Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20241018 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: cups cups-filters glib2 (2.82.1 -> 2.82.2) gnome-remote-desktop (46.5 -> 47.0) gucharmap (15.1.5 -> 16.0.1) intlfonts (1.2.1 -> 1.4.2) kinfocenter6 kwin6 (6.2.1 -> 6.2.1.1) microos-tools (4.0 -> 4.0+git1) oath-toolkit openSUSE-release (20241017 -> 20241018) patterns-base plasma6-workspace (6.2.1 -> 6.2.1.1) polkit-default-privs (1550+20240708.7e0e3f4 -> 1550+20241017.007e12d) python-Babel python-requests qemu virtualbox (7.1.0 -> 7.1.4) virtualbox-kmp (7.1.0_k6.11.3_1 -> 7.1.4_k6.11.3_1) webkit2gtk3 (2.45.92 -> 2.46.1) === Details === ==== cups ==== Subpackages: cups-client cups-config libcups2 libcupsimage2 - Drop rcFOO symlinks for CODE16 (PED-266). ==== cups-filters ==== - Drop rcFOO symlinks for CODE16 (PED-266). ==== glib2 ==== Version update (2.82.1 -> 2.82.2) Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.82.2: + Bugs fixed: - glib/gvariant: incorrect use of G_ANALYZER_ANALYZING - Multicast cannot be joined on Mac OS on non-default interface - glib/gvariant: Fix check for G_ANALYZER_ANALYZING - macos: Fix URL launcher - gopenuriportal: Fix two memory leaks - gio: Fix multicast iface selection on macOS - gdatainputstream: Fix length return value on UTF-8 validation failure + Updated translations. ==== gnome-remote-desktop ==== Version update (46.5 -> 47.0) Subpackages: gnome-remote-desktop-lang - Update to version 47.0: + Updated translations. - Update to version 47.rc: + Reduce resource usage of unauthenticated sessions + Updated translations. - Changes from version 47.beta: + Gracefully handle file descriptor limits + Introduce standalone configuration D-Bus service + Improve grdctl status reporting + Gracefully handle invalid x224Crq data + Fix file descriptor leak + Updated translations. - Changes from version 47.alpha: + Support persistent remote login sessions + Support entering new credentials via standard input when using grdctl + Use access portal dialogs for warning about connection insecurity + Avoid crash when getting invalid PipeWire buffers + Updated translations. ==== gucharmap ==== Version update (15.1.5 -> 16.0.1) Subpackages: gucharmap-lang libgucharmap_2_90-7 - Update to version 16.0.1: + unicode: Update strings in preparation for unicode 16.0.0. + Updated translations. ==== intlfonts ==== Version update (1.2.1 -> 1.4.2) - UTF-8 should be allowed in changelog - Update to version 1.4.2 + 2021-03-12 handa <handa@gnu.org> * Version 1.4.2 released. * Chinese/cns[1-7]-16.bdf, Chinese/cns[1-7]-24.bdf: Delete them again. * Chinese.BIG/cns[1-7]-40.bdf, Chinese.BIG/cc4[08].bdf: Delete them again. * README.split: Delete it. + 2021-02-06 handa <handa@gnu.org> * Version 1.4.1 released. + 2018-06-22 K. Handa <handa@gnu.org> Thanks to Akira Urushibata <afu@wta.att.ne.jp> for reporting these bugs. * Asian/xtis18.bdf: Sort glyphs by ENCODING. * Asian/ind1c24-mule.bdf: Fix ENCODINGs 9082. + 2012-12-14 Kenichi Handa <handa@gnu.org> * Version 1.4.0 released. + 2012-12-14 Kenichi Handa <handa@gnu.org> * .cvsignore: New file. * make-dist: Fix unpaired string quotation. * Makefile.in (SUBDIRS_BIG): Delete Chienese.BIG. * COPYING: New file (GPL). * Chinese/fonts.alias: Delete entries correponding to deleted fonts. * Chinese/cns[1-7]-16.bdf, Chinese/cns[1-7]-24.bdf: Delete them. * Chinese.BIG/cns[1-7]-40.bdf, Chinese.BIG/cc4[08].bdf: Delete them. * COPYRIGHT: Delete it. + 2006-04-26 Kenichi Handa <handa@m17n.org> * make-dist (version): Extract release number. (files): Include make-dist. (release): New variable. * Chinese.X/gb16fs.bdf, Chinese.X/gb16st.bdf, Chinese.X/gb24st.bdf: Fix 0x2736 and 0x2737 (exchanged). + 2006-04-10 Claudio Fontana <claudio@gnu.org> * Makefile.in: Add DESTDIR variable to support staged installations. + 2003-07-03 Kenichi Handa <handa@m17n.org> * Japanese.BIG/j83-32.bdf, Japanese.BIG/j83-48.bdf: Deleted. * Japanese.BIG/jiskan32.bdf, Japanese.BIG/jiskan48.bdf: New fonts. + 2001-05-14 Milan Zamazal <pdm@debian.org> * Chinese/fonts.alias: New aliases for Big5 and GB8565 fonts. + 2001-04-20 Kenichi Handa <handa@etl.go.jp> * Misc/bmp16-etl.bdf: Fix BBX for ENCODING 8224. + 2001-03-27 Kenichi Handa <handa@etl.go.jp> * Chinese/fonts.alias: Add aliases for CNS fonts. + 2001-03-05 Pavel JanÃk ml. <Pavel@Janik.cz> * configure.in (fontdir): Fix help string. + 2000-12-15 Kenichi Handa <handa@etl.go.jp> * Version 1.3 released. + 2000-12-15 Kenichi Handa <handa@etl.go.jp> * */*-elt.bdf: Copyright notice udpated. * European/koi*.bdf: Properties CHARSET_REGISTRY and CHARSET_ENCODING fixed. + 2000-11-17 Kenichi Handa <handa@etl.go.jp> * COPYRIGHT: New file. + 2000-08-18 Kenichi Handa <handa@etl.go.jp> * European/lt1-16i-etl.bdf, European/lt1-24b-etl.bdf, European/lt1-24bi-etl: Glyphs improved. + 2000-07-01 Kenichi Handa <handa@etl.go.jp> * Asian/thai18.bdf, Asian/thai18b.bdf, Asian/thai18i.bdf, Asian/thai18bi, Asian/thai24.bdf, Asian/xtis18.bdf, Asian/xtis24.bdf: Add property COPYRIGHT stating that they are public domain. * Asian/tib16-mule.bdf, Asian/tib1c16-mule.bdf, Asian/tib24-mule, Asian/tib1c24-mule: Generated from tib32p-mule.bdf and tuned by hand. * Ethiopic/ethio16f-uni.bdf, Ethiopic/ethio24f-uni: Updated from original ftp site. * Ethiopic/ethio12-uni.bdf: New font. * Ethiopic.BIG/ethio300-uni.bdf: New font. * Japanese/j90-16.bdf: Kana glyphs improved. * Japanese/j00-1-16.bdf, Japanese/j00-2-16.bdf: New fonts. + 2000-06-31 Toru Tomabechi <Toru.Tomabechi@orient.unil.ch> * Asian/tib9p-mule.bdf, Asian/tib14p-mule.bdf, Asian/tib16p-mule.bdf, Asian/tib18p-mule.bdf, Asian/tib24p-mule.bdf, Asian/tib32p-mule.bdf: New fonts. + 2000-06-23 Kenichi Handa <handa@etl.go.jp> * Chinese.BIG/cnsX-40.bdf: Rebuild form bitmap files in CJK LaTeX. * Chinese/cns1-16.bdf, Chinese/cns2-16.bdf: Updated from the original ftp site. * Chinese/cns[1-7]-24.bdf, Chinese/cns[3-7]-16.bdf: Rebuild from cnsX-40.bdf. * Chinese/taipei16.bdf: Updated from the original ftp site. * European/lt1-{32,48,60}-etl.bdf: New fonts. + 1999-12-07 Kenichi Handa <handa@etl.go.jp> * Chinese/taipei16.bdf: Properties fixed. - Due to unknown license the Chinese BIG fonts are removed - The Asian/tib16-mule.bdf, Asian/tib1c16-mule.bdf, Asian/tib1c24-mule.bdf, and Asian/tib24-mule.bdf are back as receated from free source ==== kinfocenter6 ==== Subpackages: kinfocenter6-lang - Add patches to fix the memory info page by switching from pkexec to KAuth: * 0001-kcms-pull-dmidecode-helper-into-a-separate-dir.patch * 0002-refactor-dmidecode-helper-support-multiple-methods.patch * 0003-kcms-memory-use-KAuth-dmidecode-helper.patch ==== kwin6 ==== Version update (6.2.1 -> 6.2.1.1) Subpackages: kwin6-lang kwin6-x11 libkwin6 - Update to 6.2.1.1: * New bugfix release - Changes since 6.2.1: * backends/drm: don't skip colorops when matching the pipeline (kde#494611) * backends/drm: transform damage to match the framebuffer (kde#494837) * Set WAYLAND_DISPLAY before starting wayland server * scene/itemrenderer_opengl: use the color pipeline to check if color transformations are needed (kde#493295) * temporarily revert version number for respin * backends/drm: don't scale infiniteRegion() * backends/drm: fix crash with multi gpu * ci: Require tests to pass only on Linux * Report correct input timestamps for popup keyboard events * backends/drm: disable hdr if we removed the capabilities for it (kde#494706) * wayland/color management: ignore obviously wrong HDR metadata (kde#494502) * update version for new release ==== microos-tools ==== Version update (4.0 -> 4.0+git1) Subpackages: selinux-autorelabel - Update to version 4.0+git1: * Regenerate initrd after selinux-autorelabel installation ==== oath-toolkit ==== - Update 0001-usersfile-fix-potential-security-issues-in-PAM-modul.patch with bsc#1231699 improvements for security fix CVE-2024-47191 ==== openSUSE-release ==== Version update (20241017 -> 20241018) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Add "Requires: selinux-policy-base" to selinux pattern so that selinux-policy-targeted will be installed on systems that disable "Recommends" (bsc#1231720) ==== plasma6-workspace ==== Version update (6.2.1 -> 6.2.1.1) Subpackages: plasma6-session plasma6-session-x11 plasma6-workspace-lang plasma6-workspace-libs sddm-qt6-branding-openSUSE - Update to 6.2.1.1: * New bugfix release - Changes since 6.2.1: * temporarily revert version number for respin * startkde: Specify --type=method_call to correctly notify ksplash * applets/devicenotifier: reduce string allocation * klipper: correct boolean in desktop file * PanelView: Fix popups position when NoBackground hint is set (kde#494193) * update version for new release ==== polkit-default-privs ==== Version update (1550+20240708.7e0e3f4 -> 1550+20241017.007e12d) - Update to version 1550+20241017.007e12d: * profiles: whitelist additional kinfocenter action (bsc#1231659) * Update rule for kpmcore (bsc#1203315) ==== python-Babel ==== - Clean up {Build,}Requires to match reality. ==== python-requests ==== - Add patch inject-default-ca-bundles.patch: * Inject the default CA bundles if they are not specified. (bsc#1226321, bsc#1231500) ==== qemu ==== Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-lang qemu-microvm qemu-pr-helper qemu-seabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vmsr-helper qemu-x86 - Bug and CVE fixes: * softmmu/physmem: fix memory leak in dirty_memory_extend() * softmmu: Support concurrent bounce buffers (bsc#1230915, CVE-2024-8612) * accel/kvm: check for KVM_CAP_READONLY_MEM on VM (bsc#1231519) - Fix bsc#1231519 and bsc#1230140: * accel/kvm: check for KVM_CAP_READONLY_MEM on VM * target/ppc: Fix lxvx/stxvx facility check ==== virtualbox ==== Version update (7.1.0 -> 7.1.4) - Update to release 7.1.4 * NAT: Fixed DHCP problems with certain guests when domain is empty * VMSVGA: Improved flickering, black screen and other screen update issues with recent Linux kernels * Linux Guest Additions: Introduce initial support for kernel 6.12 * EFI: Added missing LsiLogic MPT SCSI driver again to fix booting from devices attached to this device if the EFI firmware is used (7.1.0 regression) * EFI: Restored broken network boot support (7.1.0 regression) * Adressed CVE-2024-21248 [boo#1231735], CVE-2024-21273 [boo#1231736], CVE-2024-21259 [boo#1231737], CVE-2024-21263 [boo#1231738] ==== virtualbox-kmp ==== Version update (7.1.0_k6.11.3_1 -> 7.1.4_k6.11.3_1) - Update to release 7.1.4 * NAT: Fixed DHCP problems with certain guests when domain is empty * VMSVGA: Improved flickering, black screen and other screen update issues with recent Linux kernels * Linux Guest Additions: Introduce initial support for kernel 6.12 * EFI: Added missing LsiLogic MPT SCSI driver again to fix booting from devices attached to this device if the EFI firmware is used (7.1.0 regression) * EFI: Restored broken network boot support (7.1.0 regression) * Adressed CVE-2024-21248 [boo#1231735], CVE-2024-21273 [boo#1231736], CVE-2024-21259 [boo#1231737], CVE-2024-21263 [boo#1231738] ==== webkit2gtk3 ==== Version update (2.45.92 -> 2.46.1) Subpackages: WebKitGTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Add bug281492.patch: fix crash in AccessibilityAtspi::textAttributes. - Add bug281495.patch: fix crash in ProcessLauncher socket monitor callback. - Update to version 2.46.1: + Fix login QR code not shown in WhatsApp web. + Disable PSON by default again in GTK 3 API versions. + Disable DMABuf video sink by default to prevent file descriptor leaks. + Fix the build with GCC 13. + Fix several crashes and rendering issues. - Update to version 2.46.0 (boo#1231039): + Use Skia instead of cairo for 2D rendering and enable GPU rendering by default. + Enable offscreen canvas by default. + Add support for system tracing with Sysprof. + Implement printing using the Print portal. + Add new API to load settings from a config file. + Add a new setting to enable or disable the 2D canvas acceleration (enabled by default). + Undeprecate console messages API and make it available in 6.0 API. + Security fixes: CVE-2024-40866, CVE-2024-44187.