Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=kubic&groupid=1&version=Tu... https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&comp... Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: aaa_base (84.87+git20220411.adfb912 -> 84.87+git20220419.bf51b75) at-spi2-core (2.44.0 -> 2.44.1) dracut (056+suse.268.g0b2bd662 -> 056+suse.275.g4ce7a6a7) e2fsprogs gettext-runtime krb5 (1.19.2 -> 1.19.3) libgpg-error (1.44 -> 1.45) ncurses (6.3.20220402 -> 6.3.20220416) pcre2 (10.39 -> 10.40) python-urllib3 (1.26.7 -> 1.26.9) rpm tar zchunk (1.2.1 -> 1.2.2) === Details === ==== aaa_base ==== Version update (84.87+git20220411.adfb912 -> 84.87+git20220419.bf51b75) - Update to version 84.87+git20220419.bf51b75: * add Yama LSM sysctl setting and description * Stop lowering the inotify limit * move DIR_COLORS to where ls.bash is ==== at-spi2-core ==== Version update (2.44.0 -> 2.44.1) Subpackages: libatspi0 - Update to version 2.4.41: + Fix use after free when removing a hung process. + Fix the build with X11 disabled. + Fix crash when NULL is passed to some listener-related functions. + impl_deregister_keystroke_listener: fix memory leak on iteration error. ==== dracut ==== Version update (056+suse.268.g0b2bd662 -> 056+suse.275.g4ce7a6a7) Subpackages: dracut-ima dracut-mkinitrd-deprecated - Update to version 056+suse.275.g4ce7a6a7: * fix(resume): relax exclusion check (bsc#1198554) * fix(nfs): /var is not mounted during the transactional-update run (bsc#1184970) * fix(nfs): give /run/rpcbind ownership to rpc user (bsc#1177461) * fix(nfs): require and install needed binaries ==== e2fsprogs ==== Subpackages: libcom_err2 libext2fs2 - avoid empty preuninstall script ==== gettext-runtime ==== Subpackages: libtextstyle0 - Added patch: * gettext-0.21-jdk17.patch + Build with java source and target levels 1.8 + Allows building with JDK17 + Fixes build in Factory ==== krb5 ==== Version update (1.19.2 -> 1.19.3) - update to 1.19.3 (bsc#1189929, CVE-2021-37750): * Fix a denial of service attack against the KDC [CVE-2021-37750]. * Fix KDC null deref on TGS inner body null server * Fix conformance issue in GSSAPI tests ==== libgpg-error ==== Version update (1.44 -> 1.45) - update to 1.45: * gpgrt_access and gpgrt_mkdir now support file names longer than MAX_PATH ==== ncurses ==== Version update (6.3.20220402 -> 6.3.20220416) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20220416 (boo#1198627 for CVE-2022-29458) + add a limit-check to guard against corrupt terminfo data (report/testcase by NCNIPC of China). + add check/warning in configure script if option --with-xterm-kbs is missing or inconsistent (Arch #74379). + add setlocale call to several test-programs. + allow extended-color number in opts parameter of wattr_on. - Add ncurses patch 20220409 + add test/test_unget_wch.c ==== pcre2 ==== Version update (10.39 -> 10.40) - pcre2 10.40: * Added support for Bidi_Class and a number of binary Unicode properties, including Bidi_Control. * A number of changes to script matching for \p and \P: speed improvements, add the syntax \p{script:xxx} and \p{script_extensions:xxx} (synonyms sc and scx), Changed \p{scriptname} from being the same as \p{sc:scriptname} to being the same as \p{scx:scriptname}, recognize the standard Unicode 4-letter abbreviations for script names, implement Unicode and Perl's "loose matching" rules on property names ==== python-urllib3 ==== Version update (1.26.7 -> 1.26.9) - Remove unneeded BuildRequires of mock. - Remove unbundling off ssl.match_hostname. * It was only done for the primary python3 flavor * It is bundled for a reason gh#urllib3/urllib3#2439, gh#urllib3/urllib3#2448 * The tests (and probably urllib3 users) use wildcard patterns not supported by the stdlib - Fix undbundling of six for all flavors - Replace brotlipy recommendation and test with python-Brotli (see release notes below) - update to 1.26.9: * Changed ``urllib3[brotli]`` extra to favor installing Brotli libraries that are still receiving updates like ``brotli`` and ``brotlicffi`` instead of ``brotlipy``. This change does not impact behavior of urllib3, only which dependencies are installed. * Fixed a socket leaking when ``HTTPSConnection.connect()`` raises an exception. * Fixed ``server_hostname`` being forwarded from ``PoolManager`` to ``HTTPConnectionPool`` when requesting an HTTP URL. Should only be forwarded when requesting an HTTPS URL. - update to 1.26.8: * Added extra message to``urllib3.exceptions.ProxyError`` when urllib3 detects that a proxy is configured to use HTTPS but the proxy itself appears to only use HTTP. * Added a mention of the size of the connection pool when discarding a connection due to the pool being full. * Added explicit support for Python 3.11. * Deprecated the ``Retry.MAX_BACKOFF`` class property in favor of ``Retry.DEFAULT_MAX_BACKOFF`` to better match the rest of the default parameter names. ``Retry.MAX_BACKOFF`` is removed in v2.0. * Changed location of the vendored ``ssl.match_hostname`` function from ``urllib3.packages.ssl_match_hostname`` to ``urllib3.util.ssl_match_hostname`` to ensure Python 3.10+ compatibility after being repackaged by downstream distributors. * Fixed absolute imports, all imports are now relative. ==== rpm ==== Subpackages: librpmbuild9 - Update zstdpool.diff in order to fix boo#1197643. ==== tar ==== - Add recommends to zstd, a modern fast compression type. ==== zchunk ==== Version update (1.2.1 -> 1.2.2) - Update to version 1.2.2 * Turn off EOL handling for the *.zck test files. * Let the tests also pass with libzstd-1.4.10.