-change-user-install-location.patch to make pip and modern tools install directly in /usr/local when used by the user. bsc#1225660 ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). - Update F00251-change-user-install-location.patch to make pip and modern tools install directly in /usr/local when used by the user. bsc#1225660 ==== qalculate ==== Version update (4.9.0 -> 5.2.0) - version update to 5.2.0 * Physical constants updated with CODATA 2022 values * New function: allroots() * New units: therm, thermie, IUNS calorie, rpm * Additional names/symbols for turn unit * Use symbol "cal" for thermochemical (instead of international table) calorie * Change title and names/symbols of weak mixing angle (prepend "sin2" to theta variants) * Return exact negative integers in log10() * More conservative handling of infinity in equations * Remove n from equation solution if possible using assumptions of x * Fix input of scientific E-notation using lowercase e in numbers using concise interval notation, in expressions * Fix "bit width" and "signed integer" arguments in setbits() * Fix a^(f(x))=a^(b*g(x)) where b=2 or b=3 * Fix auto/dual approximation with "where" expression * Fix "where" expressions with multiple inequality statements for a single variable, e.g. "where x>0 and x<10" * Fix crash when a variable name/symbol with more than 20 characters is used in "where" expression * Fix unnecessary parenthesis, with wrong color for closing bracket, around unit with exponent in HTML output (affects qalculate-qt) * Fix qalc not exiting after factorization in non-interactive mode * Minor bug fixes and feature enhancements - Update to 5.1.1. Check https://github.com/Qalculate/libqalculate/releases for older changes list. Changes since 5.0.0: * Support for solving equations containing if() function * Support for solving root(a, x)=b (requires rational value for ln(a)/ln(b)) * New functions: powertower() and multiples() * New units for solar radius, mass, and luminosity * Ask for the desired interpretation the first time percent addition is used (e.g. 100 + 10% equals 110 or 100.1) * Use parentheses for exponent using scientific notation (with power of 10) * Support integer factorization of integers in matrix/vector, and of numerator and denominator in rational number * Relaxed conditions for (x^a)^b = x^(a à b) and x^a à x^b = x^(a + b) when complex numbers are deactivated (fixes segfaults) * Fix (ax + n)^2 > 1, where n is even and a is not 1, returning false * Fix setbits() function * Fix Number::equals(0, ..., true) when number is infinite (affects replace() function) * Add two's complement input and binary bits to preferences, and preserve these settings when leaving programming keypad (GTK, Qt) * Download button in dialog shown when new version is available, on Windows (GTK, Qt) * Fix AltGr (primarily for input of operators) on Windows (GTK, Qt) * Option to show parsed expression in result field (GTK) * Portuguese (Portugal) translation (GTK) * Fix updating of self-contained GNU/Linux binaries from GUI (GTK) * Improved history list efficiency (Qt) * Hide expression tooltip (after 300 ms) when input resumes, if delayed expression status is enabled (Qt) * Minor bug fixes and feature enhancements ==== qemu ==== Version update (9.0.0 -> 9.0.2) Subpackages: qemu-arm qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-pr-helper qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios - roms: Build ipxe with NO_WERROR=1 (bsc#1227960) - Update to version 9.0.2: Full list of backports here: https://lore.kernel.org/qemu-devel/1718081053.366429.1238758.nullmailer@tls.... A selection of them is reported here too: hw/nvme: fix number of PIDs for FDP RUH update sphinx/qapidoc: Fix to generate doc for explicit, unboxed arguments char-stdio: Restore blocking mode of stdout on exit virtio: remove virtio_tswap16s() call in vring_packed_event_read() virtio-pci: Fix the failure process in kvm_virtio_pci_vector_use_one() tcg/optimize: Fix TCG_COND_TST* simplification of setcond2 block: Parse filenames only when explicitly requested iotests/270: Don't store data-file with json: prefix in image iotests/244: Don't store data-file with protocol in image qcow2: Don't open data_file with BDRV_O_NO_IO tests: add testing of parameter=3D1 for SMP topology (bsc#1228169) hw/core: allow parameter=3D1 for SMP topology on any machine ... - Update to latest stable release (9.0.1). Full list of backports here: https://lore.kernel.org/qemu-devel/1718081053.366429.1238758.nullmailer@tls.... A selection of them is reported here too: Update version for 9.0.1 release target/loongarch: fix a wrong print in cpu dump ui/sdl2: Allow host to power down screen virtio-gpu: fix v2 migration target/i386: fix SSE and SSE2 feature check target/i386: fix xsave.flat from kvm-unit-tests disas/riscv: Decode all of the pmpcfg and pmpaddr CSRs riscv, gdbstub.c: fix reg_width in ricsv_gen_dynamic_vector_feature() target/riscv/kvm.c: Fix the hart bit setting of AIA target/riscv: rvzicbo: Fixup CBO extension register calculation target/riscv: do not set mtval2 for non guest-page faults target/riscv: prioritize pmp errors in raise_mmu_exception() target/riscv: rvv: Remove redudant SEW checking for vector fp narrow/widen instructions target/riscv: rvv: Check single width operator for vfncvt.rod.f.f.w target/riscv: rvv: Check single width operator for vector fp widen instructions target/riscv: rvv: Fix Zvfhmin checking for vfwcvt.f.f.v and vfncvt.f.f.w instructions target/riscv/cpu.c: fix Zvkb extension config target/riscv: Fix the element agnostic function problem target/riscv/kvm: tolerate KVM disable ext errors target/riscv/kvm: Fix exposure of Zkr hw/intc/riscv_aplic: APLICs should add child earlier than realize iotests: test NBD+TLS+iothread qio: Inherit follow_coroutine_ctx across TLS ... ==== qqc2-breeze-style6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== qt6-base ==== Subpackages: libQt6Concurrent6 libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6OpenGLWidgets6 libQt6PrintSupport6 libQt6Sql6 libQt6Test6 libQt6Widgets6 libQt6Xml6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-platformtheme-gtk3 qt6-printsupport-cups qt6-sql-mysql qt6-sql-sqlite - Add upstream change (boo#1227426, CVE-2024-39936) * 0001-HTTP2-Delay-any-communication-until-encrypted-can-be.patch ==== qt6-sensors ==== - Make sure the plugins are installed (boo#1227871) ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patches to fix crashes on screens disappearing (kde#489072, kde#489180): * 0001-client-Guard-against-windows-being-on-a-null-screen.patch * 0002-Client-Improve-thread-safety-determining-window-size.patch - Add patch to fix certain wayland protocol errors (kde#489259): * 0001-Client-Ensure-that-guessed-popup-parent-has-a-shell-.patch ==== re2 ==== Version update (20240601 -> 20240702) - update to 2024-07-02: * address -Wsign-compare warnings ==== redland ==== - Add -D_GNU_SOURCE to %optflags so that mkstemp is properly declared by glibc headers. [boo#1225918] ==== restorecond ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * no changes from 3.6, only version changed to 3.7 ==== rng-tools ==== Version update (6.16 -> 6.17) - Do not specify a fill-watermark in the service file to fix non- starting service since 6.17, use auto-detection (boo#1228245) - update to 6.17: * mix data fed to the kernel byte-wise from multiple sources * added option to attempt more persistent use of slow entropy sources * fix some missing m4 quotes * improved debug output to show FIPS failures more clearly * added a named pipe entropy source * adjusted linux poolsize * fixed some pkcs11 error messages * fixed ignorefail and random_step options ==== rsyslog ==== Version update (8.2306.0 -> 8.2406.0) - Upgrade to rsyslog 8.2406.0 -patches replaced by upgrade (see details in upgrade logs below) 0001-use-logind-instead-of-utmp-for-wall-messages-with-sy.patch * 2023-11-29: Revert "Update omlibdbi.c" * 2023-11-21: imkmsg: add params "readMode" and "expectedBootCompleteSeconds" * 2023-11-10: testbench: fix "typo" in test case * 2023-11-08: omazureeventhubs: Corrected handling of transport closed failures * 2023-10-31: imkmsg: add module param parseKernelTimestamp * 2023-11-03: imfile: remove state file on file delete fix * 2023-10-30: imklog bugfix: keepKernelTimestamp=off config param did not work * 2023-10-30: Netstreamdriver: deallocate certificate related resources * 2023-10-20: TLS subsystem: add remote hostname to error reporting * 2023-10-21: Fix forking issue do to close_range call * 2023-10-23: replace debian sample systemd service file by readme * 2023-10-20: testbench: bump zookeeper version to match current offering * 2023-10-20: Update rsyslog.service sample unit to the latest version used in Debian Trixie * 2023-10-20: Only keep a single rsyslog.service for Debian * 2023-10-20: Remove no longer used --with-systemdsystemunitdir configure switch * 2023-10-18: use logind instead of utmp for wall messages with systemd - replaces 0001-use-logind-instead-of-utmp-for-wall-messages-with-sy.patch * 2023-10-11: Typo fixes * 2023-10-11: Drop CAP_IPC_LOCK capability * 2023-10-04: Add CAP_NET_RAW capability due to the omudpspoof module * 2023-10-03: Add new global config option "libcapng.enable" * 2023-10-02: tcp net subsystem: handle data race gracefully * 2023-08-31: Avoid crash on restart in imrelp SIGTTIN handler * 2023-09-26: fix startup issue on modern systemd systems * 2023-09-14: Fix misspeling in message. * 2023-09-13: tcpflood bugfix: plain tcp send error not properly reported * 2023-09-12: omprog bugfix: Add CAP_DAC_OVERRIDE to the bounding set * 2023-08-02: testbench: cleanup and improve some more imfile tests * 2023-08-02: lookup tables: fix static analyzer issue * 2023-08-02: lookup tables bugfix: reload on HUP did not work when backgrounded * 2023-07-28: CI: fix and cleaup github workflow * 2023-03-07: imjournal: Support input module * 2023-07-28: testbench: make test more reliable * 2023-07-28: tcpflood: add -A option to NOT abort when sending fails * 2023-07-28: tcpflood: fix today's programming error * 2023-07-28: openssl: Replaced depreceated method SSLv23_method with TLS_method * 2023-07-27: testbench improvement: define state file directories for imfile tests * 2023-07-28: testbench: cleanup a test and some nitfixes to it * 2023-07-27: tcpflood bugfix: TCP sending was not implemented properly * 2023-07-26: testbench: make waiting for HUP processing more reliable * 2023-07-25: build system: make rsyslogd execute when --disable-inet is configured * 2023-07-25: CI: update zookeper download to newer version * 2023-07-10: ossl driver: Using newer INIT API for OpenSSL 1.1+ Versions * 2023-07-11: ossl: Fix CRL File Expire from 1 day to 100 years. * 2023-07-06: PR5175: Add TLS CRL Support for GnuTLS driver and OpenSSL 1.0.2+ * 2022-05-13: omazureeventhubs: Initial implementation of new output module * 2023-07-03: TLS CRL Support Issue 5081 * 2023-06-29: action.resumeintervalmax: the parameter was not respected * 2023-06-28: IMHIREDIS::FIXED:: Restore compatiblity with hiredis < v1.0.0 * 2023-05-15: Add the 'batchsize' parameter to imhiredis * 2023-06-28: Clear undefined behavior in libgcry.c (GH #5167) * 2023-06-22: Do not try to drop capabilities when we don't have any * 2023-06-22: testbench: use newer zookeeper version in tests * 2023-06-22: build system: more precise error message on too-old lib * 2023-05-17: Fix quoting for omprog, improg, mmexternal ==== ruby3.3 ==== Version update (3.3.3 -> 3.3.4) Subpackages: libruby3_3-3_3 - Update to 3.3.4 This release fixes a regression in Ruby 3.3.3 that dependencies are missing in the gemspec of some bundled gems: net-pop, net-ftp, net-imap, and prime [Bug #20581]. The fix allows Bundler to successfully install those gems on platforms like Heroku. If your bundle install runs correctly now, you may not have this issue. https://github.com/ruby/ruby/releases/tag/v3_3_4 ==== rubygem-nokogiri ==== Version update (1.15.5 -> 1.16.7) - 1.16.7: - update intree libxml2 copy (unused in our build) - 1.16.6: - update intree libxml2 copy (unused in our build) - update intree zlib copy (unused in our build) - [CRuby] `XML::Reader` sets the `@encoding` instance variable during reading if it is not passed into the initializer. Previously, it would remain `nil`. The behavior of `Reader#encoding` has not changed. This works around changes to how libxml2 reports the encoding used in v2.12.6. - [CRuby] `XML::Reader` defaults the encoding to UTF-8 if it's not specified in either the document or as a method parameter. Previously non-ASCII characters were serialized as NCRs in this case. [#2891] (@flavorjones) - [CRuby] Restored support for compilation by GCC versions earlier than 4.6, which was broken in v1.15.0 (540e9aee). [#3090] (@adfoster-r7) - [CRuby] Patched upstream libxml2 to allow parsing HTML5 in the context of a namespaced node (e.g., foreign content like MathML). [#3112, #3116] (@flavorjones) - [CRuby] Fixed a small memory leak in libgumbo (HTML5 parser) when the maximum tree depth limit is hit. [#3098, #3100] (@stevecheckoway) - Drop gcc14-allow-incompatible-pointer-types-for-now.patch - Added gcc14-allow-incompatible-pointer-types-for-now.patch: gcc 14 errors out on incompatible pointer types Allow those until https://github.com/sparklemotion/nokogiri/issues/3295 is fixed - Added only-complain-about-version-diff-if-it-is-older.patch boo#1202053 boo#1213999 boo#1203728 - limit ruby versions to 3.x - 1.16.0: This release introduces native gem support for Ruby 3.3. This release ends support for Ruby 2.7, for which [upstream support ended 2023-03-31](https://www.ruby-lang.org/en/downloads/branches/). [#]### Pattern matching This version marks _official support_ for the pattern matching API in `XML::Attr`, `XML::Document`, `XML::DocumentFragment`, `XML::Namespace`, `XML::Node`, and `XML::NodeSet` (and their subclasses), originally introduced as an experimental feature in v1.14.0. (@flavorjones) Documentation on what can be matched: * [`XML::Attr#deconstruct_keys`](https://nokogiri.org/rdoc/Nokogiri/XML/Attr.html?h=deconstruct#method-i-deco...) * [`XML::Document#deconstruct_keys`](https://nokogiri.org/rdoc/Nokogiri/XML/Document.html?h=deconstruct#method-i-...) * [`XML::Namespace#deconstruct_keys`](https://nokogiri.org/rdoc/Nokogiri/XML/Namespace.html?h=deconstruct+namespac...) * [`XML::Node#deconstruct_keys`](https://nokogiri.org/rdoc/Nokogiri/XML/Node.html?h=deconstruct#method-i-deco...) * [`XML::DocumentFragment#deconstruct`](https://nokogiri.org/rdoc/Nokogiri/XML/DocumentFragment.html?h=deconstruct#m...) * [`XML::NodeSet#deconstruct`](https://nokogiri.org/rdoc/Nokogiri/XML/NodeSet.html?h=deconstruct#method-i-d...) [#]## Dependencies * [CRuby] Vendored libxml2 is updated to v2.12.3 from v2.11.6. (@flavorjones) * https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.0 * https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.1 * https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.2 * https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.3 [#]## Fixed * CSS `nth` pseudo-classes now handle spaces, e.g. `"2n + 1"`. [#3018] (@fusion2004) * [CRuby] `libgumbo` no longer leaks memory when an incomplete tag is abandoned by the HTML5 parser. [#3036] (@flavorjones) [#]## Removed * Removed `Nokogiri::HTML5.get` which was deprecated in v1.12.0. [#2278] (@flavorjones) * Removed the CSS-to-XPath utility modules `XPathVisitorAlwaysUseBuiltins` and `XPathVisitorOptimallyUseBuiltins`, which were deprecated in v1.13.0 in favor of `XPathVisitor` constructor args. [#2403] (@flavorjones) * Removed `XML::Reader#attribute_nodes` which was deprecated in v1.13.8 in favor of `#attribute_hash`. [#2598, #2599] (@flavorjones) * [CRuby] Removed the `libxml/libxml2_path` key from `VersionInfo`, used in the past for third-party library integration, in favor of the `nokogiri/cppflags` and `nokogiri/ldflags` keys. Please note that third-party library integration is not fully supported and may be deprecated soon, see #2746 for more context. [#2143] (@flavorjones) ==== rubygem-ruby-augeas ==== - Modify patch to also apply with -p1 COPYING.patch - Add gcc14.patch dont enforce the check until upstream can fix the code ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Fix few failing tests to work with both Salt and Salt bundle - Skip testing unsupported OpenSSL crypto algorithms - Added: * make-tests-compatible-with-venv-bundle.patch * skip-more-tests-related-to-old-openssl-algorithms.patch - Fix rich rule comparison in firewalld module (bsc#1222684) - Added: * firewalld-normalize-new-rich-rules-before-comparing-.patch - test_vultrpy: adjust test expectation to prevent failure after Debian 10 EOL - Added: * test_vultrpy-adjust-test-expectation-to-prevent-fail.patch - Make auth.pam more robust with Salt Bundle and fix tests - Added: * some-more-small-tests-fixes-enhancements-661.patch - Fix performance of user.list_groups with many remote groups - Added: * fix-user.list_groups-omits-remote-groups.patch ==== samba ==== Version update (4.20.1+git.339.cf6e153bb2 -> 4.20.2+git.350.4cfcde9cdb) Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-gpupdate samba-ldb-ldap samba-libs samba-libs-python3 samba-python3 samba-winbind samba-winbind-libs - Update samba-tool package to require python3-Markdown also in the Heimdal ADDC build. - Fix named crash when using samba's DLZ plugin; (bsc#1224003); (bso#15643); - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] - Update to 4.20.2 * vfs_widelinks with DFS shares breaks case insensitivity; (bso#15662); (bsc#1213607). * Samba build is not reproducible; (bso#13213). * ldb qsort might r/w out of bounds with an intransitive compare function; (bso#15569). * Many qsort() comparison functions are non-transitive, which can lead to out-of-bounds access in some circumstances; (bso#15625). * Need to change gitlab-ci.yml tags in all branches to avoid CI bill; (bso#15638). * We have added new options --vendor-name and --vendor-patch- revision arguments to ./configure to allow distributions and packagers to put their name in the Samba version string so that when debugging Samba the source of the binary is obvious; (bso#15654). * CTDB RADOS mutex helper misses namespace support; (bso#15665). * Dynamic DNS updates with the internal DNS are not working; (bso#13019). * netr_LogonSamLogonEx returns NR_STATUS_ACCESS_DENIED with SysvolReady=0; (bso#14981). * Anonymous smb3 signing/encryption should be allowed (similar to Windows Server 2022); (bso#15412). * Panic in dreplsrv_op_pull_source_apply_changes_trigger; (bso#15573). * s4:nbt_server: does not provide unexpected handling, so winbindd can't use nmb requests instead cldap; (bso#15620). * winbindd, net ads join and other things don't work on an ipv6 only host; (bso#15642). * Segmentation fault when deleting files in vfs_recycle; (bso#15659). * Panic in vfs_offload_token_db_fetch_fsp(); (bso#15664). * "client use kerberos" and --use-kerberos is ignored for the machine account; (bso#15666). * Regression DFS not working with widelinks = true; (bso#15435). * samba-gpupdate - Invalid NtVer in netlogon_samlogon_response; (bso#15633). * idmap_ad creates an incorrect local krb5.conf in case of trusted domain lookups; (bso#15653). * The images don't build after the git security release and CentOS 8 Stream is EOL; (bso#15660). ==== sddm-kcm6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Fix visual window artifact - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== selinux-policy ==== Version update (20240617 -> 20240802) Subpackages: selinux-policy-targeted - Update to version 20240802: * Dontaudit search of snapper grub plugin to nscd socket (bsc#1228745) - Update to version 20240731: * Initial policy for ibft-rule-generator (bsc#1228402) * Initial policy for systemd-status-mail (bsc#1228402) - Update to version 20240731: * Fix labels for bind/named (bsc#1228372) - Update to version 20240729: * Label /usr/libexec/netconfig/ppp/ip-up pppd_initrc_exec_t (bsc#1228385) * Allow pppd to manage sysnet directories (bsc#1228385) - Update to version 20240726: * Allow snapper grub plugin to manage unlabeled_t and read link files - Update to version 20240725: * Initial policy for grub2 snapper plugin (bsc#1228205) - Update to version 20240716: * Set microos autorelabel script to systemd_autorelabel_generator_t * Allow systemd_generator to write kmsg * Initial policy for systemd growpart-generator (bsc#1226824) - Update to version 20240715: * Allow systemd_getty_generator_t read /proc/1/environ * Allow systemd_getty_generator_t to read and write to tty_device_t (bsc#1226888) - Enable sap module - Add equivalency in file_contexts.subs_dist * /bin /usr/bin * /sbin /usr/bin * /usr/sbin /usr/bin - Update to version 20240710: * Change fc in rebootmgr module for /sbin -> /usr/bin * Change fc in rpm module for /sbin -> /usr/bin * Change fc in rsync module for /sbin -> /usr/bin * Change fc in wicked module for /sbin -> /usr/bin * Confine libvirt-dbus * Allow virtqemud the kill capability in user namespace * Allow rshim get options of the netlink class for KOBJECT_UEVENT family * Allow dhcpcd the kill capability * Allow systemd-networkd list /var/lib/systemd/network * Allow sysadm_t run systemd-nsresourced bpf programs * Update policy for systemd generators interactions * Allow create memory.pressure files with cgroup_memory_pressure_t * Add support for libvirt hooks * Allow certmonger read and write tpm devices * Allow all domains to connect to systemd-nsresourced over a unix socket * Allow systemd-machined read the vsock device * Update policy for systemd generators * Allow ptp4l_t request that the kernel load a kernel module * Allow sbd to trace processes in user namespace * Allow request-key execute scripts * Update policy for haproxyd * Update policy for systemd-nsresourced * Correct sbin-related file context entries * Allow login_userdomain execute systemd-tmpfiles in the caller domain * Allow virt_driver_domain read files labeled unconfined_t * Allow virt_driver_domain dbus chat with policykit * Allow virtqemud manage nfs files when virt_use_nfs boolean is on * Add rules for interactions between generators * Label memory.pressure files with cgroup_memory_pressure_t * Revert "Allow some systemd services write to cgroup files" * Update policy for systemd-nsresourced * Label /usr/bin/ntfsck with fsadm_exec_t * Allow systemd_fstab_generator_t read tmpfs files * Update policy for systemd-nsresourced * Alias /usr/sbin to /usr/bin and change all /usr/sbin paths to /usr/bin * Remove a few lines duplicated between {dkim,milter}.fc * Alias /bin â /usr/bin and remove redundant paths * Drop duplicate line for /usr/sbin/unix_chkpwd * Drop duplicate paths for /usr/sbin * Update systemd-generator policy * Remove permissive domain for bootupd_t * Remove permissive domain for coreos_installer_t * Remove permissive domain for afterburn_t * Add the sap module to modules.conf * Move unconfined_domain(sap_unconfined_t) to an optional block * Create the sap module * Allow systemd-coredumpd sys_admin and sys_resource capabilities * Allow systemd-coredump read nsfs files * Allow generators auto file transition only for plain files * Allow systemd-hwdb write to the kernel messages device * Escape "interface" as a file name in a virt filetrans pattern * Allow gnome-software work for login_userdomain * Allow systemd-machined manage runtime sockets * Revert "Allow systemd-machined manage runtime sockets" * Allow postfix_domain connect to postgresql over a unix socket * Dontaudit systemd-coredump sys_admin capability - Update container-selinux - Update to version 20240702: * Allow manage dosfs_t files to snapperd (bsc#1224120) * Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records * Add auth_rw_wtmpdb_login_records to modules * Allow xdm_t to read-write to wtmpdb (bsc#1225984) * Introduce types for wtmpdb and rw interface * Introduce wtmp_file_type attribute * Revert "Add policy for wtmpdb (bsc#1210717)" ==== sensors ==== Subpackages: libsensors4 - Add lm_sensors-revert-6b5a19b708.patch which reverts an upstream patch, thus adding back two explicit pointer type-casts. Code without them used to generate mere warnings until this year but causes compiler errors with GCC 14 by default. ==== shim ==== - Update asc files of shim-15.8 after being signed back from Microsoft, including: signature-opensuse.x86_64.asc, signature-opensuse.aarch64.asc, signature-sles.x86_64.asc, signature-sles.aarch64.asc. - Enable aarch64 signature comparison which was disabled temporarily before. Now, we got a real one. So it is enabled again. ==== signon-kwallet-extension ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== skanlite ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== snapper ==== Version update (0.11.0 -> 0.11.1) Subpackages: libsnapper7 snapper-zypp-plugin - handle content-length of stomp in zypper plugin (gh#openSUSE/snapper#918) - version 0.11.1 - fixed error message (gh#openSUSE/snapper#907) ==== spectacle ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * History: fix strict-aliasing warnings by using std::ranges * Rename 24.02.0-change_placeholder_format script ID to 24.05.2-change_placeholder_format (kde#484211) * Prevent TextTool TextEdit shortcuts from being used by the window while TextTool is focused (kde#487740) * AnnotationDocument: Preserve image metadata * ExportManager: Even more handling for empty <title> * ExportManager: remove duplicate dir separators * ExportManager: keep dir separators near <title> (kde#445084) * FilenameTest: use a map and for loops for testing titles instead of copy/pasting strings * Use new placeholder format for the keep_old_filename_templates script * Lock temp dirs while still in use * ConfigUtils: rename continueUpdate to isFileOlderThanDateTime * Fixed warning * Removed unused members * Traits: make getImage a const reference ==== speech-dispatcher ==== Subpackages: libspeechd2 python311-speechd speech-dispatcher-module-espeak - Add speech-dispatcher-pulseaudio-samples.patch: fix for losing samples with pulseaudio. ==== sssd ==== Subpackages: libnfsidmap-sss libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Revert the change dropping the default configuration file. If /usr/etc exists will be installed there, otherwise in /etc. (bsc#1226157); ==== step ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== strace ==== Version update (6.9 -> 6.10) - Update License tag (boo#1228216) - Update to strace 6.10 * Implemented --decode-fds=eventfd option to retrieve eventfd object details associated with eventfd file descriptors. * Implemented decoding of NETLINK_GENERIC nlctrl protocol. * Implemented decoding of F_DUPFD_QUERY fcntl. * Implemented decoding of mseal syscall. * Updated decoding of statx and prctl syscalls. * Updated decoding of BPF_RAW_TRACEPOINT_OPEN bpf command. * Updated lists of BPF_*, IORING_*, KEXEC_*, KEY_*, LANDLOCK_*, PR_*, STATX_*, TCP_*, TEE_*, V4L2_*, and *_MAGIC constants. * Updated lists of ioctl commands from Linux 6.10. * Worked around a bug introduced in Linux 6.5 that affected system call tampering on riscv64. ==== sudo ==== Subpackages: sudo-plugin-python - A quick note that bsc#1227574 is expected behavior in this version of sudo. It was a regression in 15.6 which doesn't have the /etc/ split for pam.d yet. ==== supermin ==== Version update (5.3.3 -> 5.3.4) - bsc#1228373 - supermin regression in Tumbleweed / Factory causes virt-inspector to fail add-rpm-database-location.patch - Drop disable-test-if-newer-ext2.patch - Update to version 5.3.4 (jsc#PED-6305) * Add support for OCaml 5 * Add kylinsecos support * rpm: Detect dnf5 and omit missing options * ocamlc: Use -output-complete-exe instead of -custom * Fix kernel filtering for aarch64 architecture * Uncompress kernel on RISC-V - Drop patches contained in new tarball 001-Improved-debugging-of-the-supermin-if-newer-calculation.patch 002-Fix-if-newer-copy-kernel.patch 003-Fix-kernel-filtering-for-aarch64-architecture.patch 004-Use-output-complete-exe-instead-of-custom.patch 005-Only-supply-output-complete-exe-to-final-link.patch 006-Rename-function-file-kernel.patch 007-Uncompress-kernel-on-RISC-V.patch 008-Fix-link-to-renamed-kernel-documentation.patch 009-New-mailing-list-email-address.patch ==== suse-module-tools ==== Version update (16.0.45 -> 16.0.48) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.48: * Fix 64k check in check_arm_pagesize() that would cause OBS builds to fail - Update to version 16.0.47: * rpm scriptlets: fix shellcheck warnings - Update to version 16.0.46: * Support for bootloaders that follow the boot loader specification in particular systemd-boot (bsc#1226122) * Spec file: obsolete sdbootutil-rpm-scriptlets, the scriptlets in suse-module-tools-scriptlets have modified to support the systemd-boot / sdbootutil use case, too ==== svgpart ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== swtpm ==== Version update (0.8.1 -> 0.9.0) Subpackages: swtpm-selinux - update to 0.9.0: - fixes: boo#1226398 - swtpm: - Use umask() to create/truncated state file rather than fchmod() - Use fchmod to set mode bits provided by user - Replace mkstemp with g_mkstemp_full (Coverity) - fix typo in help message - cuse: Fix Coverity complaints regarding locks - Fix double free in error path - Close fd after main loop - Restore logging to stderr on log open failure - swtpm_setup: - Fail --pcr-banks without --tpm2 - Fail --decryption or --allow-signing without --tpm2 - Initialized argv in get_swtpm_capabilities() - Flush spk after persisting to create room for another key - Refactor duplicate code into swtpm_tpm2_write_cert_nvram - Move persisting of certificate into tpm2_persist_certificate - Pass key_type to function creating filename for key - Add scheme parameter before curveid to createprimary_ecc - Rename is_ek to preserve for future extension - Mask-out EK and plaform certificate flags and set cert_flags - Move common code into new function read_certificate_file() - Exit with '0' upon --version rather than '1' - Close file descriptors passed to swtpm process on parent side - Make stdout unbuffered - Use medium duration on TSC_PhysicalPresence to avoid timeouts - Add poll() after write() and before read() to detect errors - swtpm_localca: - Add support for up to 20 bytes serial numbers - Introduce --key as more generic alias for --ek - Add missing NULL option to end of array - Make stdout unbuffered - swtpm_cert: - Add support for serial numbers up to 20 bytes long - swtpm_ioctl: - Separate return code from flags - Repeatedly call PTM_GET_INFO for long responses - selinux: - Re-add rule for svirt_tcg_t and user_tmp_t:sock_file (virt-install) - New SELinux policy that requires Fedora 40 or later - tests: - Fixed occurrences of stray '' before '-' - Rearrange order of test cases to run some also as 'root' - Add tests for command line options and combinations of options - Add softhsm_setup to shellcheck'ed files and fix issues - Add missing 'exit 1' on unexpected file size on --reconfigure - Add test cases for swtpm_cert with max serial number - Fix spelling mistakes - reformat regexs for easier readability and extension - ibmtss2: Add patch to disable x509 test with older libtpms - Upgrade to ibmtss2 v2.0.1 - Fixed several issues detected by shellcheck - build-sys: - Add support for --disable-tests to disable tests - Display GMP_LIBS and GMP_CFLAGS - Only display warning if pkg-config for gmp fails - Add gmp library and devel package as dependency - use PKG_CHECK_MODULES to check libtpms version ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-dbus-service udev-configure-printer - Drop obsolete update-desktop-files BuildRequires and macro. ==== systemd ==== Version update (255.7 -> 256.4) Subpackages: libsystemd0 libudev1 systemd-container udev - Import commit 5bba1ebe17564b606cc5d1c07b14123c305019a7 (merge of v256.4) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/bd8b5ee3cf0466b6b78e167967468cf6... - Add 5004-disable-session-freeze.patch as a temporary workaround for https://github.com/systemd/systemd/issues/33083 - Add temporarily 5003-core-when-switching-root-remove-run-systemd-before-e.patch (bsc#1227580) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) Otherwise pesign-obs-integration ends up re-packaging systemd with all macros inside comments unescaped leading to unpredictable behavior. Now why rpm expands rpm macros inside comments is the question... - Skip running the test units in %check for now. Some tests don't appreciate to run inside the build environment of OBS currently and some of them take an unexpected long time to execute on both risc and s390x architectures. - Make sure systemd-sysvcompat replaces systemd-sysvinit on upgrades (bsc#1218110) - Import commit bd8b5ee3cf0466b6b78e167967468cf6f93ec807 (merge of v256.2) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/dd15bf4f6430d8646e546ee0b980448c... - varlinkctl is no more considered as experimental and has been moved to the main package. - Upgrade to v256.1 (commit dd15bf4f6430d8646e546ee0b980448c7d0c9699) See https://github.com/openSUSE/systemd/blob/SUSE/v256/NEWS for details. - Added pam.systemd-run0 - Import commit 5a8eadd0c021758337a020c423f25a353bdb9b3c (merge of v255.8) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/603cd1d4d81147d4f2eccd5e352064a4... - Drop 5003-Revert-run-pass-the-pty-slave-fd-to-transient-servic.patch as v255.8 contains the workaround (commit 639c922ede9485) for the broken commit 28459ba1f4df. ==== systemd-presets-branding-Aeon ==== - Enable aeon-check.service (boo#1228416) ==== systemsettings6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Actually start the KAuth::ExecuteJob (kde#490507) * runner: Don't match if just one query word matches (kde#488676) - Drop patches, now upstream: * 0001-runner-Don-t-match-if-just-one-query-word-matches.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * Share the qml engine as a qApp property (kde#488326) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * Fix sub-category view remaining visible when moving to a top-level KCM (kde#434345) * update version for new release ==== sysuser-tools ==== Version update (3.2 -> 3.3) - usermod: revert renamed arguments - Implement UID:GID support for busybox - Reenable UID:GID support - Disable UID:GID support for now - UID:GID: don't create group with GID if it does not exist - Rewrite UID:GID support to work with busybox and fix it for useradd - Allow setting of UID:GID for as defined in sysusers.d ==== taglib ==== Version update (2.0 -> 2.0.1) Subpackages: libtag2 libtag_c2 - update to 2.0.1: * Fix aborting when _GLIBCXX_ASSERTIONS are enabled. * Fall back to utf8cpp header detection in the case that its CMake configuration is removed. * Improve compatibility with the SWIG interface compiler. * Build system fixes for testing without bindings, Emscripten and Illumos. * C bindings: Fix setting UTF-8 encoded property values. * Windows: Fix opening long paths. ==== tar ==== Subpackages: tar-rmt - Updated tar-fix-extract-unlink.patch * Replace patch with an equivalent upstreamed commit * Fixes bsc#1225407 ==== telepathy-logger ==== Subpackages: libtelepathy-logger3 telepathy-logger-schema - Add -fpermissive to %optflags so that GCC 14 does not throw compile time errors when encountering C99 violations. ==== thin-provisioning-tools ==== Version update (1.0.12 -> 1.0.13) - Update to version 1.0.13: * bump version to 1.0.13 * [io_engine] Remove duplicate code in tests * [build] Update quick-xml to v0.36 * [build] Update dependencies * [doc] Update CHANGES * [thin_check] Correct the number of devices to check in logs * [doc] Update TODO list * [man] Update man page for thin_ls * [io_engine] Add test cases for SyncIoEngine::write_many() * [io_engine] Enlarge the batch size for SyncIoEngine to do vectored write * [io_engine] Use vectored write in sync io * [tests] Use sha256sum to avoid collision * [all] Fix clippy lints * [tests] Fix thin snapshot xml generator * [tests] Fix the mapped_blocks for thins in generated xml * [thin_check] Log the number of exclusive devices in metadata snapshot * [devtools] Fix parsing subcommands through symlinks * deps: bump libc from 0.2.153 to 0.2.155 * [thin_repair] Support repairing device details tree * [tests] Replace duplicate code with utility functions * [thin_repair] Remove unused code * [thin_repair] Preserve the timestamp of stale superblock if needed * [thin_explore] Fix missing version option * Add a nix flake to provide a dev env * [thin_delta] Update comments * [tests] Test cache_check --auto-repair and --clear-needs-check-flag * [tests] Introduce cache_generate_damage * [tests] Add broken pipe tests for cache_dump and era_dump * [cache_check] Extend the --clear-needs-check-flag option to have auto-repair caps * [thin_ls] Support listing the highest mapped block * [btree] Remove unused imports * [btree] Add BTreeIterator type * [*_dump] Simplify the handling of error context * [cache/era_dump] Do not print error messages on BrokenPipe (EPIPE) * [tests] Explicitly set the fifo capacity for triggering EPIPE * [tests] Support leaving TestDir undeleted for debugging failed commands * [tests] Ensure thin_dump's output in broken pipe tests * [tests] Fix closing the pipe fd twice * [tests] Explicitly set the pipe capacity for triggering EPIPE ==== thunar ==== Version update (4.18.10 -> 4.18.11) Subpackages: libthunarx-3-0 thunar-lang - Update to 4.18.11: * Use parent windows for undo/redo dialog (#1393) * Fix for misc_open_new_windows_in_split_view (#889) * Dont add directories to recent:/// (#1372) * build: clang: Fix -Wmissing-noreturn * build: clang: Fix -Wsingle-bit-bitfield-constant-conversion * Focus split view pane on DnD events (#1243) * Dont reload folder when "draw_frames" is set (#1337) * Allow submenu UCAs in toolbar (#780) * Fix shortcuts for ucas in subfolders (#1043) * Dont show 'open location' on recent icon(#1297) * Fix for image preview visibility (#1285) * Prevent focus stealing of file transfer dialog (#643) * Dont update "last-view" when searching (#1278) * Translation Updates ==== transactional-update ==== Version update (4.6.8 -> 4.7.0) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit - It seems it's taking a longer time until the tests will be adopted to the new reboot behavior. Disable soft-reboot for now to unblock the regular transactional-update update. - Version 4.7.0 - Add plugin mechanism It's now possible to hook into API functions with custom plugins; see doc/tukit-plugins.md for details. [gh#openSUSE/transactional-update#122] - Fix missing libdir replacement for status command - Enable soft-reboot by default again as announced in https://microos.opensuse.org/blog/2024-06-13-soft-reboot/ ==== umbrello ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== upower ==== Version update (1.90.2+15 -> 1.90.4) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Update to version 1.90.4: * Resolved high disk and CPU rate. * Stop guessing the unknown battery as a power supply. * Continue to support lid handling. * Fix org.freedesktop.UPower: EnergyRate is a positive value. * Fix uni-test python script. - Switch to tagged release. - Update BuildRequires minimum versions ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - uncomment "autoreconf --install" to use the new version of automake ==== util-linux-systemd ==== Subpackages: lastlog2 liblastlog2-2 - uncomment "autoreconf --install" to use the new version of automake ==== vde2 ==== - Added vde2-C99.patch to avoid a C99 violation preventing the package to be built with GC 14. [boo#1225950] ==== vim ==== Version update (9.1.0512 -> 9.1.0636) Subpackages: vim-data vim-data-common xxd - Update to 9.1.0636: * 9.1.0636: filetype: ziggy files are not recognized * 9.1.0635: filetype: SuperHTML template files not recognized * 9.1.0634: Ctrl-P not working by default * 9.1.0633: Compilation warnings with `-Wunused-parameter` * 9.1.0632: MS-Windows: Compiler Warnings Add support for Files-Included in syntax script tweak documentation style a bit * 9.1.0631: wrong completion list displayed with non-existing dir + fuzzy completion * 9.1.0630: MS-Windows: build fails with VIMDLL and mzscheme * 9.1.0629: Rename of pum hl_group is incomplete * 9.1.0628: MinGW: coverage files are not cleaned up * 9.1.0627: MinGW: build-error when COVERAGE is enabled * 9.1.0626: Vim9: need more tests with null objects include initial filetype plugin * 9.1.0625: tests: test output all translated messages for all translations * 9.1.0624: ex command modifiers not found * 9.1.0623: Mingw: errors when trying to delete non-existing files * 9.1.0622: MS-Windows: mingw-build can be optimized * 9.1.0621: MS-Windows: startup code can be improved * 9.1.0620: Vim9: segfauls with null objects * 9.1.0619: tests: test_popup fails * 9.1.0618: cannot mark deprecated attributes in completion menu * 9.1.0617: Cursor moves beyond first line of folded end of buffer * 9.1.0616: filetype: Make syntax highlighting off for MS Makefiles * 9.1.0615: Unnecessary STRLEN() in make_percent_swname() Add single-line comment syntax Add syntax test for comments Update maintainer info * 9.1.0614: tests: screendump tests fail due to recent syntax changes * 9.1.0613: tests: termdebug test may fail and leave file around Update base-syntax, improve :set highlighting Optionally highlight the :: token for method references * 9.1.0612: filetype: deno.lock file not recognized Use delete() for deleting directory escape filename before trying to delete it * 9.1.0611: ambiguous mappings not correctly resolved with modifyOtherKeys correctly extract file from zip browser * 9.1.0610: filetype: OpenGL Shading Language files are not detected Fix endless recursion in netrw#Explore() * 9.1.0609: outdated comments in Makefile update syntax script Fix flow mapping key detection Remove orphaned YAML syntax dump files * 9.1.0608: Coverity warns about a few potential issues Update syntax script and remove syn sync * 9.1.0607: termdebug: uses inconsistent style * 9.1.0606: tests: generated files may cause failure in test_codestyle * 9.1.0605: internal error with fuzzy completion * 9.1.0604: popup_filter during Press Enter prompt seems to hang translation: Update Serbian messages translation * 9.1.0603: filetype: use correct extension for Dracula * 9.1.0602: filetype: Prolog detection can be improved fix more inconsistencies in assert function docs * 9.1.0601: Wrong cursor position with 'breakindent' when wide char doesn't fit Update base-syntax, improve :map highlighting * 9.1.0600: Unused function and unused error constants * 9.1.0599: Termdebug: still get E1023 when specifying arguments correct wrong comment options fix typo "a xterm" -> "an xterm" * 9.1.0598: fuzzy completion does not work with default completion * 9.1.0597: KeyInputPre cannot get the (unmapped typed) key * 9.1.0596: filetype: devscripts config files are not recognized gdb file/folder check is now performed only in CWD. quote filename arguments using double quotes update syntax to SDC-standard 2.1 minor updates. Cleanup :match and :loadkeymap syntax test files Update base-syntax, match types in Vim9 variable declarations * 9.1.0595: make errors out with the po Makefile * 9.1.0594: Unnecessary redraw when setting 'winfixbuf' using wrong highlight for UTF-8 include simple syntax plugin * 9.1.0593: filetype: Asymptote files are not recognized add recommended indent options to ftplugin add recommended indent options to ftplugin add recommended indent options to ftplugin * 9.1.0592: filetype: Mediawiki files are not recognized * 9.1.0591: filetype: *.wl files are not recognized * 9.1.0590: Vim9: crash when accessing getregionpos() return value 'cpoptions': Include "z" in the documented default * 9.1.0589: vi: d{motion} and cw work differently than expected update included colorschemes grammar fixes in options.txt - Add "Keywords" to gvim.desktop to make searching for gvim easier - Removed patches, as they're no longer required (refreshing them deleted their contents): * vim-7.3-help_tags.patch * vim-7.4-highlight_fstab.patch - Reorganise all applied patches in the spec file. - Update to 9.1.0588: * 9.1.0588: The maze program no longer compiles on newer clang runtime(typst): Add typst runtime files * 9.1.0587: tests: Test_gui_lowlevel_keyevent is still flaky * 9.1.0586: ocaml runtime files are outdated runtime(termdebug): fix a few issues * 9.1.0585: tests: test_cpoptions leaves swapfiles around * 9.1.0584: Warning about redeclaring f_id() non-static runtime(doc): Add hint how to load termdebug from vimrc ... changelog too long, skipping 137 lines ... * 9.1.0513: Vim9: segfault with object comparison ==== virt-manager ==== Subpackages: virt-install virt-manager-common - Fix test failure with libvirt version 10.6.0 092-cli-Use-regex-for-grep-and-nogrep-args.patch 093-cli-Fix-with-latest-libvirt.patch - bsc#1228384 - virt-install generates unwanted libvirt storage pools when running with --dry-run --print-xml virtinst-dont-create-storage-pool-for-dryrun.patch - bsc#1228227 - libvirt missing default hyperv options causes windows guest performance degredation. virtinst-add-hyperv-performance-options.patch - bsc#1227116 - osinfo still uses deprecated SL-Micro name virtinst-add-slem60-detection-support.patch Dropped virtinst-add-slm-detection-support.patch - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] ==== virt-v2v ==== Version update (2.4.0 -> 2.5.5) Subpackages: virt-v2v-bash-completion - Update to virt-v2v 2.5.5 (jsc#PED-6305) * -i vmx: Remove scp -T option * -i vmx: Refactor ssh/scp code into a new module * -i vmx: Simplify scp wrapper * -i vmx: Add the input password to vmx_source * -i vmx: Remove dependency of ssh.ml on Xml.uri * -i vmx: Replace external ssh/scp with nbdkit-ssh-plugin * input/nbdkit_ssh: Make retry filter optional * input/nbdkit_ssh: Make password parameter optional * input/ssh: Use nbdinfo --can connect (instead of --size) * add CircleLinux to supported distros * Add support for LoongArch * -o rhv-upload: fix rhv-upload function to work with keycloak instead of basic auth only (#43) * -o rhv-upload: Add context if parsing params fails (#47) * -o rhv-upload: clarify debug message * -o rhv-upload: Dump the JSON before parsing * -o rhv-upload: Output outside of the with block * -o rhv-upload: Improve host id logging * -o rhv-upload: Don't share transfer.json (#49) * -o rhv-upload: Add O_TRUNC to truncate JSON file if it exists * -o kubevirt: Add os firmware field in output * -o kubevirt: Add CPU model & topology when available * -o kubevirt: Add network interfaces to output * -o kubevirt: Add an RNG device if virtio-rng driver in the guest * -o kubevirt: Use virtio-transitional for ancient guests * -o kubevirt: Add support for sound device * -o kubevirt: Add metadata labels * -o kubevirt: Create a VirtualMachine instead of a VirtualMachineInstance * -o libvirt: Use <os firmware='efi'> finally * -i ova: Use the detected firmware type when absent rather than default (#53) * Fix bytecode compilation to output whole exe instead of using - custom * convert: windows: Install blnsvr from virtio-win ==== vte ==== Subpackages: libvte-2_91-0 typelib-1_0-Vte-2_91 - Only apply vte-revert-back-to-c++17.patch for SLE <= 15. ==== vulkan-loader ==== Version update (1.3.283.0 -> 1.3.290) - Update to release SDK-1.3.290 * Remove faulty fallback for unknown functions * tests: Allow test ICD to handle NULL pApplicationInfo * Fix preloaded ICDs being freed with custom allocators * Fix RegCloseKey exeption when double-closing hKeys ==== vulkan-tools ==== Version update (1.3.283.0 -> 1.3.290) - Update to release SDK-1.3.290 * cube: Fix incremental present on swapchain recreate ==== wacomtablet-kcm6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Add CVE fixes: + webkit2gtk3-CVE-2024-40776.patch (boo#1228613 CVE-2024-40776) + webkit2gtk3-CVE-2024-40779.patch (boo#1228693 CVE-2024-40779) + webkit2gtk3-CVE-2024-40780.patch (boo#1228694 CVE-2024-40780) + webkit2gtk3-CVE-2024-40782.patch (boo#1228695 CVE-2024-40782) - Add 9d5844679af8f84036f1b800307e799bd7ab73ba.patch VA+DMABuf videos flicker ==== wicked ==== Version update (0.6.75 -> 0.6.76) Subpackages: wicked-service - Update to version 0.6.76 - compat-suse: warn user and create missing parent config of infiniband children (gh#openSUSE/wicked#1027) - client: fix origin in loaded xml-config with obsolete port references but missing port interface config, causing a no-carrier of master (bsc#1226125) - ipv6: fix setup on ipv6.disable=1 kernel cmdline (bsc#1225976) - wireless: add frequency-list in station mode (jsc#PED-8715) - client: fix crash while hierarchy traversing due to loop in e.g. systemd-nspawn containers (bsc#1226664) - man: add supported bonding options to ifcfg-bonding(5) man page (gh#openSUSE/wicked#1021) - arputil: Document minimal interval for getopts (gh#openSUSE/wicked#1019) - man: (re)generate man pages from md sources (gh#openSUSE/wicked#1018) - client: warn on interface wait time reached (gh#openSUSE/wicked#1017) - compat-suse: fix dummy type detection from ifname to not cause conflicts with e.g. correct vlan config on dummy0.42 interfaces (gh#openSUSE/wicked#1016) - compat-suse: fix infiniband and infiniband child type detection from ifname (gh#openSUSE/wicked#1015) - Removed patches included in the source archive: [- 0001-ifreload-pull-UP-again-on-master-lower-changes-bsc1224100.patch] [- 0002-increase-arp-retry-attempts-on-sending-bsc1218668.patch] ==== wireplumber ==== Version update (0.5.4+git2.96dc045 -> 0.5.5) Subpackages: libwireplumber-0_5-0 wireplumber-audio wireplumber-zsh-completion - Update to version 0.5.5: * Highlights: - Hotfix release to address crashes in the Bluetooth HSP/HFP autoswitch functionality that were side-effects of some changes that were part of the role-based linking policy (#682) * Improvements: - wpctl will now properly show a '*' in front of sink filters when they are selected as the default sink (!660) ==== wol ==== - Added patches for support gcc14: * wol-0.7.1-Fix-config.h-test-consumption.patch * wol-0.7.1-Fix-malloc-detection.patch * wol-0.7.1-linux-headers.patch ==== wtmpdb ==== Version update (0.12.0+git.20240508 -> 0.13.0+git.20240726) Subpackages: libwtmpdb0 - Update to version 0.13.0+git.20240726: * Release version 0.13.0 * Fix variable overflow and check for it (#15) ==== xclip ==== Version update (0.13 -> 0.13+git20220129) - use git hash in download URL, not branch name. - Update to master checkout b372f73: * add -sensitive option * works reliably for large data streams * improved debug and checking facilities * when pasting, don't clear selection unless -sensitive is given * if stdin is a tty, choose appropriate -i or -o option as default mode * numerous bug fixes (segfaults, resource leaks, null pointer dereference) ==== xdg-desktop-portal-kde6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Set up translation for FileDialog * Set timeout on DBus calls to KWin * Inhibit: Forward the correct inhibition flags to PolicyAgent (kde#486506) * remotedesktop: Only show the restore checkbox if the app wants to persist - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== xdg-utils ==== - Separate xdg-screensaver into a subpackage to isolate Perl dependency (bsc#1216537). ==== xen ==== Subpackages: xen-libs xen-tools-domU - bsc#1227355 - VUL-0: CVE-2024-31143: xen: double unlock in x86 guest IRQ handling (XSA-458) xsa458.patch ==== xf86-video-nouveau ==== - added "-fpermissive" to optflags to workaround fatal warnings with gcc14 (boo#1225956) ==== xfce4-kbdleds-plugin ==== Version update (0.2.5 -> 0.3.0) - Update to version 0.3.0 * Ability to show/hide leds * Add missing x11 linker flags ==== xfce4-screenshooter ==== Version update (1.10.6 -> 1.11.1) Subpackages: xfce4-screenshooter-lang xfce4-screenshooter-plugin - Update to 1.11.1 * Drop unnecessary libxml dependency * Translation Updates - Add BuildRequires to enable Wayland support. - Update to 1.11.0 * Drop built-in support for imgur * Drop jobs-related code * Drop libsoup dependency * Use XDG_DATA_HOME in imgur-upload.sh * Make sure screenshot is copied to clipboard before closing (!56) * Add more tests * build: clang: Silence -Wcast-align * Translation Updates ==== xfsprogs ==== Version update (6.8.0 -> 6.9.0) Subpackages: libhandle1 - update to 6.9.0 - xfs_db: Fix uninicialized error variable - mkfs.xfs: avoid potential overflowing expression in xfs_mkfs.c - xfs_io: fix mread with length 1 mod page size - xfs_repair: detect null buf passed to duration - xfs_io: fix gcc complaints about potentially uninitialized variables - xfs_scrub: upload clean bills of health - xfs_spaceman: report health of inode link counts - xfs_repair: reduce rmap bag memory usage when creating refcounts - xfs_repair: log when buffers fail CRC checks even if we just recompute it - xfs_scrub: use multiple threads to run scrubs that scan inodes - xfs_scrub: update health status if we get a clean bill of health - xfs_repair: verify on-disk rmap btrees with in-memory btree data - xfs_scrub: check file link counts - xfs_scrub: implement live quotacheck inode scan - libxfs: provide a kernel-compatible kasprintf - xfs_spaceman: report the health of quota counts - libxfs: partition memfd files to avoid using too many fds - libxfs: add xfile support - libxfs: teach buftargs to maintain their own buffer hashtable - libxfs: kernel sync - ------------------------------------------------------------------ ==== xinit ==== - xinitrc.common: no longer start nvidia-settings in background in order to avoid a zombie process under certain circumstances (boo#1227313) ==== xmlsec1 ==== Version update (1.2.38 -> 1.2.40) Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1 - Update to 1.2.40 The legacy XML Security Library 1.2.40 release includes the following changes: * (xmlsec-core) Fixed functions deprecated in LibXML2 2.13.1 (including disabling HTTP support by default). * (xmlsec-nss) Increased keys size in all tests to support NSS 3.101. * (windows) Added "ftp" and "http" flags in 'configure.js' (both are disabled by default). * Several other small fixes (more details). - Update to 1.2.39 The legacy XML Security Library 1.2.39 release includes the following changes: * Added options to enable/disable local files, HTTP, and FTP support. FTP is disabled by default. * Several other small fixes (more details). - Remove upstreamed xmlsec1-gcc14.patch ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra - Added U_xorg-xserver-e89edec497ba.patch to fix incompatible pointer type error with GCC 14. - u_fbdevhw_kernel6.9_break_fbdev_open.patch * Linux kernel v6.9 has changed the symlink to point to the parent device. This breaks fbdev_open() detection logic. Change it to use the subsystem symlink instead which will remain stable (gitlab xserver issue#1714) ==== xterm ==== Version update (389 -> 393) Subpackages: xterm-bin xterm-resize - update to 393: * add a check for ANSI SC/RC, to ignore CSI parameters. * improve check for missing characters for bitmap-fonts * fix regression in error-recovery for SGR parameters * change default for --enable-imake configure option * fixes for wcwidth * eliminate maxStringParse limit for SIXEL * improve logic which ignores APC, PM and SOS controls to also not accumulate their data temporarily in a buffer. * exclude TERM_INGRESS from cleanup of environment variables * fix some documentation typos - update to 392: * improve input decoding for non-Latin1 character sets by preserving the sense of GL/GR. * add resource preferLatin1 to simplify UPSS configuration (Gentoo #932154). * build-fix for --disable-boxchars; patch #390 reuses that feature's code to draw the part of the DEC Technical character set which has no Unicode equivalent. * improve definitions used in clock_gettime logic in graphics_sixel.c, as well as updating comments (patch by Ben Wong). * amend allowC1Printable changes from patch #391, restoring a special case which caused C1 characters to be ignored (report/testcase by Dmytro Bagrii). - update to 391: * improve integration between UTF-8 and allowC1Printable. * alter SIXEL HLS computation to make blue 0 degrees (patch by Ben Wong). * disable SIXEL aspect-ratio, pending a rewrite (patch by Ben Wong). * add resource incrementalGraphics (prompted by patch by Ben Wong). * reorganize graphics_sixel.c as a step toward eliminating graphics buffer-size (integrated patch by Ben Wong). * fix regression in patch #390: non-UTF8 text pasted as a XA_UTF8_STRING was not decoded (report by Petri Kaukasoina). - update to 390: * improve typography of control-sequences page (patches by Branden Robinson). * amend UPSS change from patch #389, fixing a regression in VT100/VT220 character sets. * modify ANSI conformance per ECMA-43 and DEC 070: * set ANSI conformance level to 3 for DEC levels 2 and up. * disable locking shifts in level 1, e.g., VT100. * disable single-shifts from G2/G3 in level 1. * use UPSS for G2/G3 in levels 2 and up. * modify invisible-character attribute to permit DECRQCRA to report a consistent checksum (report/testcase by Thomas Wolff). * align terminfo building blocks in terminfo to correspond to recent refactoring/trimming in ncurses. * set flag in regexec call for onNClicks to handle â^â anchor (patch by Matthew Martin). * add line-drawing data for the characters in DEC Technical which have no Unicode equivalents. * remove a special case in encode_scs which made xterm report Latin-1 when encoding is set to UTF-8, where ASCII is the selected character set. This fixes a regression in vttest for the DECRSPS cursor test. * correct values for Ps of DECAUPSS in ctlseqs.ms (report by James Holderness). * simplify/correct expression for checking Unicode non-characters (report by Thomas Wolff). * correct loop for trimming environment variables (report/patch by Casper Dik). ==== xwayland ==== Version update (24.1.0 -> 24.1.1) - added version specific requirements for dri3proto, presentproto and wayland-protocols - This supersedes the following patches * U_CVE-2024-31080-Xi-ProcXIGetSelectedEvents-needs-to-use-unswapped-le.patch * U_CVE-2024-31081-Xi-ProcXIPassiveGrabDevice-needs-to-use-unswapped-le.patch * U_CVE-2024-31083-render-fix-refcounting-of-glyphs-during-ProcRenderAd.patch * U_render-Avoid-possible-double-free-in-ProcRenderAddGl.patch which fixed security issues * CVE-2024-31080 (bsc#1222309) * CVE-2024-31081 (bsc#1222310) * CVE-2024-31083 (bsc#1222312) and a regression due to a security fix for CVE-2024-31083 (bsc#1222312, boo#1222442, gitlab xserver issue #1659) - Update to bugfix release 24.1.1 for the current stable 24.1 branch of Xwayland * xwayland: fix segment fault in `xwl_glamor_gbm_init_main_dev` * os: Explicitly include X11/Xmd.h for CARD32 definition to fix building on i686 * present: On *BSD, epoll-shim is needed to emulate eventfd() * xwayland: Stop on first unmapped child * xwayland/window-buffers: Promote xwl_window_buffer * xwayland/window-buffers: Add xwl_window_buffer_release() * xwayland/glamor/gbm: Copy explicit sync code to GLAMOR/GBM * xwayland/window-buffers: Use synchronization from GLAMOR/GBM * xwayland/window-buffers: Do not always set syncpnts * xwayland/window-buffers: Move code to submit pixmaps * xwayland/window-buffers: Set syncpnts for all pixmaps * xwayland: Move xwl_window disposal to its own function * xwayland: Make sure we do not leak xwl_window on destroy * wayland/window-buffers: Move buffer disposal to its own function * xwayland/window-buffers: optionally force disposal * wayland: Force disposal of windows buffers for root on destroy * xwayland: Check for pointer in xwl_seat_leave_ptr() * xwayland: remove includedir from pkgconfig ==== yast2 ==== Version update (5.0.8 -> 5.0.9) Subpackages: yast2-logs - Re-added missing error class (bsc#1227580) - 5.0.9 ==== yast2-kdump ==== Version update (5.0.0 -> 5.0.1) - Do not suggest Kdump if Systemd-Boot is used. Kdump is not stable if Systemd-Bootloader is used. (bsc#1226676, bsc#1228242) - 5.0.1 ==== yast2-trans ==== Version update (84.87.20240624.0295c6c7b8 -> 84.87.20240801.d54b6ae08f) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20240801.d54b6ae08f: * New POT for text domain 'control'. - Update to version 84.87.20240717.0cfcd596d6: * Translated using Weblate (Catalan) - Update to version 84.87.20240713.2a953bd707: * Translated using Weblate (German) * Translated using Weblate (Spanish (Argentina)) - Update to version 84.87.20240707.68063c4dc4: * Translated using Weblate (Georgian) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (German) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Vietnamese) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Vietnamese) * Translated using Weblate (Japanese) * Translated using Weblate (Japanese) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) - Update to version 84.87.20240626.116e7b94dc: * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovak) * Translated using Weblate (Slovenian) * Translated using Weblate (Czech) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) * Translated using Weblate (Slovenian) ==== zchunk ==== Version update (1.4.0 -> 1.5.1) - update to 1.5.1: * Stop storing last error when missing zchunk context ==== zenity ==== Version update (4.0.1 -> 4.0.2) - Update to version 4.0.2: + tree: - Enable 'activates-default' in GtkSearchEntry - Don't try to print nonexisting items + main: Fix command-line signal signature + colview: - Return if nth item of row exceeds num items in row - Add more sanity checks - Clicking on column titles should sort items + filesel: - Passing a dir with trailing '/' should open that dir - Allow a non-existing filename with --save and add associated test - Remove spurious extra _show() call + Updated translations. ==== zsh ==== - Backport zsh-ab4d62eb975a4c4c51dd35822665050e2ddc6918.patch and zsh-4c89849c98172c951a9def3690e8647dae76308f.patch and add autoconf to build requirements to make the package build with GCC 14. [boo#1225958] ==== zypp-plugin ==== Version update (0.6.3 -> 0.6.4) - Fix stomp header regex to include '-' (bsc#1227793) - version 0.6.4 ==== zypper ==== Version update (1.14.74 -> 1.14.76) Subpackages: zypper-log zypper-needs-restarting - Show rpm install size before installing (bsc#1224771) If filesystem snapshots are taken before the installation (e.g. by snapper) no disk space is freed by removing old packages. In this case the install size of all packages is a hint how much additional disk space is needed by the new packages static content. - version 1.14.76 - Fix readline setup to handle Ctrl-C and Ctrl-D corrrectly (bsc#1227205) - version 1.14.75
participants (1)
-
Guillaume Gardet