New Tumbleweed snapshot 20210423 released!

24 Apr 2021

      Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20210423

Please do not reply to this email to report issues, rather file a bug
on bugzilla.opensuse.org. For more information on filing bugs please
see https://en.opensuse.org/openSUSE:Submitting_bug_reports

Packages changed:
  MozillaFirefox (87.0 -> 88.0)
  MozillaThunderbird (78.9.1 -> 78.10.0)
  acpica (20210105 -> 20210331)
  ceph
  findutils
  gmp
  kernel-firmware (20210315 -> 20210419)
  libtpms (0.7.7 -> 0.8.2)
  libyui (4.2.1 -> 4.2.5)
  libyui-ncurses (4.2.1 -> 4.2.5)
  libyui-ncurses-pkg (4.2.1 -> 4.2.5)
  libyui-qt (4.2.1 -> 4.2.5)
  libyui-qt-graph (4.2.1 -> 4.2.5)
  libyui-qt-pkg (4.2.1 -> 4.2.5)
  mozilla-nspr (4.29 -> 4.30)
  mozilla-nss (3.62 -> 3.63.1)
  publicsuffix (20210330 -> 20210419)
  pulseaudio
  redis (6.2.1 -> 6.2.2)
  rubygem-i18n (1.8.9 -> 1.8.10)
  skanlite
  system-config-printer (1.5.7 -> 1.5.15)
  virt-manager
  xen (4.14.1_14 -> 4.14.1_16)
  yast2 (4.3.60 -> 4.4.1)
  yast2-bootloader (4.3.25 -> 4.4.0)
  yast2-dhcp-server (4.3.1 -> 4.4.1)
  yast2-http-server (4.3.1 -> 4.4.1)
  yast2-iscsi-client (4.3.3 -> 4.4.1)
  yast2-ldap (4.1.0 -> 4.4.1)
  yast2-multipath (4.2.1 -> 4.4.1)
  yast2-network (4.4.3 -> 4.4.5)
  yast2-nis-client (4.3.6 -> 4.4.1)
  yast2-packager (4.4.0 -> 4.4.1)
  yast2-pkg-bindings (4.4.0 -> 4.4.1)
  yast2-printer (4.3.2 -> 4.4.1)
  yast2-ruby-bindings (4.3.14 -> 4.4.0)
  yast2-samba-client (4.3.3 -> 4.4.1)
  yast2-scanner (4.2.0 -> 4.4.1)
  yast2-snapper (4.2.0 -> 4.4.1)
  yast2-squid (4.3.2 -> 4.4.1)
  yast2-transfer (4.1.0 -> 4.4.1)
  yast2-tune (4.3.1 -> 4.4.1)
  yast2-vm (4.3.1 -> 4.4.1)
  yast2-x11 (4.3.0 -> 4.4.1)

=== Details ===

==== MozillaFirefox ====
Version update (87.0 -> 88.0)
Subpackages: MozillaFirefox-translations-common

- Mozilla Firefox 88.0
  * New: PDF forms now support JavaScript embedded in PDF files.
    Some PDF forms use JavaScript for validation and other
    interactive features
  * New: Print updates: Margin units are now localized
  * New: Smooth pinch-zooming using a touchpad is now supported
    on Linux
  * New: To protect against cross-site privacy leaks, Firefox now
    isolates window.name data to the website that created it.
    Learn more
  * Changed: Firefox will not prompt for access to your
    microphone or camera if you?ve already granted access to the
    same device on the same site in the same tab within the past
    50 seconds. This new grace period reduces the number of times
    you?re prompted to grant device access
  * Changed: The ?Take a Screenshot? feature was removed from the
    Page Actions menu in the url bar. To take a screenshot,
    right-click to open the context menu. You can also add a
    screenshots shortcut directly to your toolbar via the
    Customize menu. Open the Firefox menu and select Customize?
  * Changed: FTP support has been disabled, and its full removal
    is planned for an upcoming release. Addressing this security
    risk reduces the likelihood of an attack while also removing
    support for a non-encrypted protocol
  * Developer: Introduced a new toggle button in the Network
    panel for switching between JSON formatted HTTP response and
    raw data (as received over the wire).
    !enter image description here
  * Enterprise: Various bug fixes and new policies have been
    implemented in the latest version of Firefox. You can see
    more details in the Firefox for Enterprise 88 Release Notes.
  * Fixed: Screen readers no longer incorrectly read content that
    websites have visually hidden, as in the case of articles in
    the Google Help panel
  MFSA 2021-16 (bsc#1184960)
  * CVE-2021-23994 (bmo#1699077)
    Out of bound write due to lazy initialization
  * CVE-2021-23995 (bmo#1699835)
    Use-after-free in Responsive Design Mode
  * CVE-2021-23996 (bmo#1701834)
    Content rendered outside of webpage viewport
  * CVE-2021-23997 (bmo#1701942)
    Use-after-free when freeing fonts from cache
  * CVE-2021-23998 (bmo#1667456)
    Secure Lock icon could have been spoofed
  * CVE-2021-23999 (bmo#1691153)
    Blob URLs may have been granted additional privileges
  * CVE-2021-24000 (bmo#1694698)
    requestPointerLock() could be applied to a tab different from
    the visible tab
  * CVE-2021-24001 (bmo#1694727)
    Testing code could have enabled session history manipulations
    by a compromised content process
  * CVE-2021-24002 (bmo#1702374)
    Arbitrary FTP command execution on FTP servers using an
    encoded URL
  * CVE-2021-29945 (bmo#1700690)
    Incorrect size computation in WebAssembly JIT could lead to
    null-reads
  * CVE-2021-29944 (bmo#1697604)
    HTML injection vulnerability in Firefox for Android's Reader View
  * CVE-2021-29946 (bmo#1698503)
    Port blocking could be bypassed
  * CVE-2021-29947 (bmo#1651449, bmo#1674142, bmo#1693476,
    bmo#1696886, bmo#1700091)
    Memory safety bugs fixed in Firefox 88
- requires
  * NSPR 4.30
  * NSS 3.63.1
- align wayland support logic

==== MozillaThunderbird ====
Version update (78.9.1 -> 78.10.0)
Subpackages: MozillaThunderbird-translations-common

- Mozilla Thunderbird 78.10.0
  MFSA 2021-14 (bsc#1184960)
  * CVE-2021-23994 (bmo#1699077)
    Out of bound write due to lazy initialization
  * CVE-2021-23995 (bmo#1699835)
    Use-after-free in Responsive Design Mode
  * CVE-2021-23998 (bmo#1667456)
    Secure Lock icon could have been spoofed
  * CVE-2021-23961 (bmo#1677940)
    More internal network hosts could have been probed by a
    malicious webpage
  * CVE-2021-23999 (bmo#1691153)
    Blob URLs may have been granted additional privileges
  * CVE-2021-24002 (bmo#1702374)
    Arbitrary FTP command execution on FTP servers using an
    encoded URL
  * CVE-2021-29945 (bmo#1700690)
    Incorrect size computation in WebAssembly JIT could lead to
    null-reads
  * CVE-2021-29946 (bmo#1698503)
    Port blocking could be bypassed
  * CVE-2021-29948 (bmo#1692899)
    Race condition when reading from disk while verifying
    signatures
- recommend libotr5

==== acpica ====
Version update (20210105 -> 20210331)

- Update to version 20210331
  * ACPI 6.4 is now supported!
  ACPICA kernel-resident subsystem:
  * Always create namespace nodes.
  * Fixed a race condition in generic serial bus operation region handler.
  iASL Compiler/Disassembler and ACPICA tools:
  * Add disassembly support for the IVRS table.
  * Fixed a potential infinite loop due to type mismatch.
  iASL/TableCompiler:
  * update it with IORT table E.b revision changes.
  * Add compilation support for the VIOT table.
  * Add compilation support for CEDT table.
  * Update of the CEDT template.

==== ceph ====
Subpackages: librados2 librbd1

- _constraints: raise s390x disk constraint to 42G after seeing a build fail
  with "write error: No space left on device"

==== findutils ====
Subpackages: findutils-lang

- Use new Group Release Keyring

==== gmp ====
Subpackages: libgmp10 libgmp10-32bit

- Compute FIPS hmac for libgmp.so.10 [bsc#1184555]
- do not break SLE 12 build when applying spec-cleaner

==== kernel-firmware ====
Version update (20210315 -> 20210419)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd

- Update to version 20210419 (git commit 940b7f42d45d):
  * cxgb4: Update firmware to revision 1.25.4.0
  * Mellanox: Add new mlxsw_spectrum firmware xx.2008.2438
  * brcm: Link CM4's WiFi firmware with DMI machine name.
  * linux-firmware: Update firmware file for Intel Bluetooth AX201
  * amdgpu: update navi14 smc firmware
  * amdgpu: update navi10 SMC firmware
  * QCA: Update Bluetooth firmware for QCA6174
  * WHENCE: link to similar config file for rtl8821a support
  * nfp: update Agilio SmartNIC flower firmware to rev AOTC-2.14.A.6
  * amdgpu: add arcturus firmware
  * rtl_bt: Add rtl8723bs_config-OBDA0623.bin symlink
  * brcm: Add nvram for the Chuwi Hi8 (CWI509) tablet
  * brcm: Add nvram for the Predia Basic tablet
  * qcom: sm8250: update remoteproc firmware
  * qcom: update a650 firmware files
  * rtl_bt: Update RTL8822C BT(UART I/F) FW to 0x59A_76A3
  * amdgpu: update sienna cichlid firmware for 20.50
  * amdgpu: update vega20 firmware for 20.50
  * amdgpu: update picasso firmware for 20.50
  * amdgpu: update navi14 firmware for 20.50
  * amdgpu: update vega12 firmware for 20.50
  * amdgpu: update navi12 firmware for 20.50
  * amdgpu: update vega10 firmware for 20.50
  * amdgpu: update renoir firmware for 20.50
  * amdgpu: update navi10 firmware for 20.50
  * amdgpu: update raven2 firmware for 20.50
  * amdgpu: update raven firmware for 20.50
  * amdgpu: add initial support for navy flounder
- Update aliases

==== libtpms ====
Version update (0.7.7 -> 0.8.2)

- Update to version 0.8.2
  * NOTE: Downgrade to 0.7.x or below is not possible.
    Due to fixes in the TPM 2 prime number generation code in
    rev155 it is not possible to downgrade from libtpms version
    0.8.0 to some previous version. The seeds are now associated
    with an age so that older seeds use the old TPM 2 prime number
    generation code while newer seed use the newer code.
  * tpm2: rev155: Add new RsaAdjustPrimeCandidate code but do
    not use (bsc#1184939 CVE-2021-3505)
  * tpm2: Activate SEED_COMPAT_LEVEL_RSA_PRIME_ADJUST_FIX
    (bsc#1184939 CVE-2021-3505)
  * Update to TPM 2 code release 159
  - X509 support is enabled
    + SM2 signing of ceritificates is NOT supported
  - Authenticated timers are disabled
  * Update to TPM 2 code relase 162
  - ECC encryption / decryption is disabled
  * Fix support for elliptic curve due to missing unmarshalling
    code
  * Runtime filter supported elliptic curves supported by OpenSSL
  * Fix output buffer parameter and size for RSA decryption that
    could cause stack corruption under certain circumstances
  * Set the RSA PSS salt length to the digest length rather than
    max
  * Fixes to symmetric decryption related to input size check,
    defer padding to the user [EVP_CIPHER_CTX_set_padding(ctx, 0)]
    and to always use a temporary malloc'ed buffer for decryption
  * Fixed the set of PCRs belonging to the TCB group. This affects
    the pcrUpdateCounter in TPM2_Pcrread() responses, thus needs
    latest swtpm for test cases to succeed there.

==== libyui ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== libyui-ncurses ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== libyui-ncurses-pkg ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== libyui-qt ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== libyui-qt-graph ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== libyui-qt-pkg ====
Version update (4.2.1 -> 4.2.5)

- Added reference to autodocs (C++ API doc) and more docs
  (part of bsc#1181653)
- 4.2.5
- Added support for $CMAKE_INSTALL_PREFIX for alternate installation dir
  either as -D on the cmake command line or in the environment
  (gh#14, part of bsc#1181653)
- 4.2.4
- Added toplevel build-all script (part of bsc#1181653)
- Revamped toplevel README.md
- Create local include dirs at cmake time to avoid root ownership
  after "make install"
- 4.2.3
- Adjust documentation url in libyui-rest-api for the new project
  structure (bsc#1184363)
- 4.2.2

==== mozilla-nspr ====
Version update (4.29 -> 4.30)

- update to version 4.30
  * support longer thread names on macOS
  * fix a build failure on OpenBSD

==== mozilla-nss ====
Version update (3.62 -> 3.63.1)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs mozilla-nss-tools

- update to NSS 3.63.1
  * no upstream release notes for 3.63.1 (yet)
  Fixed in 3.63
  * bmo#1697380 - Make a clang-format run on top of helpful contributions.
  * bmo#1683520 - ECCKiila P384, change syntax of nested structs
    initialization to prevent build isses with GCC 4.8.
  * bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual
    scalar multiplication.
  * bmo#1683520 - ECCKiila P521, change syntax of nested structs
    initialization to prevent build isses with GCC 4.8.
  * bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual
    scalar multiplication.
  * bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683.
  * bmo#1694214 - tstclnt can't enable middlebox compat mode.
  * bmo#1694392 - NSS does not work with PKCS #11 modules not supporting
    profiles.
  * bmo#1685880 - Minor fix to prevent unused variable on early return.
  * bmo#1685880 - Fix for the gcc compiler version 7 to support setenv
    with nss build.
  * bmo#1693217 - Increase nssckbi.h version number for March 2021 batch
    of root CA changes, CA list version 2.48.
  * bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's
    'Chambers of Commerce' and 'Global Chambersign' roots.
  * bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER.
  * bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS.
  * bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS.
  * bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs
    from NSS.
  * bmo#1687822 - Turn off Websites trust bit for the ?Staat der
    Nederlanden Root CA - G3? root cert in NSS.
  * bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce
    Root - 2008' and 'Global Chambersign Root - 2008?.
  * bmo#1694291 - Tracing fixes for ECH.
- required for Firefox 88

==== publicsuffix ====
Version update (20210330 -> 20210419)

- Update to version 20210419:
  * exclude gov.st from publicsuffix since host act as public domain (#1257)
  * util: gTLD data autopull updates for 2021-04-17T15:15:54 UTC (#1284)
  * Add wixsite.com and editorx.io (#927)
  * Update public_suffix_list.dat (#1263)
  * Adding reserve-online.net, reserve-online.com, bookonline.app, hotelwithflight.com (#1254)
  * Update Platform.sh domains (#1256)
  * New Jelastic public domains are added and existing ones are reviewed (#1259)

==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-bash-completion pulseaudio-gdm-hooks pulseaudio-lang pulseaudio-module-bluetooth pulseaudio-module-gsettings pulseaudio-module-x11 pulseaudio-module-zeroconf pulseaudio-utils pulseaudio-zsh-completion

- Really fix recording OGG with parecord (bsc#1183546)
  parecord-really-fix-recording-OGG.patch

==== redis ====
Version update (6.2.1 -> 6.2.2)

- Usage of OPENSSL_INIT_ATFORK in tls.c raises the minimum version
  of OpenSSL 1.1.x to 1.1.1, say so in spec
- redis 6.2.2
  Bug fixes for regressions in previous releases of Redis 6.2:
  * Fix BGSAVE, AOFRW, and replication slowdown due to child reporting CoW (#8645)
  * Fix short busy loop when a timer event is about to fire (#8764)
  * Fix default user, overwritten and reset users losing Pub/Sub channel permissions (#8723)
  * Fix config rewrite with an empty save config resulting in default save values (#8719)
  * Fix not starting on alpine/libmusl without IPv6 (#8655)
  * Fix issues with propagation and MULTI/EXEC in modules (#8617)
  * Several issues around nested calls and thread-safe contexts
  Bug fixes that are only applicable to previous releases of Redis 6.2:
  * ACL Pub/Sub channels permission handling for save/load scenario (#8794)
  * Fix early rejection of PUBLISH inside MULTI-EXEC transaction (#8534)
  * Fix missing SLOWLOG records for blocked commands (#8632)
  * Allow RESET command during busy scripts (#8629)
  * Fix some error replies that were not counted on stats (#8659)
  Bug fixes:
  * Add a timeout mechanism for replicas stuck in fullsync (#8762)
  * Process HELLO command even if the default user has no permissions (#8633)
  * Client issuing a long-running script and using a pipeline, got disconnected (#8715)
  * Fix script kill to work also on scripts that use pcall (#8661)
  * Fix list-compress-depth may compress more node than required (#8311)
  * Fix redis-cli handling of rediss:// URL scheme (#8705)
  * Cluster: Skip unnecessary check which may prevent failure detection (#8585)
  * Cluster: Fix hang manual failover when replica just started (#8651)
  * Sentinel: Fix info-refresh time field before sentinel gets a first response (#8567)
  * Sentinel: Fix possible crash on failed connection attempt (#8627)
  * Systemd: Send the readiness notification when a replica is ready to accept connections (#8409)
  Command behavior changes:
  * ZADD: fix awrong reply when INCR used with GT/LT which blocked the update (#8717)
  * It was responding with the incremented value rather than nil
  * XAUTOCLAIM: fix response to return the next available id as the cursor (#8725)
  * Previous behavior was returning the last one which was already scanned
  * XAUTOCLAIM: fix JUSTID to prevent incrementing delivery_count (#8724)
  New config options:
  * Add cluster-allow-replica-migration config option (#5285)
  * Add replica-announced config option (#8653)
  * Add support for plaintext clients in TLS cluster (#8587)
  * Add support for reading encrypted keyfiles (#8644)
  Improvements:
  * Fix performance regression in BRPOP on Redis 6.0 (#8689)
  * Avoid adding slowlog entries for config with sensitive data (#8584)
  * Improve redis-cli non-binary safe string handling (#8566)
  * Optimize CLUSTER SLOTS reply (#8541)
  * Handle remaining fsync errors (#8419)
  Info fields and introspection changes:
  * Strip % sign from current_fork_perc info field (#8628)
  * Fix RSS memory info on FreeBSD (#8620)
  * Fix client_recent_max_input/output_buffer in 'INFO CLIENTS' when all clients drop (#8588)
  * Fix invalid master_link_down_since_seconds in info replication (#8785)
  Platform and deployment-related changes:
  * Fix FreeBSD <12.x builds (#8603)
  Modules:
  * Add macros for RedisModule_log logging levels (#4246)
  * Add RedisModule_GetAbsExpire / RedisModule_SetAbsExpire (#8564)
  * Add a module type for key space notification (#8759)
  * Set module eviction context flag only in masters (#8631)
  * Fix unusable RedisModule_IsAOFClient API (#8596)
  * Fix missing EXEC on modules propagation after failed EVAL execution (#8654)
  * Fix edge-case when a module client is unblocked (#8618)

==== rubygem-i18n ====
Version update (1.8.9 -> 1.8.10)

- updated to version 1.8.10
  * Fix string locale will trigger on_fallback hook - #562

==== skanlite ====
Subpackages: skanlite-lang

- Update URL.
- Use %kf5_find_htmldocs
- Spec cleanup

==== system-config-printer ====
Version update (1.5.7 -> 1.5.15)
Subpackages: python3-cupshelpers system-config-printer-applet system-config-printer-common system-config-printer-common-lang system-config-printer-dbus-service udev-configure-printer

- Update to version 1.5.15 (boo#1184930):
  + set the minimum gettext version because autoconf 2.70 requires
    it.
  + create README file because autoconf requires it.
- Changes from version 1.5.14:
  + set preferred driver for DYMO LabelWriter 400.
  + udev: ignore devices capable of IPP over USB, we have ipp-usb
    for it.
  + asyncpk1.py: dont require the exact Gdk version.
- Changes from version 1.5.13:
  + add checks for NULL in udev-configure-printer.
  + github #174 - put back notification about missing pysmbc.
  + python3.9 - xml module removed elem.getchildren() method,
    use list(elem).
  + Make the matching rule of printer device path more flexible.
- For more details of the update between 1.5.7 and 1.5.13, please
  see packaged NEWS file.
- Drop upstream merged patches:
  + 0001-Fallback-to-using-LC_CTYPE-if-LC_MESSAGES-is-empty-a.patch
  + fix_connect_dialog_focus.diff
  + system-config-printer-no-params-to-py3.patch
  + system-config-printer-Gtk-introspect.patch
  + system-config-printer-no-applet-in-gnome.patch

==== virt-manager ====
Subpackages: virt-install virt-manager-common

- Add support for detecting SUSE Linux Enterprise Micro. See also
  the osinfo-db package for the SLEM OS description file.
  virtinst-add-slem-detection-support.patch

==== xen ====
Version update (4.14.1_14 -> 4.14.1_16)
Subpackages: xen-libs xen-tools xen-tools-domU

- bsc#1180491 - "Panic on CPU 0: IO-APIC + timer doesn't work!"
  60787714-x86-HPET-avoid-legacy-replacement-mode.patch
  60787714-x86-HPET-factor-legacy-replacement-mode-enabling.patch
- Upstream bug fixes (bsc#1027519)
  60410127-gcc11-adjust-rijndaelEncrypt.patch
  60422428-x86-shadow-avoid-fast-fault-path.patch
  604b9070-VT-d-disable-QI-IR-before-init.patch
  60535c11-libxl-domain-soft-reset.patch (Replaces xsa368.patch)
  60700077-x86-vpt-avoid-pt_migrate-rwlock.patch
- bsc#1137251 - Restore changes for xen-dom0-modules.service which
  were silently removed on 2019-10-17

==== yast2 ====
Version update (4.3.60 -> 4.4.1)
Subpackages: yast2-logs

- Add a mechanism to report issues to the user (related to
  bsc#1181295).
- 4.4.1
- Updated manual page ("man yast2") (bsc#1184681)
- 4.4.0
- Add a default value for file_path argument in ::new and ::load
  methods of CFA::LoginDefs class.

==== yast2-bootloader ====
Version update (4.3.25 -> 4.4.0)

- 4.4.0
- Fix crash when bootloader is not managed by yast and security
  module wants to show cpu mitigation (bsc#1184968)
- 4.3.26

==== yast2-dhcp-server ====
Version update (4.3.1 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0
- Fix URL in .spec file

==== yast2-http-server ====
Version update (4.3.1 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-iscsi-client ====
Version update (4.3.3 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-ldap ====
Version update (4.1.0 -> 4.4.1)

- Use the given BindDN to connect to the LDAP database.
- bsc#1185054
- 4.4.1
- 4.4.0

==== yast2-multipath ====
Version update (4.2.1 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-network ====
Version update (4.4.3 -> 4.4.5)

- bsc#1185106
  - Initialize correctly the netmask when using the static bootproto
    without an IP address defined.
  - Fix MTU write when using wicked.
- Do not crash when modifying a virtual interface and checking if
  it is hotplug (bsc#1184623, bsc#1185106)
- 4.4.5
- Do not require a MAC address when activating a qeth device
  with layer2 support (bsc#1184474).
- 4.4.4

==== yast2-nis-client ====
Version update (4.3.6 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-packager ====
Version update (4.4.0 -> 4.4.1)

- Revert copying the libzypp cache to the target system and
  replacing it by a symlink, it is not safe and it can
  cause crash (segfault) in some cases (bsc#1183711)
- 4.4.1

==== yast2-pkg-bindings ====
Version update (4.4.0 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1

==== yast2-printer ====
Version update (4.3.2 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-ruby-bindings ====
Version update (4.3.14 -> 4.4.0)

- Made the architecture string to fit in a 80x24 terminal
  (bsc#1184474).
- 4.4.0

==== yast2-samba-client ====
Version update (4.3.3 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-scanner ====
Version update (4.2.0 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-snapper ====
Version update (4.2.0 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-squid ====
Version update (4.3.2 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-transfer ====
Version update (4.1.0 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-tune ====
Version update (4.3.1 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-vm ====
Version update (4.3.1 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

==== yast2-x11 ====
Version update (4.3.0 -> 4.4.1)

- stop packaging docdir, it only contained the license which
  is now in licensedir (bsc#1184897)
- spec file cleanups
- 4.4.1
- 4.4.0

New Tumbleweed snapshot 20210423 released!

Dominique Leuenberger