Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20211218 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: GraphicsMagick (1.3.36 -> 1.3.37) ImageMagick (7.1.0.16 -> 7.1.0.17) Imath (3.1.2 -> 3.1.3) MozillaFirefox (95.0 -> 95.0.1) SDL2 autoyast2 (4.4.23 -> 4.4.24) aws-cli (1.21.6 -> 1.22.24) bcm43xx-firmware colord cppcheck (2.6.2 -> 2.6.3) epiphany (41.0 -> 41.2) gnome-shell (41.1 -> 41.2) gnome-shell-extensions (41.0 -> 41.1) gstreamer-plugins-bad hplip hwinfo (21.78 -> 21.80) iputils (20210722 -> 20211215) kernel-source (5.15.7 -> 5.15.8) libgcrypt libostree (2020.8 -> 2021.6) libstorage-ng (4.4.65 -> 4.4.66) libvirt monitoring-plugins mutter (41.1 -> 41.2) myspell-dictionaries (20201230 -> 20211213) nano (5.9 -> 6.0) ncurses (6.3.20211120 -> 6.3.20211127) neon (0.31.2 -> 0.32.1) netpbm (10.93.0 -> 10.96.4) openssl-1_1 openvpn p11-kit pam pam-full-src pango (1.48.10 -> 1.50.1) pangomm1_4 (2.46.1 -> 2.46.2) patterns-base pipewire (0.3.40 -> 0.3.42) polkit-default-privs (1550+20211209.8ce206c -> 1550+20211214.daf2765) python-Genshi python-SQLAlchemy (1.4.26 -> 1.4.27) python-boto3 (1.19.6 -> 1.20.24) python-botocore (1.22.6 -> 1.23.24) python-falcon python-kiwi (9.24.10 -> 9.24.14) python-tornado5 python-trio (0.17.0 -> 0.19.0) python-xarray (0.20.1 -> 0.20.2) qemu rav1e (0.5.0+0 -> 0.5.1+0) rtl_433 (21.05 -> 21.12) ruby2.7 sensors shadow source-highlight upower util-linux util-linux-systemd virtualbox virtualbox-kmp (6.1.30_k5.15.7_1 -> 6.1.30_k5.15.8_1) webkit2gtk3 webkit2gtk3-soup2 wireless-regdb (20210828 -> 20211209) wireplumber xen xfsprogs (5.14.0 -> 5.14.2) xorg-x11-server (21.1.1 -> 21.1.2) xxhash (0.8.0 -> 0.8.1) yast2 (4.4.27 -> 4.4.30) yast2-installation (4.4.28 -> 4.4.30) yast2-network (4.4.31 -> 4.4.32) yast2-nfs-client (4.4.1 -> 4.4.2) yast2-packager (4.4.17 -> 4.4.18) yast2-storage-ng (4.4.23 -> 4.4.27) yast2-tune (4.4.1 -> 4.4.2) zxing-cpp === Details === ==== GraphicsMagick ==== Version update (1.3.36 -> 1.3.37) Subpackages: libGraphicsMagick++-Q16-12 libGraphicsMagick-Q16-3 libGraphicsMagick3-config - version update to 1.3.37 * bug fix release, see NEWS.txt - modified patches % GraphicsMagick-disable-insecure-coders.patch (refreshed) - added sources + GraphicsMagick-1.3.37.tar.xz.sig ==== ImageMagick ==== Version update (7.1.0.16 -> 7.1.0.17) Subpackages: ImageMagick-config-7-SUSE ImageMagick-extra libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - update to 7.1.0.17: * set threads to 1 when using ASAN to avoid false positive memory leaks. ==== Imath ==== Version update (3.1.2 -> 3.1.3) - version update to 3.1.3 * Patch release with miscellaneous fixes * Fix undefined access of a vector when empty * Require sphinx 4.0.3 * Build sphinx/doxygen docs with CMake * Use PYIMATH_OVERRIDE_PYTHON_INSTALL_DIR to specify destination python modules * Guard `__has_attribute` for compilers that don't support it * Cuda safety fixes * Replace stray Imath:: with IMATH_INTERNAL_NAMESPACE:: ==== MozillaFirefox ==== Version update (95.0 -> 95.0.1) Subpackages: MozillaFirefox-translations-common - Mozilla Firefox 95.0.1 (bsc#1193845) * Fixed frequent MOZILLA_PKIX_ERROR_OCSP_RESPONSE_FOR_CERT_MISSING error messages when trying to connect to various microsoft.com domains (bmo#1745600) * Fix for a WebRender crash on some Linux/X11 systems (bmo#1741956) * Fix for a frequent Windows shutdown crash (bmo#1738984) * Fix websites contrast issues for some Linux users with Dark mode set at OS level (bmo#1740518) ==== SDL2 ==== - Add 0001-Fix-build-against-wayland-1.20.patch ==== autoyast2 ==== Version update (4.4.23 -> 4.4.24) Subpackages: autoyast2-installation - use Y2Storage::Arch to determine whether UEFI is available (bsc#937067) - 4.4.24 ==== aws-cli ==== Version update (1.21.6 -> 1.22.24) - Update to version 1.22.24 + For detailed changes see https://github.com/aws/aws-cli/blob/1.22.24/CHANGELOG.rst - Update Requires in spec file from setup.py ==== bcm43xx-firmware ==== - Introduce firmware files for Raspberry Pi Zero 2 W support (jsc#SLE-23064). - Update BCM4345C0.hcd to fix Spectra for CYW43455 (CVE-2020-10370) - Change source file links from branch master to branch buster. ==== colord ==== Subpackages: colord-color-profiles colord-lang libcolord2 libcolorhug2 - Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_colord.service.patch ==== cppcheck ==== Version update (2.6.2 -> 2.6.3) - update to 2.6.3: * Fix execution of executable addons from GUI ==== epiphany ==== Version update (41.0 -> 41.2) Subpackages: epiphany-lang gnome-shell-search-provider-epiphany - Update to version 41.2: + Fix reader mode. - Changes from version 41.1: + Fix crash opening PDFs not loaded via HTTP. + Fix CVE-2021-45085, CVE-2021-45086, CVE-2021-45087, CVE-2021-45088. + Fix web applications with non-Latin characters. + Fix close button position in Firefox Sync dialog. + Properly quote desktop file Exec line. + Somewhat improve password manager robustness. + Use correct tab close button position. + Various fixes for Firefox bookmark import. - Add gstreamer-plugins-rs Recommends: youtube.com now defaults to av1 encoded video, use the new dav1d decoder in gstreamer-plugins-rs. ==== gnome-shell ==== Version update (41.1 -> 41.2) Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang - Update to version 41.2: + Fix wrongly rejected D-Bus calls after gnome-shell restarts. + magnifier: Avoid offscreen rendering if possible. + Improve handling of all-day/zero-length events in calendar. + Keep keyboard focus in notification list after deleting message. + Misc. bug fixes and cleanups. + Updated translations. - Switch to git checkout of released tag via source service. ==== gnome-shell-extensions ==== Version update (41.0 -> 41.1) Subpackages: gnome-shell-classic gnome-shell-extensions-common gnome-shell-extensions-common-lang - Update to version 41.1: + native-window-placement: Fix distorted layout in app grid. + window-list: Fix on-screen keyboard. + Misc. bug fixes. + Updated translations. ==== gstreamer-plugins-bad ==== Subpackages: gstreamer-plugins-bad-lang gstreamer-transcoder libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 typelib-1_0-GstTranscoder-1_0 - Add 2564.patch: Allow to build against Neon 0.32.x. ==== hplip ==== Subpackages: hplip-hpijs hplip-sane - Replace keys.openpgp.org with pgp.surf.nl (bsc#1193656) * gpg refuses to load the key from keys.openpgp.org. - Add build dependency on python-rpm-macros (bsc#1193718) - Replace pool.sks-keyservers.net by keys.openpgp.org (bsc#1193656) ==== hwinfo ==== Version update (21.78 -> 21.80) - merge gh#openSUSE/hwinfo#109 - fix logic around cdrom detection - 21.80 - merge gh#openSUSE/hwinfo#108 - Donot close the open tray after read_cdrom_info. - Donot close the open tray after read. - 21.79 ==== iputils ==== Version update (20210722 -> 20211215) - Update to version 20211215 https://github.com/iputils/iputils/releases/tag/20211215 - rarpd and rdisc are going to be removed in next release (https://github.com/iputils/iputils/issues/363) therefore don't pack it since this release - Drop harden_rdisc.service.patch, which was 1) merged upstream 4bb0ace ("systemd: Add ProtectHostname, ProtectKernelLogs") for all services 2) we don't build rdisc since this release ==== kernel-source ==== Version update (5.15.7 -> 5.15.8) Subpackages: kernel-default kernel-docs - Revert "- rpm/*build: use buildroot macro instead of env variable" buildroot macro is not being expanded inside a shell script. go back to the environment variable usage. This reverts parts of commit e2f60269b9330d7225b2547e057ef0859ccec155. - commit fe85f96 - kernel-obs-build: include the preferred kernel parameters Currently the Open Build Service hardcodes the kernel boot parameters globally. Recently functionality was added to control the parameters by the kernel-obs-build package, so make use of that. parameters here will overwrite what is used by OBS otherwise. - commit a631240 - Linux 5.15.8 (bsc#1012628). - bpf: Add selftests to cover packet access corner cases (bsc#1012628). - clocksource/drivers/dw_apb_timer_of: Fix probe failure (bsc#1012628). - misc: fastrpc: fix improper packet size calculation (bsc#1012628). - irqchip: nvic: Fix offset for Interrupt Priority Offsets (bsc#1012628). - irqchip/irq-gic-v3-its.c: Force synchronisation when issuing INVALL (bsc#1012628). - aio: Fix incorrect usage of eventfd_signal_allowed() (bsc#1012628). - irqchip/armada-370-xp: Fix support for Multi-MSI interrupts (bsc#1012628). - irqchip/armada-370-xp: Fix return value of armada_370_xp_msi_alloc() (bsc#1012628). - irqchip/aspeed-scu: Replace update_bits with write_bits (bsc#1012628). - csky: fix typo of fpu config macro (bsc#1012628). - bus: mhi: core: Add support for forced PM resume (bsc#1012628). - bus: mhi: pci_generic: Fix device recovery failed issue (bsc#1012628). - nvmem: eeprom: at25: fix FRAM byte_len (bsc#1012628). - misc: rtsx: Avoid mangling IRQ during runtime PM (bsc#1012628). - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove (bsc#1012628). - iio: ad7768-1: Call iio_trigger_notify_done() on error (bsc#1012628). - iio: adc: axp20x_adc: fix charging current reporting on AXP22x (bsc#1012628). - iio: adc: stm32: fix a current leak by resetting pcsel before disabling vdda (bsc#1012628). - iio: at91-sama5d2: Fix incorrect sign extension (bsc#1012628). - iio: dln2: Check return value of devm_iio_trigger_register() (bsc#1012628). - iio: dln2-adc: Fix lockdep complaint (bsc#1012628). - iio: itg3200: Call iio_trigger_notify_done() on error (bsc#1012628). - iio: kxsd9: Don't return error code in trigger handler (bsc#1012628). - iio: ltr501: Don't return error code in trigger handler (bsc#1012628). - iio: mma8452: Fix trigger reference couting (bsc#1012628). - iio: stk3310: Don't return error code in interrupt handler (bsc#1012628). - iio: trigger: stm32-timer: fix MODULE_ALIAS (bsc#1012628). - iio: trigger: Fix reference counting (bsc#1012628). - iio: gyro: adxrs290: fix data signedness (bsc#1012628). - xhci: avoid race between disable slot command and host runtime suspend (bsc#1012628). - usb: core: config: using bit mask instead of individual bits (bsc#1012628). - xhci: Remove CONFIG_USB_DEFAULT_PERSIST to prevent xHCI from runtime suspending (bsc#1012628). - usb: core: config: fix validation of wMaxPacketValue entries (bsc#1012628). - Revert "usb: dwc3: dwc3-qcom: Enable tx-fifo-resize property by default" (bsc#1012628). - USB: gadget: zero allocate endpoint 0 buffers (bsc#1012628). - USB: gadget: detect too-big endpoint 0 requests (bsc#1012628). - selftests/fib_tests: Rework fib_rp_filter_test() (bsc#1012628). - net/qla3xxx: fix an error code in ql_adapter_up() (bsc#1012628). - net, neigh: clear whole pneigh_entry at alloc time (bsc#1012628). - net: fec: only clear interrupt of handling queue in fec_enet_rx_queue() (bsc#1012628). - net: altera: set a couple error code in probe() (bsc#1012628). - net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (bsc#1012628). - tools build: Remove needless libpython-version feature check that breaks test-all fast path (bsc#1012628). - dt-bindings: net: Reintroduce PHY no lane swap binding (bsc#1012628). - Documentation/locking/locktypes: Update migrate_disable() bits (bsc#1012628). - perf tools: Fix SMT detection fast read path (bsc#1012628). - drm/amd/display: Fix DPIA outbox timeout after S3/S4/reset (bsc#1012628). - Revert "PCI: aardvark: Fix support for PCI_ROM_ADDRESS1 on emulated bridge" (bsc#1012628). - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (bsc#1012628). - bpf, sockmap: Re-evaluate proto ops when psock is removed from sockmap (bsc#1012628). - mtd: rawnand: fsmc: Fix timing computation (bsc#1012628). - mtd: rawnand: fsmc: Take instruction delay into account (bsc#1012628). - i40e: Fix pre-set max number of queues for VF (bsc#1012628). - i40e: Fix failed opcode appearing if handling messages from VF (bsc#1012628). - clk: qcom: clk-alpha-pll: Don't reconfigure running Trion (bsc#1012628). - clk: imx: use module_platform_driver (bsc#1012628). - hwmon: (dell-smm) Fix warning on /proc/i8k creation error (bsc#1012628). - RDMA/hns: Do not destroy QP resources in the hw resetting phase (bsc#1012628). - RDMA/hns: Do not halt commands during reset until later (bsc#1012628). - ASoC: codecs: wcd934x: return correct value from mixer put (bsc#1012628). - ASoC: codecs: wcd934x: handle channel mappping list correctly (bsc#1012628). - ASoC: codecs: wsa881x: fix return values from kcontrol put (bsc#1012628). - ASoC: qdsp6: q6routing: Fix return value from msm_routing_put_audio_mixer (bsc#1012628). - ASoC: rt5682: Fix crash due to out of scope stack vars (bsc#1012628). - PM: runtime: Fix pm_runtime_active() kerneldoc comment (bsc#1012628). - qede: validate non LSO skb length (bsc#1012628). - ALSA: usb-audio: Reorder snd_djm_devices[] entries (bsc#1012628). - scsi: scsi_debug: Fix buffer size of REPORT ZONES command (bsc#1012628). - scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() (bsc#1012628). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1012628). - i2c: mpc: Use atomic read and fix break condition (bsc#1012628). - tracefs: Set all files to the same group ownership as the mount option (bsc#1012628). - aio: fix use-after-free due to missing POLLFREE handling (bsc#1012628). - aio: keep poll requests on waitqueue until completed (bsc#1012628). - signalfd: use wake_up_pollfree() (bsc#1012628). - binder: use wake_up_pollfree() (bsc#1012628). - wait: add wake_up_pollfree() (bsc#1012628). - io_uring: ensure task_work gets run as part of cancelations (bsc#1012628). - libata: add horkage for ASMedia 1092 (bsc#1012628). - drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence (bsc#1012628). - thermal: int340x: Fix VCoRefLow MMIO bit offset for TGL (bsc#1012628). - clk: qcom: regmap-mux: fix parent clock lookup (bsc#1012628). - mmc: renesas_sdhi: initialize variable properly when tuning (bsc#1012628). - hwmon: (pwm-fan) Ensure the fan going on in .probe() (bsc#1012628). - selftests: KVM: avoid failures due to reserved HyperTransport region (bsc#1012628). - tracefs: Have new files inherit the ownership of their parent (bsc#1012628). - nfsd: Fix nsfd startup race (again) (bsc#1012628). - nfsd: fix use-after-free due to delegation race (bsc#1012628). - md: fix update super 1.0 on rdev size change (bsc#1012628). - perf intel-pt: Fix error timestamp setting on the decoder error path (bsc#1012628). - perf intel-pt: Fix missing 'instruction' events with 'q' option (bsc#1012628). - perf intel-pt: Fix next 'err' value, walking trace (bsc#1012628). - perf intel-pt: Fix state setting when receiving overflow (OVF) packet (bsc#1012628). - perf intel-pt: Fix intel_pt_fup_event() assumptions about setting state type (bsc#1012628). - perf intel-pt: Fix sync state when a PSB (synchronization) packet is found (bsc#1012628). - perf intel-pt: Fix some PGE (packet generation enable/control flow packets) usage (bsc#1012628). - btrfs: free exchange changeset on failures (bsc#1012628). - btrfs: replace the BUG_ON in btrfs_del_root_ref with proper error handling (bsc#1012628). - btrfs: fix re-dirty process of tree-log nodes (bsc#1012628). - btrfs: clear extent buffer uptodate when we fail to write it (bsc#1012628). - scsi: qla2xxx: Format log strings only if needed (bsc#1012628). - cifs: Fix crash on unload of cifs_arc4.ko (bsc#1012628). - ALSA: pcm: oss: Handle missing errors in snd_pcm_oss_change_params*() (bsc#1012628). - ALSA: pcm: oss: Limit the period size to 16MB (bsc#1012628). - ALSA: pcm: oss: Fix negative period/buffer sizes (bsc#1012628). - ALSA: hda/realtek: Fix quirk for TongFang PHxTxX1 (bsc#1012628). - ALSA: hda/realtek - Add headset Mic support for Lenovo ALC897 platform (bsc#1012628). - ALSA: ctl: Fix copy of updated id with element read/write (bsc#1012628). - mm: bdi: initialize bdi_min_ratio when bdi is unregistered (bsc#1012628). - mm/slub: fix endianness bug for alloc/free_traces attributes (bsc#1012628). - mm/damon/core: fix fake load reports due to uninterruptible sleeps (bsc#1012628). - timers: implement usleep_idle_range() (bsc#1012628). - KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall (bsc#1012628). - KVM: x86: Ignore sparse banks size for an "all CPUs", non-sparse IPI req (bsc#1012628). - KVM: x86: Don't WARN if userspace mucks with RCX during string I/O exit (bsc#1012628). - net: mvpp2: fix XDP rx queues registering (bsc#1012628). - net/sched: fq_pie: prevent dismantle issue (bsc#1012628). - net: dsa: felix: Fix memory leak in felix_setup_mmio_filtering (bsc#1012628). - net: dsa: mv88e6xxx: error handling for serdes_power functions (bsc#1012628). - net: bcm4908: Handle dma_set_coherent_mask error codes (bsc#1012628). - devlink: fix netns refcount leak in devlink_nl_cmd_reload() (bsc#1012628). - IB/hfi1: Correct guard on eager buffer deallocation (bsc#1012628). - iavf: Fix reporting when setting descriptor count (bsc#1012628). - iavf: restore MSI state on reset (bsc#1012628). - netfilter: conntrack: annotate data-races around ct->timeout (bsc#1012628). - netfilter: nft_exthdr: break evaluation if setting TCP option fails (bsc#1012628). - udp: using datalen to cap max gso segments (bsc#1012628). - seg6: fix the iif in the IPv6 socket control block (bsc#1012628). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (bsc#1012628). - bonding: make tx_rebalance_counter an atomic (bsc#1012628). - ethtool: do not perform operations on net devices being unregistered (bsc#1012628). - ice: ignore dropped packets during init (bsc#1012628). - bpf: Fix the off-by-two error in range markings (bsc#1012628). - bpf: Make sure bpf_disable_instrumentation() is safe vs preemption (bsc#1012628). - bpf, sockmap: Attach map progs to psock early for feature probes (bsc#1012628). - bpf, x86: Fix "no previous prototype" warning (bsc#1012628). - vrf: don't run conntrack on vrf with !dflt qdisc (bsc#1012628). - selftests: netfilter: add a vrf+conntrack testcase (bsc#1012628). - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (bsc#1012628). - platform/x86: amd-pmc: Fix s2idle failures on certain AMD laptops (bsc#1012628). - x86/sme: Explicitly map new EFI memmap table as encrypted (bsc#1012628). - net: dsa: mv88e6xxx: allow use of PHYs on CPU and DSA ports (bsc#1012628). - net: dsa: mv88e6xxx: fix "don't use PHY_DETECT on internal PHY's" (bsc#1012628). - can: m_can: Disable and ignore ELO interrupt (bsc#1012628). - can: m_can: pci: fix iomap_read_fifo() and iomap_write_fifo() (bsc#1012628). - can: m_can: pci: fix incorrect reference clock rate (bsc#1012628). - can: m_can: m_can_read_fifo: fix memory leak in error branch (bsc#1012628). - can: pch_can: pch_can_rx_normal: fix use after free (bsc#1012628). - can: sja1000: fix use after free in ems_pcmcia_add_card() (bsc#1012628). - can: kvaser_pciefd: kvaser_pciefd_rx_error_frame(): increase correct stats->{rx,tx}_errors counter (bsc#1012628). - can: kvaser_usb: get CAN clock frequency from device (bsc#1012628). - IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr (bsc#1012628). - IB/hfi1: Fix early init panic (bsc#1012628). - IB/hfi1: Insure use of smp_processor_id() is preempt disabled (bsc#1012628). - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (bsc#1012628). - platform/x86/intel: hid: add quirk to support Surface Go 3 (bsc#1012628). - HID: Ignore battery for Elan touchscreen on Asus UX550VE (bsc#1012628). - HID: sony: fix error path in probe (bsc#1012628). - mmc: spi: Add device-tree SPI IDs (bsc#1012628). - mtd: dataflash: Add device-tree SPI IDs (bsc#1012628). - HID: check for valid USB device for many HID drivers (bsc#1012628). - HID: wacom: fix problems when device is not a valid USB device (bsc#1012628). - HID: bigbenff: prevent null pointer dereference (bsc#1012628). - HID: add USB_HID dependancy on some USB HID drivers (bsc#1012628). - HID: add USB_HID dependancy to hid-chicony (bsc#1012628). - HID: add USB_HID dependancy to hid-prodikeys (bsc#1012628). - HID: add hid_is_usb() function to make it simpler for USB detection (bsc#1012628). - HID: intel-ish-hid: ipc: only enable IRQ wakeup when requested (bsc#1012628). - HID: google: add eel USB id (bsc#1012628). - HID: quirks: Add quirk for the Microsoft Surface 3 type-cover (bsc#1012628). - usb: gadget: uvc: fix multiple opens (bsc#1012628). - commit 3f92609 - kernel-obs-build: inform build service about virtio-serial Inform the build worker code that this kernel supports virtio-serial, which improves performance and relability of logging. - commit 301a3a7 - rpm/*.spec.in: use buildroot macro instead of env variable The RPM_BUILD_ROOT variable is considered deprecated over a buildroot macro. future proof the spec files. - commit e2f6026 - Update BT fix patch for regression with 8087:0026 device (bsc#1193124) Also corrected the references and patch description - commit 634695b ==== libgcrypt ==== Subpackages: libgcrypt20 libgcrypt20-32bit libgcrypt20-hmac - FIPS: Fix gcry_mpi_sub_ui subtraction [bsc#1193480] * gcry_mpi_sub_ui: fix subtracting from negative value * Add libgcrypt-FIPS-fix-gcry_mpi_sub_ui.patch ==== libostree ==== Version update (2020.8 -> 2021.6) Subpackages: libostree-1-1 - Update to version 2021.6: + Most of the fixes are related to warnings highlighted by gcc - fanalyzer static source analysis. + Performance of pruning logic has been improved, avoiding unnecessary trips through redundant serialization. + A regression has been fixed so that ostree is properly behaving again when used from the initramfs, at a point where /sysroot may not be mounted yet. + A race condition related to sysroot.readonly has been addressed by directly setting up sysroot readonly in initramfs. - Changes from version 2020.8 to 2021.5 please see upstreams list https://github.com/ostreedev/ostree/releases - Switch to obs_scm from tar_scm, and use obscpio instead of generated tarball. Also stop autogeneration of .changes, upstream now have proper release notes that should be used. - Use ldconfig_scriptlets macro for post(un) handling for shared library, modernize spec. ==== libstorage-ng ==== Version update (4.4.65 -> 4.4.66) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#849 - added get_size function to LuksInfo - coding style - 4.4.66 ==== libvirt ==== Subpackages: libvirt-client libvirt-daemon libvirt-daemon-driver-interface libvirt-daemon-driver-libxl libvirt-daemon-driver-lxc libvirt-daemon-driver-network libvirt-daemon-driver-nodedev libvirt-daemon-driver-nwfilter libvirt-daemon-driver-qemu libvirt-daemon-driver-secret libvirt-daemon-driver-storage libvirt-daemon-driver-storage-core libvirt-daemon-driver-storage-disk libvirt-daemon-driver-storage-iscsi libvirt-daemon-driver-storage-iscsi-direct libvirt-daemon-driver-storage-logical libvirt-daemon-driver-storage-mpath libvirt-daemon-driver-storage-rbd libvirt-daemon-driver-storage-scsi libvirt-daemon-lxc libvirt-daemon-qemu libvirt-daemon-xen libvirt-libs - libxl: Implement domainGetMessages API cbae4eaa-libxl-add-domainGetMessages.patch bsc##1193623 - Don't spawn pkttyagent when stdin is not a tty 0001-util-Don-t-spawn-pkttyagent-when-stdin-is-not-a-tty.patch bsc#1193574 ==== monitoring-plugins ==== Subpackages: monitoring-plugins-breeze monitoring-plugins-by_ssh monitoring-plugins-cluster monitoring-plugins-common monitoring-plugins-cups monitoring-plugins-dhcp monitoring-plugins-dig monitoring-plugins-disk monitoring-plugins-disk_smb monitoring-plugins-dns monitoring-plugins-dummy monitoring-plugins-file_age monitoring-plugins-flexlm monitoring-plugins-http monitoring-plugins-icmp monitoring-plugins-ide_smart monitoring-plugins-ifoperstatus monitoring-plugins-ifstatus monitoring-plugins-ircd monitoring-plugins-load monitoring-plugins-log monitoring-plugins-mailq monitoring-plugins-mrtg monitoring-plugins-mrtgtraf monitoring-plugins-nagios monitoring-plugins-nt monitoring-plugins-ntp_peer monitoring-plugins-ntp_time monitoring-plugins-nwstat monitoring-plugins-oracle monitoring-plugins-overcr monitoring-plugins-ping monitoring-plugins-procs monitoring-plugins-real monitoring-plugins-rpc monitoring-plugins-sensors monitoring-plugins-smtp monitoring-plugins-ssh monitoring-plugins-swap monitoring-plugins-tcp monitoring-plugins-time monitoring-plugins-ups monitoring-plugins-users monitoring-plugins-wave - removed the following, either upstreamed or integrated in other patches: + monitoring-plugins-wrong_return_in_check_swap.patch + monitoring-plugins-check_swap-fix_comment.patch + monitoring-plugins-check_swap-return_unknown.patch + monitoring-plugins-check_swap-fix-n.patch - remove monitoring-plugins-2.3.1-check_snmp_hang_on_STDERR_workaround.patch the patch just reverts the problem, if you get more than 64K on stdout ==== mutter ==== Version update (41.1 -> 41.2) Subpackages: mutter-lang - Update to version 41.2: + Fix blank screen when unplugging docking station. + Prefer GBM over EGLStream where possible. + Fix unredirected Xwayland windows not getting updated. + Improve anti-aliasing of background corners. + Copy damage rectangles to secondary GPU + Improve Wacom tablet mapping. + Fixed crashes. + Misc. bug fixes and cleanups. + Updated translations. - Switch to git checkout of released tag via source service. ==== myspell-dictionaries ==== Version update (20201230 -> 20211213) Subpackages: myspell-cs_CZ myspell-da_DK myspell-de myspell-de_DE myspell-el_GR myspell-en myspell-en_GB myspell-en_US myspell-es myspell-es_ES myspell-fr_FR myspell-hu_HU myspell-it_IT myspell-lightproof-en myspell-lightproof-hu_HU myspell-lightproof-pt_BR myspell-lightproof-ru_RU myspell-pl_PL myspell-pt_BR myspell-ru_RU - version update to 20211213 * More pt-BR thesaurus cleanup * Updated the British dictionary, based on the wordlist of Oxford Professors and checked one by one * Add "exrtudir" to spell check for pt-BR * Refactor by PTG tool * Cleanup pt-BR thesaurus * Add thesaurus to pt-BR * Avoid duplicated pt_BR_pt_BR.properties in packaging's filelist * add translations of pt_BR grammar checker dialog * Belarusian hunspell dictionary update * tdf#144730: Replace CONVERT_ADD to CONVERT to fix metric/non metric conversions * More refactoring of dict_pt-BR lightproof * Fix Flags not at the start of the expression in ru-RU * Refactor lighproof_pt-BR impl script * "?????????" is vernacular * Add regex checker for pt-BR LightProof * Reformat lightproof_ru_RU.py to have 1 expression per line * Refactor and fix pt-BR Lightproof rules * tdf#139523: LightProof makes Python complain on FutureWarnings for pt-BR * Portuguese Brasil lightproof: fix "Flags not at the start of the expression" * Fix typo in "Expressão arcaica" * Czech Hunspell: add several word forms * Bump pt-BR dict version to 3.2.15 * Portuguese Brasil lightproof: numsep=>gerund since it concerns gerundismo * tdf#143559: save the changes in options of Portuguese spellcheck * tdf#143507: localize Grammar Checking (Portuguese) settings page * Related tdf#138369: Remove spurious CR (ctrl-M) in ru_RU.dic * tdf#143489: Update Galician dictionaries to version 20.08 * Czech Hunspell: fix declination of some nouns ending with "-ec" - added sources + REMOVE_GIT_LOG ==== nano ==== Version update (5.9 -> 6.0) Subpackages: nano-lang - GNU nano 6.0: * Option --zero hides the interface and uses the whole terminal for editing * Colors can be given also in #rgb hexadecimal, to select the nearest color from the 6x6x6 color-cube palette available on 256-color terminals * Fourteen new color names are available, from rosy to crimson ==== ncurses ==== Version update (6.3.20211120 -> 6.3.20211127) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20211127 + fix errata in description fields (report by Eric Lindblad) -TD + add x10term+sl, aixterm+sl, ncr260vp+sl, ncr260vp+vt, wyse+sl -TD - Correct offsets of patch ncurses-6.3.dif ==== neon ==== Version update (0.31.2 -> 0.32.1) - update to 0.32.1: * Fix configure CFLAGS handling in Kerberos detection. - includes changes from 0.32.0: * NE_AUTH_DIGEST now only enables RFC 2617/7616 auth by default; to enable weaker RFC 2069 Digest, use NE_AUTH_LEGACY_DIGEST (treated as a security enhancement, not an API/ABI break) * Interface additions and bug fixes - drop patches: * neon-0.31.2-sha1-tests.patch * neon-0.31.2-CA-tests.patch ==== netpbm ==== Version update (10.93.0 -> 10.96.4) Subpackages: libnetpbm11 - version update to 10.96.4 palmtopnm: Fix bug: fails with PackBits input on platform with default unsigned char, such as ppc64. Always broken. (Ability to convert PackBits input was new in Netpbm 10.27 (March 2005). sunicontopnm, escp2topbm, mgrtopbm, ybmtopbm, pamcut, pbmpscale, pnmcat, pnmpad: Fix arithmetic overrun with ridiculously large image. pamrubber: Fix bug: random behavior with -quad when you specify both points for source or target and the second one is lower in the image than the first. Always broken (Pamrubber was new in Netpbm 10.54 (March 2011)). libnetpbm: When validating computable size of width and height, allow for adding up to 10 instead of 2, to account for rounding up to a multiple of 8 in processing bit maps. pamtogif: Fix bug: doesn't ignore the input alpha mask when user specified -transparent. Broken in Netpbm 10.37 (December 2006). pgmtoppm: Eliminate dependency on color dictionary when user does not specify any colors by name. pamstereogram: Fix crash with -xbegin=0. Thanks Scott Pakin. Introduced in Netpbm 10.94. pamtopng: Fix rejection of all BLACKANDWHITE_ALPHA images with message about wrong depth. Always broken (pamtopng was new in Netpbm 10.71 (June 2015)). Thanks Karol Kosek <krkk@krkk.ct8.pl>. pamtopng: Fix failure with GRAYSCALE_ALPHA images with maxval less than 255. Always broken (pamtopng was new in Netpbm 10.71 (June 2015)). Thanks Karol Kosek <krkk@krkk.ct8.pl>. pamtopng: Fix: treats all tuple types that start with BLA as BLACKANDWHITE. Always broken (pamtopng was new in Netpbm 10.71 (June 2015)). pamtopng: Fix -transparent option - program recognized - transparency instead. Always broken (pamtopng was new in Netpbm 10.71 (June 2015)). pamtogif: Fix failure with bogus message about wrong depth with grayscale and black and white PAM images with transparency. Always broken (pamtogif was new in Netpbm 10.37 (December 2006)). Thanks Karol Kosek <krkk@krkk.ct8.pl>. ppmtogif: Same as 'pamtogif' fix above, but with -alpha option. Build: Fix build failure due to missing 'random' function on Mingw platform. Bug introduced in Netpbm 10.94 (March 2021). Build: Don't attempt to build 'pamexec' on systems without Unix process management. Bug introduced in Netpbm 10.94 (March 2021). Build: Make it work on systems that don't have date +%s. Broken in Netpbm 10.78 (March 2017). Thanks Claes Nästén (pekdon@gmail.com). Build: Fix for MacOS build failures with missing sprintf and vasprintf in broken build environment. Mkdeb: fix failure with message about unrecognized format of VERSION file. Introduced in Netpbm 10.90 (March 2020). Add pamhomography: Thanks Scott Pakin. pamstereogram: Add -yfillshift . pamtowinicon: Add BMP/PNG encoding to verbose output. Use internal random number generator everywhere random numbers are used except ppmtoilbm, so seeded results are the same on all platforms. pamexec: Issue message instead of being killed by a signal when the exec'ed program does not read the whole image" ppmforge: Fail if -dimension is greater than 5, which is useless. pamscale: Fix bogus "bad magic number" or similar failure most of the time with -nomix. Broken since Netpbm 10.49 (December 2009). pnmtopng: Fix incorrect transparency in output when requesting transparency. Introduced after Netpbm 10.35 (August 2006) but not after Netpbm 10.47 (June 2009). pnmtopng: Fix buffer overrun or bogus "too many color/ transparency pairs" failure when requesting transparency. Introduced after Netpbm 10.26 (January 2005) but not after Netpbm 10.35 (August 2006). pamtojpeg2k: Fix constant failure with message about file close failing. libnetpbm: pm_system: Fix bug: standard input feeder process repositions unrelated files. Always broken (pm_system was new in Netpbm 10.13 (September 2003). Pamtowinicon: Fix crash or incorrect output with PNG encoding (result of pm_system bug above). Always broken (Pamtowinicon was new in Netpbm 10.63 (June 2013). pnmtopng: Fix trivial memory leaks. pnmtops: Fix incorrect output (arithmetic overflow) when bounding box is exactly INT_MAX high or wide. Always broken. Pnmtops was in primordial Netpbm. - modified patches % netpbm-gcc-warnings.patch (refreshed) % netpbm-security-code.patch (refreshed) - deleted patches - signed-char.patch (upstreamed) ==== openssl-1_1 ==== Subpackages: libopenssl1_1 libopenssl1_1-32bit libopenssl1_1-hmac - Added openssl-1_1-use-include-directive.patch so that the default /etc/ssl/openssl.cnf file will include any configuration files that other packages might place into /etc/ssl/engines.d/ and /etc/ssl/engdef.d/ This is a fix for bsc#1004463 where scripting was being used to modify the openssl.cnf file. The scripting would fail if either the default openssl.cnf file, or the sample openssl-ibmca configuration file would be changed by upstream. - Updated spec file to create the two new necessary directores for the above patch. ==== openvpn ==== - Drop 0001-preform-deferred-authentication-in-the-background.patch Upstream has meanwhile solved this differently and the two implementations interfere (boo#1193017). - Obsoleted SLE patches up to this point: * openvpn-CVE-2020-15078.patch * openvpn-CVE-2020-11810.patch * openvpn-CVE-2018-7544.patch * openvpn-CVE-2018-9336.patch ==== p11-kit ==== Subpackages: libp11-kit0 libp11-kit0-32bit p11-kit-tools - Enable systemd support ==== pam ==== Subpackages: pam-32bit pam_unix - Drop pam_umask-usergroups-login_defs.patch, does more harm than helps. If not explizit specified as module option, we use UMASK from login.defs unmodified. ==== pam-full-src ==== Subpackages: pam-doc pam-manpages - Drop pam_umask-usergroups-login_defs.patch, does more harm than helps. If not explizit specified as module option, we use UMASK from login.defs unmodified. ==== pango ==== Version update (1.48.10 -> 1.50.1) Subpackages: libpango-1_0-0 libpango-1_0-0-32bit typelib-1_0-Pango-1_0 - Update to version 1.50.1: + Fix a crash in tab handling. + Fix tab positioning without line wrapping. + Fix an assertion failure found by fuzzing. + Make underlines work again for broken fonts. - Update to version 1.50.0: + Fix glyph placement in gravity east + Fix line heights in improper gravities + Only shown selected ignorables with nicks + Support tab alignments other than left + Support custom decimal points on decimal tabs + Fix a pango-view crash + Optimize handling of many tabs + Drop json-glib dependency - Drop pkgconfig(json-glib-1.0) BuildRequires, no longer needed. - Update to version 1.49.4: + Require fontconfig 2.13 + Require harfbuzz 2.6 + Many fixes to line breaking accuracy + coretext: Correctly clamp text weights at min/max values + Add serialization api for PangoLayout, PangoFont and PangoAttrList + Require json-glib + tests: - Use serialized layouts for test cases - Include fonts in git + pango-view: Accept serialized layouts + Fix a rounding problem with font metrics + Fix visible space display using ? - Changes from version 1.49.3: + Fix hinting of glyph metrics + Fix logical glyph extents in vertical gravities + Visualize more default-ignorable glyphs + Fix advance widths in transformed contexts + Implement Small Caps and other casing variations - Changes from version 1.49.2: + Update Unicode data to Unicode 14 + Fix underlining of spaces + Round font metrics when appropriate + Fix some corner cases of cursor positioning + Handle Catalan middle-dot in text segmentation - Changes from version 1.49.1: + Only recompute log attrs when needed + Validate log attrs + Fix conformance issues in Thai and Indic linebreaking + Add pango_attr_break to support customizing line and word breaks + Add font-dependent baseline shifts and sizing for super- and subscripts + Improve hyphenation support + pango-view: - Visualize caret positions and slopes - Show glyph rects - Make --annotate easier to use + Add pango_layout_get_caret_pos to support sloped carets + Improve caret positioning for ligatures + Better under- and overline placement + layout: - Allocate a bit less - Fix cluster extents with rise + Add pango_layout_iter_get_run_baseline + Add pango_glyph_string_index_to_x_full + coretext: Set size on font descriptions + Add color information to PangoGlyphVisAttr - Changes from version 1.49.0: + Require fribidi 1.0.6 + Fix threadsafety issues with Thai + Fix a rounding problem on i386 + Fix font choice for ellipsis + New api: - pango_font_get_languages - Introspection helpers for attributes + Ignore width in horizontal context when itemizing + markup: - Allow specifying size and rise in points - Allow specifying size as percentage + Rewrite pango_layout_move_cursor_visually + Add a line-height attribute and make logical line extents respect it + Add pango_justify_last_line + Add pango_shape_item + Add a text-transform attribute and implement it + Clean up fribidi api usage + Fix a bug in the gravity data table + pango-view: Improve the --annotate option + Fix a possible crash in rendering strikethroughs - Add pkgconfig(json-glib-1.0) BuildRequires, new dependency. ==== pangomm1_4 ==== Version update (2.46.1 -> 2.46.2) - Switch back to released tarballs: Stop passing maintainer-mode=true to meson and remove m4, mm-common and perl(XML::Parser) BuildRequires, as this was all only needed to build a git-checkout. - Update to version 2.46.2: * Move to stable released tag, no code changes. - Update to version 2.46.1+7: * NMake Makefiles: Fix header installation * NMake Makefiles: Correct VS2019 toolset number * build: Support Visual Studio 2022 builds * docs/reference/Doxyfile.in: Remove obsolete entry * Don't include individual pango headers, part 2 * Don't include individual pango headers * Use pango from the main branch * 2.46.1 * Documentation: Let links point to pangomm-1.4 versions * Add dependencies to Doxygen tag files in subprojects - Switch to using a gitcheckout via source service. Pass maintainer-mode=true to meson and add m4, mm-common and perl(XML::Parser) BuildRequires, as this is needed with a git-checkout. ==== patterns-base ==== Subpackages: patterns-base-apparmor patterns-base-base patterns-base-basesystem patterns-base-basic_desktop patterns-base-console patterns-base-documentation patterns-base-enhanced_base patterns-base-minimal_base patterns-base-selinux patterns-base-sw_management patterns-base-transactional_base patterns-base-x11 patterns-base-x11_enhanced - Drop low-memory-monitor: It's not enabled by default, not used by any of the default applications and would conflict with other installed OOM handling daemons like earlyoom or oomd - Run pre_checkin.sh - base: favour psmisc over busybox-psmisc or other equivalents - enhanced_base: Recommend low-memory-monitor an early boot daemon to monitor memory pressure and react to low memory. - Run pre_checkin.sh to sync 32-bit patterns. ==== pipewire ==== Version update (0.3.40 -> 0.3.42) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-lang pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Revert the merge of spa-plugins and modules into the library package. - Move some of the files between packages where they make more sense. - Rename the modules subpackage to modules-%{apiver_str} so it can be versioned more easily (there still are some unversioned files in the package, but it's a step in the right direction) - Remove unneccesary Conflicts with packages that are Obsoleted - Update to version 0.3.42: * Highlights - Fixes a bug in pulse-server underrun handling that broke qemu and orca. - A fix was added to pulse-server to handle quantum changes gracefully. - Fix module-echo-cancel again. - Fix a bug where the bluetooth headset capture was producing noise. - Remove the dependency on wireplumber-audio which was pulling in pulseaudio. We'll require wireplumber-audio directly from wireplumber. - Remove pipewire-rpmlintrc since the filters don't apply anymore - Merge the pipewire-spa-plugins-0_2 and pipewire-modules packages into the libpipewire package just as the fedora packages do and simplify the filelist a bit by using some recursive listing instead of explicitly listing all files. - Use the gcc9-c++ compiler in SLE/Leap so it builds successfully. - Update to version 0.3.41: * Highlights - Improved compatibility for flatpaks. Flatpaks with newer PipeWire version can connect to an older server in all cases. - A new RAOP module was added to stream to Apple Airplay devices. - OBS can now capture from the monitor devices again when using WirePlumber. - Improved JACK compatibility. Improved stability in Carla and Ardour when changing buffer size. Improved latency calculations and playback latency in Ardour. - Improved pulse-server handling of underruns and buffer size changes. - Many bugfixes and improvements. * PipeWire - The systemd service files now have better names. - client.access permission checks are improved. - Fix some memory leaks in error paths. - Objects now have a global serial number that is unique for the lifetime of the server. - Make clock.rate, clock.allowed-rates and clock.quantum runtime tunable parameters with the settings metadata. - Add some additional memory checks in client-node to avoid sending invalid memory to clients. (#1859) - Improve buffer memory allocation. If one of the nodes is a remote node, ensure we only use memory that can be shared. - Version checks when binding to objects is removed. This means that newer clients can now bind to older servers, which is a typical case for a flatpak. - A bug in the latency calculations was fixed where it would in some cases report the wrong minumum latency. * modules - module-echo-cancel has voice-detection enabled now. - module-raop-sink and module-raop-discover to stream audio to an Apple Airplay device. - module-filter-chain now has preliminary support for LV2 plugins. * SPA - The audio resampler now has improved buffer size calculations. In some cases it was too small and would cause distortions. - More checks are done when doing volume changes so that the channelmap is correct. - Audioadapter now exposes most config options with params so that they can be adjusted at runtime. - The resampler can now calculate the expected input buffer size before receiving the first buffer, which avoids some confusion when starting streams. - Support was added for some 10bit video formats. - MONO channel handling was improved. - Most plugins now set a clock name and this is configurable where it makes sense. The clock.system.monotonic clock name is used for most plugins that use the system clock for timing. * pulse-server - implement module-raop-discover - Use STREAM_CAPTURE_SINK property when capturing from a monitor source to better inform the session manager. This fixes some issues where OBS would capture from the microphone instead of the output monitor. - Limit the amount of cache messages to 16MB and don't add large memory blocks to the cache. This should fix some excessive memory usage that people reported. - Fix a potential memory leak when cleaning up a client. - Do some additional checks to avoid buffer overruns. - Improve recovery from underruns better. (#1857) This improves seeking in gnome-music. - Improve recovery when the quantum is forced larger that the stream configured latency. - The prebuf state is now handled correctly. * JACK - A per type object cache is now implemented. This ensures that port objects remain valid for a longer time because many JACK applications inspect objects after they are destroyed. This improves catia/carla compatibility. - Recompute the latencies when the buffer-size changes. Fix some cases where we would end up with negative latencies. - Handle regcomp errors to avoid some crashes later. - Latency calculations are improved a lot. - More care is taken to not call a process callback while a buffer size change is pending. This fixes some crashes in Carla, which expect that all clients are paused when one handles the buffersize callback. - Loopback links to a client are now handled correctly and without latency. This fixes playback latency in ardour6 (#1839) * ALSA - ALSA devices now keep track of the samplerate of the card and ensure that all PCM use the same rate. This is a workaround for a kernel bug that is fixed in 5.16. - Refactor the ALSA plugin a little. - The ALSA plugin now reports correct delay for a capture PCM. (#1697) - The ALSA nodes now expose all config options with params that can be changed at runtime. - The ALSA node has a configurable clock name. Adaptive resampling to match clock rates is avoided when the driver has the same clock name as the ALSA node. This can be used to link alsa devices together with a word clock. ==== polkit-default-privs ==== Version update (1550+20211209.8ce206c -> 1550+20211214.daf2765) - Update to version 1550+20211214.daf2765: * fwupd: tighten the downgrade rules (bsc#1193310) ==== python-Genshi ==== - add Genshi-pr49-fix-python310-tests.patch - gh#edgewall/genshi#49 ==== python-SQLAlchemy ==== Version update (1.4.26 -> 1.4.27) - update to 1.4.27: Bugfixes * see https://docs.sqlalchemy.org/en/14/changelog/changelog_14.html#change-1.4.27 ==== python-boto3 ==== Version update (1.19.6 -> 1.20.24) - Update to version 1.20.24 * api-change:``secretsmanager``: [``botocore``] Documentation updates for Secrets Manager - from version 1.20.23 * api-change:``lexv2-models``: [``botocore``] Update lexv2-models client to latest version * api-change:``network-firewall``: [``botocore``] This release adds support for managed rule groups. * api-change:``route53-recovery-control-config``: [``botocore``] This release adds tagging supports to Route53 Recovery Control Configuration. New APIs: TagResource, UntagResource and ListTagsForResource. Updates: add optional field `tags` to support tagging while calling CreateCluster, CreateControlPanel and CreateSafetyRule. * api-change:``ec2``: [``botocore``] Adds waiters support for internet gateways. * api-change:``sms``: [``botocore``] This release adds SMS discontinuation information to the API and CLI references. * api-change:``route53domains``: [``botocore``] Amazon Route 53 domain registration APIs now support filtering and sorting in the ListDomains API, deleting a domain by using the DeleteDomain API and getting domain pricing information by using the ListPrices API. * api-change:``savingsplans``: [``botocore``] Adds the ability to specify Savings Plans hourly commitments using five digits after the decimal point. - from version 1.20.22 * api-change:``lookoutvision``: [``botocore``] This release adds new APIs for packaging an Amazon Lookout for Vision model as an AWS IoT Greengrass component. * api-change:``sagemaker``: [``botocore``] This release added a new Ambarella device(amba_cv2) compilation support for Sagemaker Neo. * api-change:``comprehendmedical``: [``botocore``] This release adds a new set of APIs (synchronous and batch) to support the SNOMED-CT ontology. * api-change:``health``: [``botocore``] Documentation updates for AWS Health * api-change:``logs``: [``botocore``] This release adds AWS Organizations support as condition key in destination policy for cross account Subscriptions in CloudWatch Logs. * api-change:``outposts``: [``botocore``] This release adds the UpdateOutpost API. * api-change:``support``: [``botocore``] Documentation updates for AWS Support. * api-change:``iot``: [``botocore``] This release allows customer to enable caching of custom authorizer on HTTP protocol for clients that use persistent or Keep-Alive connection in order to reduce the number of Lambda invocations. - from version 1.20.21 * api-change:``location``: [``botocore``] This release adds support for Accuracy position filtering, position metadata and autocomplete for addresses and points of interest based on partial or misspelled free-form text. * api-change:``appsync``: [``botocore``] AWS AppSync now supports custom domain names, allowing you to associate a domain name that you own with an AppSync API in your account. * api-change:``route53``: [``botocore``] Add PriorRequestNotComplete exception to UpdateHostedZoneComment API - from version 1.20.20 * api-change:``rekognition``: [``botocore``] This release added new KnownGender types for Celebrity Recognition. - from version 1.20.19 * api-change:``ram``: [``botocore``] This release adds the ability to use the new ResourceRegionScope parameter on List operations that return lists of resources or resource types. This new parameter filters the results by letting you differentiate between global or regional resource types. * api-change:``networkmanager``: [``botocore``] This release adds API support for AWS Cloud WAN. * api-change:``amplifyuibuilder``: [``botocore``] This release introduces the actions and data types for the new Amplify UI Builder API. The Amplify UI Builder API provides a programmatic interface for creating and configuring user interface (UI) component libraries and themes for use in Amplify applications. - from version 1.20.18 * api-change:``sagemaker``: [``botocore``] This release enables - 1/ Inference endpoint configuration recommendations and ability to run custom load tests to meet performance needs. 2/ Deploy serverless inference endpoints. 3/ Query, filter and retrieve end-to-end ML lineage graph, and incorporate model quality/bias detection in ML workflow. * api-change:``kendra``: [``botocore``] Experience Builder allows customers to build search applications without writing code. Analytics Dashboard provides quality and usability metrics for Kendra indexes. Custom Document Enrichment allows customers to build a custom ingestion pipeline to pre-process documents and generate metadata. * api-change:``directconnect``: [``botocore``] Adds SiteLink support to private and transit virtual interfaces. SiteLink is a new Direct Connect feature that allows routing between Direct Connect points of presence. * api-change:``lexv2-models``: [``botocore``] Update lexv2-models client to latest version * api-change:``ec2``: [``botocore``] This release adds support for Amazon VPC IP Address Manager (IPAM), which enables you to plan, track, and monitor IP addresses for your workloads. This release also adds support for VPC Network Access Analyzer, which enables you to analyze network access to resources in your Virtual Private Clouds. * api-change:``shield``: [``botocore``] This release adds API support for Automatic Application Layer DDoS Mitigation for AWS Shield Advanced. Customers can now enable automatic DDoS mitigation in count or block mode for layer 7 protected resources. * api-change:``sagemaker-runtime``: [``botocore``] Update sagemaker-runtime client to latest version * api-change:``devops-guru``: [``botocore``] DevOps Guru now provides detailed, database-specific analyses of performance issues and recommends corrective actions for Amazon Aurora database instances with Performance Insights turned on. You can also use AWS tags to choose which resources to analyze and define your applications. * api-change:``dynamodb``: [``botocore``] Add support for Table Classes and introduce the Standard Infrequent Access table class. - from version 1.20.17 * api-change:``s3``: [``botocore``] Introduce Amazon S3 Glacier Instant Retrieval storage class and a new setting in S3 Object Ownership to disable ACLs for bucket and the objects in it. * api-change:``backup-gateway``: [``botocore``] Initial release of AWS Backup gateway which enables you to centralize and automate protection of on-premises VMware and VMware Cloud on AWS workloads using AWS Backup. * api-change:``iot``: [``botocore``] Added the ability to enable/disable IoT Fleet Indexing for Device Defender and Named Shadow information, and search them through IoT Fleet Indexing APIs. * api-change:``ec2``: [``botocore``] This release adds support for Is4gen and Im4gn instances. This release also adds a new subnet attribute, enableLniAtDeviceIndex, to support local network interfaces, which are logical networking components that connect an EC2 instance to your on-premises network. * api-change:``outposts``: [``botocore``] This release adds the SupportedHardwareType parameter to CreateOutpost. * api-change:``storagegateway``: [``botocore``] Added gateway type VTL_SNOW. Added new SNOWBALL HostEnvironment for gateways running on a Snowball device. Added new field HostEnvironmentId to serve as an identifier for the HostEnvironment on which the gateway is running. * api-change:``kinesis``: [``botocore``] Amazon Kinesis Data Streams now supports on demand streams. * api-change:``glue``: [``botocore``] Support for DataLake transactions * api-change:``accessanalyzer``: [``botocore``] AWS IAM Access Analyzer now supports policy validation for resource policies attached to S3 buckets and access points. You can run additional policy checks by specifying the S3 resource type you want to attach to your resource policy. * api-change:``lakeformation``: [``botocore``] This release adds support for row and cell-based access control in Lake Formation. It also adds support for Lake Formation Governed Tables, which support ACID transactions and automatic storage optimizations. * api-change:``kafka``: [``botocore``] This release adds three new V2 APIs. CreateClusterV2 for creating both provisioned and serverless clusters. DescribeClusterV2 for getting information about provisioned and serverless clusters and ListClustersV2 for listing all clusters (both provisioned and serverless) in your account. * api-change:``redshift-data``: [``botocore``] Data API now supports serverless queries. * api-change:``snowball``: [``botocore``] Tapeball is to integrate tape gateway onto snowball, it enables customer to transfer local data on the tape to snowball,and then ingest the data into tape gateway on the cloud. * api-change:``workspaces-web``: [``botocore``] This is the initial SDK release for Amazon WorkSpaces Web. Amazon WorkSpaces Web is a low-cost, fully managed WorkSpace built to deliver secure web-based workloads and software-as-a-service (SaaS) application access to users within existing web browsers. * api-change:``iottwinmaker``: [``botocore``] AWS IoT TwinMaker makes it faster and easier to create, visualize and monitor digital twins of real-world systems like buildings, factories and industrial equipment to optimize operations. Learn more: https://docs.aws.amazon.com/iot-twinmaker/latest/apireference/Welcome.html (New Service) (Preview) * api-change:``fsx``: [``botocore``] This release adds support for the FSx for OpenZFS file system type, FSx for Lustre file systems with the Persistent_2 deployment type, and FSx for Lustre file systems with Amazon S3 data repository associations and automatic export policies. - from version 1.20.16 * api-change:``s3``: [``botocore``] Amazon S3 Event Notifications adds Amazon EventBridge as a destination and supports additional event types. The PutBucketNotificationConfiguration API can now skip validation of Amazon SQS, Amazon SNS and AWS Lambda destinations. * api-change:``wellarchitected``: [``botocore``] This update provides support for Well-Architected API users to use custom lens features. * api-change:``rum``: [``botocore``] This is the first public release of CloudWatch RUM * api-change:``rbin``: [``botocore``] This release adds support for Recycle Bin. * api-change:``iotsitewise``: [``botocore``] AWS IoT SiteWise now supports retention configuration for the hot tier storage. * api-change:``compute-optimizer``: [``botocore``] Adds support for the enhanced infrastructure metrics paid feature. Also adds support for two new sets of resource efficiency metrics, including savings opportunity metrics and performance improvement opportunity metrics. * api-change:``ecr``: [``botocore``] This release adds supports for pull through cache rules and enhanced scanning. * api-change:``evidently``: [``botocore``] Introducing Amazon CloudWatch Evidently. This is the first public release of Amazon CloudWatch Evidently. * api-change:``inspector2``: [``botocore``] This release adds support for the new Amazon Inspector API. The new Amazon Inspector can automatically discover and scan Amazon EC2 instances and Amazon ECR container images for software vulnerabilities and unintended network exposure, and report centralized findings across multiple AWS accounts. * api-change:``ssm``: [``botocore``] Added two new attributes to DescribeInstanceInformation called SourceId and SourceType along with new string filters SourceIds and SourceTypes to filter instance records. * api-change:``ec2``: [``botocore``] This release adds support for G5g and M6a instances. This release also adds support for Amazon EBS Snapshots Archive, a feature that enables you to archive your EBS snapshots; and Recycle Bin, a feature that enables you to protect your EBS snapshots against accidental deletion. * api-change:``dataexchange``: [``botocore``] This release enables providers and subscribers to use Data Set, Job, and Asset operations to work with API assets from Amazon API Gateway. In addition, this release enables subscribers to use the SendApiAsset operation to invoke a provider's Amazon API Gateway API that they are entitled to. - from version 1.20.15 * api-change:``migration-hub-refactor-spaces``: [``botocore``] This is the initial SDK release for AWS Migration Hub Refactor Spaces * api-change:``textract``: [``botocore``] This release adds support for synchronously analyzing identity documents through a new API: AnalyzeID * api-change:``personalize-runtime``: [``botocore``] This release adds inference support for Recommenders. * api-change:``personalize``: [``botocore``] This release adds API support for Recommenders and BatchSegmentJobs. - from version 1.20.14 * api-change:``autoscaling``: [``botocore``] Documentation updates for Amazon EC2 Auto Scaling. * api-change:``mgn``: [``botocore``] Application Migration Service now supports an additional replication method that does not require agent installation on each source server. This option is available for source servers running on VMware vCenter versions 6.7 and 7.0. * api-change:``ec2``: [``botocore``] Documentation updates for EC2. * api-change:``iotdeviceadvisor``: [``botocore``] Documentation update for Device Advisor GetEndpoint API * api-change:``pinpoint``: [``botocore``] Added a One-Time Password (OTP) management feature. You can use the Amazon Pinpoint API to generate OTP codes and send them to your users as SMS messages. Your apps can then call the API to verify the OTP codes that your users input * api-change:``outposts``: [``botocore``] This release adds new APIs for working with Outpost sites and orders. - from version 1.20.13 * api-change:``timestream-query``: [``botocore``] Releasing Amazon Timestream Scheduled Queries. It makes real-time analytics more performant and cost-effective for customers by calculating and storing frequently accessed aggregates, and other computations, typically used in operational dashboards, business reports, and other analytics applications * api-change:``elasticache``: [``botocore``] Doc only update for ElastiCache * api-change:``proton``: [``botocore``] This release adds APIs for getting the outputs and provisioned stacks for Environments, Pipelines, and ServiceInstances. You can now add tags to EnvironmentAccountConnections. It also adds APIs for working with PR-based provisioning. Also, it adds APIs for syncing templates with a git repository. * api-change:``translate``: [``botocore``] This release enables customers to use translation settings to mask profane words and phrases in their translation output. * api-change:``lambda``: [``botocore``] Remove Lambda function url apis * api-change:``imagebuilder``: [``botocore``] This release adds support for sharing AMIs with Organizations within an EC2 Image Builder Distribution Configuration. * api-change:``customer-profiles``: [``botocore``] This release introduces a new auto-merging feature for profile matching. The auto-merging configurations can be set via CreateDomain API or UpdateDomain API. You can use GetIdentityResolutionJob API and ListIdentityResolutionJobs API to fetch job status. * api-change:``autoscaling``: [``botocore``] Customers can now configure predictive scaling policies to proactively scale EC2 Auto Scaling groups based on any CloudWatch metrics that more accurately represent the load on the group than the four predefined metrics. They can also use math expressions to further customize the metrics. * api-change:``timestream-write``: [``botocore``] This release adds support for multi-measure records and magnetic store writes. Multi-measure records allow customers to store multiple measures in a single table row. Magnetic store writes enable customers to write late arrival data (data with timestamp in the past) directly into the magnetic store. * api-change:``iotsitewise``: [``botocore``] AWS IoT SiteWise now accepts data streams that aren't associated with any asset properties. You can organize data by updating data stream associations. - from version 1.20.12 * api-change:``redshift``: [``botocore``] This release adds support for reserved node exchange with restore/resize * api-change:``elasticache``: [``botocore``] Adding support for r6gd instances for Redis with data tiering. In a cluster with data tiering enabled, when available memory capacity is exhausted, the least recently used data is automatically tiered to solid state drives for cost-effective capacity scaling with minimal performance impact. * api-change:``opensearch``: [``botocore``] This release adds an optional parameter dry-run for the UpdateDomainConfig API to perform basic validation checks, and detect the deployment type that will be required for the configuration change, without actually applying the change. * api-change:``backup``: [``botocore``] This release adds new opt-in settings for advanced features for DynamoDB backups * api-change:``iot``: [``botocore``] This release introduces a new feature, Managed Job Template, for AWS IoT Jobs Service. Customers can now use service provided managed job templates to easily create jobs for supported standard job actions. * api-change:``iotwireless``: [``botocore``] Two new APIs, GetNetworkAnalyzerConfiguration and UpdateNetworkAnalyzerConfiguration, are added for the newly released Network Analyzer feature which enables customers to view real-time frame information and logs from LoRaWAN devices and gateways. * api-change:``workspaces``: [``botocore``] Documentation updates for Amazon WorkSpaces * api-change:``s3``: [``botocore``] Introduce two new Filters to S3 Lifecycle configurations - ObjectSizeGreaterThan and ObjectSizeLessThan. Introduce a new way to trigger actions on noncurrent versions by providing the number of newer noncurrent versions along with noncurrent days. * api-change:``elbv2``: [``botocore``] Update elbv2 client to latest version * api-change:``macie2``: [``botocore``] Documentation updates for Amazon Macie * api-change:``ec2``: [``botocore``] This release adds a new parameter ipv6Native to the allow creation of IPv6-only subnets using the CreateSubnet operation, and the operation ModifySubnetAttribute includes new parameters to modify subnet attributes to use resource-based naming and enable DNS resolutions for Private DNS name. * api-change:``sqs``: [``botocore``] Amazon SQS adds a new queue attribute, SqsManagedSseEnabled, which enables server-side queue encryption using SQS owned encryption keys. * api-change:``ecs``: [``botocore``] Documentation update for ARM support on Amazon ECS. * api-change:``sts``: [``botocore``] Documentation updates for AWS Security Token Service. * api-change:``finspace-data``: [``botocore``] Update documentation for createChangeset API. * api-change:``dynamodb``: [``botocore``] DynamoDB PartiQL now supports ReturnConsumedCapacity, which returns capacity units consumed by PartiQL APIs if the request specified returnConsumedCapacity parameter. PartiQL APIs include ExecuteStatement, BatchExecuteStatement, and ExecuteTransaction. * api-change:``lambda``: [``botocore``] Release Lambda event source filtering for SQS, Kinesis Streams, and DynamoDB Streams. * api-change:``iotdeviceadvisor``: [``botocore``] This release introduces a new feature for Device Advisor: ability to execute multiple test suites in parallel for given customer account. You can use GetEndpoint API to get the device-level test endpoint and call StartSuiteRun with "parallelRun=true" to run suites in parallel. * api-change:``rds``: [``botocore``] Adds support for Multi-AZ DB clusters for RDS for MySQL and RDS for PostgreSQL. - from version 1.20.11 * api-change:``connect``: [``botocore``] This release adds support for UpdateContactFlowMetadata, DeleteContactFlow and module APIs. For details, see the Release Notes in the Amazon Connect Administrator Guide. * api-change:``dms``: [``botocore``] Added new S3 endpoint settings to allow to convert the current UTC time into a specified time zone when a date partition folder is created. Using with 'DatePartitionedEnabled'. * api-change:``es``: [``botocore``] This release adds an optional parameter dry-run for the UpdateElasticsearchDomainConfig API to perform basic validation checks, and detect the deployment type that will be required for the configuration change, without actually applying the change. * api-change:``ssm``: [``botocore``] Adds new parameter to CreateActivation API . This parameter is for "internal use only". * api-change:``chime-sdk-meetings``: [``botocore``] Added new APIs for enabling Echo Reduction with Voice Focus. * api-change:``eks``: [``botocore``] Adding missing exceptions to RegisterCluster operation * api-change:``quicksight``: [``botocore``] Add support for Exasol data source, 1 click enterprise embedding and email customization. * api-change:``cloudformation``: [``botocore``] This release include SDK changes for the feature launch of Stack Import to Service Managed StackSet. * api-change:``rds``: [``botocore``] Adds local backup support to Amazon RDS on AWS Outposts. * api-change:``braket``: [``botocore``] This release adds support for Amazon Braket Hybrid Jobs. * api-change:``s3control``: [``botocore``] Added Amazon CloudWatch publishing option for S3 Storage Lens metrics. * api-change:``finspace-data``: [``botocore``] Add new APIs for managing Datasets, Changesets, and Dataviews. - from version 1.20.10 * api-change:``lexv2-runtime``: [``botocore``] Update lexv2-runtime client to latest version * api-change:``cloudformation``: [``botocore``] The StackSets ManagedExecution feature will allow concurrency for non-conflicting StackSet operations and queuing the StackSet operations that conflict at a given time for later execution. * api-change:``redshift``: [``botocore``] Added support of default IAM role for CreateCluster, RestoreFromClusterSnapshot and ModifyClusterIamRoles APIs * api-change:``lambda``: [``botocore``] Add support for Lambda Function URLs. Customers can use Function URLs to create built-in HTTPS endpoints on their functions. * api-change:``appstream``: [``botocore``] Includes APIs for managing resources for Elastic fleets: applications, app blocks, and application-fleet associations. * api-change:``medialive``: [``botocore``] This release adds support for specifying a SCTE-35 PID on input. MediaLive now supports SCTE-35 PID selection on inputs containing one or more active SCTE-35 PIDs. * api-change:``batch``: [``botocore``] Documentation updates for AWS Batch. * api-change:``application-insights``: [``botocore``] Application Insights now supports monitoring for HANA - from version 1.20.9 * api-change:``ivs``: [``botocore``] Add APIs for retrieving stream session information and support for filtering live streams by health. For more information, see https://docs.aws.amazon.com/ivs/latest/userguide/stream-health.html * api-change:``lambda``: [``botocore``] Added support for CLIENT_CERTIFICATE_TLS_AUTH and SERVER_ROOT_CA_CERTIFICATE as SourceAccessType for MSK and Kafka event source mappings. * api-change:``chime``: [``botocore``] Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models. * api-change:``chime-sdk-meetings``: [``botocore``] Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models. * api-change:``lexv2-models``: [``botocore``] Update lexv2-models client to latest version * api-change:``cloudwatch``: [``botocore``] Update cloudwatch client to latest version * api-change:``auditmanager``: [``botocore``] This release introduces a new feature for Audit Manager: Dashboard views. You can now view insights data for your active assessments, and quickly identify non-compliant evidence that needs to be remediated. * api-change:``databrew``: [``botocore``] This SDK release adds the following new features: 1) PII detection in profile jobs, 2) Data quality rules, enabling validation of data quality in profile jobs, 3) SQL query-based datasets for Amazon Redshift and Snowflake data sources, and 4) Connecting DataBrew datasets with Amazon AppFlow flows. * api-change:``redshift-data``: [``botocore``] Rolling back Data API serverless features until dependencies are live. * api-change:``kafka``: [``botocore``] Amazon MSK has added a new API that allows you to update the connectivity settings for an existing cluster to enable public accessibility. * api-change:``forecast``: [``botocore``] NEW CreateExplanability API that helps you understand how attributes such as price, promotion, etc. contributes to your forecasted values; NEW CreateAutoPredictor API that trains up to 40% more accurate forecasting model, saves up to 50% of retraining time, and provides model level explainability. * api-change:``appconfig``: [``botocore``] Add Type to support feature flag configuration profiles - from version 1.20.8 * api-change:``appconfigdata``: [``botocore``] AWS AppConfig Data is a new service that allows you to retrieve configuration deployed by AWS AppConfig. See the AppConfig user guide for more details on getting started. https://docs.aws.amazon.com/appconfig/latest/userguide/what-is-appconfig.htm... * api-change:``drs``: [``botocore``] Introducing AWS Elastic Disaster Recovery (AWS DRS), a new service that minimizes downtime and data loss with fast, reliable recovery of on-premises and cloud-based applications using affordable storage, minimal compute, and point-in-time recovery. * api-change:``apigateway``: [``botocore``] Documentation updates for Amazon API Gateway. * api-change:``sns``: [``botocore``] Amazon SNS introduces the PublishBatch API, which enables customers to publish up to 10 messages per API request. The new API is valid for Standard and FIFO topics. * api-change:``redshift-data``: [``botocore``] Data API now supports serverless requests. * api-change:``amplifybackend``: [``botocore``] New APIs to support the Amplify Storage category. Add and manage file storage in your Amplify app backend. - from version 1.20.7 * api-change:``location``: [``botocore``] This release adds the support for Relevance, Distance, Time Zone, Language and Interpolated Address for Geocoding and Reverse Geocoding. * api-change:``cloudtrail``: [``botocore``] CloudTrail Insights now supports ApiErrorRateInsight, which enables customers to identify unusual activity in their AWS account based on API error codes and their rate. - from version 1.20.6 * api-change:``migrationhubstrategy``: [``botocore``] AWS SDK for Migration Hub Strategy Recommendations. It includes APIs to start the portfolio assessment, import portfolio data for assessment, and to retrieve recommendations. For more information, see the AWS Migration Hub documentation at https://docs.aws.amazon.com/migrationhub/index.html * api-change:``ec2``: [``botocore``] Adds a new VPC Subnet attribute "EnableDns64." When enabled on IPv6 Subnets, the Amazon-Provided DNS Resolver returns synthetic IPv6 addresses for IPv4-only destinations. * api-change:``wafv2``: [``botocore``] Your options for logging web ACL traffic now include Amazon CloudWatch Logs log groups and Amazon S3 buckets. * api-change:``dms``: [``botocore``] Add Settings in JSON format for the source GCP MySQL endpoint * api-change:``ssm``: [``botocore``] Adds support for Session Reason and Max Session Duration for Systems Manager Session Manager. * api-change:``appstream``: [``botocore``] This release includes support for images of AmazonLinux2 platform type. * api-change:``eks``: [``botocore``] Adding Tags support to Cluster Registrations. * api-change:``transfer``: [``botocore``] AWS Transfer Family now supports integrating a custom identity provider using AWS Lambda - from version 1.20.5 * api-change:``ec2``: [``botocore``] C6i instances are powered by a third-generation Intel Xeon Scalable processor (Ice Lake) delivering all-core turbo frequency of 3.5 GHz. G5 instances feature up to 8 NVIDIA A10G Tensor Core GPUs and second generation AMD EPYC processors. * api-change:``ssm``: [``botocore``] This Patch Manager release supports creating Patch Baselines for RaspberryPi OS (formerly Raspbian) * api-change:``devops-guru``: [``botocore``] Add support for cross account APIs. * api-change:``connect``: [``botocore``] This release adds APIs for creating and managing scheduled tasks. Additionally, adds APIs to describe and update a contact and list associated references. * api-change:``mediaconvert``: [``botocore``] AWS Elemental MediaConvert SDK has added automatic modes for GOP configuration and added the ability to ingest screen recordings generated by Safari on MacOS 12 Monterey. - from version 1.20.4 * api-change:``dynamodb``: [``botocore``] Updated Help section for "dynamodb update-contributor-insights" API * api-change:``ec2``: [``botocore``] This release provides an additional route target for the VPC route table. * api-change:``translate``: [``botocore``] This release enables customers to import Multi-Directional Custom Terminology and use Multi-Directional Custom Terminology in both real-time translation and asynchronous batch translation. - from version 1.20.3 * api-change:``backup``: [``botocore``] AWS Backup SDK provides new options when scheduling backups: select supported services and resources that are assigned to a particular tag, linked to a combination of tags, or can be identified by a partial tag value, and exclude resources from their assignments. * api-change:``ecs``: [``botocore``] This release adds support for container instance health. * api-change:``resiliencehub``: [``botocore``] Initial release of AWS Resilience Hub, a managed service that enables you to define, validate, and track the resilience of your applications on AWS - from version 1.20.2 * api-change:``batch``: [``botocore``] Adds support for scheduling policy APIs. * api-change:``health``: [``botocore``] Documentation updates for AWS Health. * api-change:``greengrassv2``: [``botocore``] This release adds support for Greengrass core devices running Windows. You can now specify name of a Windows user to run a component. - from version 1.20.1 * bugfix:urllib3: [``botocore``] Fix NO_OP_TICKET import bug in older versions of urllib3 - from version 1.20.0 * feature:EndpointResolver: [``botocore``] Adding support for resolving modeled FIPS and Dualstack endpoints. * feature:``six``: [``botocore``] Updated vendored version of ``six`` from 1.10.0 to 1.16.0 * api-change:``sagemaker``: [``botocore``] SageMaker CreateEndpoint and UpdateEndpoint APIs now support additional deployment configuration to manage traffic shifting options and automatic rollback monitoring. DescribeEndpoint now shows new in-progress deployment details with stage status. * api-change:``chime-sdk-meetings``: [``botocore``] Updated format validation for ids and regions. * api-change:``wafv2``: [``botocore``] You can now configure rules to run a CAPTCHA check against web requests and, as needed, send a CAPTCHA challenge to the client. * api-change:``ec2``: [``botocore``] This release adds internal validation on the GatewayAssociationState field - from version 1.19.12 * api-change:``ec2``: [``botocore``] DescribeInstances now returns customer-owned IP addresses for instances running on an AWS Outpost. * api-change:``translate``: [``botocore``] This release enable customers to use their own KMS keys to encrypt output files when they submit a batch transform job. * api-change:``resourcegroupstaggingapi``: [``botocore``] Documentation updates and improvements. - from version 1.19.11 * api-change:``chime-sdk-meetings``: [``botocore``] The Amazon Chime SDK Meetings APIs allow software developers to create meetings and attendees for interactive audio, video, screen and content sharing in custom meeting applications which use the Amazon Chime SDK. * api-change:``sagemaker``: [``botocore``] ListDevices and DescribeDevice now show Edge Manager agent version. * api-change:``connect``: [``botocore``] This release adds CRUD operation support for Security profile resource in Amazon Connect * api-change:``iotwireless``: [``botocore``] Adding APIs for the FUOTA (firmware update over the air) and multicast for LoRaWAN devices and APIs to support event notification opt-in feature for Sidewalk related events. A few existing APIs need to be modified for this new feature. * api-change:``ec2``: [``botocore``] This release adds a new instance replacement strategy for EC2 Fleet, Spot Fleet. Now you can select an action to perform when your instance gets a rebalance notification. EC2 Fleet, Spot Fleet can launch a replacement then terminate the instance that received notification after a termination delay - from version 1.19.10 * api-change:``finspace``: [``botocore``] Adds superuser and data-bundle parameters to CreateEnvironment API * api-change:``connectparticipant``: [``botocore``] This release adds a new boolean attribute - Connect Participant - to the CreateParticipantConnection API, which can be used to mark the participant as connected. * api-change:``datasync``: [``botocore``] AWS DataSync now supports Hadoop Distributed File System (HDFS) Locations * api-change:``macie2``: [``botocore``] This release adds support for specifying the severity of findings that a custom data identifier produces, based on the number of occurrences of text that matches the detection criteria. - from version 1.19.9 * api-change:``cloudfront``: [``botocore``] CloudFront now supports response headers policies to add HTTP headers to the responses that CloudFront sends to viewers. You can use these policies to add CORS headers, control browser caching, and more, without modifying your origin or writing any code. * api-change:``connect``: [``botocore``] Amazon Connect Chat now supports real-time message streaming. * api-change:``nimble``: [``botocore``] Amazon Nimble Studio adds support for users to stop and start streaming sessions. - from version 1.19.8 * api-change:``rekognition``: [``botocore``] This Amazon Rekognition Custom Labels release introduces the management of datasets with projects * api-change:``networkmanager``: [``botocore``] This release adds API support to aggregate resources, routes, and telemetry data across a Global Network. * api-change:``lightsail``: [``botocore``] This release adds support to enable access logging for buckets in the Lightsail object storage service. * api-change:``neptune``: [``botocore``] Adds support for major version upgrades to ModifyDbCluster API - from version 1.19.7 * api-change:``transcribe``: [``botocore``] Transcribe and Transcribe Call Analytics now support automatic language identification along with custom vocabulary, vocabulary filter, custom language model and PII redaction. * api-change:``application-insights``: [``botocore``] Added Monitoring support for SQL Server Failover Cluster Instance. Additionally, added a new API to allow one-click monitoring of containers resources. * api-change:``rekognition``: [``botocore``] This release added new attributes to Rekognition Video GetCelebrityRecognition API operations. * api-change:``connect``: [``botocore``] Amazon Connect Chat now supports real-time message streaming. * api-change:``ec2``: [``botocore``] Support added for AMI sharing with organizations and organizational units in ModifyImageAttribute API - Update BuildRequires and Requires from setup.py ==== python-botocore ==== Version update (1.22.6 -> 1.23.24) - Version update to 1.23.24 * api-change:``secretsmanager``: Documentation updates for Secrets Manager - from version 1.23.23 * api-change:``lexv2-models``: Update lexv2-models client to latest version * api-change:``network-firewall``: This release adds support for managed rule groups. * api-change:``route53-recovery-control-config``: This release adds tagging supports to Route53 Recovery Control Configuration. New APIs: TagResource, UntagResource and ListTagsForResource. Updates: add optional field `tags` to support tagging while calling CreateCluster, CreateControlPanel and CreateSafetyRule. * api-change:``ec2``: Adds waiters support for internet gateways. * api-change:``sms``: This release adds SMS discontinuation information to the API and CLI references. * api-change:``route53domains``: Amazon Route 53 domain registration APIs now support filtering and sorting in the ListDomains API, deleting a domain by using the DeleteDomain API and getting domain pricing information by using the ListPrices API. * api-change:``savingsplans``: Adds the ability to specify Savings Plans hourly commitments using five digits after the decimal point. - from version 1.23.22 * api-change:``lookoutvision``: This release adds new APIs for packaging an Amazon Lookout for Vision model as an AWS IoT Greengrass component. * api-change:``sagemaker``: This release added a new Ambarella device(amba_cv2) compilation support for Sagemaker Neo. * api-change:``comprehendmedical``: This release adds a new set of APIs (synchronous and batch) to support the SNOMED-CT ontology. * api-change:``health``: Documentation updates for AWS Health * api-change:``logs``: This release adds AWS Organizations support as condition key in destination policy for cross account Subscriptions in CloudWatch Logs. * api-change:``outposts``: This release adds the UpdateOutpost API. * api-change:``support``: Documentation updates for AWS Support. * api-change:``iot``: This release allows customer to enable caching of custom authorizer on HTTP protocol for clients that use persistent or Keep-Alive connection in order to reduce the number of Lambda invocations. - from version 1.23.21 * api-change:``location``: This release adds support for Accuracy position filtering, position metadata and autocomplete for addresses and points of interest based on partial or misspelled free-form text. * api-change:``appsync``: AWS AppSync now supports custom domain names, allowing you to associate a domain name that you own with an AppSync API in your account. * api-change:``route53``: Add PriorRequestNotComplete exception to UpdateHostedZoneComment API - from version 1.23.20 * api-change:``rekognition``: This release added new KnownGender types for Celebrity Recognition. - from version 1.23.19 * api-change:``ram``: This release adds the ability to use the new ResourceRegionScope parameter on List operations that return lists of resources or resource types. This new parameter filters the results by letting you differentiate between global or regional resource types. * api-change:``networkmanager``: This release adds API support for AWS Cloud WAN. * api-change:``amplifyuibuilder``: This release introduces the actions and data types for the new Amplify UI Builder API. The Amplify UI Builder API provides a programmatic interface for creating and configuring user interface (UI) component libraries and themes for use in Amplify applications. - from version 1.23.18 * api-change:``sagemaker``: This release enables - 1/ Inference endpoint configuration recommendations and ability to run custom load tests to meet performance needs. 2/ Deploy serverless inference endpoints. 3/ Query, filter and retrieve end-to-end ML lineage graph, and incorporate model quality/bias detection in ML workflow. * api-change:``kendra``: Experience Builder allows customers to build search applications without writing code. Analytics Dashboard provides quality and usability metrics for Kendra indexes. Custom Document Enrichment allows customers to build a custom ingestion pipeline to pre-process documents and generate metadata. * api-change:``directconnect``: Adds SiteLink support to private and transit virtual interfaces. SiteLink is a new Direct Connect feature that allows routing between Direct Connect points of presence. * api-change:``lexv2-models``: Update lexv2-models client to latest version * api-change:``ec2``: This release adds support for Amazon VPC IP Address Manager (IPAM), which enables you to plan, track, and monitor IP addresses for your workloads. This release also adds support for VPC Network Access Analyzer, which enables you to analyze network access to resources in your Virtual Private Clouds. * api-change:``shield``: This release adds API support for Automatic Application Layer DDoS Mitigation for AWS Shield Advanced. Customers can now enable automatic DDoS mitigation in count or block mode for layer 7 protected resources. * api-change:``sagemaker-runtime``: Update sagemaker-runtime client to latest version * api-change:``devops-guru``: DevOps Guru now provides detailed, database-specific analyses of performance issues and recommends corrective actions for Amazon Aurora database instances with Performance Insights turned on. You can also use AWS tags to choose which resources to analyze and define your applications. * api-change:``dynamodb``: Add support for Table Classes and introduce the Standard Infrequent Access table class. - from version 1.23.17 * api-change:``s3``: Introduce Amazon S3 Glacier Instant Retrieval storage class and a new setting in S3 Object Ownership to disable ACLs for bucket and the objects in it. * api-change:``backup-gateway``: Initial release of AWS Backup gateway which enables you to centralize and automate protection of on-premises VMware and VMware Cloud on AWS workloads using AWS Backup. * api-change:``iot``: Added the ability to enable/disable IoT Fleet Indexing for Device Defender and Named Shadow information, and search them through IoT Fleet Indexing APIs. * api-change:``ec2``: This release adds support for Is4gen and Im4gn instances. This release also adds a new subnet attribute, enableLniAtDeviceIndex, to support local network interfaces, which are logical networking components that connect an EC2 instance to your on-premises network. * api-change:``outposts``: This release adds the SupportedHardwareType parameter to CreateOutpost. * api-change:``storagegateway``: Added gateway type VTL_SNOW. Added new SNOWBALL HostEnvironment for gateways running on a Snowball device. Added new field HostEnvironmentId to serve as an identifier for the HostEnvironment on which the gateway is running. * api-change:``kinesis``: Amazon Kinesis Data Streams now supports on demand streams. * api-change:``glue``: Support for DataLake transactions * api-change:``accessanalyzer``: AWS IAM Access Analyzer now supports policy validation for resource policies attached to S3 buckets and access points. You can run additional policy checks by specifying the S3 resource type you want to attach to your resource policy. * api-change:``lakeformation``: This release adds support for row and cell-based access control in Lake Formation. It also adds support for Lake Formation Governed Tables, which support ACID transactions and automatic storage optimizations. * api-change:``kafka``: This release adds three new V2 APIs. CreateClusterV2 for creating both provisioned and serverless clusters. DescribeClusterV2 for getting information about provisioned and serverless clusters and ListClustersV2 for listing all clusters (both provisioned and serverless) in your account. * api-change:``redshift-data``: Data API now supports serverless queries. * api-change:``snowball``: Tapeball is to integrate tape gateway onto snowball, it enables customer to transfer local data on the tape to snowball,and then ingest the data into tape gateway on the cloud. * api-change:``workspaces-web``: This is the initial SDK release for Amazon WorkSpaces Web. Amazon WorkSpaces Web is a low-cost, fully managed WorkSpace built to deliver secure web-based workloads and software-as-a-service (SaaS) application access to users within existing web browsers. * api-change:``iottwinmaker``: AWS IoT TwinMaker makes it faster and easier to create, visualize and monitor digital twins of real-world systems like buildings, factories and industrial equipment to optimize operations. Learn more: https://docs.aws.amazon.com/iot-twinmaker/latest/apireference/Welcome.html (New Service) (Preview) * api-change:``fsx``: This release adds support for the FSx for OpenZFS file system type, FSx for Lustre file systems with the Persistent_2 deployment type, and FSx for Lustre file systems with Amazon S3 data repository associations and automatic export policies. - from version 1.23.16 * api-change:``s3``: Amazon S3 Event Notifications adds Amazon EventBridge as a destination and supports additional event types. The PutBucketNotificationConfiguration API can now skip validation of Amazon SQS, Amazon SNS and AWS Lambda destinations. * api-change:``wellarchitected``: This update provides support for Well-Architected API users to use custom lens features. * api-change:``rum``: This is the first public release of CloudWatch RUM * api-change:``rbin``: This release adds support for Recycle Bin. * api-change:``iotsitewise``: AWS IoT SiteWise now supports retention configuration for the hot tier storage. * api-change:``compute-optimizer``: Adds support for the enhanced infrastructure metrics paid feature. Also adds support for two new sets of resource efficiency metrics, including savings opportunity metrics and performance improvement opportunity metrics. * api-change:``ecr``: This release adds supports for pull through cache rules and enhanced scanning. * api-change:``evidently``: Introducing Amazon CloudWatch Evidently. This is the first public release of Amazon CloudWatch Evidently. * api-change:``inspector2``: This release adds support for the new Amazon Inspector API. The new Amazon Inspector can automatically discover and scan Amazon EC2 instances and Amazon ECR container images for software vulnerabilities and unintended network exposure, and report centralized findings across multiple AWS accounts. * api-change:``ssm``: Added two new attributes to DescribeInstanceInformation called SourceId and SourceType along with new string filters SourceIds and SourceTypes to filter instance records. * api-change:``ec2``: This release adds support for G5g and M6a instances. This release also adds support for Amazon EBS Snapshots Archive, a feature that enables you to archive your EBS snapshots; and Recycle Bin, a feature that enables you to protect your EBS snapshots against accidental deletion. * api-change:``dataexchange``: This release enables providers and subscribers to use Data Set, Job, and Asset operations to work with API assets from Amazon API Gateway. In addition, this release enables subscribers to use the SendApiAsset operation to invoke a provider's Amazon API Gateway API that they are entitled to. - from version 1.23.15 * api-change:``migration-hub-refactor-spaces``: This is the initial SDK release for AWS Migration Hub Refactor Spaces * api-change:``textract``: This release adds support for synchronously analyzing identity documents through a new API: AnalyzeID * api-change:``personalize-runtime``: This release adds inference support for Recommenders. * api-change:``personalize``: This release adds API support for Recommenders and BatchSegmentJobs. - from version 1.23.14 * api-change:``autoscaling``: Documentation updates for Amazon EC2 Auto Scaling. * api-change:``mgn``: Application Migration Service now supports an additional replication method that does not require agent installation on each source server. This option is available for source servers running on VMware vCenter versions 6.7 and 7.0. * api-change:``ec2``: Documentation updates for EC2. * api-change:``iotdeviceadvisor``: Documentation update for Device Advisor GetEndpoint API * api-change:``pinpoint``: Added a One-Time Password (OTP) management feature. You can use the Amazon Pinpoint API to generate OTP codes and send them to your users as SMS messages. Your apps can then call the API to verify the OTP codes that your users input * api-change:``outposts``: This release adds new APIs for working with Outpost sites and orders. - from version 1.23.13 * api-change:``timestream-query``: Releasing Amazon Timestream Scheduled Queries. It makes real-time analytics more performant and cost-effective for customers by calculating and storing frequently accessed aggregates, and other computations, typically used in operational dashboards, business reports, and other analytics applications * api-change:``elasticache``: Doc only update for ElastiCache * api-change:``proton``: This release adds APIs for getting the outputs and provisioned stacks for Environments, Pipelines, and ServiceInstances. You can now add tags to EnvironmentAccountConnections. It also adds APIs for working with PR-based provisioning. Also, it adds APIs for syncing templates with a git repository. * api-change:``translate``: This release enables customers to use translation settings to mask profane words and phrases in their translation output. * api-change:``lambda``: Remove Lambda function url apis * api-change:``imagebuilder``: This release adds support for sharing AMIs with Organizations within an EC2 Image Builder Distribution Configuration. * api-change:``customer-profiles``: This release introduces a new auto-merging feature for profile matching. The auto-merging configurations can be set via CreateDomain API or UpdateDomain API. You can use GetIdentityResolutionJob API and ListIdentityResolutionJobs API to fetch job status. * api-change:``autoscaling``: Customers can now configure predictive scaling policies to proactively scale EC2 Auto Scaling groups based on any CloudWatch metrics that more accurately represent the load on the group than the four predefined metrics. They can also use math expressions to further customize the metrics. * api-change:``timestream-write``: This release adds support for multi-measure records and magnetic store writes. Multi-measure records allow customers to store multiple measures in a single table row. Magnetic store writes enable customers to write late arrival data (data with timestamp in the past) directly into the magnetic store. * api-change:``iotsitewise``: AWS IoT SiteWise now accepts data streams that aren't associated with any asset properties. You can organize data by updating data stream associations. - from version 1.23.12 * api-change:``redshift``: This release adds support for reserved node exchange with restore/resize * api-change:``elasticache``: Adding support for r6gd instances for Redis with data tiering. In a cluster with data tiering enabled, when available memory capacity is exhausted, the least recently used data is automatically tiered to solid state drives for cost-effective capacity scaling with minimal performance impact. * api-change:``opensearch``: This release adds an optional parameter dry-run for the UpdateDomainConfig API to perform basic validation checks, and detect the deployment type that will be required for the configuration change, without actually applying the change. * api-change:``backup``: This release adds new opt-in settings for advanced features for DynamoDB backups * api-change:``iot``: This release introduces a new feature, Managed Job Template, for AWS IoT Jobs Service. Customers can now use service provided managed job templates to easily create jobs for supported standard job actions. * api-change:``iotwireless``: Two new APIs, GetNetworkAnalyzerConfiguration and UpdateNetworkAnalyzerConfiguration, are added for the newly released Network Analyzer feature which enables customers to view real-time frame information and logs from LoRaWAN devices and gateways. * api-change:``workspaces``: Documentation updates for Amazon WorkSpaces * api-change:``s3``: Introduce two new Filters to S3 Lifecycle configurations - ObjectSizeGreaterThan and ObjectSizeLessThan. Introduce a new way to trigger actions on noncurrent versions by providing the number of newer noncurrent versions along with noncurrent days. * api-change:``elbv2``: Update elbv2 client to latest version * api-change:``macie2``: Documentation updates for Amazon Macie * api-change:``ec2``: This release adds a new parameter ipv6Native to the allow creation of IPv6-only subnets using the CreateSubnet operation, and the operation ModifySubnetAttribute includes new parameters to modify subnet attributes to use resource-based naming and enable DNS resolutions for Private DNS name. * api-change:``sqs``: Amazon SQS adds a new queue attribute, SqsManagedSseEnabled, which enables server-side queue encryption using SQS owned encryption keys. * api-change:``ecs``: Documentation update for ARM support on Amazon ECS. * api-change:``sts``: Documentation updates for AWS Security Token Service. * api-change:``finspace-data``: Update documentation for createChangeset API. * api-change:``dynamodb``: DynamoDB PartiQL now supports ReturnConsumedCapacity, which returns capacity units consumed by PartiQL APIs if the request specified returnConsumedCapacity parameter. PartiQL APIs include ExecuteStatement, BatchExecuteStatement, and ExecuteTransaction. * api-change:``lambda``: Release Lambda event source filtering for SQS, Kinesis Streams, and DynamoDB Streams. * api-change:``iotdeviceadvisor``: This release introduces a new feature for Device Advisor: ability to execute multiple test suites in parallel for given customer account. You can use GetEndpoint API to get the device-level test endpoint and call StartSuiteRun with "parallelRun=true" to run suites in parallel. * api-change:``rds``: Adds support for Multi-AZ DB clusters for RDS for MySQL and RDS for PostgreSQL. - from version 1.23.11 * api-change:``connect``: This release adds support for UpdateContactFlowMetadata, DeleteContactFlow and module APIs. For details, see the Release Notes in the Amazon Connect Administrator Guide. * api-change:``dms``: Added new S3 endpoint settings to allow to convert the current UTC time into a specified time zone when a date partition folder is created. Using with 'DatePartitionedEnabled'. * api-change:``es``: This release adds an optional parameter dry-run for the UpdateElasticsearchDomainConfig API to perform basic validation checks, and detect the deployment type that will be required for the configuration change, without actually applying the change. * api-change:``ssm``: Adds new parameter to CreateActivation API . This parameter is for "internal use only". * api-change:``chime-sdk-meetings``: Added new APIs for enabling Echo Reduction with Voice Focus. * api-change:``eks``: Adding missing exceptions to RegisterCluster operation * api-change:``quicksight``: Add support for Exasol data source, 1 click enterprise embedding and email customization. * api-change:``cloudformation``: This release include SDK changes for the feature launch of Stack Import to Service Managed StackSet. * api-change:``rds``: Adds local backup support to Amazon RDS on AWS Outposts. * api-change:``braket``: This release adds support for Amazon Braket Hybrid Jobs. * api-change:``s3control``: Added Amazon CloudWatch publishing option for S3 Storage Lens metrics. * api-change:``finspace-data``: Add new APIs for managing Datasets, Changesets, and Dataviews. - from version 1.23.10 * api-change:``lexv2-runtime``: Update lexv2-runtime client to latest version * api-change:``cloudformation``: The StackSets ManagedExecution feature will allow concurrency for non-conflicting StackSet operations and queuing the StackSet operations that conflict at a given time for later execution. * api-change:``redshift``: Added support of default IAM role for CreateCluster, RestoreFromClusterSnapshot and ModifyClusterIamRoles APIs * api-change:``lambda``: Add support for Lambda Function URLs. Customers can use Function URLs to create built-in HTTPS endpoints on their functions. * api-change:``appstream``: Includes APIs for managing resources for Elastic fleets: applications, app blocks, and application-fleet associations. * api-change:``medialive``: This release adds support for specifying a SCTE-35 PID on input. MediaLive now supports SCTE-35 PID selection on inputs containing one or more active SCTE-35 PIDs. * api-change:``batch``: Documentation updates for AWS Batch. * api-change:``application-insights``: Application Insights now supports monitoring for HANA - from version 1.23.9 * api-change:``ivs``: Add APIs for retrieving stream session information and support for filtering live streams by health. For more information, see https://docs.aws.amazon.com/ivs/latest/userguide/stream-health.html * api-change:``lambda``: Added support for CLIENT_CERTIFICATE_TLS_AUTH and SERVER_ROOT_CA_CERTIFICATE as SourceAccessType for MSK and Kafka event source mappings. * api-change:``chime``: Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models. * api-change:``chime-sdk-meetings``: Adds new Transcribe API parameters to StartMeetingTranscription, including support for content identification and redaction (PII & PHI), partial results stabilization, and custom language models. * api-change:``lexv2-models``: Update lexv2-models client to latest version * api-change:``cloudwatch``: Update cloudwatch client to latest version * api-change:``auditmanager``: This release introduces a new feature for Audit Manager: Dashboard views. You can now view insights data for your active assessments, and quickly identify non-compliant evidence that needs to be remediated. * api-change:``databrew``: This SDK release adds the following new features: 1) PII detection in profile jobs, 2) Data quality rules, enabling validation of data quality in profile jobs, 3) SQL query-based datasets for Amazon Redshift and Snowflake data sources, and 4) Connecting DataBrew datasets with Amazon AppFlow flows. * api-change:``redshift-data``: Rolling back Data API serverless features until dependencies are live. * api-change:``kafka``: Amazon MSK has added a new API that allows you to update the connectivity settings for an existing cluster to enable public accessibility. * api-change:``forecast``: NEW CreateExplanability API that helps you understand how attributes such as price, promotion, etc. contributes to your forecasted values; NEW CreateAutoPredictor API that trains up to 40% more accurate forecasting model, saves up to 50% of retraining time, and provides model level explainability. * api-change:``appconfig``: Add Type to support feature flag configuration profiles - from version 1.23.8 * api-change:``appconfigdata``: AWS AppConfig Data is a new service that allows you to retrieve configuration deployed by AWS AppConfig. See the AppConfig user guide for more details on getting started. https://docs.aws.amazon.com/appconfig/latest/userguide/what-is-appconfig.htm... * api-change:``drs``: Introducing AWS Elastic Disaster Recovery (AWS DRS), a new service that minimizes downtime and data loss with fast, reliable recovery of on-premises and cloud-based applications using affordable storage, minimal compute, and point-in-time recovery. * api-change:``apigateway``: Documentation updates for Amazon API Gateway. * api-change:``sns``: Amazon SNS introduces the PublishBatch API, which enables customers to publish up to 10 messages per API request. The new API is valid for Standard and FIFO topics. * api-change:``redshift-data``: Data API now supports serverless requests. * api-change:``amplifybackend``: New APIs to support the Amplify Storage category. Add and manage file storage in your Amplify app backend. - from version 1.23.7 * api-change:``location``: This release adds the support for Relevance, Distance, Time Zone, Language and Interpolated Address for Geocoding and Reverse Geocoding. * api-change:``cloudtrail``: CloudTrail Insights now supports ApiErrorRateInsight, which enables customers to identify unusual activity in their AWS account based on API error codes and their rate. - from version 1.23.6 * api-change:``migrationhubstrategy``: AWS SDK for Migration Hub Strategy Recommendations. It includes APIs to start the portfolio assessment, import portfolio data for assessment, and to retrieve recommendations. For more information, see the AWS Migration Hub documentation at https://docs.aws.amazon.com/migrationhub/index.html * api-change:``ec2``: Adds a new VPC Subnet attribute "EnableDns64." When enabled on IPv6 Subnets, the Amazon-Provided DNS Resolver returns synthetic IPv6 addresses for IPv4-only destinations. * api-change:``wafv2``: Your options for logging web ACL traffic now include Amazon CloudWatch Logs log groups and Amazon S3 buckets. * api-change:``dms``: Add Settings in JSON format for the source GCP MySQL endpoint * api-change:``ssm``: Adds support for Session Reason and Max Session Duration for Systems Manager Session Manager. * api-change:``appstream``: This release includes support for images of AmazonLinux2 platform type. * api-change:``eks``: Adding Tags support to Cluster Registrations. * api-change:``transfer``: AWS Transfer Family now supports integrating a custom identity provider using AWS Lambda - from version 1.23.5 * api-change:``ec2``: C6i instances are powered by a third-generation Intel Xeon Scalable processor (Ice Lake) delivering all-core turbo frequency of 3.5 GHz. G5 instances feature up to 8 NVIDIA A10G Tensor Core GPUs and second generation AMD EPYC processors. * api-change:``ssm``: This Patch Manager release supports creating Patch Baselines for RaspberryPi OS (formerly Raspbian) * api-change:``devops-guru``: Add support for cross account APIs. * api-change:``connect``: This release adds APIs for creating and managing scheduled tasks. Additionally, adds APIs to describe and update a contact and list associated references. * api-change:``mediaconvert``: AWS Elemental MediaConvert SDK has added automatic modes for GOP configuration and added the ability to ingest screen recordings generated by Safari on MacOS 12 Monterey. - from version 1.23.4 * api-change:``dynamodb``: Updated Help section for "dynamodb update-contributor-insights" API * api-change:``ec2``: This release provides an additional route target for the VPC route table. * api-change:``translate``: This release enables customers to import Multi-Directional Custom Terminology and use Multi-Directional Custom Terminology in both real-time translation and asynchronous batch translation. - from version 1.23.3 * api-change:``backup``: AWS Backup SDK provides new options when scheduling backups: select supported services and resources that are assigned to a particular tag, linked to a combination of tags, or can be identified by a partial tag value, and exclude resources from their assignments. * api-change:``ecs``: This release adds support for container instance health. * api-change:``resiliencehub``: Initial release of AWS Resilience Hub, a managed service that enables you to define, validate, and track the resilience of your applications on AWS - from version 1.23.2 * api-change:``batch``: Adds support for scheduling policy APIs. * api-change:``health``: Documentation updates for AWS Health. * api-change:``greengrassv2``: This release adds support for Greengrass core devices running Windows. You can now specify name of a Windows user to run a component. - from version 1.23.1 * bugfix:urllib3: Fix NO_OP_TICKET import bug in older versions of urllib3 - from version 1.23.0 * feature:EndpointResolver: Adding support for resolving modeled FIPS and Dualstack endpoints. * feature:``six``: Updated vendored version of ``six`` from 1.10.0 to 1.16.0 * api-change:``sagemaker``: SageMaker CreateEndpoint and UpdateEndpoint APIs now support additional deployment configuration to manage traffic shifting options and automatic rollback monitoring. DescribeEndpoint now shows new in-progress deployment details with stage status. * api-change:``chime-sdk-meetings``: Updated format validation for ids and regions. * api-change:``wafv2``: You can now configure rules to run a CAPTCHA check against web requests and, as needed, send a CAPTCHA challenge to the client. * api-change:``ec2``: This release adds internal validation on the GatewayAssociationState field - from version 1.22.12 * api-change:``ec2``: DescribeInstances now returns customer-owned IP addresses for instances running on an AWS Outpost. * api-change:``translate``: This release enable customers to use their own KMS keys to encrypt output files when they submit a batch transform job. * api-change:``resourcegroupstaggingapi``: Documentation updates and improvements. - from version 1.22.11 * api-change:``chime-sdk-meetings``: The Amazon Chime SDK Meetings APIs allow software developers to create meetings and attendees for interactive audio, video, screen and content sharing in custom meeting applications which use the Amazon Chime SDK. * api-change:``sagemaker``: ListDevices and DescribeDevice now show Edge Manager agent version. * api-change:``connect``: This release adds CRUD operation support for Security profile resource in Amazon Connect * api-change:``iotwireless``: Adding APIs for the FUOTA (firmware update over the air) and multicast for LoRaWAN devices and APIs to support event notification opt-in feature for Sidewalk related events. A few existing APIs need to be modified for this new feature. * api-change:``ec2``: This release adds a new instance replacement strategy for EC2 Fleet, Spot Fleet. Now you can select an action to perform when your instance gets a rebalance notification. EC2 Fleet, Spot Fleet can launch a replacement then terminate the instance that received notification after a termination delay - from version 1.22.10 * api-change:``finspace``: Adds superuser and data-bundle parameters to CreateEnvironment API * api-change:``connectparticipant``: This release adds a new boolean attribute - Connect Participant - to the CreateParticipantConnection API, which can be used to mark the participant as connected. * api-change:``datasync``: AWS DataSync now supports Hadoop Distributed File System (HDFS) Locations * api-change:``macie2``: This release adds support for specifying the severity of findings that a custom data identifier produces, based on the number of occurrences of text that matches the detection criteria. - from version 1.22.9 * api-change:``cloudfront``: CloudFront now supports response headers policies to add HTTP headers to the responses that CloudFront sends to viewers. You can use these policies to add CORS headers, control browser caching, and more, without modifying your origin or writing any code. * api-change:``connect``: Amazon Connect Chat now supports real-time message streaming. * api-change:``nimble``: Amazon Nimble Studio adds support for users to stop and start streaming sessions. - from version 1.22.8 * api-change:``rekognition``: This Amazon Rekognition Custom Labels release introduces the management of datasets with projects * api-change:``networkmanager``: This release adds API support to aggregate resources, routes, and telemetry data across a Global Network. * api-change:``lightsail``: This release adds support to enable access logging for buckets in the Lightsail object storage service. * api-change:``neptune``: Adds support for major version upgrades to ModifyDbCluster API - from version 1.22.7 * api-change:``transcribe``: Transcribe and Transcribe Call Analytics now support automatic language identification along with custom vocabulary, vocabulary filter, custom language model and PII redaction. * api-change:``application-insights``: Added Monitoring support for SQL Server Failover Cluster Instance. Additionally, added a new API to allow one-click monitoring of containers resources. * api-change:``rekognition``: This release added new attributes to Rekognition Video GetCelebrityRecognition API operations. * api-change:``connect``: Amazon Connect Chat now supports real-time message streaming. * api-change:``ec2``: Support added for AMI sharing with organizations and organizational units in ModifyImageAttribute API ==== python-falcon ==== Subpackages: python-falcon-doc python38-falcon - do not require pytest-runner for build, not required ==== python-kiwi ==== Version update (9.24.10 -> 9.24.14) - Bump version: 9.24.13 ? 9.24.14 - Disable intersphinx intersphinx is a doc extension which links to the documentation of objects in other projects whenever Sphinx encounters a cross-reference that has no matching target in the current documentation set, it looks for targets in the documentation sets configured in the intersphinx_mapping. However, the kiwi docs do not use this feature thus it can be disabled. - Compress container images in builder class This commit changes the stage at which container images are compressed to match the criteria applied to other image types. Instead of compressing the image in OCI devoted classes now it is happening in builder class by setting Result instance properties. Fixes #1996 Signed-off-by: David Cassany <dcassany@suse.com> - Revert "Fixed MicroOS build test" This reverts commit 52c38f9ec22aef484efaf0a570dc78eea529deec. The TW people moved to an older version of libsnapper, no idea what these guys are doing - kiwi-repart: Fix spelling error in source code comment - Fix multiple minor spelling errors in documentation - Added support for setting up release version Currently the release version is not set or set to '0' for package managers which requires a value to operate. However, in order to support leveraging the same description across different releases it is important to have the opportunity to specify a setting for the release version. This commit adds a new optional attribute to the preferences section which allows to specify a custom value which serves as the release version: <preferences> <release-version>TEXT</release-version> </preferences> If not specified the default setting as before applies. Please note the release version information is currently used in dnf and microdnf package managers only. It might happen that it gets applied to the other package manager backends as well. This will happen on demand though. Related to Issue #1918. This Fixes #1927 - Bump version: 9.24.12 ? 9.24.13 - Add global --kiwi-file option When building with kiwi a search on the kiwi main config file is made inside of the given --description directory. The search looks up for the file config.xml or *.kiwi. So far there was no opportunity to specify another name. This commit adds an option in the global area named: - -kiwi-file name which will make kiwi to lookup this file inside of the given --description directory and fail if it does not exist. This Fixes #1973 - Added type hints for CliTask class - Bump version: 9.24.11 ? 9.24.12 - Use realpath to resolve this:// location - Support this:// resource locator for includes Allow include references like the following example: <include from="this://include.xml"/> - Allow repo path relative to the image description This commit adds a new URI type called this://... The this:// part will be resolved into the absolute path to the image description. A source path like the following: <source path="this://my_repo"/> is resolved to <source path="dir:///path/to/image/description/my_repo"/> This change provides the requested opportunity to reference repos provided as part of the image description and Fixes #1964 - Care for different snapper template locations snapper recently changed their config template location from etc/ to usr/. This commit handles the two locations and Fixes bsc#1192940 - Prevent warning message on resize exception On systems which are configured to run the oem resize at every boot (default case) kiwi checks how much space is free and if that fits the constraints configured as part of the image description. If the constraints are not met a warning message is displayed and the boot continuous without any resize action happening. This warning message however, always appears after the first boot when the resize had happened and no rest space on disk is present unless the disk geometry would have changed. The situation of the reboot of the system without any disk geometry change is the standard case and happens way more often than the reboot with a disk geometry change. Therefore the warning message displayed is not actually a real warning and most often considered as an issue when there is none. To relax this situation, this commit only shows the warning message if the detected free space on disk is greater than 2M, which is the condition under which we assume an intentional (user made) disk geometry change. This Fixes #1958 - Bump version: 9.24.10 ? 9.24.11 - Fix Source Install Disk Detection in get_disk_list (#1982) Fix Source Install Disk Detection in get_disk_list The original check doesn't always work because PARTITIONS get labels, NOT disks. If you install with a Flash Drive and deploy to a machine with an NVMe drive, the Flash Drive is listed first because SCSIs are shown first by lsblk (At least they were in our scenario). When we run blkid "[Install Flash Drive Disk]" -s LABEL -o value in this scenario, we get nothing returned so this conditional evaluates incorrectly. We should get the ${kiwi_install_volid} Partition Block Name, and search for whether ${disk_device} is contained within it as the Disk Device that corresponds to the Install Partition. ==== python-tornado5 ==== - Skip python310 build: Not supported. Use tornado >= 6! ==== python-trio ==== Version update (0.17.0 -> 0.19.0) - Update to version 0.19.0 * Trio now supports Python 3.10. (#1921) * Use slots for `~.lowlevel.Task` which should make them slightly smaller and faster. (#1927) * Make `~.Event` more lightweight by using less objects (about 2 rather than 5, including a nested ParkingLot and attribute dicts) and simpler structures (set rather than OrderedDict). This may benefit applications that create a large number of event instances, such as with the "replace event object on every set()" idiom. (#1948) * The event loop now holds on to references of coroutine frames for only the minimum necessary period of time. (#1864) * The `~.lowlevel.TrioToken` class can now be used as a target of a weak reference. (#1924) - Release 0.18.0 * Add synchronous .close() methods and context manager (with x) support for .MemorySendChannel and .MemoryReceiveChannel. (#1797) * Previously, on Windows, Trio programs using thousands of sockets at the same time could trigger extreme slowdowns in the Windows kernel. Now, Trio works around this issue, so you should be able to use as many sockets as you want. (#1280) * `trio.from_thread.run` no longer crashes the Trio run if it is executed after the system nursery has been closed but before the run has finished. Calls made at this time will now raise trio.RunFinishedError. This fixes a regression introduced in Trio 0.17.0. The window in question is only one scheduler tick long in most cases, but may be longer if async generators need to be cleaned up. (#1738) * Fix a crash in pypy-3.7 (#1765) * Trio now avoids creating cyclic garbage as often. This should have a minimal impact on most programs, but can slightly reduce how often the cycle collector GC runs on CPython, which can reduce latency spikes. (#1770) * Remove deprecated max_refill_bytes from `SSLStream`. (#959) * Remove the deprecated tiebreaker argument to trio.testing.wait_all_tasks_blocked. (#1558) * Remove the deprecated trio.hazmat module. (#1722) * Stop allowing subclassing public classes. This behavior was deprecated in 0.15.0. (#1726) - Add trio-pr2043-py310ssl-deprecationwarnings.patch ==== python-xarray ==== Version update (0.20.1 -> 0.20.2) - update to version 0.20.2: - This is a bugfix release to resolve (:issue:`3391`, :issue:`5715`). It also: - includes performance improvements in unstacking to a ``sparse`` array and a: - number of documentation improvements.: - Many thanks to the 20 contributors: - Aaron Spring, Alexandre Poux, Deepak Cherian, Enrico Minack, Fabien Maussion,: - Giacomo Caria, Gijom, Guillaume Maze, Illviljan, Joe Hamman, Joseph Hardin, Kai: - Mühlbauer, Matt Henderson, Maximilian Roos, Michael Delgado, Robert Gieseke,: - Sebastian Weigand and Stephan Hoyer.: - Breaking changes: - Use complex nan when interpolating complex values out of bounds by default (instead of real nan) (:pull:`6019`). By `Alexandre Poux <https://github.com/pums974>`_. - Performance: - Significantly faster unstacking to a ``sparse`` array. :pull:`5577` By `Deepak Cherian <https://github.com/dcherian>`_. - Bug fixes: - :py:func:`xr.map_blocks` and :py:func:`xr.corr` now work when dask is not installed (:issue:`3391`, :issue:`5715`, :pull:`5731`). By `Gijom <https://github.com/Gijom>`_. - Fix plot.line crash for data of shape ``(1, N)`` in _title_for_slice on format_item (:pull:`5948`). By `Sebastian Weigand <https://github.com/s-weigand>`_. - Fix a regression in the removal of duplicate backend entrypoints (:issue:`5944`, :pull:`5959`) By `Kai Mühlbauer <https://github.com/kmuehlbauer>`_. - Documentation: - Better examples in docstrings for groupby and resampling reductions (:pull:`5871`). By `Deepak Cherian <https://github.com/dcherian>`_, `Maximilian Roos <https://github.com/max-sixty>`_, `Jimmy Westling <https://github.com/illviljan>`_ . - Internal Changes: - Use ``importlib`` to replace functionality of ``pkg_resources`` in backend plugins tests. (:pull:`5959`). By `Kai Mühlbauer <https://github.com/kmuehlbauer>`_. ==== qemu ==== Subpackages: qemu-accel-qtest qemu-accel-tcg-x86 qemu-arm qemu-audio-spice qemu-block-curl qemu-block-dmg qemu-block-gluster qemu-block-iscsi qemu-block-nfs qemu-block-rbd qemu-block-ssh qemu-chardev-baum qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-ipxe qemu-ksm qemu-kvm qemu-lang qemu-microvm qemu-ppc qemu-s390x qemu-seabios qemu-sgabios qemu-skiboot qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-vhost-user-gpu qemu-x86 - Reinstate Lin Ma's fixes for bsc#1192147 as they were submitted only to IBS. * Patches added: hw-acpi-ich9-Add-compat-prop-to-keep-HPC.patch hw-i386-acpi-build-Deny-control-on-PCIe-.patch pcie-rename-native-hotplug-to-x-native-h.patch - Rename the Guest Agent service qemu-guest-agent, like in other distros (and upstream). bsc#1185543 - disable QOM cast debug outside the testsuite as the corresponding asserts show up occassionally as top #1 in perf(1) traces under heavy virtio load - enable LTO when we'd like to use LTO ==== rav1e ==== Version update (0.5.0+0 -> 0.5.1+0) - Update to version 0.5.1+0: * Fix the dispatcher calling `avx2` code when the sub-architecture does not support it. ==== rtl_433 ==== Version update (21.05 -> 21.12) - Update to version 21.12 Highlights * Added noise stats, autolevel, and squelch * Added automatic file format detection from filename * Added support for SmartFire Proflame 2 remote control * Added support for Lacrosse TX34 rain gauge * Added support for Telldus-FT0385R * Added support for GE Choice Alert wireless alarm sensors * Added support for Porsche Boxter/Cayman TPMS * Added support for Funkbus/Instafunk * Added support for Truck TPMS * Added support for LaCrosse LTV-W1 wind sensor * Added support for Auriol 4-LD5661 temperature/rain sensor * Added support for Linear Megacode Remote * Added support for EnOcean ERP1 decoder * Added support for Acurite-01185M * Added support for ATech-WS308 temperature sensor * Added support for RainPoint sensor * Added support for Inkbird ITH-20R * Added support for Clipsal CMR112 cent-a-meter power meter * Added support for Govee Water Leak Detector H5054 and Govee Contact Sensor B5023 * Added support for Markisol curtain remote * Added support for Oregon Scientific BTHR918 * Added UV index add decimals to Bresser-7in1 * Changed InfluxDB output of 'mic' from field to tag * Added biastee, digital_agc, direct_samp, offset_tune option for rtlsdr and rtl_tcp * Added QoS to MQTT options Changed * Changed PCM slicer to measure bit length in more cases * Added CS8 as file input format * Added decoder priority stages * Fixed fprintf to use an unsigned marker when an unsigned value is given * Added RTL_433_REDUCE_STACK_USE to reduce size of bitbuffers * Fixed rainpoint msg buffer must be initialized * Fixed Reduce stack use in slicers * Changed HASS script to logging * Added SwitchDocLabs SM23 note * Added SwitchDocLabs F016TH note * Added SwitchDocLabs FT020T note * Fixed Inovalley-kw9015b rain bits * Added battery_ok to Bresser-7in1 * Added HASS long term statistics * Added bitbuffer row spill * Updated Govee Leak Sensor with new parity check * Fixed Springfield-Soil/AlectoV1 false positives * Fixed LaCrosse-TH3 checksum * Added cmake found lib versions output ==== ruby2.7 ==== Subpackages: libruby2_7-2_7 - explicitly build against openssl 1.x (not compatible with 3.x) ==== sensors ==== Subpackages: libsensors4 - Also remove ProtectKernelTunables from harden_fancontrol.service.patch, breaks service (boo#1193149) ==== shadow ==== Subpackages: login_defs - Really enable USERGROUPS_ENAB [bsc#1189139]. Did go lost during merges. ==== source-highlight ==== - Replace ctags hard requirement with a recommendation for libsource-highlight, fixes bsc#1193401 - Run spec-cleaner ==== upower ==== Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang - Use libplist 2 starting from SLE15SP4 on. ==== util-linux ==== Subpackages: libblkid1 libblkid1-32bit libfdisk1 libmount1 libmount1-32bit libsmartcols1 libuuid-devel libuuid1 libuuid1-32bit util-linux-lang - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954) on released products. ==== util-linux-systemd ==== - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954) on released products. ==== virtualbox ==== Subpackages: virtualbox-guest-tools virtualbox-guest-x11 - Added BuildRequires python-rpm-macros to fix build errors with SLE_15_SP2 (Thanks Ben Greiner) ran spec-cleaner on the spec file. ==== virtualbox-kmp ==== Version update (6.1.30_k5.15.7_1 -> 6.1.30_k5.15.8_1) - Added BuildRequires python-rpm-macros to fix build errors with SLE_15_SP2 (Thanks Ben Greiner) ran spec-cleaner on the spec file. ==== webkit2gtk3 ==== Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Typo fix for %define usegcc10. - Introduce usegcc10 %define in order to have the condition (0%{?sle_version} && 0%{?sle_version} <= 150400) only at one point. - Correct a very old "Obsoletes: webkit2gtk3-plugin-process-gtk2" to be a versioned obsoletes. - Make the earlier Obsoletes: libwebkit2gtk3-lang compliant with: https://en.opensuse.org/openSUSE:Upgrade_dependencies_explanation#Renaming_a... ==== webkit2gtk3-soup2 ==== Subpackages: WebKit2GTK-4.0-lang libjavascriptcoregtk-4_0-18 libwebkit2gtk-4_0-37 typelib-1_0-JavaScriptCore-4_0 typelib-1_0-WebKit2-4_0 webkit2gtk-4_0-injected-bundles - Typo fix for %define usegcc10. - Introduce usegcc10 %define in order to have the condition (0%{?sle_version} && 0%{?sle_version} <= 150400) only at one point. - Correct a very old "Obsoletes: webkit2gtk3-plugin-process-gtk2" to be a versioned obsoletes. - Make the earlier Obsoletes: libwebkit2gtk3-lang compliant with: https://en.opensuse.org/openSUSE:Upgrade_dependencies_explanation#Renaming_a... ==== wireless-regdb ==== Version update (20210828 -> 20211209) - Update to version 20211209: * wireless-regdb: Raise DFS TX power limit to 250 mW (24 dBm) for the US ==== wireplumber ==== Subpackages: libwireplumber-0_4-0 wireplumber-audio - Remove many build dependencies which aren't really needed - Use %autosetup, apply patches unconditionally - Hard depend on wireplumber-audio if pipewire-pulseaudio is installed ==== xen ==== Subpackages: xen-libs xen-tools xen-tools-domU - bsc#1193307 - pci backend does not exist when attach a vf to a pv guest libxl-PCI-defer-backend-wait.patch ==== xfsprogs ==== Version update (5.14.0 -> 5.14.2) Subpackages: libhandle1 xfsprogs-scrub - update to 5.14.2: - libxfs: move rogue fallthrough macro out of linux.h - libxfs: fix atomic64_t for 32-bit architectures - libfrog: fix crc32c self test code on cross builds ==== xorg-x11-server ==== Version update (21.1.1 -> 21.1.2) Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra xorg-x11-server-sdk - Update to version 21.1.1 * This release fixes 4 recently reported security vulnerabilities and several regressions. * In particular, the real physical dimensions are no longer reported by the X server anymore as it was deemed to be a too disruptive change. X server will continue to report DPI as 96. - supersedes U_hw-xfree86-Propagate-physical-dimensions-from-DRM-co.patch - supersedes U_rendercompositeglyphs.patch - supersedes U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch - supersedes U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch - supersedes U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch - U_xfixes-Fix-out-of-bounds-access-in-ProcXFixesCreateP.patch * CVE-2021-4009/ZDI-CAN-14950 (bsc#1190487) The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. - U_Xext-Fix-out-of-bounds-access-in-SProcScreenSaverSus.patch * CVE-2021-4010/ZDI-CAN-14951 (bsc#1190488) The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. - U_record-Fix-out-of-bounds-access-in-SwapCreateRegiste.patch * CVE-2021-4011/ZDI-CAN-14952 (bsc#1190489) The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write. - U_rendercompositeglyphs.patch * X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability [CVE-2021-4008, ZDI-CAN-14192] (boo#1193030) - u_Support-configuration-files-under-run-X11-xorg.conf..patch - u_Add-udev-scripts-for-configuration-of-platform-devic.patch - u_Add-udev-rule-for-HyperV-devices.patch * Remove udev-based configuration - u_Revert-xf86-Accept-devices-with-the-simpledrm-driver.patch * Restore simpledrm workaround - u_xf86-Accept-devices-with-the-hyperv_drm-driver.patch * Add workaround to support hyperv_drm ==== xxhash ==== Version update (0.8.0 -> 0.8.1) - update to 0.8.1: * perf : much improved performance for XXH3 streaming variants, notably on gcc and msvc * perf : improved XXH64 speed and latency on small inputs * perf : small XXH32 speed and latency improvement on small inputs of random size * perf : minor stack usage improvement for XXH32 and XXH64 * api : new experimental variants XXH3_*_withSecretandSeed() * api : update XXH3_generateSecret(), can no generate secret of any size (>= XXH3_SECRET_SIZE_MIN) * cli : xxhsum can now generate and check XXH3 checksums, using command `-H3` * build: can build xxhash without XXH3, with new build macro XXH_NO_XXH3 * build: fix xxh_x86dispatch build with MSVC, by @apankrat * build: XXH_INLINE_ALL can always be used safely, even after XXH_NAMESPACE or a previous XXH_INLINE_ALL * build: improved PPC64LE vector support * install: fix pkgconfig * install: compatibility with Haiku * doc : code comments made compatible with doxygen * misc : XXH_ACCEPT_NULL_INPUT_POINTER is no longer necessary, all functions can accept NULL input pointers, as long as size == 0 * misc : complete refactor of CI tests on Github Actions, offering much larger coverage * misc : xxhsum code base split into multiple specialized units, within directory cli/ - add 836f4e735cf368542f14005e41d2f84ec29dfd60.patch (fix manpage installation) ==== yast2 ==== Version update (4.4.27 -> 4.4.30) Subpackages: yast2-logs - Fixed RelURL to work properly with the FTP URLs (related to jsc#SLE-22669) - 4.4.30 - Fixed RelURL unit test randomly crashing (related to jsc#SLE-22669) - 4.4.29 - Added RelURL class for working with relative URLs ("relurl://") (jsc#SLE-22669) - 4.4.28 ==== yast2-installation ==== Version update (4.4.28 -> 4.4.30) - Self-update now supports relative URLs (relurl://), it defines the self-update repository relatively to the main installation repository (jsc#SLE-22669) - 4.4.30 - Do not preselect any product during upgrade (related to bsc#1192230). - 4.4.29 ==== yast2-network ==== Version update (4.4.31 -> 4.4.32) - Prepare code for ruby3 (bsc#1193192) - 4.4.32 ==== yast2-nfs-client ==== Version update (4.4.1 -> 4.4.2) - Adding /usr/bin/killall as a requirement (bsc#1161687) - 4.4.2 ==== yast2-packager ==== Version update (4.4.17 -> 4.4.18) - Adapt iso handling to do properly double escaping ( fix for wrong fix for bsc#954813) - Prepare code for ruby3 (bsc#1193192) - 4.4.18 ==== yast2-storage-ng ==== Version update (4.4.23 -> 4.4.27) - Improve probing issues handling by raising exceptions. - Fix aborting from standalone modules when the user decides to not continue (bsc#1193749). - 4.4.27 - Partitioner: nest thin logical volumes below their thin pools (related to jsc#SLE-15283) - 4.4.26 - AutoYaST: fixes for reusing encrypted devices, RAIDs and bcache devices (bsc#1193450). - 4.4.25 ==== yast2-tune ==== Version update (4.4.1 -> 4.4.2) - Fixed heading if component is empty or nil (bsc#1193809) - Fixed typo in common wizard button ID (:abort, not :bort) - 4.4.2 ==== zxing-cpp ==== - Update stb_image/stb_image_write to include the fixes for the following CVEs: CVE-2021-28021, bsc#1191743 CVE-2021-42715, bsc#1191942 CVE-2021-42716, bsc#1191944 * 269.patch