Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20240830 Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: SDL2 apache2-mod_php8 (8.3.10 -> 8.3.11) appstream-glib (0.8.2 -> 0.8.3) binutils gdb git glib2 glibmm2 (2.80.0 -> 2.80.1) kernel-firmware (20240809 -> 20240826) kernel-firmware-nvidia-gspx-G06 libqt5-qtwebengine multipath-tools (0.9.9+161+suse.0c835ef -> 0.10.0+103+suse.0fc97cd) openSUSE-release (20240829 -> 20240830) perl-Clone (0.46 -> 0.470.0) perl-Try-Tiny (0.31 -> 0.320.0) php8 (8.3.10 -> 8.3.11) python-numpy (1.26.4 -> 2.0.0) python-requests python311 python311-core qemu qt6-wayland salt snapper (0.11.1 -> 0.11.2) taglib (2.0.1 -> 2.0.2) xf86-video-sis xf86-video-vesa === Details === ==== SDL2 ==== - Don't build with fcitx support. fcitx support was just added because of a bug (boo#1025413) that could be fixed by building with fcitx support but upstream SDL2 developers fixed it in 2.0.5 when building without fcitx support too. Also fcitx support has always been disabled in SLE/Leap and in Factory it's built against fcitx 4.2.9.9, not the newer fcitx5 so let's disable it in order to reduce dependencies. ==== apache2-mod_php8 ==== Version update (8.3.10 -> 8.3.11) - version update to 8.3.11 Core: Fixed bug GH-15020 (Memory leak in Zend/Optimizer/escape_analysis.c). Fixed bug GH-15023 (Memory leak in Zend/zend_ini.c). Fixed bug GH-13330 (Append -Wno-implicit-fallthrough flag conditionally). Fix uninitialized memory in network.c. Fixed bug GH-15108 (Segfault when destroying generator during shutdown). Fixed bug GH-15275 (Crash during GC of suspended generator delegate). Curl: Fixed case when curl_error returns an empty string. DOM: Fix UAF when removing doctype and using foreach iteration. FFI: Fixed bug GH-14286 (ffi enum type (when enum has no name) make memory leak). Hash: Fix crash when converting array data for array in shm in xxh3. Intl: Fixed bug GH-15087 (IntlChar::foldCase()'s $option is not optional). Opcache: Fixed bug GH-13817 (Segmentation fault for enabled observers after pass 4). Fixed bug GH-13775 (Memory leak possibly related to opcache SHM placement). Output: Fixed bug GH-15179 (Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re). PDO_Firebird: Fix bogus fallthrough path in firebird_handle_get_attribute(). PHPDBG: Fixed bug GH-13199 (EOF emits redundant prompt in phpdbg local console mode with libedit/readline). Fixed bug GH-15268 (heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h)). Fixed bug GH-15210 use-after-free on watchpoint allocations. Soap: Fixed bug #55639 (Digest autentication dont work). Fix SoapFault property destruction. Fixed bug GH-15252 (SOAP XML broken since PHP 8.3.9 when using classmap constructor option). Standard: Fix passing non-finite timeout values in stream functions. Fixed GH-14780 p(f)sockopen timeout overflow. Streams: Fixed bug GH-15028 (Memory leak in ext/phar/stream.c). Fixed bug GH-15034 (Integer overflow on stream_notification_callback byte_max parameter with files bigger than 2GB). Reverted fix for GH-14930 (Custom stream wrapper dir_readdir output truncated to 255 characters). Tidy: Fix memory leaks in ext/tidy basedir restriction code. ==== appstream-glib ==== Version update (0.8.2 -> 0.8.3) Subpackages: appstream-glib-lang libappstream-glib8 - Update to version 0.8.3: * Drop support for libstemmer * Do not veto the extension if the parent cannot be found * Support RFC9512 registration for application/yaml * Stop trying to convert Fedora licenses into SPDX * asb-plugin-font: Add glob match for .ttc files * Update gl.po * Update Simplified Chinese translation * Make the appdata filename check match the plugin globs * Remove Check for X-KDE-StartupNotify * Update Russian translation * Include screenshot size in "too large" errors * Include screenshot height in "too small" error ==== binutils ==== Subpackages: libctf-nobfd0 libctf0 - Update to current 2.43.1 branch [PED-10474]: * PR32109 - fuzzing problem * PR32083 - LTO vs overridden common symbols * PR32067 - crash with LTO-plugin and --oformat=binary * PR31956 - LTO vs wrapper symbols * riscv - add Zimop and Zcmop extensions - Adjusted binutils-2.43-branch.diff.gz. ==== gdb ==== - Maintenance script qa.sh: * Move PR26867 kfail from kfail_factory to kfail. * Merge PR28468 kfail with PR26867 kfail. - Maintenance script qa.sh: * Restore yama ptrace_scope == 1 kfails, aaa_base-yama-enable-ptrace doesn't work. * Enable yama ptrace_scope == 1 kfails for SLFO. * Add PR32121 kfail. * Drop Leap 15.3 and 15.4, add Leap 15.6. * Replace ALP with SLFO. * Move PR28468 kfail from kfail_factory to kfail. ==== git ==== Subpackages: git-core git-email git-svn git-web perl-Git - Change less requirement to path to allow for use with BusyBox ==== glib2 ==== Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libglib-2_0-0-32bit libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - remove dependency on /usr/bin/python3 using %python3_fix_shebang{,_path} macros, [bsc#1212476] ==== glibmm2 ==== Version update (2.80.0 -> 2.80.1) Subpackages: libgiomm-2_68-1 libglibmm-2_68-1 - Update to version 2.80.1: + Gio: Fix memory leak in DBus::generate_guid() + gmmproc: - generate_wrap_in.pl.in: Ignore -Winconsistent-dllimport from clang - Convert [enum@Module.Type.ENUMERATOR] in documentation - h2def.py: Avoid syntax warnings from Python 3.12 - DocsParser.pm: Don't link to developer-old.gnome.org - Improve documentation of enum and enum class + Build: Some fixes to avoid warnings from the clang compiler ==== kernel-firmware ==== Version update (20240809 -> 20240826) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240826 (git commit bec4fd18cc57): * amdgpu: DMCUB updates forvarious AMDGPU ASICs * rtw89: 8922a: add fw format-1 v0.35.41.0 * linux-firmware: update firmware for MT7925 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7925) * rtl_bt: Add firmware and config files for RTL8922A * rtl_bt: Add firmware file for the the RTL8723CS Bluetooth part * rtl_bt: de-dupe identical config.bin files * rename rtl8723bs_config-OBDA8723.bin -> rtl_bt/rtl8723bs_config.bin * linux-firmware: Update AMD SEV firmware * linux-firmware: update firmware for MT7996 * Revert "i915: Update MTL DMC v2.22" * ath12k: WCN7850 hw2.0: update board-2.bin * ath11k: WCN6855 hw2.0: update to WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41 * ath11k: WCN6855 hw2.0: update board-2.bin * ath11k: QCA2066 hw2.1: add to WLAN.HSP.1.1-03926.13-QCAHSPSWPL_V2_SILICONZ_CE-2.52297.3 * ath11k: QCA2066 hw2.1: add board-2.bin * ath11k: IPQ5018 hw1.0: update to WLAN.HK.2.6.0.1-01291-QCAHKSWPL_SILICONZ-1 * qcom: vpu: add video firmware for sa8775p * amdgpu: DMCUB updates for various AMDGPU ASICs ==== kernel-firmware-nvidia-gspx-G06 ==== - added missing LICENSE file ==== libqt5-qtwebengine ==== - Remove the unrar sources from the third_party directory in %prep so we're sure not to use any code with a non-free license. ==== multipath-tools ==== Version update (0.9.9+161+suse.0c835ef -> 0.10.0+103+suse.0fc97cd) Subpackages: kpartx libmpath0 - Update to 0.10.0+103+suse.0fc97cd - Update to upstream 0.10.0 (see also NEWS.md) * The `multipathd show daemon` command now shows `(reconfigure pending)` if a reconfiguration has been triggered but not finished yet. * Refactored the path checker loop. Paths are now checked for each multipath map in turn * Renamed public functions, variables, and macros to comply with the glibc policy for reserved names (gh#opensvc/multipath-tools#91) * Fixed bug that caused queueing to be always disabled if flushing a map failed (bug introduced in 0.9.8). (bsc#1229898) * Fixed failure to remove maps even with `deferred_remove` (bug introduced in 0.9.9). (bsc#1229898) * Fixed old mpathpersist bug leading to the error message "configured reservation key doesn't match: 0x0" when `reservation_key` was configured in the multipaths section of `multipath.conf`. (bsc#1228926, gh#opensvc/multipath-tools#92) * Fixed output of `multipath -t` and `multipath -T` for the options `force_sync` and `retrigger_tries`. (bsc#1229898, gh#opensvc/multipath-tools#88) * Fixed adding maps by WWID in CLI (command `add map $WWID`). (bsc#1229898) ==== openSUSE-release ==== Version update (20240829 -> 20240830) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== perl-Clone ==== Version update (0.46 -> 0.470.0) - updated to 0.470.0 (0.47) see /usr/share/doc/packages/perl-Clone/Changes 0.47 2024-08-17 12:30:00 atoomic - Stop using quote as package separator ==== perl-Try-Tiny ==== Version update (0.31 -> 0.320.0) - updated to 0.320.0 (0.32) see /usr/share/doc/packages/perl-Try-Tiny/Changes 0.32 2024-08-16 22:23:44Z - skip given, when tests on perls >= 5.41.3 which removed these constructs ==== php8 ==== Version update (8.3.10 -> 8.3.11) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.3.11 Core: Fixed bug GH-15020 (Memory leak in Zend/Optimizer/escape_analysis.c). Fixed bug GH-15023 (Memory leak in Zend/zend_ini.c). Fixed bug GH-13330 (Append -Wno-implicit-fallthrough flag conditionally). Fix uninitialized memory in network.c. Fixed bug GH-15108 (Segfault when destroying generator during shutdown). Fixed bug GH-15275 (Crash during GC of suspended generator delegate). Curl: Fixed case when curl_error returns an empty string. DOM: Fix UAF when removing doctype and using foreach iteration. FFI: Fixed bug GH-14286 (ffi enum type (when enum has no name) make memory leak). Hash: Fix crash when converting array data for array in shm in xxh3. Intl: Fixed bug GH-15087 (IntlChar::foldCase()'s $option is not optional). Opcache: Fixed bug GH-13817 (Segmentation fault for enabled observers after pass 4). Fixed bug GH-13775 (Memory leak possibly related to opcache SHM placement). Output: Fixed bug GH-15179 (Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re). PDO_Firebird: Fix bogus fallthrough path in firebird_handle_get_attribute(). PHPDBG: Fixed bug GH-13199 (EOF emits redundant prompt in phpdbg local console mode with libedit/readline). Fixed bug GH-15268 (heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h)). Fixed bug GH-15210 use-after-free on watchpoint allocations. Soap: Fixed bug #55639 (Digest autentication dont work). Fix SoapFault property destruction. Fixed bug GH-15252 (SOAP XML broken since PHP 8.3.9 when using classmap constructor option). Standard: Fix passing non-finite timeout values in stream functions. Fixed GH-14780 p(f)sockopen timeout overflow. Streams: Fixed bug GH-15028 (Memory leak in ext/phar/stream.c). Fixed bug GH-15034 (Integer overflow on stream_notification_callback byte_max parameter with files bigger than 2GB). Reverted fix for GH-14930 (Custom stream wrapper dir_readdir output truncated to 255 characters). Tidy: Fix memory leaks in ext/tidy basedir restriction code. ==== python-numpy ==== Version update (1.26.4 -> 2.0.0) - remove meson-python upper limit (per upstream) - Fix numpy-config path tests, provide reason for failing meson test - Remove mistaken pycache rpmlint filter - Update to 2.0.0, changes include: * Adds support for array parameter declaration in fortran... * Added ``bitwise_count`` UFuncs * Add binding for random pyx files * Use AVX512-FP16 SVML content for float16 umath functions * allow int sequences as shape arguments in numpy.memmap * Add .mT attribute for arrays * Create complex scalars from real and imaginary parts * add copy parameter for api.reshape function * make use of locals() in a comprehension fully compatible... * Add array API standard v2022.12 support to numpy.array_api * Change string to bool conversions to be consistent with... * Allow np.info on non-hashable objects with a dtype * let zeros, empty, and empty_like accept dtype classes * Bump C-ABI to 2 but accept older NumPy if compiled against... * Use high accuracy SVML for double precision umath functions * expose PyUFunc_GiveFloatingpointErrors in the dtype API * PyObject_IsTrue and PyObject_Not error handling in setflags * array2string does not add signs for positive integers. * Vectorize np.partition and np.argpartition using AVX-512 * Create helper for conversion to arrays * Add size check for threaded array assignment * Finalize ``fastCopyAndTranpose`` and other old C-funcs/members... * assert_array_less should report max violations instead of... * Introduce tracer for enabled CPU targets on each optimized... * Extend np.add ufunc to work with unicode and byte dtypes * Add find/rfind ufuncs for unicode and byte dtypes * Make ``intp`` ``ssize_t`` and introduce characters nN * Add isdigit/isspace/isdecimal/isnumeric ufuncs for string... * DType API slot for descriptor finalization before array... * ensure passing ``np.dtype`` to itself doesn't crash * Vectorize np.sort and np.partition with AVX2 * Change add/isalpha ufuncs to use buffer class & general... * Add strip/lstrip/rstrip ufuncs for unicode and bytes * Add ``matrix_norm``, ``vector_norm``, ``vecdot`` and ``matrix_transpose`` * Make ``encoding=None`` the default in loadtxt * Introduce ``copy`` argument for ``np.asarray`` * Introduce ``correction`` argument for ``np.var`` and ``np.std``... * Handle ``common`` blocks with ``kind`` specifications from modules * Handle ``iso_c_type`` mappings more consistently * Add ``device`` and ``to_device`` to ``numpy.ndarray`` * Shrink MultiIterObject and make ``NPY_MAXARGS`` a runtime... * enable linking of external libraries in the f2py Meson backend * Don't use the _Complex extension in C++ mode * Add fft optional extension submodule to numpy.array_api * make arange ``start`` argument positional-only * Make numpy.array_api more portable * Adjust ``linalg.pinv`` and ``linalg.cholesky`` to Array... * define a gufunc for vecdot (with BLAS support) * Add ``rtol`` to ``matrix_rank`` and ``stable`` * adjust nD fft ``s`` param to array API * three string ufunc bugs, one leading to segfault * allow building in cython with Py_LIMITED_API * support axes argument in np.linalg.tensordot * Add replace ufunc to np.strings * change list-of-array to tuple-of-array returns (Numba compat) * Wrap string ufuncs in np.strings to allow default arguments * Allow ``None`` as ``api_version`` in ``__array_namespace__``... * Vectorize argsort and argselect with AVX2 * Use large file fallocate on 32 bit linux platforms * Allow strings in logical ufuncs * Allow NumPy int scalars to be divided by out-of-bound Python... * correct irfft with n=1 on larger input * check for overflow when converting a string to an int scalar * Ensure meson updates generated umath doc correctly. * support float and longdouble in FFT using C++ pocketfft... * Make any and all return booleans by default * Finalize future warning move in lstsq default * add a pkg-config file and a ``numpy-config`` script * Finalize future warning for shape=1 descriptor dropping... * Add index/rindex ufuncs for unicode and bytes dtypes * Add rest of unary ufuncs for unicode/bytes dtypes * Create ``PyArray_DescrProto`` for legacy descriptor registration * Make ``descr->f`` only accessible through ``PyDataType_GetArrFuncs`` * ensure that FFT routines can deal with integer and bool... * ensure static_string.buf is never NULL for a non-null string * Include broadcasting for ``rtol`` argument in ``matrix_rank`` * Add expandtabs ufunc for string & unicode dtypes * implement stringdtype <-> timedelta roundtrip casts * Make descr->f only accessible through ``PyDataType_GetArrFuncs`` * Ensure non-array logspace base does not influence dtype... * Require reduce promoters to start with None to match * inherit numerical dtypes from abstract ones. * Infinite Loop in numpy.base_repr * Ensure seed sequences are restored through pickling * use PyArray_SafeCast in array_astype * introduce a notion of "compatible" stringdtype instances... * add support for nan-like null strings in string replace * Make sure that NumPy scalars are supported by can_cast * Disallow string inputs for copy keyword in np.array and... * Adds asanyarray to start of linalg.cross * weighted nanpercentile, nanquantile and multi-dim q - Remove patches, no longer required: * 0001-BUG-Fix-test_impossible_feature_enable-failing-witho.patch * 0001-feature-module-Fix-handling-of-multiple-conflicts-pe.patch * fix-meson-multiple-python-versions.patch * numpy-1.9.0-remove-__declspec.patch ==== python-requests ==== - Remove Requires on python-py, it should have been removed earlier. ==== python311 ==== Subpackages: python311-curses python311-dbm python311-x86-64-v3 - Add CVE-2024-8088-inf-loop-zipfile_Path.patch to prevent malformed payload to cause infinite loops in zipfile.Path (bsc#1229704, CVE-2024-8088). ==== python311-core ==== Subpackages: libpython3_11-1_0 libpython3_11-1_0-x86-64-v3 python311-base python311-base-x86-64-v3 - Add CVE-2024-8088-inf-loop-zipfile_Path.patch to prevent malformed payload to cause infinite loops in zipfile.Path (bsc#1229704, CVE-2024-8088). ==== qemu ==== Subpackages: qemu-accel-tcg-x86 qemu-audio-spice qemu-block-curl qemu-block-nfs qemu-block-rbd qemu-chardev-spice qemu-guest-agent qemu-hw-display-qxl qemu-hw-display-virtio-gpu qemu-hw-display-virtio-gpu-pci qemu-hw-display-virtio-vga qemu-hw-usb-host qemu-hw-usb-redirect qemu-hw-usb-smartcard qemu-img qemu-ipxe qemu-ksm qemu-lang qemu-microvm qemu-pr-helper qemu-seabios qemu-tools qemu-ui-curses qemu-ui-gtk qemu-ui-opengl qemu-ui-spice-app qemu-ui-spice-core qemu-vgabios qemu-x86 - Fix bsc#1221812: * [openSUSE] block: Reschedule query-block during qcow2 invalidation (bsc#1221812) - Fixup a previous patch (cure a build warning): * [openSUSE] fixup patch "pc: q35: Allow 1024 cpus for old machine types" - Infra improvement: * [openSUSE] Workflows for Virtualization:Staging:TDX ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patch to fix 'wl_shm' higher than interface version (2 > 1) (boo#1229893, QTBUG-126379): * 0001-update-wayland_xml-to-version-1_23_0.patch ==== salt ==== Subpackages: python3-salt salt-master salt-minion salt-transactional-update - Fix cloud minion configuration for multiple masters (bsc#1229109) - Added: * join-masters-if-it-is-a-list-671.patch - Use Pygit2 id instead of deprecated oid in gitfs - Added: * replace-use-of-pygit2-deprecated-and-removed-1.15.0-.patch ==== snapper ==== Version update (0.11.1 -> 0.11.2) Subpackages: libsnapper7 snapper-zypp-plugin - use .snapshots dir for 'btrfs qgroup clear-stale' (bsc#1229904) - version 0.11.2 ==== taglib ==== Version update (2.0.1 -> 2.0.2) Subpackages: libtag2 libtag_c2 - Update to 2.0.2: * Fix parsing of ID3v2.2 frames. * Tolerate MP4 files with unknown atom types as generated by Android tools. * Support setting properties with arbitrary names in MP4 tags. * Windows: Fix "-p" option in tagwriter example. * Support building with older utfcpp versions. ==== xf86-video-sis ==== - exclude aarch64 and %{arm} architectures (inb/outb needed for this driver) ==== xf86-video-vesa ==== - exclude aarch64 and %{arm} architectures (inb/outb needed for this driver)