Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
kdesu
libcontainers-common
libreoffice (7.4.2.3 -> 7.4.3.2)
libva
libva-gl
python-pycairo (1.21.0 -> 1.22.0)
systemd (252.1 -> 252.2)
=== Details ===
==== kdesu ====
Subpackages: libKF5Su5 libKF5Su5-lang
- Drop fpie.patch, works as expected without
- Drop setgid bit on kdesud, no longer needed since 5.99.0
==== libcontainers-common ====
- add requires on util-linux-systemd for findmnt in profile script
- only set storage_driver env when no libpod exists
- avoid quoting issue
==== libreoffice ====
Version update (7.4.2.3 -> 7.4.3.2)
Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 7.4.3.2:
https://wiki.documentfoundation.org/Releases/7.4.3/RC2
https://wiki.documentfoundation.org/Releases/7.4.3/RC1
- Updated bundled dependencies:
* curl-7.83.1.tar.xz -> curl-7.86.0.tar.xz
- Added patches:
* fix_harfbuzz_on_sle12_sp5.patch
* fix_webp_on_sle12_sp5.patch
- Refresh fix_gtk_popover_on_3.20.patch
- Removed upstreamed patches:
* bsc1202866.patch
* bsc1201095.patch
- Fix bsc#1202866 - LO-L3: PPTX: indentation of list items far too far to the left (overruns bullet items)
* bsc1202866.patch
==== libva ====
Subpackages: libva-drm2 libva-x11-2 libva2
- Make sure make runs with verbose builds so we see the gcc
cmdlines
- Added propagate-dpy.patch: (boo#1202828)
Patch taken from https://github.com/intel/libva/issues/479
==== libva-gl ====
- Make sure make runs with verbose builds so we see the gcc
cmdlines
- Added propagate-dpy.patch: (boo#1202828)
Patch taken from https://github.com/intel/libva/issues/479
==== python-pycairo ====
Version update (1.21.0 -> 1.22.0)
- Updtae to version 1.22.0:
* Officially support Python 3.11.
* PDFSurface.version_to_string(): Fix crash with negative
versions.
* typing: ImageSurface.get_stride() returns an int.
* typing: Fix incorrect interface for Matrix constructor.
* typing: Use Generic for Context.
* docs: some cairo.Context fixes.
* docs: try to make create_from_png/write_to_png more clear.
* docs: add an example for how to convert a surface to pillow.
* docs: cairo.Format.RGB24: document that unused bytes may be
overwritten.
* tests: donât depend on specific ref counts.
* tests: compatibility fixes for cairo 1.17.6.
- Drop f5a795ea.patch: fixed upstream.
==== systemd ====
Version update (252.1 -> 252.2)
Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev
- Import commit e7e931b07edd786dc6ca1dae6c23ff7b785f8efd (merge of v252.2)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/64dc546913525e33e734500055a62ed…
- Rebase 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
plymouth
snapper
=== Details ===
==== plymouth ====
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
==== snapper ====
Subpackages: libsnapper6 snapper-zypp-plugin
- fix build with boost 1.81
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
plymouth
snapper
=== Details ===
==== plymouth ====
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
==== snapper ====
Subpackages: libsnapper6 snapper-zypp-plugin
- fix build with boost 1.81
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apparmor (3.0.7 -> 3.1.2)
busybox
conmon (2.1.3 -> 2.1.5)
filesystem
gawk (5.2.0 -> 5.2.1)
grub2
hicolor-icon-theme
highway
icewm (3.2.0 -> 3.2.2)
inxi (3.3.21 -> 3.3.23)
iproute2
iputils (20211215 -> 20221126)
iso-codes (4.11.0 -> 4.12.0)
kdump (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38)
libX11
libapparmor (3.0.7 -> 3.1.2)
libcontainers-common (20210626 -> 20221122)
libdrm
libeconf (0.4.8+git20221114.7ff7704 -> 0.4.9)
libgcrypt (1.9.4 -> 1.10.1)
libpng16 (1.6.38 -> 1.6.39)
libstorage-ng (4.5.52 -> 4.5.53)
libzypp (17.31.5 -> 17.31.6)
memcached
mpfr
mutter
nano (6.4 -> 7.0)
nghttp2 (1.50.0 -> 1.51.0)
openvpn (2.5.7 -> 2.5.8)
patterns-microos
perl-IO-Socket-SSL (2.075 -> 2.077)
psmisc
python-httpcore
python-jsonschema (4.17.0 -> 4.17.1)
python-pylibmc (1.6.1 -> 1.6.3)
python-setuptools (65.5.1 -> 65.6.3)
ruby-common (2.6 -> 3.2)
rubygem-gem2rpm
schily
selinux-policy
shim
slirp4netns (1.1.11 -> 1.2.0)
sqlite3 (3.39.4 -> 3.40.0)
systemd
systemd-rpm-macros (17 -> 18)
vim (9.0.0814 -> 9.0.0924)
=== Details ===
==== apparmor ====
Version update (3.0.7 -> 3.1.2)
Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor
- update to AppArmor 3.1.2
- lots of cleanups, improvements and bugfixes in all areas
- rework internal profile storage and handling in the aa-* tools
- support boolean variable definitions in the aa-* tools
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1
and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2
for the detailed upstream changelog
- remove upstream(ed) patches:
- apparmor-3.0.7-egrep.patch
- dnsmasq.diff
- profiles-permit-php-fpm-pid-files-directly-under-run.patch
- zgrep-profile-mr870.diff
- no longer ship precompiled profile cache for Tumbleweed (boo#1205659)
- BuildRequire iproute2 (needed for aa-unconfined tests)
==== busybox ====
Subpackages: busybox-static
- Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065,
boo#1199744).
==== conmon ====
Version update (2.1.3 -> 2.1.5)
- New upstream release 2.1.5:
Bug Fixes
don't leak syslog_identifier
logging: do not read more that the buf size
logging: fix error handling
Misc
Makefile: Fix install for FreeBSD
signal: Track changes to get_signal_descriptor in the FreeBSD version
Packit: initial enablement
- New upstream release 2.1.4:
Bug fixes
Fix a bug where conmon crashed when it got a SIGCHLD
==== filesystem ====
- Add %_user_tmpfilesdir to the filesystem
- Added zh_Hans (simplified Chinese) and zh_Hant (traditional
chinese) locales
==== gawk ====
Version update (5.2.0 -> 5.2.1)
- Update to gawk 5.2.1
* Issues related to the sign of NaN and Inf values on RiscV have
been fixed
* A few issues with the debugger have been fixed.
* More subtle issues with untyped array elements being passed to
functions have been fixed.
* The rwarray extension's readall() function has had some bugs fixed.
* The PMA allocator is now supported on FreeBSD, OpenBSD and Linux on
S/390x.
- double-free.patch, pma.patch, nan-sign.patch: Removed
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Make full utilization of btrfs bootloader area (bsc#1161823)
* 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch
* 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch
- Patch removed
* 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch
==== hicolor-icon-theme ====
- Add 1024x1024 directory for package ownership
==== highway ====
- Fix the library being built for incorrect microarchitecture
on armv{6,7}hl.
* add arm-disable-runtime-dispatch.patch to fix compiler error
- Actually run the testsuite.
==== icewm ====
Version update (3.2.0 -> 3.2.2)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.2.2:
+ Freeze the task pane layout while Alt is pressed,
+ Only sort Alt+Tab on WM_CLASS when persistent,
+ Also sort Alt+Tab on the 'order' winoption when persistent,
+ Let the Escape key cancel a menu with all its submenu's,
+ Add a menu entry to rename the window title manually,
+ Adapt absolute paths in .desktop files to the installation
prefix,
+ The sorting of windows in the window list window was improved a
lot,
+ Restore the named frame tabs when recovering from a crash,
+ Preserve the non-fullscreen non-maximized window geometry
across restarts,
+ Try harder to avoid a situation where nothing is focused,
+ Update the window list when a tab is moved to its own frame,
+ Make the window list menu actions more tab-savvy.
+ Drop the obsolete LSM file altogether.
- Changes from version 3.2.1:
+ Add QuickSwitchPersistence=0 preference for stateful Alt+Tab.
+ Demarcate workspaces with a horizontal line in Alt+Tab.
+ Fixes for Alt+Tab size calculations.
+ Fix for changing workspace when Alt+Tab is open.
+ Fix for KeySysSwitchClass history.
+ Don't attempt to focus NoInput windows.
+ Ensure that active Alt+Tab item is visible.
+ Also sort Alt+Tab items on WM_CLASS.
+ Fix a compile error for GCC 4.8.5.
+ When moving a tab to a new frame, activate it.
+ Updated translations.
==== inxi ====
Version update (3.3.21 -> 3.3.23)
- Update to version 3.3.23:
+ /usr/share/doc/packages/inxi/inxi.changelog.
==== iproute2 ====
Subpackages: iproute2-bash-completion
- Replace routel program by a non-python version [boo#1205632]
==== iputils ====
Version update (20211215 -> 20221126)
- Update to version 20221126
https://github.com/iputils/iputils/releases/tag/20221126
- Update configure variables (ninfod, rarpd and rdisc were removed from
upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false
- DBUILD_RDISC=false)
- Remove 2 backported fixes from this release
0001-ping-Add-SA_RESTART-to-sa_flags.patch
0002-ping-Make-ping_rts-struct-static.patch
==== iso-codes ====
Version update (4.11.0 -> 4.12.0)
Subpackages: iso-codes-lang
- Update to version 4.12.0:
+ ISO 3166-1: Update name for TR (Türkiye). Fixes #38
+ Updated translations for ISO 3166-1, ISO 3166-2, ISO 3166-3,
ISO 639-2, ISO 639-3, ISO 639-5, ISO 4217, and ISO 15924.
==== kdump ====
Version update (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38)
- Make the kdump-save.service reboot after kdump-save is finished
(bsc#1204000)
- fix renaming of qeth interfaces (bsc#1204743, bsc#1144337)
- ppc64: rebuild initrd image after migration (bsc#1191410)
- kdumptool calibrate: modify fadump suggestions (jsc#IBM-1027)
==== libX11 ====
Subpackages: libX11-6 libX11-data libX11-xcb1
- U_Fix-797755-Allow-X-IfEvent-to-reenter-libX11.patch
* fixed Firefox freezes (regression since 1.8.2) (boo#1205778)
==== libapparmor ====
Version update (3.0.7 -> 3.1.2)
- update to AppArmor 3.1.2
- lots of cleanups, improvements and bugfixes in all areas
- rework internal profile storage and handling in the aa-* tools
- support boolean variable definitions in the aa-* tools
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1
and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2
for the detailed upstream changelog
- remove upstream(ed) patches:
- apparmor-3.0.7-egrep.patch
- dnsmasq.diff
- profiles-permit-php-fpm-pid-files-directly-under-run.patch
- zgrep-profile-mr870.diff
- no longer ship precompiled profile cache for Tumbleweed (boo#1205659)
- BuildRequire iproute2 (needed for aa-unconfined tests)
==== libcontainers-common ====
Version update (20210626 -> 20221122)
- Update bundled common to 0.50.1
- Update bundled image to 5.23.1
- Update bundled storage to 1.44.0
- Drop bundled podman
- Bump version to 20221122
- Install container-storage-driver.sh in /etc/ on Leap & SLE
==== libdrm ====
Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1
- Apply n_libdrm-drop-valgrind-dep-generic.patch and
n_libdrm-drop-valgrind-dep-intel.patch only when the build uses
meson < 0.64. With meson 0.64, we don't get the dependency on
valgraind added.
==== libeconf ====
Version update (0.4.8+git20221114.7ff7704 -> 0.4.9)
- Update to version 0.4.9:
* libeconf.h: added missing sys/types.h header (#171)
* new API calls: econf_readFileWithCallback,
econf_readDirsWithCallback, econf_readDirsHistoryWithCallback (#172)
* Checking NULL comment parameter in the parsing functions.
==== libgcrypt ====
Version update (1.9.4 -> 1.10.1)
- Update to 1.10.1:
* Bug fixes:
- Fix minor memory leaks in FIPS mode.
- Build fixes for MUSL libc.
* Other:
- More portable integrity check in FIPS mode.
- Add X9.62 OIDs to sha256 and sha512 modules.
* Add the hardware optimizations config file hwf.deny to
the /etc/gcrypt/ directory. This file can be used to globally
disable the use of hardware based optimizations.
* Remove not needed separate_hmac256_binary hmac256 package
- Update to 1.10.0:
* New and extended interfaces:
- New control codes to check for FIPS 140-3 approved algorithms.
- New control code to switch into non-FIPS mode.
- New cipher modes SIV and GCM-SIV as specified by RFC-5297.
- Extended cipher mode AESWRAP with padding as specified by
RFC-5649.
- New set of KDF functions.
- New KDF modes Argon2 and Balloon.
- New functions for combining hashing and signing/verification.
* Performance:
- Improved support for PowerPC architectures.
- Improved ECC performance on zSeries/s390x by using accelerated
scalar multiplication.
- Many more assembler performance improvements for several
architectures.
* Bug fixes:
- Fix Elgamal encryption for other implementations.
[bsc#1190239, CVE-2021-40528]
- Check the input length of the point in ECDH.
- Fix an abort in gcry_pk_get_param for "Curve25519".
* Other features:
- The control code GCRYCTL_SET_ENFORCED_FIPS_FLAG is ignored
because it is useless with the FIPS 140-3 related changes.
- Update of the jitter entropy RNG code.
- Simplification of the entropy gatherer when using the getentropy
system call.
* Interface changes relative to the 1.10.0 release:
- GCRYCTL_SET_DECRYPTION_TAG NEW control code.
- GCRYCTL_FIPS_SERVICE_INDICATOR_CIPHER NEW control code.
- GCRYCTL_FIPS_SERVICE_INDICATOR_KDF NEW control code.
- GCRYCTL_NO_FIPS_MODE = 83 NEW control code.
- GCRY_CIPHER_MODE_SIV NEW mode.
- GCRY_CIPHER_MODE_GCM_SIV NEW mode.
- GCRY_CIPHER_EXTENDED NEW flag.
- GCRY_SIV_BLOCK_LEN NEW macro.
- gcry_cipher_set_decryption_tag NEW macro.
- GCRY_KDF_ARGON2 NEW constant.
- GCRY_KDF_BALLOON NEW constant.
- GCRY_KDF_ARGON2D NEW constant.
- GCRY_KDF_ARGON2I NEW constant.
- GCRY_KDF_ARGON2ID NEW constant.
- gcry_kdf_hd_t NEW type.
- gcry_kdf_job_fn_t NEW type.
- gcry_kdf_dispatch_job_fn_t NEW type.
- gcry_kdf_wait_all_jobs_fn_t NEW type.
- struct gcry_kdf_thread_ops NEW struct.
- gcry_kdf_open NEW function.
- gcry_kdf_compute NEW function.
- gcry_kdf_final NEW function.
- gcry_kdf_close NEW function.
- gcry_pk_hash_sign NEW function.
- gcry_pk_hash_verify NEW function.
- gcry_pk_random_override_new NEW function.
* Rebase libgcrypt-1.8.4-allow_FSM_same_state.patch and rename
to libgcrypt-1.10.0-allow_FSM_same_state.patch
* Remove unused CAVS tests and related patches:
- cavs_driver.pl cavs-test.sh
- libgcrypt-1.6.1-fips-cavs.patch
- drbg_test.patch
* Remove DSA sign/verify patches for the FIPS CAVS test since DSA
has been disabled in FIPS mode:
- libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
- libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
* Rebase libgcrypt-FIPS-SLI-pk.patch
* Rebase libgcrypt_indicators_changes.patch and
libgcrypt-indicate-shake.patch and merge both into
libgcrypt-FIPS-SLI-hash-mac.patch
* Rebase libgcrypt-FIPS-kdf-leylength.patch and rename to
libgcrypt-FIPS-SLI-kdf-leylength.patch
* Rebase libgcrypt-jitterentropy-3.4.0.patch
* Rebase libgcrypt-FIPS-rndjent_poll.patch
* Rebase libgcrypt-out-of-core-handler.patch and rename to
libgcrypt-1.10.0-out-of-core-handler.patch
* Since the FIPS .hmac file is now calculated with the internal
tool hmac256, only the "module is complete" trigger .fips file
is checked. Rename libgcrypt-1.6.1-use-fipscheck.patch
to libgcrypt-1.10.0-use-fipscheck.patch
* Remove patches fixed upstream:
- libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch
- libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
- libgcrypt-fix-rng.patch
- libgcrypt-1.8.3-fips-ctor.patch
- libgcrypt-1.8.4-use_xfree.patch
- libgcrypt-1.8.4-getrandom.patch
- libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
- libgcrypt-dsa-rfc6979-test-fix.patch
- libgcrypt-fix-tests-fipsmode.patch
... changelog too long, skipping 27 lines ...
* Update libgcrypt.keyring
==== libpng16 ====
Version update (1.6.38 -> 1.6.39)
- Update to version 1.6.39:
* cmake: Default to PNG_ARM_NEON=off for arm targets.
+ Turn large PNG chunks into benign errors.
+ Update, rename and clean up various scripts.
+ tools: Fix a buffer overflow involving a file name in pngfix.
+ tools: Fix a memory leak in pngcp.
==== libstorage-ng ====
Version update (4.5.52 -> 4.5.53)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#905
- read filters for udev links from config file
- limit allowed by-id links for NVMEs (bsc#1205352)
- make integration-tests subpackage noarch
- cleanup
- 4.5.53
==== libzypp ====
Version update (17.31.5 -> 17.31.6)
- Avoid calling getsockopt when we know the info already.
This patch hopefully fixes logging on WSL, getsockopt seems to
not be fully supported but the code required it when accepting
new socket connections. (for bsc#1178233)
- Enhance yaml-cpp detection (fixes #428)
- No need to redirect 'history.logfile=/dev/null' into the target.
- MultiCurl: Make sure to reset the progress function when
falling back.
- version 17.31.6 (22)
==== memcached ====
- remove sysv init case
- move memcache binary to %{_bindir} like on Debian and RHEL like
distributions
==== mpfr ====
- Add mpfr-4.1.1-patch01.patch to fix bug with code using
the mpfr_custom_get_kind macro.
==== mutter ====
- Fix window freezes when maximized on Xorg (boo#1205714,
glgo#GNOME/mutter!2694, glgo#GNOME/gnome-shell#6054)
* add clutter-actor-Show-on-all-stage-views-when-actors-ha.patch
==== nano ====
Version update (6.4 -> 7.0)
- update to 7.0:
* String binds may contain bindable function names between braces
* Unicode codes can be entered (via M-V) without leading zeroes,
by finishing short codes with <Space> or <Enter>
* Word completion (^]) looks for candidates in all open buffers
* No regular expression matches the final empty line any more
==== nghttp2 ====
Version update (1.50.0 -> 1.51.0)
- update to 1.51.0:
* https://nghttp2.org/blog/2022/11/13/nghttp2-v1-51-0/
This release fixes affinity-cookie-stickiness parameter handling.
==== openvpn ====
Version update (2.5.7 -> 2.5.8)
Subpackages: openvpn-auth-pam-plugin
- update to 2.5.8:
* allow running a default configuration with TLS libraries without BF-CBC
(even if TLS cipher negotiation would not actually use BF-CBC, the
long-term compatibility "default cipher BF-CBC" would trigger an error
on such TLS libraries)
* ``--auth-nocache'' was not always correctly clearing username+password
after a renegotiation
* ensure that auth-token received from server is cleared if requested
by the management interface ("forget password" or automatically
via ``--management-forget-disconnect'')
* in a setup without username+password, but with auth-token and
auth-token-username pushed by the server, OpenVPN would start asking
for username+password on token expiry. Fix.
* using ``--auth-token`` together with ``--management-client-auth``
(on the server) would lead to TLS keys getting out of sync and client
being disconnected. Fix.
* management interface would sometimes get stuck if client and server
try to write something simultaneously. Fix by allowing a limited
level of recursion in virtual_output_callback()
* fix management interface not returning ERROR:/SUCCESS: response
on "signal SIGxxx" commands when in HOLD state
* tls-crypt-v2: abort connection if client-key is too short
* make man page agree with actual code on replay-window backtrag log message
* remove useless empty line from CR_RESPONSE message
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Remove redundant gnome-system-monitor (boo#1205108)
==== perl-IO-Socket-SSL ====
Version update (2.075 -> 2.077)
- updated to 2.077
see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes
2.077 2022/11/21
- fix memory leak in session cache, thanks to genuaboro
https://github.com/noxxi/p5-io-socket-ssl/pull/118
- more race conditions in tests fixed thanks to jddurand
https://github.com/noxxi/p5-io-socket-ssl/issues/97
2.076 2022/11/12
- added curl like tracing based on contribution from jddurand
https://github.com/noxxi/p5-io-socket-ssl/pull/117
- fixed race condition in t/sni_verify.t based on analysis from jddurand
https://github.com/noxxi/p5-io-socket-ssl/issues/97
==== psmisc ====
- Add patch socket-fix.patch
* Add test to check for named sockets as file as well as on mounts
* Fix code to find named sockets
- The former test requires nc at build aka netcat from openbsd to
create a named socket on the fly
==== python-httpcore ====
- Skip failing test_request_with_content test
(gh#encode/httpcore#622).
==== python-jsonschema ====
Version update (4.17.0 -> 4.17.1)
- update to 4.17.1:
* No nice changelog provided upstream
Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.17.0...v4.17.1
==== python-pylibmc ====
Version update (1.6.1 -> 1.6.3)
- Update to 1.6.3
* Fix logger.warn() deprecation warnings
* Modernize tests and test harness
* Python 3.10 support
- Remove python-pylibmc-remove-nose.patch
- Cope with memcached moving from sbindir to bindir and safeguard
against non-existing memcached binary: it if can't be started,
there is no reason to even attempt to run the test suite.
==== python-setuptools ====
Version update (65.5.1 -> 65.6.3)
- Update to 65.6.3:
* #3709: Fix condition to patch distutils.dist.log to only apply when using
distutils from the stdlib.
- v65.6.2
* No significant changes.
- Update to 65.6.1:
* #3689: Document that distutils.cfg might be ignored unless
SETUPTOOLS_USE_DISTUTILS=stdlib.
* #3678: Improve clib builds reproducibility by sorting sources -- by
:user:`danigm`, fixing bsc#1201127
* #3684: Improved exception/traceback when invalid entry-points are
specified.
* #3690: Fixed logging errors: 'underlying buffer has been detached' (issue
[#1631]).
* #3693: Merge pypa/distutils@3e9d47e with compatibility fix for
distutils.log.Log.
* #3704: Fix temporary build directories interference with auto-discovery.
- v65.6.0:
* #3674: Sync with pypa/distutils@e0787fa, including pypa/distutils#183
updating distutils to use the Python logging framework.
==== ruby-common ====
Version update (2.6 -> 3.2)
- actually bump the version so we can require the newer version for
ruby3.2
- replace `File.exists?` with `File.exist?` as the `File.exists?`
is no longer supported in 3.2
==== rubygem-gem2rpm ====
- Fix filelist for 3.2.0
- added support for 3.2.0
==== schily ====
Subpackages: libcdrdeflt1_0 libdeflt1_0 libfile1_0 libfind4_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs spax star
- Update to release 2022.10.16
* bsh: Implement ^L support
* libmdigest: Add support for BLAKE2 digests
* mkisofs: No longer warn about Joliet being nonstandard. With
the 2019 revision of ECMA 119, Joliet has been added as an
annex to the standard.
==== selinux-policy ====
Subpackages: selinux-policy-targeted
- fix_sysnetwork.patch: firewalld uses /etc/sysconfig/network/ for
network interface definition instead of /etc/sysconfig/network-scripts/,
modified sysnetwork.fc to reflect that (bsc#1205580).
==== shim ====
- Add POST_PROCESS_PE_FLAGS=-N to the build command in shim.spec to
disable the NX compatibility flag when using post-process-pe because
grub2 is not ready. (bsc#1205588)
- Kernel can boot with the NX compatibility flag since 82e0d6d76a2a7
be merged to v5.19. On the other hand, upstream is working on
improve compressed kernel stage for NX:
[PATCH v3 00/24] x86_64: Improvements at compressed kernel stage
https://www.spinics.net/lists/kernel/msg4599636.html
==== slirp4netns ====
Version update (1.1.11 -> 1.2.0)
- New upstream release 1.2.0:
* Add slirp4netns --target-type=bess /path/to/bess.sock for supporting UML (#281)
* Explicitly support DHCP (#270)
* Update parson to v1.1.3 (#273) kgabis/parson@70dc239...2d7b3dd
* Refactored tests (#271)
- modernize spec file
==== sqlite3 ====
Version update (3.39.4 -> 3.40.0)
Subpackages: libsqlite3-0 sqlite3-tcl
- update to 3.40.0:
* https://sqlite.org/releaselog/3_40_0.html
* Add support for compiling SQLite to WASM and running it in wen
browsers.
* Add the recovery extension that might be able to recover some
content from a corrupt database file.
* For more changes, see https://sqlite.org/releaselog/3_40_0.html
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-doc udev
- Import commit 3bd3e4e6c1efe0d6df776107efde47e15e58fe96
d28e81d65c test: fix the default timeout values described in README.testsuite
d921c83f53 meson: install test-kernel-install only when -Dkernel-install=true
c3b6c4b584 tests: update install_suse_systemd()
3c77335b19 tests: install dmi-sysfs module on openSUSE
df632130cd tests: install systemd-resolved on openSUSE
- Add 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch until
upstream issue #25468 is fixed.
- Drop 6000-meson-install-test-kernel-install-only-when-Dkernel-.patch, the
patch has been merged in the SUSE git repo.
==== systemd-rpm-macros ====
Version update (17 -> 18)
- Bump to version 18
- Add %_user_tmpfilesdir macro
==== vim ====
Version update (9.0.0814 -> 9.0.0924)
Subpackages: vim-data vim-data-common vim-small
- Updated to version 9.0.0924, fixes the following problems
* Aws config files are not recognized.
* ":!" does not switch to the alternate screen.
* CTRL-Z at end of file is always dropped.
* Build error.
* "!ls" does not work.
* Still a build error, tests are failing.
* Memory leak with empty shell command.
* Crash when using win_move_statusline() in another tab page.
* Crash when dragging the statusline with a mapping.
* Mouse drag test fails.
* Crash when using win_move_separator() in other tab page.
* If 'endofline' is set the CTRL-Z may be written in the wrong place.
* The <Home> key in tmux doesn't work when 'term' is set to
"xterm". (Dominique Pellé)
* Various typos.
* Wrong counts in macro comment.
* Compiler warning for redefining HAVE_DUP.
* Deprecation warning causes build failure.
* Warning for missing return type.
* The window title is not redrawn when 'endoffile' changes.
* Wrong error when using extend() with funcref.
* append() reports failure when not appending anything.
* Compiler warnings for unused variables.
* Test may fail depending on sequence of events.
* Cannot change a slice of a const list. (Takumi KAGIYAMA)
* deletebufline() does not always return 1 on failure.
* Unicode range for Apple SF symbols is outdated.
* VHS tape files are not recognized.
* Handling 'statusline' errors is spread out.
* Shell command with just space gives strange error.
* Using assert_fails() may cause hit-enter prompt.
* CI: not totally clear what MS-Windows version is used.
* Help item for --log argument is not aligned nicely.
* Terminal mouse test is a bit flaky.
* Terminal mouse test is still flaky.
* Crypt test is skipped if xxd is not found.
* No proper test for what 9.0.0846 fixes.
* Comment not located above the code it refers to.
* "!!sort" in a closed fold sorts too many lines.
* Compiler warning for unused variable.
* Solution for "!!sort" in closed fold is not optimal.
* Default value of 'endoffile' is wrong.
* col() and charcol() only work for the current window.
* Crash when using "!!" without a previous shell command.
* Duplicate arguments are not always detected.
* No test for what patch 8.2.2207 fixes.
* Wildmenu redrawing code is spread out.
* Bogus error when string used after :elseif.
* Get E967 when using text property in quickfix window. (Sergey Vlasov)
* Using freed memory when clearing augroup at more prompt.
* Code is indented more than needed.
* Using freed memory when executing mapclear at the more prompt.
* Using freed memory when executing unmenu at the more prompt.
* Using freed memory when executing delfunc at the more prompt.
* Code is indented more than needed.
* Using freed memory with :comclear while listing commands.
* Coverity warns for dead code.
* Unnecessary nesting in makefile.
* Preprocessor indenting is off.
* Cannot get the currently showing mouse shape.
* Using freed memory after SpellFileMissing autocmd uses bwipe.
* A silent mapping may cause dots on the command line.
* Mouse shape remains in op-pending mode after failed change.
* Informational message has an error message number.
* Horizontal mouse scroll only works in the GUI.
* Cannot easily try out what codes various keys produce.
* Keycode check script has a few flaws.
* No test for what patch 9.0.0827 fixes.
* Virtual text below after match has wrong highlight.
* May redraw when not needed, causing slow scrolling.
* 'smoothscroll' cursor calculations wrong when 'number' is set.
* Virtual text property highlight ignores window background.
* File renamed twice in test; missing feature check.
* Test for home key fails when 'term' is "tmux".
* Clinical Quality Language files are not recognized.
* With 'smoothscroll' cursor is one screen line too far down. (Ernie Rael)
* The builtin terminals are in one long list.
* Cursor moves too far with 'smoothscroll'.
* Setting w_leftcol and handling side effects is confusing.
* Some mouse scroll code is not in a good place.
* Key code checker doesn't check modifyOtherKeys resource.
* Various comment and indent flaws.
* Virtual text after the line wraps when 'wrap' is off.
* Mouse scroll code is not optimal.
* Restoring window after WinScrolled may fail.
* With 'smoothscroll' cursor may end up in wrong position.
* Error message for layout change does not match action.
* Setting lines in another buffer may not work well.
* With 'smoothscroll' set mouse click position may be wrong.
* libvterm with modifyOtherKeys level 2 does not match xterm.
* Only a change in the current window triggers the WinScrolled event.
* deletebufline() may move marks in the wrong window.
* WinScrolled may trigger immediately when defined.
* getbufline() is inefficient for getting a single line.
* The WinScrolled autocommand event is not enough.
* MS-Windows: modifier keys do not work with mouse scroll events.
* Build failure with tiny features.
* Cannot find an import prefixed with "s:". (Doug Kearns)
* Missing defined(PROTO) in #ifdef.
* Mermaid files are not recognized.
* Second SIGWINCH signal may be ignored.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
filesystem
gawk (5.2.0 -> 5.2.1)
iputils (20211215 -> 20221126)
kdump (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38)
libX11
libcontainers-common (20210626 -> 20221122)
libeconf (0.4.8+git20221114.7ff7704 -> 0.4.9)
libgcrypt (1.9.4 -> 1.10.1)
mpfr
=== Details ===
==== filesystem ====
- Add %_user_tmpfilesdir to the filesystem
- Added zh_Hans (simplified Chinese) and zh_Hant (traditional
chinese) locales
==== gawk ====
Version update (5.2.0 -> 5.2.1)
- Update to gawk 5.2.1
* Issues related to the sign of NaN and Inf values on RiscV have
been fixed
* A few issues with the debugger have been fixed.
* More subtle issues with untyped array elements being passed to
functions have been fixed.
* The rwarray extension's readall() function has had some bugs fixed.
* The PMA allocator is now supported on FreeBSD, OpenBSD and Linux on
S/390x.
- double-free.patch, pma.patch, nan-sign.patch: Removed
==== iputils ====
Version update (20211215 -> 20221126)
- Update to version 20221126
https://github.com/iputils/iputils/releases/tag/20221126
- Update configure variables (ninfod, rarpd and rdisc were removed from
upstream in next release => remove -DBUILD_NINFOD=false -DBUILD_RARPD=false
- DBUILD_RDISC=false)
- Remove 2 backported fixes from this release
0001-ping-Add-SA_RESTART-to-sa_flags.patch
0002-ping-Make-ping_rts-struct-static.patch
==== kdump ====
Version update (1.0.2+git20.gcb129d0 -> 1.0.2+git26.gc6fab38)
- Make the kdump-save.service reboot after kdump-save is finished
(bsc#1204000)
- fix renaming of qeth interfaces (bsc#1204743, bsc#1144337)
- ppc64: rebuild initrd image after migration (bsc#1191410)
- kdumptool calibrate: modify fadump suggestions (jsc#IBM-1027)
==== libX11 ====
Subpackages: libX11-6 libX11-data libX11-xcb1
- U_Fix-797755-Allow-X-IfEvent-to-reenter-libX11.patch
* fixed Firefox freezes (regression since 1.8.2) (boo#1205778)
==== libcontainers-common ====
Version update (20210626 -> 20221122)
- Update bundled common to 0.50.1
- Update bundled image to 5.23.1
- Update bundled storage to 1.44.0
- Drop bundled podman
- Bump version to 20221122
- Install container-storage-driver.sh in /etc/ on Leap & SLE
==== libeconf ====
Version update (0.4.8+git20221114.7ff7704 -> 0.4.9)
- Update to version 0.4.9:
* libeconf.h: added missing sys/types.h header (#171)
* new API calls: econf_readFileWithCallback,
econf_readDirsWithCallback, econf_readDirsHistoryWithCallback (#172)
* Checking NULL comment parameter in the parsing functions.
==== libgcrypt ====
Version update (1.9.4 -> 1.10.1)
- Update to 1.10.1:
* Bug fixes:
- Fix minor memory leaks in FIPS mode.
- Build fixes for MUSL libc.
* Other:
- More portable integrity check in FIPS mode.
- Add X9.62 OIDs to sha256 and sha512 modules.
* Add the hardware optimizations config file hwf.deny to
the /etc/gcrypt/ directory. This file can be used to globally
disable the use of hardware based optimizations.
* Remove not needed separate_hmac256_binary hmac256 package
- Update to 1.10.0:
* New and extended interfaces:
- New control codes to check for FIPS 140-3 approved algorithms.
- New control code to switch into non-FIPS mode.
- New cipher modes SIV and GCM-SIV as specified by RFC-5297.
- Extended cipher mode AESWRAP with padding as specified by
RFC-5649.
- New set of KDF functions.
- New KDF modes Argon2 and Balloon.
- New functions for combining hashing and signing/verification.
* Performance:
- Improved support for PowerPC architectures.
- Improved ECC performance on zSeries/s390x by using accelerated
scalar multiplication.
- Many more assembler performance improvements for several
architectures.
* Bug fixes:
- Fix Elgamal encryption for other implementations.
[bsc#1190239, CVE-2021-40528]
- Check the input length of the point in ECDH.
- Fix an abort in gcry_pk_get_param for "Curve25519".
* Other features:
- The control code GCRYCTL_SET_ENFORCED_FIPS_FLAG is ignored
because it is useless with the FIPS 140-3 related changes.
- Update of the jitter entropy RNG code.
- Simplification of the entropy gatherer when using the getentropy
system call.
* Interface changes relative to the 1.10.0 release:
- GCRYCTL_SET_DECRYPTION_TAG NEW control code.
- GCRYCTL_FIPS_SERVICE_INDICATOR_CIPHER NEW control code.
- GCRYCTL_FIPS_SERVICE_INDICATOR_KDF NEW control code.
- GCRYCTL_NO_FIPS_MODE = 83 NEW control code.
- GCRY_CIPHER_MODE_SIV NEW mode.
- GCRY_CIPHER_MODE_GCM_SIV NEW mode.
- GCRY_CIPHER_EXTENDED NEW flag.
- GCRY_SIV_BLOCK_LEN NEW macro.
- gcry_cipher_set_decryption_tag NEW macro.
- GCRY_KDF_ARGON2 NEW constant.
- GCRY_KDF_BALLOON NEW constant.
- GCRY_KDF_ARGON2D NEW constant.
- GCRY_KDF_ARGON2I NEW constant.
- GCRY_KDF_ARGON2ID NEW constant.
- gcry_kdf_hd_t NEW type.
- gcry_kdf_job_fn_t NEW type.
- gcry_kdf_dispatch_job_fn_t NEW type.
- gcry_kdf_wait_all_jobs_fn_t NEW type.
- struct gcry_kdf_thread_ops NEW struct.
- gcry_kdf_open NEW function.
- gcry_kdf_compute NEW function.
- gcry_kdf_final NEW function.
- gcry_kdf_close NEW function.
- gcry_pk_hash_sign NEW function.
- gcry_pk_hash_verify NEW function.
- gcry_pk_random_override_new NEW function.
* Rebase libgcrypt-1.8.4-allow_FSM_same_state.patch and rename
to libgcrypt-1.10.0-allow_FSM_same_state.patch
* Remove unused CAVS tests and related patches:
- cavs_driver.pl cavs-test.sh
- libgcrypt-1.6.1-fips-cavs.patch
- drbg_test.patch
* Remove DSA sign/verify patches for the FIPS CAVS test since DSA
has been disabled in FIPS mode:
- libgcrypt-fipsdrv-enable-algo-for-dsa-sign.patch
- libgcrypt-fipsdrv-enable-algo-for-dsa-verify.patch
* Rebase libgcrypt-FIPS-SLI-pk.patch
* Rebase libgcrypt_indicators_changes.patch and
libgcrypt-indicate-shake.patch and merge both into
libgcrypt-FIPS-SLI-hash-mac.patch
* Rebase libgcrypt-FIPS-kdf-leylength.patch and rename to
libgcrypt-FIPS-SLI-kdf-leylength.patch
* Rebase libgcrypt-jitterentropy-3.4.0.patch
* Rebase libgcrypt-FIPS-rndjent_poll.patch
* Rebase libgcrypt-out-of-core-handler.patch and rename to
libgcrypt-1.10.0-out-of-core-handler.patch
* Since the FIPS .hmac file is now calculated with the internal
tool hmac256, only the "module is complete" trigger .fips file
is checked. Rename libgcrypt-1.6.1-use-fipscheck.patch
to libgcrypt-1.10.0-use-fipscheck.patch
* Remove patches fixed upstream:
- libgcrypt-1.4.1-rijndael_no_strict_aliasing.patch
- libgcrypt-1.5.0-LIBGCRYPT_FORCE_FIPS_MODE-env.diff
- libgcrypt-fix-rng.patch
- libgcrypt-1.8.3-fips-ctor.patch
- libgcrypt-1.8.4-use_xfree.patch
- libgcrypt-1.8.4-getrandom.patch
- libgcrypt-1.8.4-fips_ctor_skip_integrity_check.patch
- libgcrypt-dsa-rfc6979-test-fix.patch
- libgcrypt-fix-tests-fipsmode.patch
... changelog too long, skipping 27 lines ...
* Update libgcrypt.keyring
==== mpfr ====
- Add mpfr-4.1.1-patch01.patch to fix bug with code using
the mpfr_custom_get_kind macro.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
libpng16 (1.6.38 -> 1.6.39)
libstorage-ng (4.5.52 -> 4.5.53)
libzypp (17.31.5 -> 17.31.6)
manpages-l10n (4.15.0 -> 4.16.0)
patterns-microos
psmisc
python-setuptools (65.5.1 -> 65.6.3)
slirp4netns (1.1.11 -> 1.2.0)
=== Details ===
==== libpng16 ====
Version update (1.6.38 -> 1.6.39)
- Update to version 1.6.39:
* cmake: Default to PNG_ARM_NEON=off for arm targets.
+ Turn large PNG chunks into benign errors.
+ Update, rename and clean up various scripts.
+ tools: Fix a buffer overflow involving a file name in pngfix.
+ tools: Fix a memory leak in pngcp.
==== libstorage-ng ====
Version update (4.5.52 -> 4.5.53)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#905
- read filters for udev links from config file
- limit allowed by-id links for NVMEs (bsc#1205352)
- make integration-tests subpackage noarch
- cleanup
- 4.5.53
==== libzypp ====
Version update (17.31.5 -> 17.31.6)
- Avoid calling getsockopt when we know the info already.
This patch hopefully fixes logging on WSL, getsockopt seems to
not be fully supported but the code required it when accepting
new socket connections. (for bsc#1178233)
- Enhance yaml-cpp detection (fixes #428)
- No need to redirect 'history.logfile=/dev/null' into the target.
- MultiCurl: Make sure to reset the progress function when
falling back.
- version 17.31.6 (22)
==== manpages-l10n ====
Version update (4.15.0 -> 4.16.0)
Subpackages: man-pages-cs man-pages-da man-pages-de man-pages-el man-pages-es man-pages-fr man-pages-hu man-pages-it man-pages-pl man-pages-pt_BR
- Update to version 4.16.0: Updated many translations.
- Upgrade macros:
* Add Leap 15.5 and Fedora 37.
* Remove Leap 15.4 and Fedora 36 (dropped by upstream).
- Rebase links patch:
* Remove manpages-l10n-4.15.0-fix-links.patch.
* Add manpages-l10n-4.16.0-fix-links.patch.
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Remove redundant gnome-system-monitor (boo#1205108)
==== psmisc ====
Subpackages: psmisc-lang
- Add patch socket-fix.patch
* Add test to check for named sockets as file as well as on mounts
* Fix code to find named sockets
- The former test requires nc at build aka netcat from openbsd to
create a named socket on the fly
==== python-setuptools ====
Version update (65.5.1 -> 65.6.3)
- Update to 65.6.3:
* #3709: Fix condition to patch distutils.dist.log to only apply when using
distutils from the stdlib.
- v65.6.2
* No significant changes.
- Update to 65.6.1:
* #3689: Document that distutils.cfg might be ignored unless
SETUPTOOLS_USE_DISTUTILS=stdlib.
* #3678: Improve clib builds reproducibility by sorting sources -- by
:user:`danigm`, fixing bsc#1201127
* #3684: Improved exception/traceback when invalid entry-points are
specified.
* #3690: Fixed logging errors: 'underlying buffer has been detached' (issue
[#1631]).
* #3693: Merge pypa/distutils@3e9d47e with compatibility fix for
distutils.log.Log.
* #3704: Fix temporary build directories interference with auto-discovery.
- v65.6.0:
* #3674: Sync with pypa/distutils@e0787fa, including pypa/distutils#183
updating distutils to use the Python logging framework.
==== slirp4netns ====
Version update (1.1.11 -> 1.2.0)
- New upstream release 1.2.0:
* Add slirp4netns --target-type=bess /path/to/bess.sock for supporting UML (#281)
* Explicitly support DHCP (#270)
* Update parson to v1.1.3 (#273) kgabis/parson@70dc239...2d7b3dd
* Refactored tests (#271)
- modernize spec file
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
grub2
highway
icewm (3.2.0 -> 3.2.2)
iproute2
iso-codes (4.11.0 -> 4.12.0)
mutter
ruby-common (2.6 -> 3.2)
ruby3.1 (3.1.2 -> 3.1.3)
rubygem-gem2rpm
selinux-policy
sqlite3 (3.39.4 -> 3.40.0)
systemd
systemd-rpm-macros (17 -> 18)
=== Details ===
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Make full utilization of btrfs bootloader area (bsc#1161823)
* 0001-fs-btrfs-Use-full-btrfs-bootloader-area.patch
* 0002-Mark-environmet-blocks-as-used-for-image-embedding.patch
- Patch removed
* 0001-i386-pc-build-btrfs-zstd-support-into-separate-modul.patch
==== highway ====
- Fix the library being built for incorrect microarchitecture
on armv{6,7}hl.
* add arm-disable-runtime-dispatch.patch to fix compiler error
- Actually run the testsuite.
==== icewm ====
Version update (3.2.0 -> 3.2.2)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.2.2:
+ Freeze the task pane layout while Alt is pressed,
+ Only sort Alt+Tab on WM_CLASS when persistent,
+ Also sort Alt+Tab on the 'order' winoption when persistent,
+ Let the Escape key cancel a menu with all its submenu's,
+ Add a menu entry to rename the window title manually,
+ Adapt absolute paths in .desktop files to the installation
prefix,
+ The sorting of windows in the window list window was improved a
lot,
+ Restore the named frame tabs when recovering from a crash,
+ Preserve the non-fullscreen non-maximized window geometry
across restarts,
+ Try harder to avoid a situation where nothing is focused,
+ Update the window list when a tab is moved to its own frame,
+ Make the window list menu actions more tab-savvy.
+ Drop the obsolete LSM file altogether.
- Changes from version 3.2.1:
+ Add QuickSwitchPersistence=0 preference for stateful Alt+Tab.
+ Demarcate workspaces with a horizontal line in Alt+Tab.
+ Fixes for Alt+Tab size calculations.
+ Fix for changing workspace when Alt+Tab is open.
+ Fix for KeySysSwitchClass history.
+ Don't attempt to focus NoInput windows.
+ Ensure that active Alt+Tab item is visible.
+ Also sort Alt+Tab items on WM_CLASS.
+ Fix a compile error for GCC 4.8.5.
+ When moving a tab to a new frame, activate it.
+ Updated translations.
==== iproute2 ====
Subpackages: iproute2-bash-completion
- Replace routel program by a non-python version [boo#1205632]
==== iso-codes ====
Version update (4.11.0 -> 4.12.0)
Subpackages: iso-codes-lang
- Update to version 4.12.0:
+ ISO 3166-1: Update name for TR (Türkiye). Fixes #38
+ Updated translations for ISO 3166-1, ISO 3166-2, ISO 3166-3,
ISO 639-2, ISO 639-3, ISO 639-5, ISO 4217, and ISO 15924.
==== mutter ====
Subpackages: mutter-lang
- Fix window freezes when maximized on Xorg (boo#1205714,
glgo#GNOME/mutter!2694, glgo#GNOME/gnome-shell#6054)
* add clutter-actor-Show-on-all-stage-views-when-actors-ha.patch
==== ruby-common ====
Version update (2.6 -> 3.2)
- actually bump the version so we can require the newer version for
ruby3.2
- replace `File.exists?` with `File.exist?` as the `File.exists?`
is no longer supported in 3.2
==== ruby3.1 ====
Version update (3.1.2 -> 3.1.3)
Subpackages: libruby3_1-3_1
- remove the bundled gems workaround
- update to 3.1.3 (boo#1205726 CVE-2021-33621)
https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi…
https://www.ruby-lang.org/en/news/2022/11/24/ruby-3-1-3-released/
==== rubygem-gem2rpm ====
- Fix filelist for 3.2.0
- added support for 3.2.0
==== selinux-policy ====
Subpackages: selinux-policy-targeted
- fix_sysnetwork.patch: firewalld uses /etc/sysconfig/network/ for
network interface definition instead of /etc/sysconfig/network-scripts/,
modified sysnetwork.fc to reflect that (bsc#1205580).
==== sqlite3 ====
Version update (3.39.4 -> 3.40.0)
Subpackages: libsqlite3-0 sqlite3-tcl
- update to 3.40.0:
* https://sqlite.org/releaselog/3_40_0.html
* Add support for compiling SQLite to WASM and running it in wen
browsers.
* Add the recovery extension that might be able to recover some
content from a corrupt database file.
* For more changes, see https://sqlite.org/releaselog/3_40_0.html
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev
- Import commit 3bd3e4e6c1efe0d6df776107efde47e15e58fe96
d28e81d65c test: fix the default timeout values described in README.testsuite
d921c83f53 meson: install test-kernel-install only when -Dkernel-install=true
c3b6c4b584 tests: update install_suse_systemd()
3c77335b19 tests: install dmi-sysfs module on openSUSE
df632130cd tests: install systemd-resolved on openSUSE
- Add 6000-Revert-tmpfiles-whenever-creating-an-inode-immediate.patch until
upstream issue #25468 is fixed.
- Drop 6000-meson-install-test-kernel-install-only-when-Dkernel-.patch, the
patch has been merged in the SUSE git repo.
==== systemd-rpm-macros ====
Version update (17 -> 18)
- Bump to version 18
- Add %_user_tmpfilesdir macro
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
apparmor (3.0.7 -> 3.1.2)
busybox
conmon (2.1.3 -> 2.1.5)
hicolor-icon-theme
inxi (3.3.21 -> 3.3.23)
libapparmor (3.0.7 -> 3.1.2)
libdrm
memcached
nano (6.4 -> 7.0)
nghttp2 (1.50.0 -> 1.51.0)
openvpn (2.5.7 -> 2.5.8)
perl-IO-Socket-SSL (2.075 -> 2.077)
python-httpcore
python-jsonschema (4.17.0 -> 4.17.1)
python-pylibmc (1.6.1 -> 1.6.3)
schily
vim (9.0.0814 -> 9.0.0924)
=== Details ===
==== apparmor ====
Version update (3.0.7 -> 3.1.2)
Subpackages: apparmor-abstractions apparmor-parser apparmor-parser-lang apparmor-profiles apparmor-utils apparmor-utils-lang python3-apparmor
- update to AppArmor 3.1.2
- lots of cleanups, improvements and bugfixes in all areas
- rework internal profile storage and handling in the aa-* tools
- support boolean variable definitions in the aa-* tools
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1
and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2
for the detailed upstream changelog
- remove upstream(ed) patches:
- apparmor-3.0.7-egrep.patch
- dnsmasq.diff
- profiles-permit-php-fpm-pid-files-directly-under-run.patch
- zgrep-profile-mr870.diff
- no longer ship precompiled profile cache for Tumbleweed (boo#1205659)
- BuildRequire iproute2 (needed for aa-unconfined tests)
==== busybox ====
Subpackages: busybox-static
- Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065,
boo#1199744).
==== conmon ====
Version update (2.1.3 -> 2.1.5)
- New upstream release 2.1.5:
Bug Fixes
don't leak syslog_identifier
logging: do not read more that the buf size
logging: fix error handling
Misc
Makefile: Fix install for FreeBSD
signal: Track changes to get_signal_descriptor in the FreeBSD version
Packit: initial enablement
- New upstream release 2.1.4:
Bug fixes
Fix a bug where conmon crashed when it got a SIGCHLD
==== hicolor-icon-theme ====
- Add 1024x1024 directory for package ownership
==== inxi ====
Version update (3.3.21 -> 3.3.23)
- Update to version 3.3.23:
+ /usr/share/doc/packages/inxi/inxi.changelog.
==== libapparmor ====
Version update (3.0.7 -> 3.1.2)
- update to AppArmor 3.1.2
- lots of cleanups, improvements and bugfixes in all areas
- rework internal profile storage and handling in the aa-* tools
- support boolean variable definitions in the aa-* tools
- see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.1
and https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.1.2
for the detailed upstream changelog
- remove upstream(ed) patches:
- apparmor-3.0.7-egrep.patch
- dnsmasq.diff
- profiles-permit-php-fpm-pid-files-directly-under-run.patch
- zgrep-profile-mr870.diff
- no longer ship precompiled profile cache for Tumbleweed (boo#1205659)
- BuildRequire iproute2 (needed for aa-unconfined tests)
==== libdrm ====
Subpackages: libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1
- Apply n_libdrm-drop-valgrind-dep-generic.patch and
n_libdrm-drop-valgrind-dep-intel.patch only when the build uses
meson < 0.64. With meson 0.64, we don't get the dependency on
valgraind added.
- split n_libdrm-drop-valgrind-dep.patch into
n_libdrm-drop-valgrind-dep-generic.patch and
n_libdrm-drop-valgrind-dep-intel.patch to fix build on s390 and
armv7l
- Only apply libdrm-drop-valgrind-dep.patch if valgrnid_support is
enabled (fix build on e.g. aarch64).
- renamed libdrm-drop-valgrind-dep.patch to
n_libdrm-drop-valgrind-dep.patch in order to mark it as 'never
to be upstreamed'
- Add libdrm-drop-valgrind-dep.patch (as source): drop dependency
on valgrind on generated pkgconfig files. The .pc files are
auto-generated by meson and are 'technically' correct, but we do
not want to inject valgrind here (we can get away with this hack
as it's only relevant when using pkg-config --static, and we
do not provide static libs anyway).
==== memcached ====
- remove sysv init case
- move memcache binary to %{_bindir} like on Debian and RHEL like
distributions
==== nano ====
Version update (6.4 -> 7.0)
Subpackages: nano-lang
- update to 7.0:
* String binds may contain bindable function names between braces
* Unicode codes can be entered (via M-V) without leading zeroes,
by finishing short codes with <Space> or <Enter>
* Word completion (^]) looks for candidates in all open buffers
* No regular expression matches the final empty line any more
==== nghttp2 ====
Version update (1.50.0 -> 1.51.0)
- update to 1.51.0:
* https://nghttp2.org/blog/2022/11/13/nghttp2-v1-51-0/
This release fixes affinity-cookie-stickiness parameter handling.
==== openvpn ====
Version update (2.5.7 -> 2.5.8)
Subpackages: openvpn-auth-pam-plugin
- update to 2.5.8:
* allow running a default configuration with TLS libraries without BF-CBC
(even if TLS cipher negotiation would not actually use BF-CBC, the
long-term compatibility "default cipher BF-CBC" would trigger an error
on such TLS libraries)
* ``--auth-nocache'' was not always correctly clearing username+password
after a renegotiation
* ensure that auth-token received from server is cleared if requested
by the management interface ("forget password" or automatically
via ``--management-forget-disconnect'')
* in a setup without username+password, but with auth-token and
auth-token-username pushed by the server, OpenVPN would start asking
for username+password on token expiry. Fix.
* using ``--auth-token`` together with ``--management-client-auth``
(on the server) would lead to TLS keys getting out of sync and client
being disconnected. Fix.
* management interface would sometimes get stuck if client and server
try to write something simultaneously. Fix by allowing a limited
level of recursion in virtual_output_callback()
* fix management interface not returning ERROR:/SUCCESS: response
on "signal SIGxxx" commands when in HOLD state
* tls-crypt-v2: abort connection if client-key is too short
* make man page agree with actual code on replay-window backtrag log message
* remove useless empty line from CR_RESPONSE message
==== perl-IO-Socket-SSL ====
Version update (2.075 -> 2.077)
- updated to 2.077
see /usr/share/doc/packages/perl-IO-Socket-SSL/Changes
2.077 2022/11/21
- fix memory leak in session cache, thanks to genuaboro
https://github.com/noxxi/p5-io-socket-ssl/pull/118
- more race conditions in tests fixed thanks to jddurand
https://github.com/noxxi/p5-io-socket-ssl/issues/97
2.076 2022/11/12
- added curl like tracing based on contribution from jddurand
https://github.com/noxxi/p5-io-socket-ssl/pull/117
- fixed race condition in t/sni_verify.t based on analysis from jddurand
https://github.com/noxxi/p5-io-socket-ssl/issues/97
==== python-httpcore ====
- Skip failing test_request_with_content test
(gh#encode/httpcore#622).
==== python-jsonschema ====
Version update (4.17.0 -> 4.17.1)
- update to 4.17.1:
* No nice changelog provided upstream
Full Changelog: https://github.com/python-jsonschema/jsonschema/compare/v4.17.0...v4.17.1
==== python-pylibmc ====
Version update (1.6.1 -> 1.6.3)
- Update to 1.6.3
* Fix logger.warn() deprecation warnings
* Modernize tests and test harness
* Python 3.10 support
- Remove python-pylibmc-remove-nose.patch
- Cope with memcached moving from sbindir to bindir and safeguard
against non-existing memcached binary: it if can't be started,
there is no reason to even attempt to run the test suite.
==== schily ====
Subpackages: libcdrdeflt1_0 libdeflt1_0 libfile1_0 libfind4_0 librmt1_0 librscg1_0 libscg1_0 libscgcmd1_0 libschily2_0 mkisofs spax star
- Update to release 2022.10.16
* bsh: Implement ^L support
* libmdigest: Add support for BLAKE2 digests
* mkisofs: No longer warn about Joliet being nonstandard. With
the 2019 revision of ECMA 119, Joliet has been added as an
annex to the standard.
==== vim ====
Version update (9.0.0814 -> 9.0.0924)
Subpackages: vim-data vim-data-common vim-small
- Updated to version 9.0.0924, fixes the following problems
* Aws config files are not recognized.
* ":!" does not switch to the alternate screen.
* CTRL-Z at end of file is always dropped.
* Build error.
* "!ls" does not work.
* Still a build error, tests are failing.
* Memory leak with empty shell command.
* Crash when using win_move_statusline() in another tab page.
* Crash when dragging the statusline with a mapping.
* Mouse drag test fails.
* Crash when using win_move_separator() in other tab page.
* If 'endofline' is set the CTRL-Z may be written in the wrong place.
* The <Home> key in tmux doesn't work when 'term' is set to
"xterm". (Dominique Pellé)
* Various typos.
* Wrong counts in macro comment.
* Compiler warning for redefining HAVE_DUP.
* Deprecation warning causes build failure.
* Warning for missing return type.
* The window title is not redrawn when 'endoffile' changes.
* Wrong error when using extend() with funcref.
* append() reports failure when not appending anything.
* Compiler warnings for unused variables.
* Test may fail depending on sequence of events.
* Cannot change a slice of a const list. (Takumi KAGIYAMA)
* deletebufline() does not always return 1 on failure.
* Unicode range for Apple SF symbols is outdated.
* VHS tape files are not recognized.
* Handling 'statusline' errors is spread out.
* Shell command with just space gives strange error.
* Using assert_fails() may cause hit-enter prompt.
* CI: not totally clear what MS-Windows version is used.
* Help item for --log argument is not aligned nicely.
* Terminal mouse test is a bit flaky.
* Terminal mouse test is still flaky.
* Crypt test is skipped if xxd is not found.
* No proper test for what 9.0.0846 fixes.
* Comment not located above the code it refers to.
* "!!sort" in a closed fold sorts too many lines.
* Compiler warning for unused variable.
* Solution for "!!sort" in closed fold is not optimal.
* Default value of 'endoffile' is wrong.
* col() and charcol() only work for the current window.
* Crash when using "!!" without a previous shell command.
* Duplicate arguments are not always detected.
* No test for what patch 8.2.2207 fixes.
* Wildmenu redrawing code is spread out.
* Bogus error when string used after :elseif.
* Get E967 when using text property in quickfix window. (Sergey Vlasov)
* Using freed memory when clearing augroup at more prompt.
* Code is indented more than needed.
* Using freed memory when executing mapclear at the more prompt.
* Using freed memory when executing unmenu at the more prompt.
* Using freed memory when executing delfunc at the more prompt.
* Code is indented more than needed.
* Using freed memory with :comclear while listing commands.
* Coverity warns for dead code.
* Unnecessary nesting in makefile.
* Preprocessor indenting is off.
* Cannot get the currently showing mouse shape.
* Using freed memory after SpellFileMissing autocmd uses bwipe.
* A silent mapping may cause dots on the command line.
* Mouse shape remains in op-pending mode after failed change.
* Informational message has an error message number.
* Horizontal mouse scroll only works in the GUI.
* Cannot easily try out what codes various keys produce.
* Keycode check script has a few flaws.
* No test for what patch 9.0.0827 fixes.
* Virtual text below after match has wrong highlight.
* May redraw when not needed, causing slow scrolling.
* 'smoothscroll' cursor calculations wrong when 'number' is set.
* Virtual text property highlight ignores window background.
* File renamed twice in test; missing feature check.
* Test for home key fails when 'term' is "tmux".
* Clinical Quality Language files are not recognized.
* With 'smoothscroll' cursor is one screen line too far down. (Ernie Rael)
* The builtin terminals are in one long list.
* Cursor moves too far with 'smoothscroll'.
* Setting w_leftcol and handling side effects is confusing.
* Some mouse scroll code is not in a good place.
* Key code checker doesn't check modifyOtherKeys resource.
* Various comment and indent flaws.
* Virtual text after the line wraps when 'wrap' is off.
* Mouse scroll code is not optimal.
* Restoring window after WinScrolled may fail.
* With 'smoothscroll' cursor may end up in wrong position.
* Error message for layout change does not match action.
* Setting lines in another buffer may not work well.
* With 'smoothscroll' set mouse click position may be wrong.
* libvterm with modifyOtherKeys level 2 does not match xterm.
* Only a change in the current window triggers the WinScrolled event.
* deletebufline() may move marks in the wrong window.
* WinScrolled may trigger immediately when defined.
* getbufline() is inefficient for getting a single line.
* The WinScrolled autocommand event is not enough.
* MS-Windows: modifier keys do not work with mouse scroll events.
* Build failure with tiny features.
* Cannot find an import prefixed with "s:". (Doug Kearns)
* Missing defined(PROTO) in #ifdef.
* Mermaid files are not recognized.
* Second SIGWINCH signal may be ignored.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
grub2
libdrm
lsof
nfs-utils
orc (0.4.32 -> 0.4.33)
python-anyio (3.5.0 -> 3.6.2)
sudo (1.9.12 -> 1.9.12p1)
=== Details ===
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Fix regression of reverting back to asking password twice when a keyfile is
already used (bsc#1205309)
* 0010-templates-import-etc-crypttab-to-grub.cfg.patch
==== libdrm ====
Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1
- split n_libdrm-drop-valgrind-dep.patch into
n_libdrm-drop-valgrind-dep-generic.patch and
n_libdrm-drop-valgrind-dep-intel.patch to fix build on s390 and
armv7l
- Only apply libdrm-drop-valgrind-dep.patch if valgrnid_support is
enabled (fix build on e.g. aarch64).
- renamed libdrm-drop-valgrind-dep.patch to
n_libdrm-drop-valgrind-dep.patch in order to mark it as 'never
to be upstreamed'
- Add libdrm-drop-valgrind-dep.patch (as source): drop dependency
on valgrind on generated pkgconfig files. The .pc files are
auto-generated by meson and are 'technically' correct, but we do
not want to inject valgrind here (we can get away with this hack
as it's only relevant when using pkg-config --static, and we
do not provide static libs anyway).
==== lsof ====
- format.patch: Use correct scanf/printf format for uint64_t
- Build with %{optflags}
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client
- Add 0006-nfsd-allow-server-scope-to-be-set-with-config-or-com.patch
Allow server scope to be set - removes the need to run nfsd
inside a private UTS namespace for fail-over applications
(bsc#1203746)
==== orc ====
Version update (0.4.32 -> 0.4.33)
- Update to version 0.4.33:
+ Add support for aarch64 (64-bit ARM) architecture.
+ aarch32: Implement loadupdb instruction used e.g. for video
pixel format packing/unpacking/conversions.
+ neon: Fix unsigned only implementation of loadoffb, loadoffw
and loadoffl.
+ neon: Fix testsuite not passing on arm CPUs.
+ orccodemem: Fix use-after-free in error paths.
+ orccpu-powerpc: Fix build with kernel < 4.11.
+ Add support for macOS Hardened Runtime.
+ Enable only SSE and MMX backends for Windows.
+ Fix ORC_RESTRICT definition for MSVC.
+ pkgconfig: add -DORC_STATIC_COMPILATION flag to .pc file for
static-only builds.
==== python-anyio ====
Version update (3.5.0 -> 3.6.2)
- update to 3.6.2:
- Pinned Trio to < 0.22 to avoid incompatibility with AnyIO's ``ExceptionGroup`` class
causing ``AttributeError: 'NonBaseMultiError' object has no attribute '_exceptions'``
(AnyIO 4 is unaffected)
- Fixed exception handler in the asyncio test runner not properly handling a context
that does not contain the ``exception`` key
- Fixed ``TypeError`` in ``get_current_task()`` on asyncio when using a custom ``Task`` factory
- Updated type annotations on ``run_process()`` and ``open_process()``:
* ``command`` now accepts accepts bytes and sequences of bytes
* ``stdin``, ``stdout`` and ``stderr`` now accept file-like objects
- Changed the pytest plugin to run both the setup and teardown phases of asynchronous
generator fixtures within a single task to enable use cases such as cancel scopes and
task groups where a context manager straddles the ``yield``
- drop anyio-pytest7.patch (upstream)
==== sudo ====
Version update (1.9.12 -> 1.9.12p1)
Subpackages: sudo-plugin-python
- Update to 1.9.12p1:
* Changes in 1.9.12p1:
- Sudoâs configure script now does a better job of detecting when
the -fstack-clash-protection compiler option does not work.
GitHub issue #191.
- Fixed CVE-2022-43995, a potential out-of-bounds write for passwords
smaller than 8 characters when passwd authentication is enabled.
This does not affect configurations that use other authentication
methods such as PAM, AIX authentication or BSD authentication.
- Fixed a build error with some configurations compiling host_port.c.
* Dropped sudo-CVE-2022-43995.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
grub2
lsof
nfs-utils
orc (0.4.32 -> 0.4.33)
python-anyio (3.5.0 -> 3.6.2)
sudo (1.9.12 -> 1.9.12p1)
ucode-intel (20220809 -> 20221108)
=== Details ===
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Fix regression of reverting back to asking password twice when a keyfile is
already used (bsc#1205309)
* 0010-templates-import-etc-crypttab-to-grub.cfg.patch
==== lsof ====
- format.patch: Use correct scanf/printf format for uint64_t
- Build with %{optflags}
==== nfs-utils ====
Subpackages: libnfsidmap1 nfs-client
- Add 0006-nfsd-allow-server-scope-to-be-set-with-config-or-com.patch
Allow server scope to be set - removes the need to run nfsd
inside a private UTS namespace for fail-over applications
(bsc#1203746)
==== orc ====
Version update (0.4.32 -> 0.4.33)
- Update to version 0.4.33:
+ Add support for aarch64 (64-bit ARM) architecture.
+ aarch32: Implement loadupdb instruction used e.g. for video
pixel format packing/unpacking/conversions.
+ neon: Fix unsigned only implementation of loadoffb, loadoffw
and loadoffl.
+ neon: Fix testsuite not passing on arm CPUs.
+ orccodemem: Fix use-after-free in error paths.
+ orccpu-powerpc: Fix build with kernel < 4.11.
+ Add support for macOS Hardened Runtime.
+ Enable only SSE and MMX backends for Windows.
+ Fix ORC_RESTRICT definition for MSVC.
+ pkgconfig: add -DORC_STATIC_COMPILATION flag to .pc file for
static-only builds.
==== python-anyio ====
Version update (3.5.0 -> 3.6.2)
- update to 3.6.2:
- Pinned Trio to < 0.22 to avoid incompatibility with AnyIO's ``ExceptionGroup`` class
causing ``AttributeError: 'NonBaseMultiError' object has no attribute '_exceptions'``
(AnyIO 4 is unaffected)
- Fixed exception handler in the asyncio test runner not properly handling a context
that does not contain the ``exception`` key
- Fixed ``TypeError`` in ``get_current_task()`` on asyncio when using a custom ``Task`` factory
- Updated type annotations on ``run_process()`` and ``open_process()``:
* ``command`` now accepts accepts bytes and sequences of bytes
* ``stdin``, ``stdout`` and ``stderr`` now accept file-like objects
- Changed the pytest plugin to run both the setup and teardown phases of asynchronous
generator fixtures within a single task to enable use cases such as cancel scopes and
task groups where a context manager straddles the ``yield``
- drop anyio-pytest7.patch (upstream)
==== sudo ====
Version update (1.9.12 -> 1.9.12p1)
Subpackages: sudo-plugin-python
- Update to 1.9.12p1:
* Changes in 1.9.12p1:
- Sudoâs configure script now does a better job of detecting when
the -fstack-clash-protection compiler option does not work.
GitHub issue #191.
- Fixed CVE-2022-43995, a potential out-of-bounds write for passwords
smaller than 8 characters when passwd authentication is enabled.
This does not affect configurations that use other authentication
methods such as PAM, AIX authentication or BSD authentication.
- Fixed a build error with some configurations compiling host_port.c.
* Dropped sudo-CVE-2022-43995.patch
==== ucode-intel ====
Version update (20220809 -> 20221108)
- Updated to Intel CPU Microcode 20221108 release. (bsc#1205602)
- Update for functional issues. Refer to [Intel(R) Xeon(R) D-2700 Processor Family Specification Update](https://www.intel.com/content/www/us/en/content-details/714071/inte… for details.
- Update for functional issues. Refer to [13th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/740518)
- Update for functional issues. Refer to [12th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/682436)
- Update for functional issues. Refer to [11th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/634808) for details.
- Update for functional issues. Refer to [10th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/615213) for details.
- Update for functional issues. Refer to [8th and 9th Generation Intel(R) Core(TM) Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/co… for details.
- Update for functional issues. Refer to [8th Generation Intel(R) Core(TM) Processor Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338025) for details.
[#]## New Platforms
| Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products
|:---------------|:---------|:------------|:---------|:---------|:---------
| ICL-D | B0 | 06-6c-01/10 | | 01000201 | Xeon D-17xx, D-27xx
| RPL-S | S0 | 06-b7-01/32 | | 0000010e | Core Gen13
[#]## Updated Platforms
| Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products
|:---------------|:---------|:------------|:---------|:---------|:---------
| ICL-U/Y | D1 | 06-7e-05/80 | 000000b2 | 000000b6 | Core Gen10 Mobile
| TGL | B1 | 06-8c-01/80 | 000000a4 | 000000a6 | Core Gen11 Mobile
| TGL-H | R0 | 06-8d-01/c2 | 00000040 | 00000042 | Core Gen11 Mobile
| AML-Y42 | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen10 Mobile
| CML-Y42 | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen10 Mobile
| WHL-U | V0 | 06-8e-0c/94 | 000000f0 | 000000f4 | Core Gen8 Mobile
| EHL | B1 | 06-96-01/01 | 00000016 | 00000017 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E
| ADL | C0 | 06-97-02/07 | 00000022 | 00000026 | Core Gen12
| ADL | C0 | 06-97-05/07 | 00000022 | 00000026 | Core Gen12
| ADL | L0 | 06-9a-03/80 | 00000421 | 00000424 | Core Gen12
| ADL | L0 | 06-9a-04/80 | 00000421 | 00000424 | Core Gen12
| CFL-H | R0 | 06-9e-0d/22 | 000000f0 | 000000f4 | Core Gen9 Mobile
| CML-H | R1 | 06-a5-02/20 | 000000f0 | 000000f4 | Core Gen10 Mobile
| CML-S62 | G1 | 06-a5-03/22 | 000000f0 | 000000f4 | Core Gen10
| CML-S102 | Q0 | 06-a5-05/22 | 000000f0 | 000000f4 | Core Gen10
| CML-U62 V1 | A0 | 06-a6-00/80 | 000000f0 | 000000f4 | Core Gen10 Mobile
| CML-U62 V2 | K1 | 06-a6-01/80 | 000000f0 | 000000f4 | Core Gen10 Mobile
| RKL-S | B0 | 06-a7-01/02 | 00000054 | 00000056 | Core Gen11
| ADL | C0 | 06-bf-02/07 | 00000022 | 00000026 | Core Gen12
| ADL | C0 | 06-bf-05/07 | 00000022 | 00000026 | Core Gen12
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (22.2.3 -> 22.2.4)
Mesa-drivers (22.2.3 -> 22.2.4)
bind (9.18.8 -> 9.18.9)
flatpak (1.14.0 -> 1.14.1)
gssdp (1.6.1 -> 1.6.2)
gupnp (1.6.1 -> 1.6.2)
hplip
ibus
libXdmcp (1.1.3 -> 1.1.4)
libXpm (3.5.13 -> 3.5.14)
libXrandr (1.5.2 -> 1.5.3)
libcontainers-common
mozjs102 (102.4.0 -> 102.5.0)
mpfr
patterns-microos
python-Twisted
python-rich (12.5.1 -> 12.6.0)
python-typing_extensions
raspberrypi-firmware (2022.10.26 -> 2022.11.18)
raspberrypi-firmware-config (2022.10.26 -> 2022.11.18)
suse-module-tools (16.0.26 -> 16.0.27)
yast2-ntp-client (4.5.1 -> 4.5.2)
yast2-online-update (4.5.1 -> 4.5.2)
yast2-storage-ng (4.5.13 -> 4.5.14)
=== Details ===
==== Mesa ====
Version update (22.2.3 -> 22.2.4)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- update to 22.2.4:
* clover: windows: library filename has \`-1` suffix and a \`lib` prefix
when built with mingw
* radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic
rendering only"
* gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.*
* v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue)
* panfrost t860 glmark-es2 regression
* radv: Flickering in Spider-Man Remastered (Regression) (Bisected)
* radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC
enabled
* panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and
bad shader compilations on 3.3
==== Mesa-drivers ====
Version update (22.2.3 -> 22.2.4)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- update to 22.2.4:
* clover: windows: library filename has \`-1` suffix and a \`lib` prefix
when built with mingw
* radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic
rendering only"
* gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.*
* v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue)
* panfrost t860 glmark-es2 regression
* radv: Flickering in Spider-Man Remastered (Regression) (Bisected)
* radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC
enabled
* panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and
bad shader compilations on 3.3
==== bind ====
Version update (9.18.8 -> 9.18.9)
- Update to bind release 9.18.9
Bug Fixes:
* A crash was fixed that happened when a dnssec-policy zone that
used NSEC3 was reconfigured to enable inline-signing.
* In certain resolution scenarios, quotas could be erroneously
reached for servers, including any configured forwarders,
resulting in SERVFAIL answers being sent to clients.
* rpz-ip rules in response-policy zones could be ineffective in
some cases if a query had the CD (Checking Disabled) bit set to
1.
* Previously, if Internet connectivity issues were experienced
during the initial startup of named, a BIND resolver with
dnssec-validation set to auto could enter into a state where it
would not recover without stopping named, manually deleting the
managed-keys.bind and managed-keys.bind.jnl files, and starting
named again.
* The statistics counter representing the current number of
clients awaiting recursive resolution results (RecursClients)
could overflow in certain resolution scenarios.
* Previously, the port in remote servers such as in primaries and
parental-agents could be wrongly configured because of an
inheritance bug.
* Previously, BIND failed to start on Solaris-based systems with
hundreds of CPUs.
* When a DNS resource recordâs TTL value was equal to the
resolverâs configured prefetch âeligibilityâ value, the record
was erroneously not treated as eligible for prefetching.
==== flatpak ====
Version update (1.14.0 -> 1.14.1)
Subpackages: libflatpak0 system-user-flatpak
- Update to version 1.14.1:
+ New features: Add a httpbackend variable to flatpak.pc,
allowing dependent projects like GNOME Software to detect
whether they are compatible with libflatpak.
+ Bugs fixed:
- Terminate the flatpak-session-helper and flatpak-portal
services when the session ends, so that applications will not
inherit outdated Wayland and X11 socket addresses.
- When using fish shell, don't overwrite a previously-set
XDG_DATA_DIRS.
- Don't try to enable HTTP 2 if linked to a libcurl version
that doesn't support it.
- Stop systemd reporting the session-helper as failed when
terminated by a signal.
- Fix a warning when listing a document with no permissions.
- Fix compilation with GLib 2.66.x (as used in Debian 11).
- Fix compilation with GLib 2.58.x (as used in Debian 10).
- Fix a compiler warning on 32-bit architectures.
- If an app update is blocked by parental controls policies,
clean up the temporary deploy directory.
- Fix Autotools build with versions of gpgme that no longer
provide gpgme-config(1).
- When building with Autotools, be more consistent about
applying compiler warning flags.
- Unset $TEMP, $TEMPDIR and $TMP for apps, the same as $TMPDIR.
- Treat /efi the same as /boot/efi.
- Make generated files more reproducible.
+ Updated translations.
- Add and recommend a package flatpak-remote-flathub which adds
the Flathub repository (boo#1186315)
==== gssdp ====
Version update (1.6.1 -> 1.6.2)
- Update to version 1.6.2:
+ Propagate random port up to client, partial fix for GUPnP/81
+ Add manpage for sniffer.
- Pass manpages=false to meson, we do not have the needed pandoc
BuildRequires available for all arches/buildtargets.
==== gupnp ====
Version update (1.6.1 -> 1.6.2)
- Update to version 1.6.2:
+ Add test for issue 81.
+ Bugs fixed in this release:
- https://gitlab.gnome.org/GNOME/gupnp/issues/81
==== hplip ====
Subpackages: hplip-hpijs hplip-udev-rules
- Update disable_hp-upgrade.patch: Log the 'openSUSE disabled this
for security message' is 'info', not 'error'.
==== ibus ====
Subpackages: ibus-dict-emoji libibus-1_0-5 typelib-1_0-IBus-1_0
- Switch to use systemd service file to start ibus daemon
* Fix boo#1201421
* Add ibus-ui-gtk3-restart-via-systemd.patch
* Enable ibus-autostart for xdg-autostart-generator
==== libXdmcp ====
Version update (1.1.3 -> 1.1.4)
- Update to version 1.1.4
* Update configure.ac bug URL for gitlab migration
* gitlab CI: add a basic build test
* Fix build on Solaris 11.3.0 - 11.3.8
* Fix spelling/wording issues
* gitlab CI: enable doc builds in basic build test
* Use memcpy() instead of memmove() when buffers are known not to overlap
* arc4random_buf: Only declare ret if HAVE_GETENTROPY is defined
* XdmcpDisposeARRAYofARRAY8: Reduce scope of i
* Only link with libbsd if needed for arc4random_buf()
* Switch from libbsd to libbsd-overlay
==== libXpm ====
Version update (3.5.13 -> 3.5.14)
- Update to version 3.5.14
* Fix spelling/wording issues
* man: strip trailing whitespace
* gitlab CI: add a basic build test
* man pages: Make file names consistent with their displayed names
* man pages: Fix shadow man pages
* man pages: Make function synopses more consistent with other pages
* man pages: Add missing word 'function' where needed
* man pages: Fix typos
* man pages: Correct Copyright/License notices
* add man pages based on doc/xpm.PS
* update man pages
==== libXrandr ====
Version update (1.5.2 -> 1.5.3)
- Update to version 1.5.3
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* Xrandr.h: remove misleading comment for XRRGetScreenSizeRange()
* XRRGetProviderInfo: Remove unneeded ProviderInfoExtra
* Variable scope reductions as recommended by cppcheck
* Remove unnecessary casts of return values from malloc()
==== libcontainers-common ====
- add container-storage-driver.sh (bsc#1197093)
- postinstall script: slight cleanup, no functional change
==== mozjs102 ====
Version update (102.4.0 -> 102.5.0)
- Update to version 102.5.0:
+ Various stability, functionality, and security fixes.
+ CVE-2022-45403: Service Workers might have learned size of
cross-origin media files.
+ CVE-2022-45404: Fullscreen notification bypass.
+ CVE-2022-45405: Use-after-free in InputStream implementation.
+ CVE-2022-45406: Use-after-free of a JavaScript Realm.
+ CVE-2022-45408: Fullscreen notification bypass via windowName.
+ CVE-2022-45409: Use-after-free in Garbage Collection.
+ CVE-2022-45410: ServiceWorker-intercepted requests bypassed
SameSite cookie policy.
+ CVE-2022-45411: Cross-Site Tracing was possible via
non-standard override headers.
+ CVE-2022-45412: Symlinks may resolve to partially uninitialized
buffers.
+ CVE-2022-45416: Keystroke Side-Channel Leakage.
+ CVE-2022-45418: Custom mouse cursor could have been drawn over
browser UI.
+ CVE-2022-45420: Iframe contents could be rendered outside the
iframe.
+ CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and
Firefox ESR 102.5.
==== mpfr ====
- package license files correctly
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add fonts to KDE pattern, so common unicode characters are
displayed on default install (boo#1205546)
- Add noto-sans-math-fonts
- google-noto-sans-cjk-fonts
==== python-Twisted ====
Subpackages: python310-Twisted python310-Twisted-tls
- Skip rpmlint error python-tests-in-package.
==== python-rich ====
Version update (12.5.1 -> 12.6.0)
- change Source URL to https://files.pythonhosted.org
- change Upstream URL to https://github.com/Textualize/rich
- add _service file to easily download this
- remove CHANGELOG.md, as this is not present in the PyPI tarball
- Update to 12.6.0:
* Added
- Parse ANSI escape sequences in pretty repr #2470
- Add support for FORCE_COLOR env var #2449
- Allow a max_depth argument to be passed to the install() hook #2486
- Document using None as name in __rich_repr__ for tuple positional args #2379
- Add font_aspect_ratio parameter in SVG export https://github.com/Textualize/rich/pull/2539/files
- Added Table.add_section method. #2544
* Fixed
- Handle stdout/stderr being null #2513
- Fix NO_COLOR support on legacy Windows #2458
- Fix pretty printer handling of cyclic references #2524
- Fix missing mode property on file wrapper breaking uploads via requests #2495
- Fix mismatching default value of parameter ensure_ascii #2538
- Remove unused height parameter in Layout class #2540
- Fixed exception in Syntax.rich_measure for empty files
* Changed
- Removed border from code blocks in Markdown
==== python-typing_extensions ====
- Back to multibuild: remove python-testsuite from buildcycle,
because of setuptools_scm closing it at the other end.
==== raspberrypi-firmware ====
Version update (2022.10.26 -> 2022.11.18)
- Update to b8a7365 (2022-11-18):
* firmware: arm_loader: Improvements to Compute Module audio
See: https://forums.raspberrypi.com/viewtopic.php?p=2052680
* firmware: arm_loader: Fix GPIO bank 1 support
See: #1756
==== raspberrypi-firmware-config ====
Version update (2022.10.26 -> 2022.11.18)
- Update to b8a7365 (2022-11-18):
* firmware: arm_loader: Improvements to Compute Module audio
See: https://forums.raspberrypi.com/viewtopic.php?p=2052680
* firmware: arm_loader: Fix GPIO bank 1 support
See: #1756
==== suse-module-tools ====
Version update (16.0.26 -> 16.0.27)
- Update to version 16.0.27:
* 80-hotplug-cpu-mem.rules: use CONST{arch} (bsc#1204423)
==== yast2-ntp-client ====
Version update (4.5.1 -> 4.5.2)
- Fix the netconfig executable path using /sbin/netconfig instead
of /usr/sbin/netconfig which is not available in SLE-15-SP5
(bsc#1205401)
- 4.5.2
==== yast2-online-update ====
Version update (4.5.1 -> 4.5.2)
Subpackages: yast2-online-update-frontend
- bsc#1204907
- Dropped old workaround from 2.13.15 with unconditional refresh
of all repositories.
- 4.5.2
==== yast2-storage-ng ====
Version update (4.5.13 -> 4.5.14)
- GuidedProposal: support for LUKS2 encryption with a configurable
PBKDF to be used by D-Installer (related to jsc#PED-2182).
- 4.5.14
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (22.2.3 -> 22.2.4)
Mesa-drivers (22.2.3 -> 22.2.4)
bind (9.18.8 -> 9.18.9)
flatpak (1.14.0 -> 1.14.1)
gssdp (1.6.1 -> 1.6.2)
gupnp (1.6.1 -> 1.6.2)
hplip
java-19-openjdk
libXdmcp (1.1.3 -> 1.1.4)
libXpm (3.5.13 -> 3.5.14)
libXrandr (1.5.2 -> 1.5.3)
libcontainers-common
mozjs102 (102.4.0 -> 102.5.0)
mpfr
patterns-microos
python-Twisted
python-rich (12.5.1 -> 12.6.0)
python-typing_extensions
suse-module-tools (16.0.26 -> 16.0.27)
yast2-ntp-client (4.5.1 -> 4.5.2)
yast2-online-update (4.5.1 -> 4.5.2)
yast2-storage-ng (4.5.13 -> 4.5.14)
=== Details ===
==== Mesa ====
Version update (22.2.3 -> 22.2.4)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- update to 22.2.4:
* clover: windows: library filename has \`-1` suffix and a \`lib` prefix
when built with mingw
* radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic
rendering only"
* gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.*
* v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue)
* panfrost t860 glmark-es2 regression
* radv: Flickering in Spider-Man Remastered (Regression) (Bisected)
* radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC
enabled
* panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and
bad shader compilations on 3.3
==== Mesa-drivers ====
Version update (22.2.3 -> 22.2.4)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- update to 22.2.4:
* clover: windows: library filename has \`-1` suffix and a \`lib` prefix
when built with mingw
* radv, dxvk: Rendering errors in World of Tanks after "Switch to dynamic
rendering only"
* gen9 gt3e/gt4e skus fail dEQP-VK.pipeline.multisample.sample_locations_ext.*
* v3d: Wrong colors (pink) in videos in Firefox (likely YUV->RGB shader issue)
* panfrost t860 glmark-es2 regression
* radv: Flickering in Spider-Man Remastered (Regression) (Bisected)
* radv: Hitman 2 using Direct3D 12 has discolored squares on RDNA2 with DCC
enabled
* panfrost/midgard - on Duckstation PSX emulator: segfault on GLES 3.0 and
bad shader compilations on 3.3
==== bind ====
Version update (9.18.8 -> 9.18.9)
- Update to bind release 9.18.9
Bug Fixes:
* A crash was fixed that happened when a dnssec-policy zone that
used NSEC3 was reconfigured to enable inline-signing.
* In certain resolution scenarios, quotas could be erroneously
reached for servers, including any configured forwarders,
resulting in SERVFAIL answers being sent to clients.
* rpz-ip rules in response-policy zones could be ineffective in
some cases if a query had the CD (Checking Disabled) bit set to
1.
* Previously, if Internet connectivity issues were experienced
during the initial startup of named, a BIND resolver with
dnssec-validation set to auto could enter into a state where it
would not recover without stopping named, manually deleting the
managed-keys.bind and managed-keys.bind.jnl files, and starting
named again.
* The statistics counter representing the current number of
clients awaiting recursive resolution results (RecursClients)
could overflow in certain resolution scenarios.
* Previously, the port in remote servers such as in primaries and
parental-agents could be wrongly configured because of an
inheritance bug.
* Previously, BIND failed to start on Solaris-based systems with
hundreds of CPUs.
* When a DNS resource recordâs TTL value was equal to the
resolverâs configured prefetch âeligibilityâ value, the record
was erroneously not treated as eligible for prefetching.
==== flatpak ====
Version update (1.14.0 -> 1.14.1)
Subpackages: libflatpak0 system-user-flatpak
- Update to version 1.14.1:
+ New features: Add a httpbackend variable to flatpak.pc,
allowing dependent projects like GNOME Software to detect
whether they are compatible with libflatpak.
+ Bugs fixed:
- Terminate the flatpak-session-helper and flatpak-portal
services when the session ends, so that applications will not
inherit outdated Wayland and X11 socket addresses.
- When using fish shell, don't overwrite a previously-set
XDG_DATA_DIRS.
- Don't try to enable HTTP 2 if linked to a libcurl version
that doesn't support it.
- Stop systemd reporting the session-helper as failed when
terminated by a signal.
- Fix a warning when listing a document with no permissions.
- Fix compilation with GLib 2.66.x (as used in Debian 11).
- Fix compilation with GLib 2.58.x (as used in Debian 10).
- Fix a compiler warning on 32-bit architectures.
- If an app update is blocked by parental controls policies,
clean up the temporary deploy directory.
- Fix Autotools build with versions of gpgme that no longer
provide gpgme-config(1).
- When building with Autotools, be more consistent about
applying compiler warning flags.
- Unset $TEMP, $TEMPDIR and $TMP for apps, the same as $TMPDIR.
- Treat /efi the same as /boot/efi.
- Make generated files more reproducible.
+ Updated translations.
- Add and recommend a package flatpak-remote-flathub which adds
the Flathub repository (boo#1186315)
==== gssdp ====
Version update (1.6.1 -> 1.6.2)
- Update to version 1.6.2:
+ Propagate random port up to client, partial fix for GUPnP/81
+ Add manpage for sniffer.
- Pass manpages=false to meson, we do not have the needed pandoc
BuildRequires available for all arches/buildtargets.
==== gupnp ====
Version update (1.6.1 -> 1.6.2)
- Update to version 1.6.2:
+ Add test for issue 81.
+ Bugs fixed in this release:
- https://gitlab.gnome.org/GNOME/gupnp/issues/81
==== hplip ====
Subpackages: hplip-hpijs hplip-udev-rules
- Update disable_hp-upgrade.patch: Log the 'openSUSE disabled this
for security message' is 'info', not 'error'.
==== java-19-openjdk ====
Subpackages: java-19-openjdk-headless
- Enable JIT on riscv64
==== libXdmcp ====
Version update (1.1.3 -> 1.1.4)
- Update to version 1.1.4
* Update configure.ac bug URL for gitlab migration
* gitlab CI: add a basic build test
* Fix build on Solaris 11.3.0 - 11.3.8
* Fix spelling/wording issues
* gitlab CI: enable doc builds in basic build test
* Use memcpy() instead of memmove() when buffers are known not to overlap
* arc4random_buf: Only declare ret if HAVE_GETENTROPY is defined
* XdmcpDisposeARRAYofARRAY8: Reduce scope of i
* Only link with libbsd if needed for arc4random_buf()
* Switch from libbsd to libbsd-overlay
==== libXpm ====
Version update (3.5.13 -> 3.5.14)
- Update to version 3.5.14
* Fix spelling/wording issues
* man: strip trailing whitespace
* gitlab CI: add a basic build test
* man pages: Make file names consistent with their displayed names
* man pages: Fix shadow man pages
* man pages: Make function synopses more consistent with other pages
* man pages: Add missing word 'function' where needed
* man pages: Fix typos
* man pages: Correct Copyright/License notices
* add man pages based on doc/xpm.PS
* update man pages
==== libXrandr ====
Version update (1.5.2 -> 1.5.3)
- Update to version 1.5.3
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* Xrandr.h: remove misleading comment for XRRGetScreenSizeRange()
* XRRGetProviderInfo: Remove unneeded ProviderInfoExtra
* Variable scope reductions as recommended by cppcheck
* Remove unnecessary casts of return values from malloc()
==== libcontainers-common ====
- add container-storage-driver.sh (bsc#1197093)
- postinstall script: slight cleanup, no functional change
==== mozjs102 ====
Version update (102.4.0 -> 102.5.0)
- Update to version 102.5.0:
+ Various stability, functionality, and security fixes.
+ CVE-2022-45403: Service Workers might have learned size of
cross-origin media files.
+ CVE-2022-45404: Fullscreen notification bypass.
+ CVE-2022-45405: Use-after-free in InputStream implementation.
+ CVE-2022-45406: Use-after-free of a JavaScript Realm.
+ CVE-2022-45408: Fullscreen notification bypass via windowName.
+ CVE-2022-45409: Use-after-free in Garbage Collection.
+ CVE-2022-45410: ServiceWorker-intercepted requests bypassed
SameSite cookie policy.
+ CVE-2022-45411: Cross-Site Tracing was possible via
non-standard override headers.
+ CVE-2022-45412: Symlinks may resolve to partially uninitialized
buffers.
+ CVE-2022-45416: Keystroke Side-Channel Leakage.
+ CVE-2022-45418: Custom mouse cursor could have been drawn over
browser UI.
+ CVE-2022-45420: Iframe contents could be rendered outside the
iframe.
+ CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and
Firefox ESR 102.5.
==== mpfr ====
- package license files correctly
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add fonts to KDE pattern, so common unicode characters are
displayed on default install (boo#1205546)
- Add noto-sans-math-fonts
- google-noto-sans-cjk-fonts
==== python-Twisted ====
Subpackages: python310-Twisted python310-Twisted-tls
- Skip rpmlint error python-tests-in-package.
==== python-rich ====
Version update (12.5.1 -> 12.6.0)
- change Source URL to https://files.pythonhosted.org
- change Upstream URL to https://github.com/Textualize/rich
- add _service file to easily download this
- remove CHANGELOG.md, as this is not present in the PyPI tarball
- Update to 12.6.0:
* Added
- Parse ANSI escape sequences in pretty repr #2470
- Add support for FORCE_COLOR env var #2449
- Allow a max_depth argument to be passed to the install() hook #2486
- Document using None as name in __rich_repr__ for tuple positional args #2379
- Add font_aspect_ratio parameter in SVG export https://github.com/Textualize/rich/pull/2539/files
- Added Table.add_section method. #2544
* Fixed
- Handle stdout/stderr being null #2513
- Fix NO_COLOR support on legacy Windows #2458
- Fix pretty printer handling of cyclic references #2524
- Fix missing mode property on file wrapper breaking uploads via requests #2495
- Fix mismatching default value of parameter ensure_ascii #2538
- Remove unused height parameter in Layout class #2540
- Fixed exception in Syntax.rich_measure for empty files
* Changed
- Removed border from code blocks in Markdown
==== python-typing_extensions ====
- Back to multibuild: remove python-testsuite from buildcycle,
because of setuptools_scm closing it at the other end.
==== suse-module-tools ====
Version update (16.0.26 -> 16.0.27)
- Update to version 16.0.27:
* 80-hotplug-cpu-mem.rules: use CONST{arch} (bsc#1204423)
==== yast2-ntp-client ====
Version update (4.5.1 -> 4.5.2)
- Fix the netconfig executable path using /sbin/netconfig instead
of /usr/sbin/netconfig which is not available in SLE-15-SP5
(bsc#1205401)
- 4.5.2
==== yast2-online-update ====
Version update (4.5.1 -> 4.5.2)
Subpackages: yast2-online-update-frontend
- bsc#1204907
- Dropped old workaround from 2.13.15 with unconditional refresh
of all repositories.
- 4.5.2
==== yast2-storage-ng ====
Version update (4.5.13 -> 4.5.14)
- GuidedProposal: support for LUKS2 encryption with a configurable
PBKDF to be used by D-Installer (related to jsc#PED-2182).
- 4.5.14
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ibus
ibus_gtk4
=== Details ===
==== ibus ====
Subpackages: ibus-dict-emoji ibus-gtk ibus-gtk3 ibus-lang libibus-1_0-5 typelib-1_0-IBus-1_0
- Switch to use systemd service file to start ibus daemon
* Fix boo#1201421
* Add ibus-ui-gtk3-restart-via-systemd.patch
* Enable ibus-autostart for xdg-autostart-generator
==== ibus_gtk4 ====
- Switch to use systemd service file to start ibus daemon
* Fix boo#1201421
* Add ibus-ui-gtk3-restart-via-systemd.patch
* Enable ibus-autostart for xdg-autostart-generator
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
MozillaFirefox (106.0.5 -> 107.0)
NetworkManager-openvpn (1.10.0 -> 1.10.2)
attica-qt5 (5.99.0 -> 5.100.0)
autoyast2 (4.5.8 -> 4.5.9)
baloo5 (5.99.0 -> 5.100.0)
bluez (5.65 -> 5.66)
bluez-qt (5.99.0 -> 5.100.0)
breeze5-icons (5.99.0 -> 5.100.0)
busybox
cni (1.0.1 -> 1.1.2)
curl
distrobox
dracut (057+suse.337.g4162a70e -> 057+suse.344.g021aead9)
exiv2
ffmpeg-4
frameworkintegration (5.99.0 -> 5.100.0)
grantlee5 (5.2.0 -> 5.3.1)
graphviz
grub2
gtk4
hwdata (0.363 -> 0.364)
installation-images-MicroOS (17.64 -> 17.65)
kactivities-stats (5.99.0 -> 5.100.0)
kactivities5 (5.99.0 -> 5.100.0)
karchive (5.99.0 -> 5.100.0)
kauth (5.99.0 -> 5.100.0)
kbookmarks (5.99.0 -> 5.100.0)
kcmutils (5.99.0 -> 5.100.0)
kcodecs (5.99.0 -> 5.100.0)
kcompletion (5.99.0 -> 5.100.0)
kconfig (5.99.0 -> 5.100.0)
kconfigwidgets (5.99.0 -> 5.100.0)
kcoreaddons (5.99.0 -> 5.100.0)
kcrash (5.99.0 -> 5.100.0)
kdbusaddons (5.99.0 -> 5.100.0)
kdeclarative (5.99.0 -> 5.100.0)
kded (5.99.0 -> 5.100.0)
kdelibs4support (5.99.0 -> 5.100.0)
kdesu (5.99.0 -> 5.100.0)
kdnssd-framework (5.99.0 -> 5.100.0)
kdoctools (5.99.0 -> 5.100.0)
kdump (1.0.2+git19.g0c60ffb -> 1.0.2+git20.gcb129d0)
kernel-firmware (20221031 -> 20221109)
kfilemetadata5 (5.99.0 -> 5.100.0)
kglobalaccel (5.99.0 -> 5.100.0)
kguiaddons (5.99.0 -> 5.100.0)
kholidays (5.99.0 -> 5.100.0)
khtml (5.99.0 -> 5.100.0)
ki18n (5.99.0 -> 5.100.0)
kiconthemes (5.99.0 -> 5.100.0)
kidletime (5.99.0 -> 5.100.0)
kimageformats (5.99.0 -> 5.100.0)
kinit (5.99.0 -> 5.100.0)
kio (5.99.0 -> 5.100.0)
kirigami2 (5.99.0 -> 5.100.0)
kitemmodels (5.99.0 -> 5.100.0)
kitemviews (5.99.0 -> 5.100.0)
kjobwidgets (5.99.0 -> 5.100.0)
kjs (5.99.0 -> 5.100.0)
knewstuff (5.99.0 -> 5.100.0)
knotifications (5.99.0 -> 5.100.0)
knotifyconfig (5.99.0 -> 5.100.0)
kpackage (5.99.0 -> 5.100.0)
kparts (5.99.0 -> 5.100.0)
kpeople5 (5.99.0 -> 5.100.0)
kpty (5.99.0 -> 5.100.0)
kquickcharts (5.99.0 -> 5.100.0)
krb5 (1.20 -> 1.20.1)
krunner (5.99.0 -> 5.100.0)
kservice (5.99.0 -> 5.100.0)
ktexteditor (5.99.0 -> 5.100.0)
ktextwidgets (5.99.0 -> 5.100.0)
kunitconversion (5.99.0 -> 5.100.0)
kwallet (5.99.0 -> 5.100.0)
kwayland (5.99.0 -> 5.100.0)
kwidgetsaddons (5.99.0 -> 5.100.0)
kwindowsystem (5.99.0 -> 5.100.0)
kxmlgui (5.99.0 -> 5.100.0)
lcms2
libKF5ModemManagerQt (5.99.0 -> 5.100.0)
libKF5NetworkManagerQt (5.99.0 -> 5.100.0)
libXft (2.3.6 -> 2.3.7)
libalternatives
libavif (0.11.0 -> 0.11.1)
libeconf (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704)
libinput (1.21.0 -> 1.22.0)
libnma
libpipeline (1.5.6 -> 1.5.7)
libstorage-ng (4.5.50 -> 4.5.52)
libwnck
llvm15 (15.0.3 -> 15.0.5)
mozilla-nss (3.83 -> 3.84)
mpfr (4.1.0 -> 4.1.1)
open-iscsi
openssh
patterns-microos
pipewire (0.3.59 -> 0.3.60)
plasma-browser-integration (5.26.2 -> 5.26.3)
plasma-framework (5.99.0 -> 5.100.1)
plasma5-workspace
plymouth
poppler (22.10.0 -> 22.11.0)
poppler-qt5 (22.10.0 -> 22.11.0)
prison-qt5 (5.99.0 -> 5.100.0)
purpose (5.99.0 -> 5.100.0)
python-certifi (2021.10.8 -> 2022.9.24)
python-jsonschema (4.16.0 -> 4.17.0)
python-setuptools (65.5.0 -> 65.5.1)
qemu
qqc2-desktop-style (5.99.0 -> 5.100.0)
samba (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298)
sed (4.8 -> 4.9)
selinux-policy (20220714 -> 20221019)
shim (15.6 -> 15.7)
solid (5.99.0 -> 5.100.0)
sonnet (5.99.0 -> 5.100.0)
syndication (5.99.0 -> 5.100.0)
syntax-highlighting (5.99.0 -> 5.100.0)
system-config-printer (1.5.16 -> 1.5.18)
systemd (251.8 -> 252.1)
taglib (1.12 -> 1.13)
texinfo (6.8 -> 7.0)
threadweaver (5.99.0 -> 5.100.0)
tiff
udisks2
webkit2gtk3
webkit2gtk4
wireless-regdb (20220812 -> 20221012)
wireplumber
xfsprogs (5.19.0 -> 6.0.0)
xterm (375 -> 376)
xz (5.2.7 -> 5.2.8)
yast2 (4.5.18 -> 4.5.19)
yast2-installation (4.5.8 -> 4.5.9)
yast2-packager (4.5.6 -> 4.5.8)
yast2-pkg-bindings (4.5.0 -> 4.5.1)
yast2-samba-client (4.5.1 -> 4.5.2)
yast2-security (4.5.1 -> 4.5.3)
yast2-storage-ng (4.5.10 -> 4.5.13)
yast2-update (4.5.1 -> 4.5.2)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- try to fix build on ppc64le due to running OOM (boo#1205441)
* let's request 20G of physical memory via _constraints file
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- try to fix build on ppc64le due to running OOM (boo#1205441)
* let's request 20G of physical memory via _constraints file
==== MozillaFirefox ====
Version update (106.0.5 -> 107.0)
- Mozilla Firefox 107.0
MFSA 2022-47 (bsc#1205270)
* CVE-2022-45403 (bmo#1762078)
Service Workers might have learned size of cross-origin media files
* CVE-2022-45404 (bmo#1790815)
Fullscreen notification bypass
* CVE-2022-45405 (bmo#1791314)
Use-after-free in InputStream implementation
* CVE-2022-45406 (bmo#1791975)
Use-after-free of a JavaScript Realm
* CVE-2022-45407 (bmo#1793314)
Loading fonts on workers was not thread-safe
* CVE-2022-45408 (bmo#1793829)
Fullscreen notification bypass via windowName
* CVE-2022-45409 (bmo#1796901)
Use-after-free in Garbage Collection
* CVE-2022-45410 (bmo#1658869)
ServiceWorker-intercepted requests bypassed SameSite cookie policy
* CVE-2022-45411 (bmo#1790311)
Cross-Site Tracing was possible via non-standard override headers
* CVE-2022-45412 (bmo#1791029)
Symlinks may resolve to partially uninitialized buffers
* CVE-2022-45413 (bmo#1791201)
SameSite=Strict cookies could have been sent cross-site via
intent URLs
* CVE-2022-40674 (bmo#1791598)
Use-after-free vulnerability in expat
* CVE-2022-45415 (bmo#1793551)
Downloaded file may have been saved with malicious extension
* CVE-2022-45416 (bmo#1793676)
Keystroke Side-Channel Leakage
* CVE-2022-45417 (bmo#1794508)
Service Workers in Private Browsing Mode may have been
written to disk
* CVE-2022-45418 (bmo#1795815)
Custom mouse cursor could have been drawn over browser UI
* CVE-2022-45419 (bmo#1716082)
Deleting a security exception did not take effect immediately
* CVE-2022-45420 (bmo#1792643)
Iframe contents could be rendered outside the iframe
* CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
- requires
* NSS >= 3.84
* rust = 1.64
==== NetworkManager-openvpn ====
Version update (1.10.0 -> 1.10.2)
Subpackages: NetworkManager-openvpn-gnome
- Update to version 1.10.2:
+ IP condfiguration is no longer required in TAP mode.
+ Fix initialization of secret flags.
+ Add support for DOMAIN-SEARCH option.
+ Set data-ciphers option with chosen cipher.
+ Update translations.
==== attica-qt5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Attica5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== autoyast2 ====
Version update (4.5.8 -> 4.5.9)
- Add needed packages for kdump even when kdump section is not
defined if product enable kdump by default (bsc#1204180)
- 4.5.9
==== baloo5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* [TermGeneratorTest] Reduce code duplication
* Correct and simplify OrpostingIterator constructor
* Convert kded metadata to JSON
==== bluez ====
Version update (5.65 -> 5.66)
Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3
- update to 5.66:
* Fix issue with A2DP and transport connection collisions.
* Fix issue with allowing application specific error codes.
* Fix issue with not setting initiator flag correctly.
* Fix issue with HoG Report MAP size handling.
* Add initial support for Basic Audio Profile.
* Add initial support for Volume Control Profile.
- remove RPi-Move-the-43xx-firmware-into-lib-firmware.patch (does
not apply anymore), replace with CPPFLAGS define
==== bluez-qt ====
Version update (5.99.0 -> 5.100.0)
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== breeze5-icons ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add accessories-dictionary-symbolic symlink to a book-looking icon (kde#461033)
* Add new icons for Fortran source code
* Add 64px audio-headset, fix issues with 64px audio-headphones (kde#447536)
* Add data-success icon
* Add icon for OpenOffice extensions
* Add Qt 6 Windows CI
==== busybox ====
Subpackages: busybox-static
- Fix build under SLE-12
==== cni ====
Version update (1.0.1 -> 1.1.2)
- Update to version 1.1.2:
* spec: fix format
* libcni: handle empty version when parsing version
* [exec-plugins]: support plugin lists
This is a minor update to the CNI libraries and tooling.
This does not bump the protocol / spec version, which remains at v1.0.0
==== curl ====
Subpackages: libcurl4
- Add 1.50.0 as the minimum libnghttp2 build requirement version as
a bandaid. Curl's 7.86.0 release introduces the use of
nghttp2_option_set_no_rfc9113_leading_and_trailing_ws_validation,
introduced by nghttp2 1.50.0 release, without introducing a check
for the function/right version in their build scripts. This will
make Zypper/cURL unusable in some corner cases where users
installing something that requires libcurl4 before doing full
system upgrade, thus updating the cURL stack, but not
libnghttp2's. Background: boo#1204983, Factory mailing list
threadd:
"? broken dependency in curl and/or *zyp* ?", and forums thread:
Curl-is-broken-after-an-update-which-subsequently-breaks-zypper.
==== distrobox ====
Subpackages: distrobox-bash-completion
- Do not recommend bash-completion subpackage: this triggers
installation even if bash-completion is not there yet. All (well,
most for now) packages are handled to install the completion IF
bash-completion is present (which is the default on standard
setups).
==== dracut ====
Version update (057+suse.337.g4162a70e -> 057+suse.344.g021aead9)
Subpackages: dracut-ima dracut-mkinitrd-deprecated
- Update to version 057+suse.344.g021aead9:
* fix(dracut-systemd): run systemctl daemon-reload after remove_hostonly_files
* fix(dracut.sh): improve detection of installed kernel versions (bsc#1205175)
* fix(network-manager): always install the library plugins directory (bsc#1202014)
* feat(dracut-init.sh): add inst_libdir_dir() helper (bsc#1202014)
==== exiv2 ====
- spec-cleaner run
- add CVE-2022-3953.patch (CVE-2022-3953, bsc#1205391)
==== ffmpeg-4 ====
Subpackages: libavcodec58_134 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9
- Add ffmpeg-CVE-2022-3964.patch: Backport from upstream to fix
out of bounds read in update_block_in_prev_frame() (bsc#1205388).
==== frameworkintegration ====
Version update (5.99.0 -> 5.100.0)
Subpackages: frameworkintegration-plugin libKF5Style5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== grantlee5 ====
Version update (5.2.0 -> 5.3.1)
- Update to 5.3.1
* Use C++11 nullptr where appropriate
* Use QRandomGenerator instead of deprecated qRand
* Increase compatibility with Qt 6 APIs
* Add CMake option to build with Qt 6 - GRANTLEE_BUILD_WITH_QT6
* Support enum introspection on Q_GADGET
* filesizeformat implementation as well as localized filesize
* Make enums comparable with more operations
* Add "truncatechars" filter
* Fix concatenation of string lists
- Refreshed patches:
* includes.diff
* grantlee-5.2.0-fix-ctest-ld-library-path.patch
- Add patch to fix tests on i586 (gh#steveire/grantlee#85):
* fix-i586-precision.patch
- Add keyring for GPG source verification
==== graphviz ====
Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4
- php8 support was added in swig 4.1.0
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Security fixes and hardenings
* 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch
* 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch
- Fix CVE-2022-2601 (bsc#1205178)
* 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch
* 0004-font-Remove-grub_font_dup_glyph.patch
* 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch
* 0006-font-Fix-integer-overflow-in-BMP-index.patch
* 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch
* 0008-fbutil-Fix-integer-overflow.patch
- Fix CVE-2022-3775 (bsc#1205182)
* 0009-font-Fix-an-integer-underflow-in-blit_comb.patch
* 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch
* 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch
* 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch
- Bump upstream SBAT generation to 3
- Removed 0001-linux-fix-efi_relocate_kernel-failure.patch as reported
regression in some hardware being stuck in initrd loading (bsc#1205380)
- Fix password asked twice if third field in crypttab not present (bsc#1205312)
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
==== gtk4 ====
Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update gtk4.spec to align dependency version with meson.build
==== hwdata ====
Version update (0.363 -> 0.364)
- update to 0.364:
+ Updated pci, usb and vendor ids.
==== installation-images-MicroOS ====
Version update (17.64 -> 17.65)
- merge gh#openSUSE/installation-images#615
- systemd lib moved to /usr/lib64
- 17.65
==== kactivities-stats ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kactivities5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kactivities5-imports libKF5Activities5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== karchive ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Make error messages translatable
==== kauth ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Config.cmake.in: declare static dependencies
* Fix the translation folder name
==== kbookmarks ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't use KXmlGui when building without deprecated stuff
* Add Qt6 windows CI support
* Fix the translation folder name
==== kcmutils ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
* Remove space
* Fix typo
* Kauth doesn't build on windows
* KCModuleQML: Make sizeHint() check more robust
==== kcodecs ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Prepare for 5.15.7: adapt test
* Fix the translation folder name
==== kcompletion ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt 6 Windows CI
* Fix the translation folder name
==== kconfig ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* kconfig_compiler: switch away from bit mask for signal enum values
* kconfig_compiler: fix generation of bit masks enum items for signals
* kconfig_compiler: perform signals count check earlier
* .gitlab-ci.yml: enable static builds
* Fix KConfigGui initialization in case of static builds (kde#459337)
* Fix the translation folder name
==== kconfigwidgets ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* avoid stating files during restore of recent files (kde#460868)
* Ensure icon is always set for recent files actions
* Add file icons to open recent menu
* Replace custom color preference code with KColorSchemeWatcher
* Intialize default decoration colors
* [KCommandBar] Fix shortcut background
* Add Qt6 windows CI support
* Adapt native event filter code to Qt 6
==== kcoreaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5CoreAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing . in error string
* KPluginMetaData: Check applicationDirPath first when resolving plugin
paths (kde#459830)
* Fix static build of downstream consumers
* Fix the translation folder name
* KFileSystem: add Fuse Type; use libudev to probe underlying fuseblk type
==== kcrash ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt 6 Windows CI
==== kdbusaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdbusaddons-tools libKF5DBusAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kdeclarative ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Make QQmlContext's contextObject outlive the QQmlContext
* Completely deprecate KDeclarative class
* Port manual test app away from deprecated KDeclarative API
* Add Qt6 windows CI support
==== kded ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kdelibs4support ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5KDELibs4Support5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add CMake option to build WITH_X11
==== kdesu ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing deprecation wrapper for KDEsuClient::isServerSGID impl
==== kdnssd-framework ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kdoctools ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5DocTools5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kdump ====
Version update (1.0.2+git19.g0c60ffb -> 1.0.2+git20.gcb129d0)
- update to kdump-1.0.2+git20:
* Use inst_binary to install kdump-save
- disable build on arm 32bit (bsc#1203888)
==== kernel-firmware ====
Version update (20221031 -> 20221109)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20221109 (git commit 60310c2deb8c):
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* amdgpu: update DMCUB firmware for DCN 3.1.6
* rtl_bt: Update RTL8822C BT UART firmware to 0xFFB8_ABD6
* rtl_bt: Update RTL8822C BT USB firmware to 0xFFB8_ABD3
* WHENCE: mrvl: prestera: Add WHENCE entries for newly updated 4.1 FW images
* mrvl: prestera: Update Marvell Prestera Switchdev FW to v4.1
* iwlwifi: add new FWs from core74_pv-60 release
* qcom: drop split a530_zap firmware file
* qcom/vpu-1.0: drop split firmware in favour of the mbn file
* qcom/venus-4.2: drop split firmware in favour of the mbn file
* qcom/venus-4.2: replace split firmware with the mbn file
* qcom/venus-1.8: replace split firmware with the mbn file
==== kfilemetadata5 ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* OdfExtractorTest: Add test cases for Flat XML documents
* OdfExtractor: Only go looking for textual content in office:body
* OdfExtractor: Support "Flat XML" variants
* PngExtractor: Add autotest
* PngExtractor: Only extract metadata when it was asked for
==== kglobalaccel ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kguiaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5GuiAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add misisng find_dependency's for static builds
* systemclipboard: Don't signals data source cancellation (kde#460248)
* Guard the global was actually intialised
* Implement destuctor for keystate protocol implementation
* kcolorschemewatcher: make changing colour schemes work as expected on macOS
* [kcolorschemewatcher] Default to light mode, where AppsUseLightTheme isn't
set (notably Windows 8.1)
* enable automatic dark-mode switching on macOS
* Add API for system color preference reading
==== kholidays ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== khtml ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== ki18n ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Try fixing build on Windows mingw
* Add missing <cerrno> include
==== kiconthemes ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kidletime ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kimageformats ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't install desktop files for image formats when building against Qt6
* raw: Don't seek back if we were asked to read too much
* jxl: indicate when all frames have been read
* avif: minor fixes
* avif: indicate when all frames have been read
* avif: always indicate endless loop
* avif: return `false` in `canRead()` when `imageIndex >= imageCount` (kde#460085)
* Add JXL test files corresponding to 8 EXIF orientation values
* Add AVIF test files with rotation and mirror operations
* Auto-rotate input images in readtest
* jxl: remove C-style casts
* avif: Use reinterpret_cast instead C cast
* avif: revert 9ac923a commit
* heif: replace C cast with static_cast
* heif: use heif_init/heif_deinit with libheif 1.13.0+
* FindLibRaw: fix include dir, should not contain prefix libraw/ (kde#460105)
* Fix duplicated tests
* ANI partial test and PIC test added
* PSD: impreved support to sequential access device
* Fix messages
* CMakeLists: enable EXR test
* Added EXR test image
* Fixes for sequential devices
- Drop patches, merged upstream:
* 0001-avif-return-false-in-canRead-when-imageIndex-imageCo.patch
* 0001-avif-always-indicate-endless-loop.patch
* 0001-avif-revert-9ac923ad09316dcca0fc11e0be6b3dfc6cce6ca0.patch
==== kinit ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kio ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kio-core
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* AskUserActionInterface: add DeleteInsteadOfTrash deletion type (kde#431351)
- Drop patch, merged upstream:
* kio-mr1008-fix-webdav.diff
==== kirigami2 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Kirigami2-5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Check preventStealing earlier in ColumnView (kde#460345)
* SwipeListItem: Make sure we only show the aggressive warning when it's
due (kde#455789)
==== kitemmodels ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kitemmodels-imports libKF5ItemModels5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Also fix kconcatenaterows_qml test for static builds
* .gitlab-ci.yml: enable static builds
* Fix ksortfilterproxymodel_qml test for static builds (kde#459321)
==== kitemviews ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* KCategoryDrawer: Update design to match Kirigami list categories
* Fix the translation folder name
==== kjobwidgets ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
* Fix the translation folder name
==== kjs ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Rename: use Q_OS_{FREE,NET,OPEN}BSD
* Fix thread stack base detection on OpenBSD
==== knewstuff ====
Version update (5.99.0 -> 5.100.0)
Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* KF5NewStuffCoreConfig.cmake: fix resolving QT_MAJOR_VERSION at generation
* [kmoretools] Replace QDesktopServices::openUrl with KIO::OpenUrlJob
* Add qtdesigner plugin for KNewStuffWidgets
* Add Windows Qt 6 CI
==== knotifications ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Port TTS support to Qt 6
* Fix the translation folder name
* Add Qt6 windows CI support
* Port from QStringRef to QStringView
==== knotifyconfig ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Port TTS support to Qt 6
* Add Qt6 windows CI support
* Adapt Phonon code path for Qt 6
==== kpackage ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kparts ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* browserrun enum used as bool
* [partloader] Remove references to KPluginLoader from docs
* Add Qt6 windows CI support
* Ignore "templates" folder for cppcheck CI
* Don't install service type definitions when building without deprecated stuff
* Add new functions to instantiate parts
==== kpeople5 ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kpty ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kquickcharts ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== krb5 ====
Version update (1.20 -> 1.20.1)
- Update to 1.20.1; (bsc#1205126); (CVE-2022-42898);
* Fix integer overflows in PAC parsing [CVE-2022-42898].
* Fix null deref in KDC when decoding invalid NDR.
* Fix memory leak in OTP kdcpreauth module.
* Fix PKCS11 module path search.
==== krunner ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Ignore "templates" folder for cppcheck CI
* runnermanager: only emit `queryFinished` when previous jobs are still running
==== kservice ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Do not warn if KService("") is instantiated
* .kde-ci.yml: enable static CI builds
* Add Qt 6 Windows CI
==== ktexteditor ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* CamelCursor: Improve complex unicode handling (kde#461239)
* remove file name for saveas only for remote files (kde#461161)
* Fix tab order in search (kde#440888)
* fix clipboard selection update on shift mouse click (kde#443642)
* Ensure to set highlight on reload when file type was set by user (kde#454715)
==== ktextwidgets ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kunitconversion ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing forms for mass units: tonnes, ct, lbs
* add singular abbreviation forms as match strings for teaspoon and tablespoon
* Add Qt 6 Windows CI
==== kwallet ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* mark some binaries as non-gui
* Add support for plain transfer algorithm to Secret Service API (kde#458341)
* Change naming and order of FreedesktopSecret members to match the spec
* Add Qt6 windows CI support
==== kwayland ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* [registry] Bump PlasmaWindowManagement version to 16
==== kwidgetsaddons ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* avoid stating files during restore of recent files (kde#460868)
* Add a method to remove all actions in one go
* KTitleWidget: Constraint the frame size so it properly aligns (kde#460542)
* KPageDialog: Collapse margins also for flat list
* KToolBarPopupAction: Apply popupMode to existing widgets
* Deprecate KStandardGuiItem::yes() KStandardGuiItem::no()
* KMessageDialog: add API using "action" terms instead of "Yes" & "No"
* KMessageBox: add API using "action" terms instead of "Yes" & "No"
* Fix potential crash in fix for 458335
* Fix the translation folder name
==== kwindowsystem ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kxmlgui ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== lcms2 ====
- Removed reverse-0001-fix-memory-leaks-on-testbed.patch and added
0001-fix-memory-corruption-when-unregistering-plugins.patch as
final fix for https://github.com/hughsie/colord/issues/145
==== libKF5ModemManagerQt ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== libKF5NetworkManagerQt ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* DeviceStatistics: Replace setRefreshRateMs call with manual DBus call
* Remove dead CMakeLists code
==== libXft ====
Version update (2.3.6 -> 2.3.7)
- Update to version 2.3.7
* libxft issue #15
https://gitlab.freedesktop.org/xorg/lib/libxft/-/issues/15
XftFontLoadGlyphs for mono font returns wrong info in extents from
XftTextExtentsUtf8 for variable chars
Patch by Scott Mcdermott, based on
https://github.com/googlefonts/Inconsolata/issues/42
* fix compiler warning
* libxft issue #16
https://gitlab.freedesktop.org/xorg/lib/libxft/-/issues/16
Stack gets smashed in fonts with colors when calling XftGlyphRender
BGRA changes made incorrect comparison for local vs allocated
buffer in XftGlyphSpecRender
* stdint.h header is needed for SIZE_MAX
==== libalternatives ====
Subpackages: alts libalternatives1
- switch to a manual service rather than a buildtime tar service
which introduces a bootstrap cycle between python and tar_scm
==== libavif ====
Version update (0.11.0 -> 0.11.1)
- Update to version 0.11.1:
* Changed:
- avifincrtest_helpers: Cast 64-bit offset to size_t
- avifmetadatatest: don't include avif/internal.h
- avifrgbtoyuvtest: skip if no libsharpyuv
- Disable tests that may fail if the codec is not aom (#1176)
==== libeconf ====
Version update (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704)
- Update to version 0.4.8+git20221114.7ff7704:
* Parsing files which are containing keys only (#170)
All delimiters are allowed now : "", " =", " ", "=". But the
user should use "" in order to be distinct.
* /usr/etc/shells.d/<file_name> will not be parsed if
/etc/shells.d/<file_name> is defined too.
* Lto build fixed (#168)
* New calls: econf_comment_tag, econf_delimiter_tag, econf_set_comment_tag,
econf_set_delimiter_tag
* Checking UID,GroupID, permissions,... of the parsed files (#165)
New calls: econf_requireOwner, econf_requireGroup, econf_requirePermissions,
econf_followSymlinks
* Ignoring Group without brackets; Do not hold brackets in the internal data structure. (#164)
* Error handling improved for nums and booleans (#163)
==== libinput ====
Version update (1.21.0 -> 1.22.0)
Subpackages: libinput-udev libinput10
- Update to release 1.22
* A new flat acceleration profile is available for trackpoints,
making them more usable in some cases.
* This version includes quirks for laptops from Lenovo, Acer and
Microsoft, as well as for the Framework laptop and ARM based
Chromebooks.
==== libnma ====
Subpackages: libnma-glib-schema libnma-gtk4-0 libnma0 typelib-1_0-NMA-1_0
- Add libnma-schema-without-path.patch: Do not specify path in
nm-applet.eap schema (glgo#GNOME/libnma!18, boo#1205362).
==== libpipeline ====
Version update (1.5.6 -> 1.5.7)
- update to 1.5.7:
* Add notes to libpipeline(3) of when functions were added.
* Transferred Git repository to https://gitlab.com/libpipeline/libpipeline.
* Make `socketpair` tests used by `./configure --enable-socketpair-pipe`
compatible with C23.
==== libstorage-ng ====
Version update (4.5.50 -> 4.5.52)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Macedonian) (bsc#1149754)
- 4.5.52
- merge gh#openSUSE/libstorage-ng#904
- added examples
- 4.5.51
==== libwnck ====
Subpackages: libwnck-3-0 typelib-1_0-Wnck-3_0
- Add handle-avoid-segfault-in-invalidate-icons.patch to fix a
segmentation fault (boo#1204157)
==== llvm15 ====
Version update (15.0.3 -> 15.0.5)
- Update to version 15.0.5.
* This release contains bug-fixes for the LLVM 15.0.0 release.
This release is API and ABI compatible with 15.0.0.
- Remove obsolete lldb-swig-4.1.0-build-fix.patch.
- Rebase llvm-do-not-install-static-libraries.patch.
- Update to version 15.0.4.
* This release contains bug-fixes for the LLVM 15.0.0 release.
This release is API and ABI compatible with 15.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
==== mozilla-nss ====
Version update (3.83 -> 3.84)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs
- update to NSS 3.84
* bmo#1791699 - Bump minimum NSPR version to 4.35
* bmo#1792103 - Add a flag to disable building libnssckbi.
==== mpfr ====
Version update (4.1.0 -> 4.1.1)
- Update to mpfr 4.1.1
* Bug fixes (see <https://www.mpfr.org/mpfr-4.1.0/#fixed> and/or the
ChangeLog file), in particular for macros implementing functions.
* Improved manual formatting.
* Accumulated bugfixes
- Remove mpfr-4.1.0-p7.diff, all patches are contained in the
new version.
- Update mpfr.keyring
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Updated to latest upstream. Changes:
* scsid/iscsiuio: fix OOM adjustment (github issue #377)
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch: Merge fix for race condition
(bsc#1115550, bsc#1174162).
- Add openssh-do-not-send-empty-message.patch, which prevents
superfluous newlines with empty MOTD files (bsc#1192439).
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add gstreamer-plusing-bad and gstreamer-plugins-good to ensure GNOME's builtin
screen recorder works correctly.
- Add gvfs-fuse
- Add gvfs-backend-samba
- Add ntfs support (useful for external drives and such)
- Add openssh-askpass-gnome and pinentry-gnome3 to have working prompts on GNOME
- Add polkit-gnome for polkit integration
- Add xdg-desktop-portal-gnome to -kde install pattern, to correct
for mangled fonts, and theming, while using GTK apps on MicroOS
KDE (boo#1205631)
==== pipewire ====
Version update (0.3.59 -> 0.3.60)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Add patch from upstream that fixes audio in qemu where the buffer
is very small (glfo#pipewire/pipewire#2830):
* 0004-alsa-force-playback-start-when-buffer-is-full.patch
- Add more patches from upstream to perform setup in more cases:
* 0001-audioadapter-perform-setup-again-after-a-PortConfig.patch
* 0002-audioconvert-redo-setup-when-format-changes.patch
- Renumber patch 0001-acp-do-probing-in-44100Hz-again.patch to
* 0003-acp-do-probing-in-44100Hz-again.patch
- Add patch from upstream to fix some devices that don't seem to
work in 48000Hz:
* 0001-acp-do-probing-in-44100Hz-again.patch
- Require pulseaudio-utils from pipewire-pulseaudio to have pactl
available to load modules.
- Update to version 0.3.60:
* Highlights
- The filter-chain now handles errors better and has fixes for
many crasher bugs.
- A new RTP module was added with a sender and receiver.
It uses SAP to announce and consume RTP streams and is
compatible with the PulseAudio RTP modules.
- Many small bluetooth improvements and fixes.
- The alsa plugin will now only start playback when there is
data. This results in better synch and lower latency between
capture and playback.
- The v4l2 and libcamera plugins have seen a lot of
improvements. They support control properties now. Also
pw-v4l2 has seen many improvements and mostly passes the
v4l2-compliance test now.
- Many more bugfixes and improvements.
* PipeWire
- Code cleanups, compiler warning fixes.
- Add some extra checks to avoid scheduling an inactive node.
- Rework the sequence of events to start and stop nodes.
- Improve param enumeration.
- An option was added to give priority to the Buffer params of
the consumer. This makes it possible to use the default
values of the consumer (instead of the producer) when
capturing from a source.
- The graph rate selection was improved to pick a rate closest
to the requested one (instead of picking the default).
* Modules
- Fix some crashes in filter-chain.
- X11 Bell module will now be loaded by default when available.
- A new RTP module was added with a sender and receiver. It
uses SAP to announce and consume RTP streams and is
compatible with the PulseAudio RTP modules.
- Improve RAOP compatibility.
- The echo-cancel module now uses the resampler prefill option
to align input and output samples without buffering. Better
latency control when starting and stopping has been
implemented.
- The pulse tunnel will now write aligned samples to pulseaudio
even when the ringbuffer wraps around. This fixes playback
issues with multichannel sinks.
- Add a delay option to module-loopback using a ringbuffer.
- Implement echo-cancel params.
- The filter-chain module has better error reporting.
- The LADSPA search path was extended with some more common
paths.
- The echo-cancel input can now also be a monitor of a sink.
This improves compatibility with some proton games that
expect a real sink instead of a virtual one.
* Tools
- Better error reporting in pw-link.
- pw-top now also shows IEC958 passthrough formats and
JPEG/H264 video formats.
- pw-top refreshes the screen faster.
- pw-top now prints the state of the node and shows less info
for inactive nodes.
- pw-dump now uses the new seq field in the spa_param_info to
discard old param updates and avoid duplicate params in the
output.
* Bluetooth
- Add ModemManager support in the native backend.
- Clean up GetManagedObjects handling.
- Handle QoS from the endpoints in the codec.
- Increase the socket buffer to have more control over the rate
and QoS.
- Simplify the packet flushing code.
- Stop processing nodes before destroying them.
- Fix timers when a source switches drivers.
- Codecs can now share endpoints. This reduces the amount of
endpoints and avoids problems with devices that can't handle
a large amount of codec endpoints.
- Report batery status to UPower for HFP AG.
- Fix bitpool increase.
* SPA
- The audioresampler now avoids clicks and pops between
activating and deactivating the adaptive resampler when used
by the stream API.
- Use default locale to parse float parameters.
- The upmix functions now have SSE optimisations.
- Avoid recalculating the complete channelmix setup when only
the volume changes.
- The alsa plugin will now only start playback when there is
data. This results in better synch and lower latency between
capture and playback.
- The ALSA MIDI sequencer will now pull data from the graph
even when it did not output anything. Fixes some graph stalls
... changelog too long, skipping 63 lines ...
* 0001-pulse-server-also-advance-read-pointer-in-underrun.patch
==== plasma-browser-integration ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma-browser-integration-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma-framework ====
Version update (5.99.0 -> 5.100.1)
Subpackages: libKF5Plasma5 plasma-framework-components
- Update to 5.100.1. Hotfix release:
* svgitem: do not upscale svg when using fractional scaling
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Never time out tooltip while its control is still hovered (kde#397336)
* Fix name of margin hints of task manager (kde#456076)
==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update the build constraints
==== plymouth ====
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
- Drop plymouth-keep-KillMode-none.patch: We have a new enough
version of systemd now to not need this patch any more.
==== poppler ====
Version update (22.10.0 -> 22.11.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler125 poppler-tools
- update to 22.11.0:
core:
* CairoOutputDev: Update font after restore
* Protect against broken files
* Small code refactoring
==== poppler-qt5 ====
Version update (22.10.0 -> 22.11.0)
- update to 22.11.0:
core:
* CairoOutputDev: Update font after restore
* Protect against broken files
* Small code refactoring
==== prison-qt5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Prison5 prison-qt5-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Convert code128 data table to binary literals
* Simplify QR reference PNG images
==== purpose ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Purpose5 libKF5PurposeWidgets5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== python-certifi ====
Version update (2021.10.8 -> 2022.9.24)
- Update to 2022.9.24:
* (no changes)
- from version 2022.09.24:
* (no changes)
- from version 2022.09.14:
* (no changes)
- from version 2022.06.15.2:
* Only use importlib.resources's new files() /
Traversable API on Python â¥3.11 (#204)
- from version 2022.06.15.1:
* Fix deprecation warning on Python 3.11 (#199)
* fixes #198 -- update link in license
- from version 2022.06.15:
* Add py.typed to MANIFEST.in to package in sdist (#196)
- from version 2022.05.18.1:
* Add support for Python 3.10 and drop EOL 3.5 (#167)
- from version 2022.05.18:
* Automatically lock github issues after
they've been closed for 90 days (#189)
* Remove universal wheel, python 2 is unsupported (#187)
* Add type annotations to package
* Added Required Python Version (#152)
* Fix homepage link (#145)
- Refresh patches for new version
* python-certifi-shipped-requests-cabundle.patch
==== python-jsonschema ====
Version update (4.16.0 -> 4.17.0)
- update to 4.17.0:
* The check_schema method on jsonschema.protocols.Validator instances now enables format validation by default when run. This can catch some additional invalid schemas (e.g. containing invalid regular expressions) where the issue is indeed uncovered by validating against the metaschema with format validation enabled as an assertion.
* The jsonschema CLI (along with jsonschema.cli the module) are now deprecated. Use check-jsonschema instead, which can be installed via pip install check-jsonschema and found here.
* Make ErrorTree have a more grammatically correct repr.
==== python-setuptools ====
Version update (65.5.0 -> 65.5.1)
- Delete remove_mock.patch, that's not needed anymore, it's upstreamed
- Update to 65.5.1:
* #3638: Drop a test dependency on the mock package, always use
:external+python:py:mod:`unittest.mock` -- by :user:`hroncok`
* #3659: Fixed REDoS vector in package_index.
==== qemu ====
- Raise the maximum number of vCPUs a VM can have to 1024 (jsc#PED-2592)
* Patches added:
pc-q35-Bump-max_cpus-to-1024.patch
==== qqc2-desktop-style ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Never time out tooltip while its control is still hovered
* TextField: Use effectiveHorizontalAlignment without extra mirroring
for placeholder
* Add Qt6 windows CI support
==== samba ====
Version update (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- CVE-2022-42898: Samba buffer overflow vulnerabilities on 32-bit
systems; (bsc#1205126); (bso#15203);
- Replace obsolete python-gpgme with python-gpg
* Upstream replaced it in v4.9.5 -- bso#13728
==== sed ====
Version update (4.8 -> 4.9)
- GNU sed 4.9:
* 'sed --follow-symlinks -i' no longer loops forever when its
operand is a symbolic link cycle.
* a program with an execution line longer than 2GB can no longer
trigger an out-of-bounds memory write.
* using the R command to read an input line of length longer than
2GB can no longer trigger an out-of-bounds memory read.
* In locales using UTF-8 encoding, the regular expression '.' no
longer sometimes fails to match Unicode characters U+D400
through U+D7FF (some Hangul Syllables, and Hangul Jamo
Extended-B) and Unicode characters U+108000 through U+10FFFF
(half of Supplemental Private Use Area plane B).
* I/O errors involving temp files no longer confuse sed into
using a FILE * pointer after fclosing it, which has undefined
behavior in C.
* New: The 'r' command now accepts address 0, allowing inserting
a file before the first line.
* Sed now prints the less-surprising variant in a corner case of
POSIX-unspecified behavior. Before, this would print "n".
Now, it prints "X":
printf n | sed 'sn\nnXn'; echo
- drop patches now upstream:
* gnulib-test-avoid-FP-perror-strerror.patch
* sed-dont_close_twice.patch
- disable profile guided optimization in build due to what seems to
be a bug in gnulib
==== selinux-policy ====
Version update (20220714 -> 20221019)
Subpackages: selinux-policy-targeted
- Update to version 20221019. Refreshed:
* distro_suse_to_distro_redhat.patch
* fix_apache.patch
* fix_chronyd.patch
* fix_cron.patch
* fix_init.patch
* fix_kernel_sysctl.patch
* fix_networkmanager.patch
* fix_rpm.patch
* fix_sysnetwork.patch
* fix_systemd.patch
* fix_systemd_watch.patch
* fix_unconfined.patch
* fix_unconfineduser.patch
* fix_unprivuser.patch
* fix_xserver.patch
- Dropped fix_cockpit.patch as this is now packaged with cockpit itself
- Remove the ipa module, freeip ships their own module
- Added fix_alsa.patch to allow reading of config files in home directories
- Extended fix_networkmanager.patch and fix_postfix.patch to account
for SUSE systems
- Added dontaudit_interface_kmod_tmpfs.patch to prevent AVCs when startproc
queries the running processes
- Updated fix_snapper.patch to allow snapper to talk to rpm via dbus
==== shim ====
Version update (15.6 -> 15.7)
- Drop upstreamed patch:
- shim-Enable-TDX-measurement-to-RTMR-register.patch
- Enable TDX measurement to RTMR register (jsc#PED-1273)
- 4fd484e4c2 15.7
- Update to 15.7 (bsc#1198458)(jsc#PED-127)
- Patches (git log --oneline --reverse 15.6..15.7)
0eb07e1 Make SBAT variable payload introspectable
092c2b2 Reference MokListRT instead of MokList
8b59b69 Add a link to the test plan in the readme.
4fd484e Enable TDX measurement to RTMR register
14d6339 Discard load-options that start with a NUL
5c537b3 shim: Flush the memory region from i-cache before execution
2d4ebb5 load_cert_file: Fix stack issue
ea4911c load_cert_file: Use EFI RT memory function
0cf43ac Add -malign-double to IA32 compiler flags
17f0233 pe: Fix image section entry-point validation
5169769 make-archive: Build reproducible tarball
aa1b289 mok: remove MokListTrusted from PCR 7
53509ea CryptoPkg/BaseCryptLib: fix NULL dereference
616c566 More coverity modeling
ea0d0a5 Update shim's .sbat to sbat,3
dd8be98 Bump grub's sbat requirement to grub,3
1149161 (HEAD -> main, tag: 15.7, origin/main, origin/HEAD) Update version to 15.7
- 15.7 release note https://github.com/rhboot/shim/releases
Make SBAT variable payload introspectable by @chrisccoulson in #483
Reference MokListRT instead of MokList by @esnowberg in #488
Add a link to the test plan in the readme. by @vathpela in #494
[V3] Enable TDX measurement to RTMR register by @kenplusplus in #485
Discard load-options that start with a NUL by @frozencemetery in #505
load_cert_file bugs by @esnowberg in #523
Add -malign-double to IA32 compiler flags by @nicholasbishop in #516
pe: Fix image section entry-point validation by @iokomin in #518
make-archive: Build reproducible tarball by @julian-klode in #527
mok: remove MokListTrusted from PCR 7 by @baloo in #519
- Drop upstreamed patch:
- shim-bsc1177789-fix-null-pointer-deref-AuthenticodeVerify.patch
- Cryptlib/CryptAuthenticode: fix NULL pointer dereference in AuthenticodeVerify()
- 53509eaf22 15.7
- shim-jscPED-127-upgrade-shim-in-SLE15-SP5.patch
- For backporting the following patches between 15.6 with aa1b289a1a (jsc#PED-127)
- The following patches are merged to 15.7
aa1b289a1a mok: remove MokListTrusted from PCR 7
0cf43ac6d7 Add -malign-double to IA32 compiler flags
ea4911c2f3 load_cert_file: Use EFI RT memory function
2d4ebb5a79 load_cert_file: Fix stack issue
5c537b3d0c shim: Flush the memory region from i-cache before execution
14d6339829 Discard load-options that start with a NUL
092c2b2bbe Reference MokListRT instead of MokList
0eb07e11b2 Make SBAT variable payload introspectable
- Update shim.changes, added missed shim 15.6-rc1 and 15.6 changelog to
the item in Update to 15.6. (bsc#1198458)
- Add shim-jscPED-127-upgrade-shim-in-SLE15-SP5.patch for backporting the following
patches between 15.6 with aa1b289a1a (jsc#PED-127):
aa1b289a1a16774afc3143b8948d97261f0872d0 mok: remove MokListTrusted from PCR 7
0cf43ac6d78c6f47f8b91210639ac1aa63665f0b Add -malign-double to IA32 compiler flags
ea4911c2f3ce8f8f703a1476febac86bb16b00fd load_cert_file: Use EFI RT memory function
2d4ebb5a798aafd3b06d2c3cb9c9840c1caa41ef load_cert_file: Fix stack issue
5c537b3d0cf8c393dad2e61d49aade68f3af1401 shim: Flush the memory region from i-cache before execution
14d63398298c8de23036a4cf61594108b7345863 Discard load-options that start with a NUL
092c2b2bbed950727e41cf450b61c794881c33e7 Reference MokListRT instead of MokList
0eb07e11b20680200d3ce9c5bc59299121a75388 Make SBAT variable payload introspectable
- Add shim-Enable-TDX-measurement-to-RTMR-register.patch to support
enhance shim measurement to TD RTMR. (jsc#PED-1273)
- For pushing openSUSE:Factory/shim to SLE15-SP5, sync the shim.spec
and shim.changes: (jsc#PED-127)
- Add some change log from SLE shim.changes to Factory shim.changes
Those messages are added "(sync shim.changes from SLE)" tag.
- Add the following changes to shim.spec
- only apply Patch100, the shim-bsc1198101-opensuse-cert-prompt.patch
on openSUSE.
- Enable the AArch64 signature check for SLE:
[#] AArch64 signature
signature=%{SOURCE13}
==== solid ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Solid5 solid-imports solid-tools
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== sonnet ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Windows Qt 6 CI
* Fix the translation folder name
==== syndication ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== syntax-highlighting ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Jira: fix Bold and Stroked Out highlight at start of line (kde#431268)
* CMake: fix nested parentheses highlinthing (kde#461151)
* CMake: add Control Flow style for if, else, while, etc (kde#460596)
* Alerts: add NO-BREAK SPACE (nbsp) as keyword deliminator (kde#459972)
* Bash/Zsh: fix group command with coproc statement (kde#460301)
==== system-config-printer ====
Version update (1.5.16 -> 1.5.18)
Subpackages: python3-cupshelpers system-config-printer-common system-config-printer-dbus-service udev-configure-printer
- Update to version 1.5.18:
+ Add <launchable/> into the .appdata.xml file.
+ Accessiblity improvements.
+ system-config-printer couldn't be uninstalled via GNOME
Software.
+ system-config-printer crashes due missing libhandy.
+ Updated config.sub and config.guess to fix configuration error
on RiSC.
+ Use pkg-config or --with-cups-serverbin-dir for finding
SERVERBIN.
==== systemd ====
Version update (251.8 -> 252.1)
Subpackages: libsystemd0 libudev1 systemd-doc udev
- Reenable build of sd_boot, it was mistakenly disabled during the integration
of v252.
- Upgrade to v252.1 (commit 64dc546913525e33e734500055a62ed0e963c227)
See https://github.com/openSUSE/systemd/blob/SUSE/v252/NEWS for details.
* Rebased 0001-conf-parser-introduce-early-drop-ins.patch
1000-Revert-getty-Pass-tty-to-use-by-agetty-via-stdin.patch
* The new tools systemd-measure and systemd-pcrphase have been added to the
experimental sub-package for now.
* Add temporarly
6000-meson-install-test-kernel-install-only-when-Dkernel-.patch until this
patch is mainstreamed.
==== taglib ====
Version update (1.12 -> 1.13)
- Update to version 1.13:
* Added interface StreamTypeResolver to support streams which cannot be fopen()'ed, e.g. network files.
* Added MP4::File::strip() to remove meta atom from MP4 file.
* Added Map::value() to look up without creating entry.
* Use property "WORK" instead of "CONTENTGROUP" for ID3v2 "TIT1" frame,
* use property "WORK" for ASF "WM/ContentGroupDescription",
* use property "COMPILATION" for ID3v2 "TCMP" frame.
* Build system improvements: option WITH_ZLIB, BUILD_TESTING instead of
* BUILD_TESTS, GNUInstallDirs, FeatureSummary, tests with BUILD_SHARED_LIBS,
* cross compilation with Buildroot, systems without HAVE_GCC_ATOMIC, Clang.
* Fixed heap-buffer-overflows when handling ASF, APE, FLAC, ID3v2, MP4, MPC tags.
* Fixed detection of invalid file by extension when correct type can be detected by contents.
* Fixed unnecessary creation of map entries in APE and FLAC tags if looked up tag does not exist.
* Fixed parsing of MP4 non-full meta atoms.
* Fixed potential ID3v1 false positive in the presence of an APE tag.
* Fixed ID3v2 version handling for frames embedded in CHAP or CTOC frames.
* Fixed parsing of multiple strings with a single BOM in ID3v2.4.0.
* Fixed several smaller issues reported by clang-tidy.
==== texinfo ====
Version update (6.8 -> 7.0)
Subpackages: info info-lang info-std
- Update to version 7.0 (7 November 2022)
* texi2any
* LaTeX added as an output format, selected with --latex
* EPUB 3 added as an output format, selected with --epub3
* reform throughout the code in general
* thorough review of character encoding issues
* new customization variables involved with character encoding:
INPUT_FILE_NAME_ENCODING, OUTPUT_FILE_NAME_ENCODING,
DOC_ENCODING_FOR_INPUT_FILE_NAME, DOC_ENCODING_FOR_OUTPUT_FILE_NAME,
MESSAGE_ENCODING and COMMAND_LINE_ENCODING
* warn if full-text commands (@ref, @footnote, @anchor) appear in @w
* new variable NO_TOP_NODE_OUTPUT
* IGNORE_BEFORE_SETFILENAME variable removed. former effect
is now always on.
* HTML output:
* use manual_name_html as output directory for split HTML instead of
manual_name or manual_name.html
* default DOCTYPE declaration changed to plain HTML5 style rather than
HTML4 DTD reference
* output only the CSS rules that are needed in an output file
. remove CSS_LINES variable and add SHOW_BUILTIN_CSS_RULES
* (custom CSS can still be output using EXTRA_HEAD)
* use <code> tag for the output of @t and @verb instead of <tt>
* use <abbr> for @acronym instead of <acronym>
* link to table of contents from short table of contents only if a
table of contents is actually output
* prefix classes from @example arguments with `user-'
* percent encode URL in @url/@uref, @email, @image and external
manual file
* new USE_XML_SYNTAX, HTML_ROOT_ELEMENT_ATTRIBUTES and
NO_CUSTOM_HTML_ATTRIBUTE variables can be used to output
valid XHTML
* systematic addition of classes attribute in HTML elements based on the
Texinfo @-command names. renaming of class attributes to avoid
confusion with @-commands formatting and describe the role in the
document rather than the formatting style.
* COPIABLE_ANCHORS renamed to COPIABLE_LINKS
* do not add a title by default; SHOW_TITLE or NO_TOP_NODE_OUTPUT has
to be set
* USE_TITLEPAGE_FOR_TITLE is now true by default
* L2H variable removed, replaced by HTML_MATH set to `l2h'
* rename OVERVIEW_LINK_TO_TOC to SHORT_TOC_LINK_TO_TOC
* rename BEFORE_OVERVIEW to BEFORE_SHORT_TOC_LINE
* rename AFTER_OVERVIEW to AFTER_SHORT_TOC_LINES
* remove PRE_ABOUT, AFTER_ABOUT, and add PROGRAM_NAME_IN_ABOUT
* remove KEEP_TOP_EXTERNAL_REF
* new variables IGNORE_REF_TO_TOP_NODE_UP, CONVERT_TO_LATEX_IN_MATH,
HTMLXREF_MODE and HTMLXREF_FILE
* DocBook output:
* do not output Top node or text before the first @node or sectioning
@-command. NO_TOP_NODE_OUTPUT can be set to false to output Top node
for now.
* replace @definfocenlose defined @-commands by the argument as-is
to be more consistent with printed output
* HTML/DocBook output:
* USE_NUMERIC_ENTITY changed to mean to use numeric entities instead
of named entities. former effect is now always on.
* ENABLE_ENCODING_USE_ENTITY variable removed. former effect is now
always off.
* Info output
* quote problematic node names (with :, comma...) by default
* new customization variable ASCII_PUNCTUATION to use plain ASCII
characters for quotation marks and a few other symbols
* texinfo.tex
* `@microtype on' uses microtypography in formatting for pdfTeX and LuaTeX
* do not ignore @part page immediately following Top node
* do `@set txicodevaristt' to get slanted typewriter for @var in code,
`@clear txicodevaristt' to use slanted, variable-width roman font for
@var everywhere. flag is @set by default, but we may turn this off
in the future.
* new file doc/texinfo-zh.tex for Texinfo documents in Chinese.
new support file doc/txi-zh.tex for Chinese. doc/short-sample-zh.texi is
a sample document.
* info
* better support for index entries containing parentheses
* better support for getting bold text etc. when displaying manpages
* bug fixed where the first index entry in a file could be ignored
* M-C-f closes as well as opens footnotes window
* do not crash if run in Brazilian Portuguese locale
* Language
* @deftype* commands use typewriter font in argument list
* new commands @latex, @iflatex, @ifnotlatex for new LaTeX output format
* do `@set txidefnamenospace' to omit space after a definition name
* Other
* build fixed for glibc 2.34
- Delete patch 13a8894fe2.patch as now part of upstream tar ball
==== threadweaver ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't translate the exception message
==== tiff ====
- security update:
* CVE-2022-3970 [bsc#1205392]
+ tiff-CVE-2022-3970.patch
- security update:
* CVE-2022-3597 [bsc#1204641]
* CVE-2022-3626 [bsc#1204644]
* CVE-2022-3627 [bsc#1204645]
+ tiff-CVE-2022-3597,CVE-2022-3626,CVE-2022-3627.patch
* CVE-2022-3599 [bsc#1204643]
+ tiff-CVE-2022-3599.patch
* CVE-2022-3598 [bsc#1204642]
+ tiff-CVE-2022-3598.patch
==== udisks2 ====
Subpackages: libudisks2-0 libudisks2-0_btrfs
- fix crash during shutdown (bsc#1205371)
* add:
0001-udiskslinuxmountoptions-Do-not-free-static-daemon-re.patch
==== webkit2gtk3 ====
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update _constraints for webkit2gtk3:gtk3-soup2 on aarch64 to
avoid slow workers and OOM
==== webkit2gtk4 ====
Subpackages: libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles
- Update _constraints for webkit2gtk3:gtk3-soup2 on aarch64 to
avoid slow workers and OOM
==== wireless-regdb ====
Version update (20220812 -> 20221012)
- Update to version 20221012:
* wireless-regdb: update regulatory rules for Switzerland (CH)
* wireless-regdb: Update regulatory rules for Brazil (BR)
==== wireplumber ====
Subpackages: libwireplumber-0_4-0 wireplumber-audio
- Add patch from upstream to work around a problem when a link is
not activated:
* 0001-policy-node-wait-for-unactivated-links-instead-of-removing.patch
- Add patch from upstream to fix handling null devices which result
in lua exceptions:
* 0001-alsa.lua-remove-the-disabled-entities-from-the-names-table.patch
==== xfsprogs ====
Version update (5.19.0 -> 6.0.0)
- update to 6.0.0:
- libxfs: kernel sync
- xfs_db: use preferable macro to seek offset for local dir3
- xfs_quota: optimize -L/-U calls for dump/report
==== xterm ====
Version update (375 -> 376)
Subpackages: xterm-bin xterm-resize
- update to 376:
* modify configure script to always check for gcc attributes,
* update install-sh.
* fix parsing of result -u in vttests/halves.pl.
* add a note in ctlseqs.ms about compatibility of TBC.
* fix a copy/paste error in manual (patch by Grady Martin).
* add null-pointer checks in x_strcasecmp and x_strncasecmp, to help
with error-recovery for a missing font (Debian #1022942).
==== xz ====
Version update (5.2.7 -> 5.2.8)
Subpackages: liblzma5
- Update to 5.2.8:
* xz:
- If xz cannot remove an input file when it should, this
is now treated as a warning (exit status 2) instead of
an error (exit status 1). This matches GNU gzip and it
is more logical as at that point the output file has
already been successfully closed.
- Fix handling of .xz files with an unsupported check type.
Previously such printed a warning message but then xz
behaved as if an error had occurred (didn't decompress,
exit status 1). Now a warning is printed, decompression
is done anyway, and exit status is 2. This used to work
slightly before 5.0.0. In practice this bug matters only
if xz has been built with some check types disabled. As
instructed in PACKAGERS, such builds should be done in
special situations only.
- Fix "xz -dc --single-stream tests/files/good-0-empty.xz"
which failed with "Internal error (bug)". That is,
- -single-stream was broken if the first .xz stream in
the input file didn't contain any uncompressed data.
- Fix displaying file sizes in the progress indicator when
working in passthru mode and there are multiple input files.
Just like "gzip -cdf", "xz -cdf" works like "cat" when the
input file isn't a supported compressed file format. In
this case the file size counters weren't reset between
files so with multiple input files the progress indicator
displayed an incorrect (too large) value.
* liblzma:
- API docs in lzma/container.h:
* Update the list of decoder flags in the decoder
function docs.
* Explain LZMA_CONCATENATED behavior with .lzma files
in lzma_auto_decoder() docs.
- OpenBSD: Use HW_NCPUONLINE to detect the number of
available hardware threads in lzma_physmem().
- Fix use of wrong macro to detect x86 SSE2 support.
__SSE2_MATH__ was used with GCC/Clang but the correct
one is __SSE2__. The first one means that SSE2 is used
for floating point math which is irrelevant here.
The affected SSE2 code isn't used on x86-64 so this affects
only 32-bit x86 builds that use -msse2 without -mfpmath=sse
(there is no runtime detection for SSE2). It improves LZMA
compression speed (not decompression).
- Fix the build with Intel C compiler 2021 (ICC, not ICX)
on Linux. It defines __GNUC__ to 10 but doesn't support
the __symver__ attribute introduced in GCC 10.
* Scripts: Ignore warnings from xz by using --quiet --no-warn.
This is needed if the input .xz files use an unsupported
check type.
* Translations:
- Updated Croatian and Turkish translations.
- One new translations wasn't included because it needed
technical fixes. It will be in upcoming 5.4.0. No new
translations will be added to the 5.2.x branch anymore.
- Renamed the French man page translation file from
fr_FR.po to fr.po and thus also its install directory
(like /usr/share/man/fr_FR -> .../fr).
- Man page translations for upcoming 5.4.0 are now handled
in the Translation Project.
* Update doc/faq.txt a little so it's less out-of-date.
==== yast2 ====
Version update (4.5.18 -> 4.5.19)
Subpackages: yast2-logs
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.19
==== yast2-installation ====
Version update (4.5.8 -> 4.5.9)
- Fixed the help in the installation summary to include the texts
from the corresponding proposals (related to jsc#SLE-24764).
- 4.5.9
- Write config for ssg-apply script according to the enabled
security policy (part of jsc#SLE-24764).
Tue Nov 15 13:41:41 UTC 2022 - Knut Anderssen <kanderssen(a)suse.com>
- Fix copy of entropy pool during installation (bsc#1204559).
- Do not use "xrdb" for setting the "Xft.dpi" value, use a specific
YaST tool from the yast2-x11 package (bsc#1201532)
(xrdb depends on the C pre-processor increasing the dependencies
about of 22MB)
- Install yast2-x11 only when GUI (libyui-qt) is installed,
avoid installing the dependent X libraries in minimal (text mode)
installation (bsc#1201966)
==== yast2-packager ====
Version update (4.5.6 -> 4.5.8)
- Do not add an empty repository to the system when upgrading
a registered system using the Full installation medium
(bsc#1204399)
- 4.5.8
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.7
==== yast2-pkg-bindings ====
Version update (4.5.0 -> 4.5.1)
- Allow querying orphaned packages (related to bsc#1202007)
- 4.5.1
==== yast2-samba-client ====
Version update (4.5.1 -> 4.5.2)
- Enable pam_mount also for gdm-password service; (bsc#1204830);
- 4.5.2
==== yast2-security ====
Version update (4.5.1 -> 4.5.3)
- Add support for DISA STIG security policy validation
(jsc#SLE-24764).
- Disable the ssg-apply service if the selected SCAP action is
"do nothing" (related to jsc#SLE-24764).
- 4.5.3
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.2
==== yast2-storage-ng ====
Version update (4.5.10 -> 4.5.13)
- Validate security policies in both guided proposal and
partitioner (part of jsc#SLE-24764).
- 4.5.13
- New functionality for D-Installer: MinGuidedProposal and ability
to disable size adjustments (related to gh#yast/d-installer#264).
- 4.5.12
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.11
==== yast2-update ====
Version update (4.5.1 -> 4.5.2)
- Display a warning in the upgrade summary when removing orphaned
3rd party packages (bsc#1202007)
- 4.5.2
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
libinput (1.21.0 -> 1.22.0)
mpfr (4.1.0 -> 4.1.1)
plymouth
xterm (375 -> 376)
xz (5.2.7 -> 5.2.8)
=== Details ===
==== libinput ====
Version update (1.21.0 -> 1.22.0)
Subpackages: libinput-udev libinput10
- Update to release 1.22
* A new flat acceleration profile is available for trackpoints,
making them more usable in some cases.
* This version includes quirks for laptops from Lenovo, Acer and
Microsoft, as well as for the Framework laptop and ARM based
Chromebooks.
==== mpfr ====
Version update (4.1.0 -> 4.1.1)
- Update to mpfr 4.1.1
* Bug fixes (see <https://www.mpfr.org/mpfr-4.1.0/#fixed> and/or the
ChangeLog file), in particular for macros implementing functions.
* Improved manual formatting.
* Accumulated bugfixes
- Remove mpfr-4.1.0-p7.diff, all patches are contained in the
new version.
- Update mpfr.keyring
==== plymouth ====
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
- Drop plymouth-keep-KillMode-none.patch: We have a new enough
version of systemd now to not need this patch any more.
==== xterm ====
Version update (375 -> 376)
Subpackages: xterm-bin xterm-resize
- update to 376:
* modify configure script to always check for gcc attributes,
* update install-sh.
* fix parsing of result -u in vttests/halves.pl.
* add a note in ctlseqs.ms about compatibility of TBC.
* fix a copy/paste error in manual (patch by Grady Martin).
* add null-pointer checks in x_strcasecmp and x_strncasecmp, to help
with error-recovery for a missing font (Debian #1022942).
==== xz ====
Version update (5.2.7 -> 5.2.8)
Subpackages: liblzma5 xz-lang
- Update to 5.2.8:
* xz:
- If xz cannot remove an input file when it should, this
is now treated as a warning (exit status 2) instead of
an error (exit status 1). This matches GNU gzip and it
is more logical as at that point the output file has
already been successfully closed.
- Fix handling of .xz files with an unsupported check type.
Previously such printed a warning message but then xz
behaved as if an error had occurred (didn't decompress,
exit status 1). Now a warning is printed, decompression
is done anyway, and exit status is 2. This used to work
slightly before 5.0.0. In practice this bug matters only
if xz has been built with some check types disabled. As
instructed in PACKAGERS, such builds should be done in
special situations only.
- Fix "xz -dc --single-stream tests/files/good-0-empty.xz"
which failed with "Internal error (bug)". That is,
- -single-stream was broken if the first .xz stream in
the input file didn't contain any uncompressed data.
- Fix displaying file sizes in the progress indicator when
working in passthru mode and there are multiple input files.
Just like "gzip -cdf", "xz -cdf" works like "cat" when the
input file isn't a supported compressed file format. In
this case the file size counters weren't reset between
files so with multiple input files the progress indicator
displayed an incorrect (too large) value.
* liblzma:
- API docs in lzma/container.h:
* Update the list of decoder flags in the decoder
function docs.
* Explain LZMA_CONCATENATED behavior with .lzma files
in lzma_auto_decoder() docs.
- OpenBSD: Use HW_NCPUONLINE to detect the number of
available hardware threads in lzma_physmem().
- Fix use of wrong macro to detect x86 SSE2 support.
__SSE2_MATH__ was used with GCC/Clang but the correct
one is __SSE2__. The first one means that SSE2 is used
for floating point math which is irrelevant here.
The affected SSE2 code isn't used on x86-64 so this affects
only 32-bit x86 builds that use -msse2 without -mfpmath=sse
(there is no runtime detection for SSE2). It improves LZMA
compression speed (not decompression).
- Fix the build with Intel C compiler 2021 (ICC, not ICX)
on Linux. It defines __GNUC__ to 10 but doesn't support
the __symver__ attribute introduced in GCC 10.
* Scripts: Ignore warnings from xz by using --quiet --no-warn.
This is needed if the input .xz files use an unsupported
check type.
* Translations:
- Updated Croatian and Turkish translations.
- One new translations wasn't included because it needed
technical fixes. It will be in upcoming 5.4.0. No new
translations will be added to the 5.2.x branch anymore.
- Renamed the French man page translation file from
fr_FR.po to fr.po and thus also its install directory
(like /usr/share/man/fr_FR -> .../fr).
- Man page translations for upcoming 5.4.0 are now handled
in the Translation Project.
* Update doc/faq.txt a little so it's less out-of-date.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager-openvpn (1.10.0 -> 1.10.2)
kdump (1.0.2+git19.g0c60ffb -> 1.0.2+git20.gcb129d0)
libpipeline (1.5.6 -> 1.5.7)
poppler (22.10.0 -> 22.11.0)
poppler-qt5 (22.10.0 -> 22.11.0)
systemd
taglib (1.12 -> 1.13)
=== Details ===
==== NetworkManager-openvpn ====
Version update (1.10.0 -> 1.10.2)
Subpackages: NetworkManager-openvpn-gnome NetworkManager-openvpn-lang
- Update to version 1.10.2:
+ IP condfiguration is no longer required in TAP mode.
+ Fix initialization of secret flags.
+ Add support for DOMAIN-SEARCH option.
+ Set data-ciphers option with chosen cipher.
+ Update translations.
==== kdump ====
Version update (1.0.2+git19.g0c60ffb -> 1.0.2+git20.gcb129d0)
- update to kdump-1.0.2+git20:
* Use inst_binary to install kdump-save
- disable build on arm 32bit (bsc#1203888)
==== libpipeline ====
Version update (1.5.6 -> 1.5.7)
- update to 1.5.7:
* Add notes to libpipeline(3) of when functions were added.
* Transferred Git repository to https://gitlab.com/libpipeline/libpipeline.
* Make `socketpair` tests used by `./configure --enable-socketpair-pipe`
compatible with C23.
==== poppler ====
Version update (22.10.0 -> 22.11.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler125 poppler-tools
- update to 22.11.0:
core:
* CairoOutputDev: Update font after restore
* Protect against broken files
* Small code refactoring
==== poppler-qt5 ====
Version update (22.10.0 -> 22.11.0)
- update to 22.11.0:
core:
* CairoOutputDev: Update font after restore
* Protect against broken files
* Small code refactoring
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev
- Reenable build of sd_boot, it was mistakenly disabled during the integration
of v252.
==== taglib ====
Version update (1.12 -> 1.13)
- Update to version 1.13:
* Added interface StreamTypeResolver to support streams which cannot be fopen()'ed, e.g. network files.
* Added MP4::File::strip() to remove meta atom from MP4 file.
* Added Map::value() to look up without creating entry.
* Use property "WORK" instead of "CONTENTGROUP" for ID3v2 "TIT1" frame,
* use property "WORK" for ASF "WM/ContentGroupDescription",
* use property "COMPILATION" for ID3v2 "TCMP" frame.
* Build system improvements: option WITH_ZLIB, BUILD_TESTING instead of
* BUILD_TESTS, GNUInstallDirs, FeatureSummary, tests with BUILD_SHARED_LIBS,
* cross compilation with Buildroot, systems without HAVE_GCC_ATOMIC, Clang.
* Fixed heap-buffer-overflows when handling ASF, APE, FLAC, ID3v2, MP4, MPC tags.
* Fixed detection of invalid file by extension when correct type can be detected by contents.
* Fixed unnecessary creation of map entries in APE and FLAC tags if looked up tag does not exist.
* Fixed parsing of MP4 non-full meta atoms.
* Fixed potential ID3v1 false positive in the presence of an APE tag.
* Fixed ID3v2 version handling for frames embedded in CHAP or CTOC frames.
* Fixed parsing of multiple strings with a single BOM in ID3v2.4.0.
* Fixed several smaller issues reported by clang-tidy.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
autoyast2 (4.5.8 -> 4.5.9)
cni (1.0.1 -> 1.1.2)
krb5 (1.20 -> 1.20.1)
libeconf (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704)
libstorage-ng (4.5.50 -> 4.5.52)
llvm15 (15.0.4 -> 15.0.5)
pipewire (0.3.59 -> 0.3.60)
plasma-framework (5.100.0 -> 5.100.1)
python-certifi (2021.10.8 -> 2022.9.24)
qemu
samba (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298)
udisks2
yast2 (4.5.18 -> 4.5.19)
yast2-installation (4.5.8 -> 4.5.9)
yast2-packager (4.5.6 -> 4.5.8)
yast2-pkg-bindings (4.5.0 -> 4.5.1)
yast2-samba-client (4.5.1 -> 4.5.2)
yast2-security (4.5.1 -> 4.5.3)
yast2-storage-ng (4.5.10 -> 4.5.13)
yast2-trans (84.87.20221029.429a275094 -> 84.87.20221114.6ac294712f)
yast2-update (4.5.1 -> 4.5.2)
=== Details ===
==== autoyast2 ====
Version update (4.5.8 -> 4.5.9)
- Add needed packages for kdump even when kdump section is not
defined if product enable kdump by default (bsc#1204180)
- 4.5.9
==== cni ====
Version update (1.0.1 -> 1.1.2)
- Update to version 1.1.2:
* spec: fix format
* libcni: handle empty version when parsing version
* [exec-plugins]: support plugin lists
This is a minor update to the CNI libraries and tooling.
This does not bump the protocol / spec version, which remains at v1.0.0
==== krb5 ====
Version update (1.20 -> 1.20.1)
- Update to 1.20.1; (bsc#1205126); (CVE-2022-42898);
* Fix integer overflows in PAC parsing [CVE-2022-42898].
* Fix null deref in KDC when decoding invalid NDR.
* Fix memory leak in OTP kdcpreauth module.
* Fix PKCS11 module path search.
==== libeconf ====
Version update (0.4.6+git20220427.3016f4e -> 0.4.8+git20221114.7ff7704)
- Update to version 0.4.8+git20221114.7ff7704:
* Parsing files which are containing keys only (#170)
All delimiters are allowed now : "", " =", " ", "=". But the
user should use "" in order to be distinct.
* /usr/etc/shells.d/<file_name> will not be parsed if
/etc/shells.d/<file_name> is defined too.
* Lto build fixed (#168)
* New calls: econf_comment_tag, econf_delimiter_tag, econf_set_comment_tag,
econf_set_delimiter_tag
* Checking UID,GroupID, permissions,... of the parsed files (#165)
New calls: econf_requireOwner, econf_requireGroup, econf_requirePermissions,
econf_followSymlinks
* Ignoring Group without brackets; Do not hold brackets in the internal data structure. (#164)
* Error handling improved for nums and booleans (#163)
==== libstorage-ng ====
Version update (4.5.50 -> 4.5.52)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Macedonian) (bsc#1149754)
- 4.5.52
- merge gh#openSUSE/libstorage-ng#904
- added examples
- 4.5.51
==== llvm15 ====
Version update (15.0.4 -> 15.0.5)
- Update to version 15.0.5.
* This release contains bug-fixes for the LLVM 15.0.0 release.
This release is API and ABI compatible with 15.0.0.
- Remove obsolete lldb-swig-4.1.0-build-fix.patch.
- Rebase llvm-do-not-install-static-libraries.patch.
==== pipewire ====
Version update (0.3.59 -> 0.3.60)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Add patch from upstream that fixes audio in qemu where the buffer
is very small (glfo#pipewire/pipewire#2830):
* 0004-alsa-force-playback-start-when-buffer-is-full.patch
- Add more patches from upstream to perform setup in more cases:
* 0001-audioadapter-perform-setup-again-after-a-PortConfig.patch
* 0002-audioconvert-redo-setup-when-format-changes.patch
- Renumber patch 0001-acp-do-probing-in-44100Hz-again.patch to
* 0003-acp-do-probing-in-44100Hz-again.patch
- Add patch from upstream to fix some devices that don't seem to
work in 48000Hz:
* 0001-acp-do-probing-in-44100Hz-again.patch
- Require pulseaudio-utils from pipewire-pulseaudio to have pactl
available to load modules.
- Update to version 0.3.60:
* Highlights
- The filter-chain now handles errors better and has fixes for
many crasher bugs.
- A new RTP module was added with a sender and receiver.
It uses SAP to announce and consume RTP streams and is
compatible with the PulseAudio RTP modules.
- Many small bluetooth improvements and fixes.
- The alsa plugin will now only start playback when there is
data. This results in better synch and lower latency between
capture and playback.
- The v4l2 and libcamera plugins have seen a lot of
improvements. They support control properties now. Also
pw-v4l2 has seen many improvements and mostly passes the
v4l2-compliance test now.
- Many more bugfixes and improvements.
* PipeWire
- Code cleanups, compiler warning fixes.
- Add some extra checks to avoid scheduling an inactive node.
- Rework the sequence of events to start and stop nodes.
- Improve param enumeration.
- An option was added to give priority to the Buffer params of
the consumer. This makes it possible to use the default
values of the consumer (instead of the producer) when
capturing from a source.
- The graph rate selection was improved to pick a rate closest
to the requested one (instead of picking the default).
* Modules
- Fix some crashes in filter-chain.
- X11 Bell module will now be loaded by default when available.
- A new RTP module was added with a sender and receiver. It
uses SAP to announce and consume RTP streams and is
compatible with the PulseAudio RTP modules.
- Improve RAOP compatibility.
- The echo-cancel module now uses the resampler prefill option
to align input and output samples without buffering. Better
latency control when starting and stopping has been
implemented.
- The pulse tunnel will now write aligned samples to pulseaudio
even when the ringbuffer wraps around. This fixes playback
issues with multichannel sinks.
- Add a delay option to module-loopback using a ringbuffer.
- Implement echo-cancel params.
- The filter-chain module has better error reporting.
- The LADSPA search path was extended with some more common
paths.
- The echo-cancel input can now also be a monitor of a sink.
This improves compatibility with some proton games that
expect a real sink instead of a virtual one.
* Tools
- Better error reporting in pw-link.
- pw-top now also shows IEC958 passthrough formats and
JPEG/H264 video formats.
- pw-top refreshes the screen faster.
- pw-top now prints the state of the node and shows less info
for inactive nodes.
- pw-dump now uses the new seq field in the spa_param_info to
discard old param updates and avoid duplicate params in the
output.
* Bluetooth
- Add ModemManager support in the native backend.
- Clean up GetManagedObjects handling.
- Handle QoS from the endpoints in the codec.
- Increase the socket buffer to have more control over the rate
and QoS.
- Simplify the packet flushing code.
- Stop processing nodes before destroying them.
- Fix timers when a source switches drivers.
- Codecs can now share endpoints. This reduces the amount of
endpoints and avoids problems with devices that can't handle
a large amount of codec endpoints.
- Report batery status to UPower for HFP AG.
- Fix bitpool increase.
* SPA
- The audioresampler now avoids clicks and pops between
activating and deactivating the adaptive resampler when used
by the stream API.
- Use default locale to parse float parameters.
- The upmix functions now have SSE optimisations.
- Avoid recalculating the complete channelmix setup when only
the volume changes.
- The alsa plugin will now only start playback when there is
data. This results in better synch and lower latency between
capture and playback.
- The ALSA MIDI sequencer will now pull data from the graph
even when it did not output anything. Fixes some graph stalls
... changelog too long, skipping 63 lines ...
* 0001-pulse-server-also-advance-read-pointer-in-underrun.patch
==== plasma-framework ====
Version update (5.100.0 -> 5.100.1)
Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-lang
- Update to 5.100.1. Hotfix release:
* svgitem: do not upscale svg when using fractional scaling
==== python-certifi ====
Version update (2021.10.8 -> 2022.9.24)
- Update to 2022.9.24:
* (no changes)
- from version 2022.09.24:
* (no changes)
- from version 2022.09.14:
* (no changes)
- from version 2022.06.15.2:
* Only use importlib.resources's new files() /
Traversable API on Python â¥3.11 (#204)
- from version 2022.06.15.1:
* Fix deprecation warning on Python 3.11 (#199)
* fixes #198 -- update link in license
- from version 2022.06.15:
* Add py.typed to MANIFEST.in to package in sdist (#196)
- from version 2022.05.18.1:
* Add support for Python 3.10 and drop EOL 3.5 (#167)
- from version 2022.05.18:
* Automatically lock github issues after
they've been closed for 90 days (#189)
* Remove universal wheel, python 2 is unsupported (#187)
* Add type annotations to package
* Added Required Python Version (#152)
* Fix homepage link (#145)
- Refresh patches for new version
* python-certifi-shipped-requests-cabundle.patch
==== qemu ====
- Raise the maximum number of vCPUs a VM can have to 1024 (jsc#PED-2592)
* Patches added:
pc-q35-Bump-max_cpus-to-1024.patch
==== samba ====
Version update (4.17.2+git.273.a55a83528b9 -> 4.17.3+git.279.ff9bb8a298)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- CVE-2022-42898: Samba buffer overflow vulnerabilities on 32-bit
systems; (bsc#1205126); (bso#15203);
- Replace obsolete python-gpgme with python-gpg
* Upstream replaced it in v4.9.5 -- bso#13728
==== udisks2 ====
Subpackages: libudisks2-0 libudisks2-0_btrfs udisks2-lang
- fix crash during shutdown (bsc#1205371)
* add:
0001-udiskslinuxmountoptions-Do-not-free-static-daemon-re.patch
==== yast2 ====
Version update (4.5.18 -> 4.5.19)
Subpackages: yast2-logs
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.19
==== yast2-installation ====
Version update (4.5.8 -> 4.5.9)
- Fixed the help in the installation summary to include the texts
from the corresponding proposals (related to jsc#SLE-24764).
- 4.5.9
- Write config for ssg-apply script according to the enabled
security policy (part of jsc#SLE-24764).
Tue Nov 15 13:41:41 UTC 2022 - Knut Anderssen <kanderssen(a)suse.com>
- Fix copy of entropy pool during installation (bsc#1204559).
- Do not use "xrdb" for setting the "Xft.dpi" value, use a specific
YaST tool from the yast2-x11 package (bsc#1201532)
(xrdb depends on the C pre-processor increasing the dependencies
about of 22MB)
- Install yast2-x11 only when GUI (libyui-qt) is installed,
avoid installing the dependent X libraries in minimal (text mode)
installation (bsc#1201966)
==== yast2-packager ====
Version update (4.5.6 -> 4.5.8)
- Do not add an empty repository to the system when upgrading
a registered system using the Full installation medium
(bsc#1204399)
- 4.5.8
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.7
==== yast2-pkg-bindings ====
Version update (4.5.0 -> 4.5.1)
- Allow querying orphaned packages (related to bsc#1202007)
- 4.5.1
==== yast2-samba-client ====
Version update (4.5.1 -> 4.5.2)
- Enable pam_mount also for gdm-password service; (bsc#1204830);
- 4.5.2
==== yast2-security ====
Version update (4.5.1 -> 4.5.3)
- Add support for DISA STIG security policy validation
(jsc#SLE-24764).
- Disable the ssg-apply service if the selected SCAP action is
"do nothing" (related to jsc#SLE-24764).
- 4.5.3
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.2
==== yast2-storage-ng ====
Version update (4.5.10 -> 4.5.13)
- Validate security policies in both guided proposal and
partitioner (part of jsc#SLE-24764).
- 4.5.13
- New functionality for D-Installer: MinGuidedProposal and ability
to disable size adjustments (related to gh#yast/d-installer#264).
- 4.5.12
- Fix hash vs keyword arguments in RSpec expectations (bsc#1204871)
- 4.5.11
==== yast2-trans ====
Version update (84.87.20221029.429a275094 -> 84.87.20221114.6ac294712f)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20221114.6ac294712f:
* New POT for text domain 'qt-pkg'.
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Arabic)
* New POT for text domain 'samba-client'.
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
- Update to version 84.87.20221106.2505f85442:
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Dutch)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Slovak)
* Translated using Weblate (Catalan)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Japanese)
* New POT for text domain 'cluster'.
* Translated using Weblate (Macedonian)
* New POT for text domain 'autoinst'.
* Translated using Weblate (Macedonian)
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Spanish)
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (French)
* Translated using Weblate (French)
* Translated using Weblate (French)
==== yast2-update ====
Version update (4.5.1 -> 4.5.2)
- Display a warning in the upgrade summary when removing orphaned
3rd party packages (bsc#1202007)
- 4.5.2
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
MozillaFirefox (106.0.5 -> 107.0)
bluez (5.65 -> 5.66)
curl
distrobox
ffmpeg-4
installation-images-MicroOS (17.64 -> 17.65)
lcms2
libXft (2.3.6 -> 2.3.7)
libalternatives
open-iscsi
python-jsonschema (4.16.0 -> 4.17.0)
systemd (251.8 -> 252.1)
webkit2gtk3
webkit2gtk4
xfsprogs (5.19.0 -> 6.0.0)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- try to fix build on ppc64le due to running OOM (boo#1205441)
* let's request 20G of physical memory via _constraints file
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- try to fix build on ppc64le due to running OOM (boo#1205441)
* let's request 20G of physical memory via _constraints file
==== MozillaFirefox ====
Version update (106.0.5 -> 107.0)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 107.0
MFSA 2022-47 (bsc#1205270)
* CVE-2022-45403 (bmo#1762078)
Service Workers might have learned size of cross-origin media files
* CVE-2022-45404 (bmo#1790815)
Fullscreen notification bypass
* CVE-2022-45405 (bmo#1791314)
Use-after-free in InputStream implementation
* CVE-2022-45406 (bmo#1791975)
Use-after-free of a JavaScript Realm
* CVE-2022-45407 (bmo#1793314)
Loading fonts on workers was not thread-safe
* CVE-2022-45408 (bmo#1793829)
Fullscreen notification bypass via windowName
* CVE-2022-45409 (bmo#1796901)
Use-after-free in Garbage Collection
* CVE-2022-45410 (bmo#1658869)
ServiceWorker-intercepted requests bypassed SameSite cookie policy
* CVE-2022-45411 (bmo#1790311)
Cross-Site Tracing was possible via non-standard override headers
* CVE-2022-45412 (bmo#1791029)
Symlinks may resolve to partially uninitialized buffers
* CVE-2022-45413 (bmo#1791201)
SameSite=Strict cookies could have been sent cross-site via
intent URLs
* CVE-2022-40674 (bmo#1791598)
Use-after-free vulnerability in expat
* CVE-2022-45415 (bmo#1793551)
Downloaded file may have been saved with malicious extension
* CVE-2022-45416 (bmo#1793676)
Keystroke Side-Channel Leakage
* CVE-2022-45417 (bmo#1794508)
Service Workers in Private Browsing Mode may have been
written to disk
* CVE-2022-45418 (bmo#1795815)
Custom mouse cursor could have been drawn over browser UI
* CVE-2022-45419 (bmo#1716082)
Deleting a security exception did not take effect immediately
* CVE-2022-45420 (bmo#1792643)
Iframe contents could be rendered outside the iframe
* CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
- requires
* NSS >= 3.84
* rust = 1.64
==== bluez ====
Version update (5.65 -> 5.66)
Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3
- update to 5.66:
* Fix issue with A2DP and transport connection collisions.
* Fix issue with allowing application specific error codes.
* Fix issue with not setting initiator flag correctly.
* Fix issue with HoG Report MAP size handling.
* Add initial support for Basic Audio Profile.
* Add initial support for Volume Control Profile.
- remove RPi-Move-the-43xx-firmware-into-lib-firmware.patch (does
not apply anymore), replace with CPPFLAGS define
==== curl ====
Subpackages: libcurl4
- Add 1.50.0 as the minimum libnghttp2 build requirement version as
a bandaid. Curl's 7.86.0 release introduces the use of
nghttp2_option_set_no_rfc9113_leading_and_trailing_ws_validation,
introduced by nghttp2 1.50.0 release, without introducing a check
for the function/right version in their build scripts. This will
make Zypper/cURL unusable in some corner cases where users
installing something that requires libcurl4 before doing full
system upgrade, thus updating the cURL stack, but not
libnghttp2's. Background: boo#1204983, Factory mailing list
threadd:
"? broken dependency in curl and/or *zyp* ?", and forums thread:
Curl-is-broken-after-an-update-which-subsequently-breaks-zypper.
==== distrobox ====
Subpackages: distrobox-bash-completion
- Do not recommend bash-completion subpackage: this triggers
installation even if bash-completion is not there yet. All (well,
most for now) packages are handled to install the completion IF
bash-completion is present (which is the default on standard
setups).
==== ffmpeg-4 ====
Subpackages: libavcodec58_134 libavfilter7_110 libavformat58_76 libavresample4_0 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9
- Add ffmpeg-CVE-2022-3964.patch: Backport from upstream to fix
out of bounds read in update_block_in_prev_frame() (bsc#1205388).
==== installation-images-MicroOS ====
Version update (17.64 -> 17.65)
- merge gh#openSUSE/installation-images#615
- systemd lib moved to /usr/lib64
- 17.65
==== lcms2 ====
- Removed reverse-0001-fix-memory-leaks-on-testbed.patch and added
0001-fix-memory-corruption-when-unregistering-plugins.patch as
final fix for https://github.com/hughsie/colord/issues/145
==== libXft ====
Version update (2.3.6 -> 2.3.7)
- Update to version 2.3.7
* libxft issue #15
https://gitlab.freedesktop.org/xorg/lib/libxft/-/issues/15
XftFontLoadGlyphs for mono font returns wrong info in extents from
XftTextExtentsUtf8 for variable chars
Patch by Scott Mcdermott, based on
https://github.com/googlefonts/Inconsolata/issues/42
* fix compiler warning
* libxft issue #16
https://gitlab.freedesktop.org/xorg/lib/libxft/-/issues/16
Stack gets smashed in fonts with colors when calling XftGlyphRender
BGRA changes made incorrect comparison for local vs allocated
buffer in XftGlyphSpecRender
* stdint.h header is needed for SIZE_MAX
==== libalternatives ====
Subpackages: alts libalternatives1
- switch to a manual service rather than a buildtime tar service
which introduces a bootstrap cycle between python and tar_scm
==== open-iscsi ====
Subpackages: iscsiuio libopeniscsiusr0_2_0
- Updated to latest upstream. Changes:
* scsid/iscsiuio: fix OOM adjustment (github issue #377)
==== python-jsonschema ====
Version update (4.16.0 -> 4.17.0)
- update to 4.17.0:
* The check_schema method on jsonschema.protocols.Validator instances now enables format validation by default when run. This can catch some additional invalid schemas (e.g. containing invalid regular expressions) where the issue is indeed uncovered by validating against the metaschema with format validation enabled as an assertion.
* The jsonschema CLI (along with jsonschema.cli the module) are now deprecated. Use check-jsonschema instead, which can be installed via pip install check-jsonschema and found here.
* Make ErrorTree have a more grammatically correct repr.
==== systemd ====
Version update (251.8 -> 252.1)
Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev
- Upgrade to v252.1 (commit 64dc546913525e33e734500055a62ed0e963c227)
See https://github.com/openSUSE/systemd/blob/SUSE/v252/NEWS for details.
* Rebased 0001-conf-parser-introduce-early-drop-ins.patch
1000-Revert-getty-Pass-tty-to-use-by-agetty-via-stdin.patch
* The new tools systemd-measure and systemd-pcrphase have been added to the
experimental sub-package for now.
* Add temporarly
6000-meson-install-test-kernel-install-only-when-Dkernel-.patch until this
patch is mainstreamed.
==== webkit2gtk3 ====
Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update _constraints for webkit2gtk3:gtk3-soup2 on aarch64 to
avoid slow workers and OOM
==== webkit2gtk4 ====
Subpackages: WebKit2GTK-5.0-lang libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles
- Update _constraints for webkit2gtk3:gtk3-soup2 on aarch64 to
avoid slow workers and OOM
==== xfsprogs ====
Version update (5.19.0 -> 6.0.0)
- update to 6.0.0:
- libxfs: kernel sync
- xfs_db: use preferable macro to seek offset for local dir3
- xfs_quota: optimize -L/-U calls for dump/report
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
busybox
dracut (057+suse.337.g4162a70e -> 057+suse.344.g021aead9)
grantlee5 (5.2.0 -> 5.3.1)
graphviz
grub2
hwdata (0.363 -> 0.364)
kernel-firmware (20221031 -> 20221109)
openssh
patterns-microos
system-config-printer (1.5.16 -> 1.5.18)
texinfo (6.8 -> 7.0)
wireplumber
=== Details ===
==== busybox ====
Subpackages: busybox-static
- Fix build under SLE-12
==== dracut ====
Version update (057+suse.337.g4162a70e -> 057+suse.344.g021aead9)
Subpackages: dracut-ima dracut-mkinitrd-deprecated
- Update to version 057+suse.344.g021aead9:
* fix(dracut-systemd): run systemctl daemon-reload after remove_hostonly_files
* fix(dracut.sh): improve detection of installed kernel versions (bsc#1205175)
* fix(network-manager): always install the library plugins directory (bsc#1202014)
* feat(dracut-init.sh): add inst_libdir_dir() helper (bsc#1202014)
==== grantlee5 ====
Version update (5.2.0 -> 5.3.1)
- Update to 5.3.1
* Use C++11 nullptr where appropriate
* Use QRandomGenerator instead of deprecated qRand
* Increase compatibility with Qt 6 APIs
* Add CMake option to build with Qt 6 - GRANTLEE_BUILD_WITH_QT6
* Support enum introspection on Q_GADGET
* filesizeformat implementation as well as localized filesize
* Make enums comparable with more operations
* Add "truncatechars" filter
* Fix concatenation of string lists
- Refreshed patches:
* includes.diff
* grantlee-5.2.0-fix-ctest-ld-library-path.patch
- Add patch to fix tests on i586 (gh#steveire/grantlee#85):
* fix-i586-precision.patch
- Add keyring for GPG source verification
==== graphviz ====
Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4
- php8 support was added in swig 4.1.0
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Security fixes and hardenings
* 0001-font-Reject-glyphs-exceeds-font-max_glyph_width-or-f.patch
* 0002-font-Fix-size-overflow-in-grub_font_get_glyph_intern.patch
- Fix CVE-2022-2601 (bsc#1205178)
* 0003-font-Fix-several-integer-overflows-in-grub_font_cons.patch
* 0004-font-Remove-grub_font_dup_glyph.patch
* 0005-font-Fix-integer-overflow-in-ensure_comb_space.patch
* 0006-font-Fix-integer-overflow-in-BMP-index.patch
* 0007-font-Fix-integer-underflow-in-binary-search-of-char-.patch
* 0008-fbutil-Fix-integer-overflow.patch
- Fix CVE-2022-3775 (bsc#1205182)
* 0009-font-Fix-an-integer-underflow-in-blit_comb.patch
* 0010-font-Harden-grub_font_blit_glyph-and-grub_font_blit_.patch
* 0011-font-Assign-null_font-to-glyphs-in-ascii_font_glyph.patch
* 0012-normal-charset-Fix-an-integer-overflow-in-grub_unico.patch
- Bump upstream SBAT generation to 3
==== hwdata ====
Version update (0.363 -> 0.364)
- update to 0.364:
+ Updated pci, usb and vendor ids.
==== kernel-firmware ====
Version update (20221031 -> 20221109)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20221109 (git commit 60310c2deb8c):
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9462
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth 9560
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* amdgpu: update DMCUB firmware for DCN 3.1.6
* rtl_bt: Update RTL8822C BT UART firmware to 0xFFB8_ABD6
* rtl_bt: Update RTL8822C BT USB firmware to 0xFFB8_ABD3
* WHENCE: mrvl: prestera: Add WHENCE entries for newly updated 4.1 FW images
* mrvl: prestera: Update Marvell Prestera Switchdev FW to v4.1
* iwlwifi: add new FWs from core74_pv-60 release
* qcom: drop split a530_zap firmware file
* qcom/vpu-1.0: drop split firmware in favour of the mbn file
* qcom/venus-4.2: drop split firmware in favour of the mbn file
* qcom/venus-4.2: replace split firmware with the mbn file
* qcom/venus-1.8: replace split firmware with the mbn file
==== openssh ====
Subpackages: openssh-clients openssh-common openssh-server
- Update openssh-8.1p1-audit.patch: Merge fix for race condition
(bsc#1115550, bsc#1174162).
- Add openssh-do-not-send-empty-message.patch, which prevents
superfluous newlines with empty MOTD files (bsc#1192439).
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add gstreamer-plusing-bad and gstreamer-plugins-good to ensure GNOME's builtin
screen recorder works correctly.
- Add gvfs-fuse
- Add gvfs-backend-samba
- Add ntfs support (useful for external drives and such)
- Add openssh-askpass-gnome and pinentry-gnome3 to have working prompts on GNOME
- Add polkit-gnome for polkit integration
- Add xdg-desktop-portal-gnome to -kde install pattern, to correct
for mangled fonts, and theming, while using GTK apps on MicroOS
KDE (boo#1205631)
==== system-config-printer ====
Version update (1.5.16 -> 1.5.18)
Subpackages: python3-cupshelpers system-config-printer-common system-config-printer-common-lang system-config-printer-dbus-service udev-configure-printer
- Update to version 1.5.18:
+ Add <launchable/> into the .appdata.xml file.
+ Accessiblity improvements.
+ system-config-printer couldn't be uninstalled via GNOME
Software.
+ system-config-printer crashes due missing libhandy.
+ Updated config.sub and config.guess to fix configuration error
on RiSC.
+ Use pkg-config or --with-cups-serverbin-dir for finding
SERVERBIN.
==== texinfo ====
Version update (6.8 -> 7.0)
Subpackages: info info-lang info-std
- Update to version 7.0 (7 November 2022)
* texi2any
* LaTeX added as an output format, selected with --latex
* EPUB 3 added as an output format, selected with --epub3
* reform throughout the code in general
* thorough review of character encoding issues
* new customization variables involved with character encoding:
INPUT_FILE_NAME_ENCODING, OUTPUT_FILE_NAME_ENCODING,
DOC_ENCODING_FOR_INPUT_FILE_NAME, DOC_ENCODING_FOR_OUTPUT_FILE_NAME,
MESSAGE_ENCODING and COMMAND_LINE_ENCODING
* warn if full-text commands (@ref, @footnote, @anchor) appear in @w
* new variable NO_TOP_NODE_OUTPUT
* IGNORE_BEFORE_SETFILENAME variable removed. former effect
is now always on.
* HTML output:
* use manual_name_html as output directory for split HTML instead of
manual_name or manual_name.html
* default DOCTYPE declaration changed to plain HTML5 style rather than
HTML4 DTD reference
* output only the CSS rules that are needed in an output file
. remove CSS_LINES variable and add SHOW_BUILTIN_CSS_RULES
* (custom CSS can still be output using EXTRA_HEAD)
* use <code> tag for the output of @t and @verb instead of <tt>
* use <abbr> for @acronym instead of <acronym>
* link to table of contents from short table of contents only if a
table of contents is actually output
* prefix classes from @example arguments with `user-'
* percent encode URL in @url/@uref, @email, @image and external
manual file
* new USE_XML_SYNTAX, HTML_ROOT_ELEMENT_ATTRIBUTES and
NO_CUSTOM_HTML_ATTRIBUTE variables can be used to output
valid XHTML
* systematic addition of classes attribute in HTML elements based on the
Texinfo @-command names. renaming of class attributes to avoid
confusion with @-commands formatting and describe the role in the
document rather than the formatting style.
* COPIABLE_ANCHORS renamed to COPIABLE_LINKS
* do not add a title by default; SHOW_TITLE or NO_TOP_NODE_OUTPUT has
to be set
* USE_TITLEPAGE_FOR_TITLE is now true by default
* L2H variable removed, replaced by HTML_MATH set to `l2h'
* rename OVERVIEW_LINK_TO_TOC to SHORT_TOC_LINK_TO_TOC
* rename BEFORE_OVERVIEW to BEFORE_SHORT_TOC_LINE
* rename AFTER_OVERVIEW to AFTER_SHORT_TOC_LINES
* remove PRE_ABOUT, AFTER_ABOUT, and add PROGRAM_NAME_IN_ABOUT
* remove KEEP_TOP_EXTERNAL_REF
* new variables IGNORE_REF_TO_TOP_NODE_UP, CONVERT_TO_LATEX_IN_MATH,
HTMLXREF_MODE and HTMLXREF_FILE
* DocBook output:
* do not output Top node or text before the first @node or sectioning
@-command. NO_TOP_NODE_OUTPUT can be set to false to output Top node
for now.
* replace @definfocenlose defined @-commands by the argument as-is
to be more consistent with printed output
* HTML/DocBook output:
* USE_NUMERIC_ENTITY changed to mean to use numeric entities instead
of named entities. former effect is now always on.
* ENABLE_ENCODING_USE_ENTITY variable removed. former effect is now
always off.
* Info output
* quote problematic node names (with :, comma...) by default
* new customization variable ASCII_PUNCTUATION to use plain ASCII
characters for quotation marks and a few other symbols
* texinfo.tex
* `@microtype on' uses microtypography in formatting for pdfTeX and LuaTeX
* do not ignore @part page immediately following Top node
* do `@set txicodevaristt' to get slanted typewriter for @var in code,
`@clear txicodevaristt' to use slanted, variable-width roman font for
@var everywhere. flag is @set by default, but we may turn this off
in the future.
* new file doc/texinfo-zh.tex for Texinfo documents in Chinese.
new support file doc/txi-zh.tex for Chinese. doc/short-sample-zh.texi is
a sample document.
* info
* better support for index entries containing parentheses
* better support for getting bold text etc. when displaying manpages
* bug fixed where the first index entry in a file could be ignored
* M-C-f closes as well as opens footnotes window
* do not crash if run in Brazilian Portuguese locale
* Language
* @deftype* commands use typewriter font in argument list
* new commands @latex, @iflatex, @ifnotlatex for new LaTeX output format
* do `@set txidefnamenospace' to omit space after a definition name
* Other
* build fixed for glibc 2.34
- Delete patch 13a8894fe2.patch as now part of upstream tar ball
==== wireplumber ====
Subpackages: libwireplumber-0_4-0 wireplumber-audio wireplumber-lang
- Add patch from upstream to work around a problem when a link is
not activated:
* 0001-policy-node-wait-for-unactivated-links-instead-of-removing.patch
- Add patch from upstream to fix handling null devices which result
in lua exceptions:
* 0001-alsa.lua-remove-the-disabled-entities-from-the-names-table.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
attica-qt5 (5.99.0 -> 5.100.0)
baloo5 (5.99.0 -> 5.100.0)
bluez-qt (5.99.0 -> 5.100.0)
breeze5-icons (5.99.0 -> 5.100.0)
exiv2
frameworkintegration (5.99.0 -> 5.100.0)
gtk4
kactivities-stats (5.99.0 -> 5.100.0)
kactivities5 (5.99.0 -> 5.100.0)
karchive (5.99.0 -> 5.100.0)
kauth (5.99.0 -> 5.100.0)
kbookmarks (5.99.0 -> 5.100.0)
kcmutils (5.99.0 -> 5.100.0)
kcodecs (5.99.0 -> 5.100.0)
kcompletion (5.99.0 -> 5.100.0)
kconfig (5.99.0 -> 5.100.0)
kconfigwidgets (5.99.0 -> 5.100.0)
kcoreaddons (5.99.0 -> 5.100.0)
kcrash (5.99.0 -> 5.100.0)
kdbusaddons (5.99.0 -> 5.100.0)
kdeclarative (5.99.0 -> 5.100.0)
kded (5.99.0 -> 5.100.0)
kdelibs4support (5.99.0 -> 5.100.0)
kdesu (5.99.0 -> 5.100.0)
kdnssd-framework (5.99.0 -> 5.100.0)
kdoctools (5.99.0 -> 5.100.0)
kfilemetadata5 (5.99.0 -> 5.100.0)
kglobalaccel (5.99.0 -> 5.100.0)
kguiaddons (5.99.0 -> 5.100.0)
kholidays (5.99.0 -> 5.100.0)
khtml (5.99.0 -> 5.100.0)
ki18n (5.99.0 -> 5.100.0)
kiconthemes (5.99.0 -> 5.100.0)
kidletime (5.99.0 -> 5.100.0)
kimageformats (5.99.0 -> 5.100.0)
kinit (5.99.0 -> 5.100.0)
kio (5.99.0 -> 5.100.0)
kirigami2 (5.99.0 -> 5.100.0)
kitemmodels (5.99.0 -> 5.100.0)
kitemviews (5.99.0 -> 5.100.0)
kjobwidgets (5.99.0 -> 5.100.0)
kjs (5.99.0 -> 5.100.0)
knewstuff (5.99.0 -> 5.100.0)
knotifications (5.99.0 -> 5.100.0)
knotifyconfig (5.99.0 -> 5.100.0)
kpackage (5.99.0 -> 5.100.0)
kparts (5.99.0 -> 5.100.0)
kpeople5 (5.99.0 -> 5.100.0)
kpty (5.99.0 -> 5.100.0)
kquickcharts (5.99.0 -> 5.100.0)
krunner (5.99.0 -> 5.100.0)
kservice (5.99.0 -> 5.100.0)
ktexteditor (5.99.0 -> 5.100.0)
ktextwidgets (5.99.0 -> 5.100.0)
kunitconversion (5.99.0 -> 5.100.0)
kwallet (5.99.0 -> 5.100.0)
kwayland (5.99.0 -> 5.100.0)
kwidgetsaddons (5.99.0 -> 5.100.0)
kwindowsystem (5.99.0 -> 5.100.0)
kxmlgui (5.99.0 -> 5.100.0)
libKF5ModemManagerQt (5.99.0 -> 5.100.0)
libKF5NetworkManagerQt (5.99.0 -> 5.100.0)
libavif (0.11.0 -> 0.11.1)
libwnck
llvm15 (15.0.3 -> 15.0.4)
plasma-framework (5.99.0 -> 5.100.0)
plasma5-workspace
prison-qt5 (5.99.0 -> 5.100.0)
purpose (5.99.0 -> 5.100.0)
python-setuptools (65.5.0 -> 65.5.1)
qqc2-desktop-style (5.99.0 -> 5.100.0)
selinux-policy (20220714 -> 20221019)
solid (5.99.0 -> 5.100.0)
sonnet (5.99.0 -> 5.100.0)
syndication (5.99.0 -> 5.100.0)
syntax-highlighting (5.99.0 -> 5.100.0)
threadweaver (5.99.0 -> 5.100.0)
tiff
wireless-regdb (20220812 -> 20221012)
=== Details ===
==== attica-qt5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Attica5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== baloo5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* [TermGeneratorTest] Reduce code duplication
* Correct and simplify OrpostingIterator constructor
* Convert kded metadata to JSON
==== bluez-qt ====
Version update (5.99.0 -> 5.100.0)
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== breeze5-icons ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add accessories-dictionary-symbolic symlink to a book-looking icon (kde#461033)
* Add new icons for Fortran source code
* Add 64px audio-headset, fix issues with 64px audio-headphones (kde#447536)
* Add data-success icon
* Add icon for OpenOffice extensions
* Add Qt 6 Windows CI
==== exiv2 ====
- spec-cleaner run
- add CVE-2022-3953.patch (CVE-2022-3953, bsc#1205391)
==== frameworkintegration ====
Version update (5.99.0 -> 5.100.0)
Subpackages: frameworkintegration-plugin libKF5Style5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== gtk4 ====
Subpackages: gtk4-lang gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update gtk4.spec to align dependency version with meson.build
==== kactivities-stats ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kactivities5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kactivities5-imports libKF5Activities5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== karchive ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Make error messages translatable
==== kauth ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Config.cmake.in: declare static dependencies
* Fix the translation folder name
==== kbookmarks ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Bookmarks5 libKF5Bookmarks5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't use KXmlGui when building without deprecated stuff
* Add Qt6 windows CI support
* Fix the translation folder name
==== kcmutils ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtils5-lang libKF5KCMUtilsCore5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
* Remove space
* Fix typo
* Kauth doesn't build on windows
* KCModuleQML: Make sizeHint() check more robust
==== kcodecs ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Codecs5 libKF5Codecs5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Prepare for 5.15.7: adapt test
* Fix the translation folder name
==== kcompletion ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Completion5 libKF5Completion5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt 6 Windows CI
* Fix the translation folder name
==== kconfig ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigCore5-lang libKF5ConfigGui5 libKF5ConfigQml5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* kconfig_compiler: switch away from bit mask for signal enum values
* kconfig_compiler: fix generation of bit masks enum items for signals
* kconfig_compiler: perform signals count check earlier
* .gitlab-ci.yml: enable static builds
* Fix KConfigGui initialization in case of static builds (kde#459337)
* Fix the translation folder name
==== kconfigwidgets ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5ConfigWidgets5 libKF5ConfigWidgets5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* avoid stating files during restore of recent files (kde#460868)
* Ensure icon is always set for recent files actions
* Add file icons to open recent menu
* Replace custom color preference code with KColorSchemeWatcher
* Intialize default decoration colors
* [KCommandBar] Fix shortcut background
* Add Qt6 windows CI support
* Adapt native event filter code to Qt 6
==== kcoreaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kcoreaddons-lang libKF5CoreAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing . in error string
* KPluginMetaData: Check applicationDirPath first when resolving plugin
paths (kde#459830)
* Fix static build of downstream consumers
* Fix the translation folder name
* KFileSystem: add Fuse Type; use libudev to probe underlying fuseblk type
==== kcrash ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt 6 Windows CI
==== kdbusaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdbusaddons-tools libKF5DBusAddons5 libKF5DBusAddons5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kdeclarative ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5Declarative5-lang libKF5QuickAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Make QQmlContext's contextObject outlive the QQmlContext
* Completely deprecate KDeclarative class
* Port manual test app away from deprecated KDeclarative API
* Add Qt6 windows CI support
==== kded ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kdelibs4support ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdelibs4support-lang libKF5KDELibs4Support5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add CMake option to build WITH_X11
==== kdesu ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Su5 libKF5Su5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing deprecation wrapper for KDEsuClient::isServerSGID impl
==== kdnssd-framework ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5DNSSD5 libKF5DNSSD5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kdoctools ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kdoctools-lang libKF5DocTools5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kfilemetadata5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kfilemetadata5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* OdfExtractorTest: Add test cases for Flat XML documents
* OdfExtractor: Only go looking for textual content in office:body
* OdfExtractor: Support "Flat XML" variants
* PngExtractor: Add autotest
* PngExtractor: Only extract metadata when it was asked for
==== kglobalaccel ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccel5-lang libKF5GlobalAccelPrivate5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kguiaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5GuiAddons5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add misisng find_dependency's for static builds
* systemclipboard: Don't signals data source cancellation (kde#460248)
* Guard the global was actually intialised
* Implement destuctor for keystate protocol implementation
* kcolorschemewatcher: make changing colour schemes work as expected on macOS
* [kcolorschemewatcher] Default to light mode, where AppsUseLightTheme isn't
set (notably Windows 8.1)
* enable automatic dark-mode switching on macOS
* Add API for system color preference reading
==== kholidays ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Holidays5 libKF5Holidays5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== khtml ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5KHtml5 libKF5KHtml5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== ki18n ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5I18n5 libKF5I18n5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Try fixing build on Windows mingw
* Add missing <cerrno> include
==== kiconthemes ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5IconThemes5 libKF5IconThemes5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kidletime ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kimageformats ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't install desktop files for image formats when building against Qt6
* raw: Don't seek back if we were asked to read too much
* jxl: indicate when all frames have been read
* avif: minor fixes
* avif: indicate when all frames have been read
* avif: always indicate endless loop
* avif: return `false` in `canRead()` when `imageIndex >= imageCount` (kde#460085)
* Add JXL test files corresponding to 8 EXIF orientation values
* Add AVIF test files with rotation and mirror operations
* Auto-rotate input images in readtest
* jxl: remove C-style casts
* avif: Use reinterpret_cast instead C cast
* avif: revert 9ac923a commit
* heif: replace C cast with static_cast
* heif: use heif_init/heif_deinit with libheif 1.13.0+
* FindLibRaw: fix include dir, should not contain prefix libraw/ (kde#460105)
* Fix duplicated tests
* ANI partial test and PIC test added
* PSD: impreved support to sequential access device
* Fix messages
* CMakeLists: enable EXR test
* Added EXR test image
* Fixes for sequential devices
- Drop patches, merged upstream:
* 0001-avif-return-false-in-canRead-when-imageIndex-imageCo.patch
* 0001-avif-always-indicate-endless-loop.patch
* 0001-avif-revert-9ac923ad09316dcca0fc11e0be6b3dfc6cce6ca0.patch
==== kinit ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kinit-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kio ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kio-core kio-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* AskUserActionInterface: add DeleteInsteadOfTrash deletion type (kde#431351)
- Drop patch, merged upstream:
* kio-mr1008-fix-webdav.diff
==== kirigami2 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kirigami2-lang libKF5Kirigami2-5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Check preventStealing earlier in ColumnView (kde#460345)
* SwipeListItem: Make sure we only show the aggressive warning when it's
due (kde#455789)
==== kitemmodels ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kitemmodels-imports libKF5ItemModels5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Also fix kconcatenaterows_qml test for static builds
* .gitlab-ci.yml: enable static builds
* Fix ksortfilterproxymodel_qml test for static builds (kde#459321)
==== kitemviews ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5ItemViews5 libKF5ItemViews5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* KCategoryDrawer: Update design to match Kirigami list categories
* Fix the translation folder name
==== kjobwidgets ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5JobWidgets5 libKF5JobWidgets5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
* Fix the translation folder name
==== kjs ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Rename: use Q_OS_{FREE,NET,OPEN}BSD
* Fix thread stack base detection on OpenBSD
==== knewstuff ====
Version update (5.99.0 -> 5.100.0)
Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuff5-lang libKF5NewStuffCore5 libKF5NewStuffWidgets5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* KF5NewStuffCoreConfig.cmake: fix resolving QT_MAJOR_VERSION at generation
* [kmoretools] Replace QDesktopServices::openUrl with KIO::OpenUrlJob
* Add qtdesigner plugin for KNewStuffWidgets
* Add Windows Qt 6 CI
==== knotifications ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Notifications5 libKF5Notifications5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Port TTS support to Qt 6
* Fix the translation folder name
* Add Qt6 windows CI support
* Port from QStringRef to QStringView
==== knotifyconfig ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5NotifyConfig5 libKF5NotifyConfig5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Port TTS support to Qt 6
* Add Qt6 windows CI support
* Adapt Phonon code path for Qt 6
==== kpackage ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kpackage-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kparts ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Parts5 libKF5Parts5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* browserrun enum used as bool
* [partloader] Remove references to KPluginLoader from docs
* Add Qt6 windows CI support
* Ignore "templates" folder for cppcheck CI
* Don't install service type definitions when building without deprecated stuff
* Add new functions to instantiate parts
==== kpeople5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kpeople5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kpty ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Pty5 libKF5Pty5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== kquickcharts ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== krunner ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Ignore "templates" folder for cppcheck CI
* runnermanager: only emit `queryFinished` when previous jobs are still running
==== kservice ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kservice-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Do not warn if KService("") is instantiated
* .kde-ci.yml: enable static CI builds
* Add Qt 6 Windows CI
==== ktexteditor ====
Version update (5.99.0 -> 5.100.0)
Subpackages: ktexteditor-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* CamelCursor: Improve complex unicode handling (kde#461239)
* remove file name for saveas only for remote files (kde#461161)
* Fix tab order in search (kde#440888)
* fix clipboard selection update on shift mouse click (kde#443642)
* Ensure to set highlight on reload when file type was set by user (kde#454715)
==== ktextwidgets ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5TextWidgets5 libKF5TextWidgets5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== kunitconversion ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5UnitConversion5 libKF5UnitConversion5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add missing forms for mass units: tonnes, ct, lbs
* add singular abbreviation forms as match strings for teaspoon and tablespoon
* Add Qt 6 Windows CI
==== kwallet ====
Version update (5.99.0 -> 5.100.0)
Subpackages: kwallet-tools kwallet-tools-lang kwalletd5 kwalletd5-lang libKF5Wallet5 libkwalletbackend5-5
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* mark some binaries as non-gui
* Add support for plain transfer algorithm to Secret Service API (kde#458341)
* Change naming and order of FreedesktopSecret members to match the spec
* Add Qt6 windows CI support
==== kwayland ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* [registry] Bump PlasmaWindowManagement version to 16
==== kwidgetsaddons ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5WidgetsAddons5 libKF5WidgetsAddons5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* avoid stating files during restore of recent files (kde#460868)
* Add a method to remove all actions in one go
* KTitleWidget: Constraint the frame size so it properly aligns (kde#460542)
* KPageDialog: Collapse margins also for flat list
* KToolBarPopupAction: Apply popupMode to existing widgets
* Deprecate KStandardGuiItem::yes() KStandardGuiItem::no()
* KMessageDialog: add API using "action" terms instead of "Yes" & "No"
* KMessageBox: add API using "action" terms instead of "Yes" & "No"
* Fix potential crash in fix for 458335
* Fix the translation folder name
==== kwindowsystem ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5WindowSystem5 libKF5WindowSystem5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== kxmlgui ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5XmlGui5 libKF5XmlGui5-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== libKF5ModemManagerQt ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== libKF5NetworkManagerQt ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* DeviceStatistics: Replace setRefreshRateMs call with manual DBus call
* Remove dead CMakeLists code
==== libavif ====
Version update (0.11.0 -> 0.11.1)
- Update to version 0.11.1:
* Changed:
- avifincrtest_helpers: Cast 64-bit offset to size_t
- avifmetadatatest: don't include avif/internal.h
- avifrgbtoyuvtest: skip if no libsharpyuv
- Disable tests that may fail if the codec is not aom (#1176)
==== libwnck ====
Subpackages: libwnck-3-0 libwnck-lang typelib-1_0-Wnck-3_0
- Add handle-avoid-segfault-in-invalidate-icons.patch to fix a
segmentation fault (boo#1204157)
==== llvm15 ====
Version update (15.0.3 -> 15.0.4)
- Update to version 15.0.4.
* This release contains bug-fixes for the LLVM 15.0.0 release.
This release is API and ABI compatible with 15.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
==== plasma-framework ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Never time out tooltip while its control is still hovered (kde#397336)
* Fix name of margin hints of task manager (kde#456076)
==== plasma5-workspace ====
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update the build constraints
==== prison-qt5 ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Prison5 prison-qt5-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Convert code128 data table to binary literals
* Simplify QR reference PNG images
==== purpose ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 purpose-lang
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Qt6 windows CI support
==== python-setuptools ====
Version update (65.5.0 -> 65.5.1)
- Delete remove_mock.patch, that's not needed anymore, it's upstreamed
- Update to 65.5.1:
* #3638: Drop a test dependency on the mock package, always use
:external+python:py:mod:`unittest.mock` -- by :user:`hroncok`
* #3659: Fixed REDoS vector in package_index.
==== qqc2-desktop-style ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Never time out tooltip while its control is still hovered
* TextField: Use effectiveHorizontalAlignment without extra mirroring
for placeholder
* Add Qt6 windows CI support
==== selinux-policy ====
Version update (20220714 -> 20221019)
Subpackages: selinux-policy-targeted
- Update to version 20221019. Refreshed:
* distro_suse_to_distro_redhat.patch
* fix_apache.patch
* fix_chronyd.patch
* fix_cron.patch
* fix_init.patch
* fix_kernel_sysctl.patch
* fix_networkmanager.patch
* fix_rpm.patch
* fix_sysnetwork.patch
* fix_systemd.patch
* fix_systemd_watch.patch
* fix_unconfined.patch
* fix_unconfineduser.patch
* fix_unprivuser.patch
* fix_xserver.patch
- Dropped fix_cockpit.patch as this is now packaged with cockpit itself
- Remove the ipa module, freeip ships their own module
- Added fix_alsa.patch to allow reading of config files in home directories
- Extended fix_networkmanager.patch and fix_postfix.patch to account
for SUSE systems
- Added dontaudit_interface_kmod_tmpfs.patch to prevent AVCs when startproc
queries the running processes
- Updated fix_snapper.patch to allow snapper to talk to rpm via dbus
==== solid ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5Solid5 libKF5Solid5-lang solid-imports solid-tools
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Fix the translation folder name
==== sonnet ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5SonnetCore5 libKF5SonnetCore5-lang libKF5SonnetUi5 sonnet-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Add Windows Qt 6 CI
* Fix the translation folder name
==== syndication ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- No code change since 5.99.0
==== syntax-highlighting ====
Version update (5.99.0 -> 5.100.0)
Subpackages: libKF5SyntaxHighlighting5 libKF5SyntaxHighlighting5-lang syntax-highlighting-imports
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Too many changes since 5.99.0, only listing bugfixes:
* Jira: fix Bold and Stroked Out highlight at start of line (kde#431268)
* CMake: fix nested parentheses highlinthing (kde#461151)
* CMake: add Control Flow style for if, else, while, etc (kde#460596)
* Alerts: add NO-BREAK SPACE (nbsp) as keyword deliminator (kde#459972)
* Bash/Zsh: fix group command with coproc statement (kde#460301)
==== threadweaver ====
Version update (5.99.0 -> 5.100.0)
- Update to 5.100.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.100.0
- Changes since 5.99.0:
* Don't translate the exception message
==== tiff ====
- security update:
* CVE-2022-3970 [bsc#1205392]
+ tiff-CVE-2022-3970.patch
- security update:
* CVE-2022-3597 [bsc#1204641]
* CVE-2022-3626 [bsc#1204644]
* CVE-2022-3627 [bsc#1204645]
+ tiff-CVE-2022-3597,CVE-2022-3626,CVE-2022-3627.patch
* CVE-2022-3599 [bsc#1204643]
+ tiff-CVE-2022-3599.patch
* CVE-2022-3598 [bsc#1204642]
+ tiff-CVE-2022-3598.patch
==== wireless-regdb ====
Version update (20220812 -> 20221012)
- Update to version 20221012:
* wireless-regdb: update regulatory rules for Switzerland (CH)
* wireless-regdb: Update regulatory rules for Brazil (BR)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
grub2
libnma
sed (4.8 -> 4.9)
=== Details ===
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Removed 0001-linux-fix-efi_relocate_kernel-failure.patch as reported
regression in some hardware being stuck in initrd loading (bsc#1205380)
- Fix password asked twice if third field in crypttab not present (bsc#1205312)
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
==== libnma ====
Subpackages: libnma-glib-schema libnma-gtk4-0 libnma-lang libnma0 typelib-1_0-NMA-1_0
- Add libnma-schema-without-path.patch: Do not specify path in
nm-applet.eap schema (glgo#GNOME/libnma!18, boo#1205362).
==== sed ====
Version update (4.8 -> 4.9)
Subpackages: sed-lang
- GNU sed 4.9:
* 'sed --follow-symlinks -i' no longer loops forever when its
operand is a symbolic link cycle.
* a program with an execution line longer than 2GB can no longer
trigger an out-of-bounds memory write.
* using the R command to read an input line of length longer than
2GB can no longer trigger an out-of-bounds memory read.
* In locales using UTF-8 encoding, the regular expression '.' no
longer sometimes fails to match Unicode characters U+D400
through U+D7FF (some Hangul Syllables, and Hangul Jamo
Extended-B) and Unicode characters U+108000 through U+10FFFF
(half of Supplemental Private Use Area plane B).
* I/O errors involving temp files no longer confuse sed into
using a FILE * pointer after fclosing it, which has undefined
behavior in C.
* New: The 'r' command now accepts address 0, allowing inserting
a file before the first line.
* Sed now prints the less-surprising variant in a corner case of
POSIX-unspecified behavior. Before, this would print "n".
Now, it prints "X":
printf n | sed 'sn\nnXn'; echo
- drop patches now upstream:
* gnulib-test-avoid-FP-perror-strerror.patch
* sed-dont_close_twice.patch
- disable profile guided optimization in build due to what seems to
be a bug in gnulib
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
mozilla-nss (3.83 -> 3.84)
=== Details ===
==== mozilla-nss ====
Version update (3.83 -> 3.84)
Subpackages: libfreebl3 libfreebl3-hmac libsoftokn3 libsoftokn3-hmac mozilla-nss-certs
- update to NSS 3.84
* bmo#1791699 - Bump minimum NSPR version to 4.35
* bmo#1792103 - Add a flag to disable building libnssckbi.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.51 -> 7.1.0.52)
Mesa (22.2.2 -> 22.2.3)
Mesa-drivers (22.2.2 -> 22.2.3)
NetworkManager
alsa-oss
alsa-plugins
bash (5.2.2 -> 5.2.9)
bluedevil5 (5.26.2 -> 5.26.3.1)
breeze (5.26.2 -> 5.26.3.1)
breeze-gtk (5.26.2 -> 5.26.3)
dhcp
discover (5.26.2 -> 5.26.3)
drkonqi5 (5.26.2 -> 5.26.3)
elfutils (0.187 -> 0.188)
elfutils-debuginfod (0.187 -> 0.188)
fontconfig (2.14.0 -> 2.14.1)
fwupd (1.8.6 -> 1.8.7)
gnome-terminal (3.46.3 -> 3.46.4)
gnutls (3.7.7 -> 3.7.8)
gpgme
grub2
gssdp (1.6.0 -> 1.6.1)
gupnp (1.6.0 -> 1.6.1)
highway
hwinfo
icewm (3.0.1 -> 3.2.0)
irqbalance
kactivitymanagerd (5.26.2 -> 5.26.3)
kcm_sddm (5.26.2 -> 5.26.3)
kde-cli-tools5 (5.26.2 -> 5.26.3)
kde-gtk-config5 (5.26.2 -> 5.26.3)
kernel-source (6.0.7 -> 6.0.8)
keylime (6.5.3 -> 6.5.2)
kgamma5 (5.26.2 -> 5.26.3)
khotkeys5 (5.26.2 -> 5.26.3)
kinfocenter5 (5.26.2 -> 5.26.3)
kmenuedit5 (5.26.2 -> 5.26.3)
kpipewire (5.26.2 -> 5.26.3)
kscreen5 (5.26.2 -> 5.26.3)
kscreenlocker (5.26.2 -> 5.26.3)
ksshaskpass5 (5.26.2 -> 5.26.3)
ksystemstats5 (5.26.2 -> 5.26.3)
kwayland-integration (5.26.2 -> 5.26.3)
kwin5 (5.26.2.1 -> 5.26.3)
kwrited5 (5.26.2 -> 5.26.3)
layer-shell-qt (5.26.2 -> 5.26.3)
lcms2 (2.13.1 -> 2.14)
libX11 (1.8.1 -> 1.8.2)
libbpf
libcontainers-common
libkdecoration2 (5.26.2 -> 5.26.3)
libkscreen2 (5.26.2 -> 5.26.3)
libksysguard5 (5.26.2 -> 5.26.3)
libnftnl (1.2.3 -> 1.2.4)
libnma (1.10.2 -> 1.10.4)
libslirp
libstorage-ng (4.5.48 -> 4.5.50)
libyui (4.4.4 -> 4.4.6)
libyui-ncurses (4.4.4 -> 4.4.6)
libyui-ncurses-pkg (4.4.4 -> 4.4.6)
libyui-qt (4.4.4 -> 4.4.6)
libyui-qt-graph (4.4.4 -> 4.4.6)
libyui-qt-pkg (4.4.4 -> 4.4.6)
libzypp (17.31.4 -> 17.31.5)
mdadm (4.1 -> 4.2)
milou5 (5.26.2 -> 5.26.3)
mobile-broadband-provider-info (20220725 -> 20221107)
nautilus
ncurses (6.3.20221001 -> 6.3.20221105)
oxygen5-sounds (5.26.2 -> 5.26.3.1)
perl-HTML-Parser (3.79 -> 3.80)
perl-HTTP-Message (6.41 -> 6.44)
perl-URI (5.16 -> 5.17)
pixman (0.40.0 -> 0.42.2)
plasma-nm5 (5.26.2 -> 5.26.3)
plasma5-addons (5.26.2 -> 5.26.3)
plasma5-desktop (5.26.2 -> 5.26.3)
plasma5-disks (5.26.2 -> 5.26.3)
plasma5-integration (5.26.2 -> 5.26.3)
plasma5-openSUSE
plasma5-pa (5.26.2 -> 5.26.3)
plasma5-systemmonitor (5.26.2 -> 5.26.3)
plasma5-thunderbolt (5.26.2 -> 5.26.3)
plasma5-workspace (5.26.2 -> 5.26.3)
polkit
polkit-kde-agent-5 (5.26.2 -> 5.26.3)
powerdevil5 (5.26.2 -> 5.26.3)
python-Babel (2.10.3 -> 2.11.0)
python-Jinja2 (3.0.3 -> 3.1.2)
python-M2Crypto
python-pexpect
python-psutil (5.9.3 -> 5.9.4)
python-pytz (2022.5 -> 2022.6)
python-pyzmq
python-zope.interface (5.5.0 -> 5.5.1)
python310
python310-core
qalculate (4.3.0 -> 4.4.0)
qemu
rebootmgr (1.3.1 -> 2.0)
rpm
shadow (4.12.3 -> 4.13)
systemd (251.7 -> 251.8)
systemsettings5 (5.26.2 -> 5.26.3)
vmaf
webkit2gtk3 (2.38.1 -> 2.38.2)
webkit2gtk4 (2.38.1 -> 2.38.2)
xdg-desktop-portal-kde (5.26.2 -> 5.26.3)
zypper (1.14.57 -> 1.14.58)
=== Details ===
==== ImageMagick ====
Version update (7.1.0.51 -> 7.1.0.52)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- update to 7.1.0.52:
* coders: Enable opening https files in mingw #5727
* utilities: Enable support for unicode paths in mingw #5713
upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#710-52---2022…
==== Mesa ====
Version update (22.2.2 -> 22.2.3)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- third bugfix release
* some regressions in CI worked out
* a bit of everything, and nothing too crazy
- supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch
- supersedes u_nouveau-corrupted-colors-boo1203949.patch
- get rid of Mesa-libVulkan-devel(-32bit) package, which is no
longer needed at all by providing/obsoleting it by
libvulkan_intel
==== Mesa-drivers ====
Version update (22.2.2 -> 22.2.3)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- third bugfix release
* some regressions in CI worked out
* a bit of everything, and nothing too crazy
- supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch
- supersedes u_nouveau-corrupted-colors-boo1203949.patch
- get rid of Mesa-libVulkan-devel(-32bit) package, which is no
longer needed at all by providing/obsoleting it by
libvulkan_intel
==== NetworkManager ====
Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Keep netconfig support. The rc-manager auto detection will select
appropriate manager during runtime.
- Use a with_netconfig define instead of relying on bcond: bcond is
meant to have extrenally controllable build conditions (build -D,
or OBS prjconf).
==== alsa-oss ====
- Add tarball signature and keyring
==== alsa-plugins ====
Subpackages: alsa-plugins-speexrate alsa-plugins-upmix
- Add keyring
==== bash ====
Version update (5.2.2 -> 5.2.9)
Subpackages: bash-doc bash-sh
- Add upstream patches
* bash52-003
Command substitutions need to preserve newlines instead of replacing them
with semicolons, especially in the presence of multiple here-documents.
* bash52-004
Bash needs to keep better track of nested brace expansions to avoid problems
with quoting and POSIX semantics.
* bash52-005
Null pattern substitution replacement strings can cause a crash.
* bash52-006
In interactive shells, interrupting the shell while entering a command
substitution can inhibit alias expansion.
* bash52-007
This patch fixes several problems with alias expansion inside command
substitutions when in POSIX mode.
* bash52-008
Array subscript expansion can inappropriately quote brackets if the expression
contains < or >.
* bash52-009
Bash arithmetic expansion should allow `@' and `*' to be used as associative
array keys in expressions.
==== bluedevil5 ====
Version update (5.26.2 -> 5.26.3.1)
Subpackages: bluedevil5-lang
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== breeze ====
Version update (5.26.2 -> 5.26.3.1)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== breeze-gtk ====
Version update (5.26.2 -> 5.26.3)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== dhcp ====
Subpackages: dhcp-client
- Use %_rundir
==== discover ====
Version update (5.26.2 -> 5.26.3)
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Remove top margin caused by empty header on UpdatesPage
* Notifier: Fix notification logic
* pk/?: Fix problem when using faulty URL
==== drkonqi5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: drkonqi5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== elfutils ====
Version update (0.187 -> 0.188)
Subpackages: libasm1 libdw1 libelf1
- align patches section
- remove date/time handling weirdness, elfutils does no longer
use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time)
- Update to version 0.188:
* readelf: Add -D, --use-dynamic option.
* debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply
outgoing debuginfod_find_section.
* debuginfod: Add --disable-source-scan option.
* libdwfl: Add new function dwfl_get_debuginfod_client.
Add new function dwfl_frame_reg.
Add new function dwfl_report_offline_memory.
- Remove upstreamed patches:
* 0001-libelf-Sync-elf.h-from-glibc.patch
* 0002-backends-Handle-new-RISC-V-specific-definitions.patch
* 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch
* 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch
* PR29474-debuginfod.patch
* config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch
* support-nullglob-in-profile.-.in-files.patch
==== elfutils-debuginfod ====
Version update (0.187 -> 0.188)
Subpackages: debuginfod-profile libdebuginfod1
- align patches section
- remove date/time handling weirdness, elfutils does no longer
use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time)
- Update to version 0.188:
* readelf: Add -D, --use-dynamic option.
* debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply
outgoing debuginfod_find_section.
* debuginfod: Add --disable-source-scan option.
* libdwfl: Add new function dwfl_get_debuginfod_client.
Add new function dwfl_frame_reg.
Add new function dwfl_report_offline_memory.
- Remove upstreamed patches:
* 0001-libelf-Sync-elf.h-from-glibc.patch
* 0002-backends-Handle-new-RISC-V-specific-definitions.patch
* 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch
* 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch
* PR29474-debuginfod.patch
* config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch
* support-nullglob-in-profile.-.in-files.patch
==== fontconfig ====
Version update (2.14.0 -> 2.14.1)
Subpackages: libfontconfig1
- update to 2.14.1:
* Bump the cache version to 8 in doc/fontconfig-user.sgm
* Enable 10-sub-pixel-rgb.conf by default
* build fixes and translation updates
* Avoid misuse of ctype
==== fwupd ====
Version update (1.8.6 -> 1.8.7)
Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0
- Update to version 1.8.7:
+ This release adds the following features:
- Add a new HSI check for the leaked Lenovo 'Key Manifest'
hashes
- Measure system integrity when installing UEFI updates
- Record more host DMI data when submitting a report for dbx
failures
- Use xz-compressed metadata to reduce bandwidth used by ~25%
+ This release fixes the following bugs:
- Add documentation for three existing HSI attributes
- Add re-insert requirement for Analogix devices
- Allow parsing metadata more than 1MB in size
- Do not follow symlinks when searching for ESP devices
- Ensure the config file permission is correct for built-in
plugins
- Fix a compile failure when compiling without efiboot
- Fix a regression when using fwuptool install-blob with FMAP
firmware
- Only count the Microsoft hashes when getting the dbx version
- Only use the IFD when the system is Intel-based
- Support loading CoSWID when only one role has been set
+ This release adds support for the following hardware:
- Anker Thunderbolt 4 Mini Hub
- ELAN haptic hardware
- Fingerprint lenfy devices
- Goodix GF3258WNC
- Intel discrete GPUs (experimental)
- More Star Labs laptops
- QSI Godzilla Creek Reference Hub
- Stop passing conditional plugin_amt=disabled, no longer needed,
nor recognized.
==== gnome-terminal ====
Version update (3.46.3 -> 3.46.4)
Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal
- Update to version 3.46.4:
* all: backport: Implement xdg-terminal-exec support.
* docs:
- Fix some wrong info in README.
- Fix some typos in README.
* Updated translations.
- Add f06e6e5.patch: util: Fix interpretation of TryExec desktop
entry key.
- Add appstream-glib and desktop-file-utils BuildRequires and a
check section with meson_test macro, validate appdata and desktop
files and run tests during build.
==== gnutls ====
Version update (3.7.7 -> 3.7.8)
- Verify only the libgnutls library HMAC [bsc#1199881]
* Do not use the brp-50-generate-fips-hmac script as this
is now calculated with the internal fipshmac tool.
* Add gnutls-verify-library-HMAC.patch
- Temporarily revert the jitterentropy patches in s390 and s390x
architectures until a fix is provided [bsc#1204937]
- Disable flaky test that fails in s390x architecture:
* Add gnutls-disable-flaky-test-dtls-resume.patch
- Consolidate the FIPS hmac files [bsc#1203245]
* Use the gnutls fipshmac tool instead of the brp-check-suse
and rename it to reflect on the library version.
* Remove not needed gnutls-FIPS-Run-CFB8-without-offset.patch
- Add a gnutls.rpmlintrc file to remove a hidden-file-or-dir false
positive for the FIPS hmac calculation.
- Update to 3.7.8:
* libgnutls: In FIPS140 mode, RSA signature verification is an
approved operation if the key has modulus with known sizes
(1024, 1280, 1536, and 1792 bits), in addition to any modulus
sizes larger than 2048 bits, according to SP800-131A rev2.
* libgnutls: gnutls_session_channel_binding performs additional
checks when GNUTLS_CB_TLS_EXPORTER is requested. According to
RFC9622 4.2, the "tls-exporter" channel binding is only usable
when the handshake is bound to a unique master secret (i.e.,
either TLS 1.3 or extended master secret extension is
negotiated). Otherwise the function now returns error.
* libgnutls: usage of the following functions, which are designed
to loosen restrictions imposed by allowlisting mode of
configuration, has been additionally restricted. Invoking
them is now only allowed if system-wide TLS priority string
has not been initialized yet:
- gnutls_digest_set_secure
- gnutls_sign_set_secure
- gnutls_sign_set_secure_for_certs
- gnutls_protocol_set_enabled
* Delete gnutls-3.6.6-set_guile_site_dir.patch and use the
- -with-guile-extension-dir configure option to properly
handle the guile extension directory.
* Rebase gnutls-Make-XTS-key-check-failure-not-fatal.patch
* Update gnutls.keyring
* Add a build depencency on gtk-doc required by autoreconf
- FIPS: Set error state when jent init failed in FIPS mode [bsc#1202146]
* Add patch gnutls-FIPS-Set-error-state-when-jent-init-failed.patch
- FIPS: Make XTS key check failure not fatal [bsc#1203779]
* Add gnutls-Make-XTS-key-check-failure-not-fatal.patch
==== gpgme ====
Subpackages: libgpgme11 libgpgmepp6 python310-gpg
- Add gpgme-suse-nobetasuffix.patch
* remove "-unknown" suffix from version string
* boo#1205197
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- NVMeoFC support on grub (jsc#PED-996)
* 0001-ieee1275-add-support-for-NVMeoFC.patch
* 0002-ieee1275-ofpath-enable-NVMeoF-logical-device-transla.patch
* 0003-ieee1275-change-the-logic-of-ieee1275_get_devargs.patch
* 0004-ofpath-controller-name-update.patch
- TDX: Enhance grub2 measurement to TD RTMR (jsc#PED-1265)
* 0001-commands-efi-tpm-Refine-the-status-of-log-event.patch
* 0002-commands-efi-tpm-Use-grub_strcpy-instead-of-grub_mem.patch
* 0003-efi-tpm-Add-EFI_CC_MEASUREMENT_PROTOCOL-support.patch
- Measure the kernel on POWER10 and extend TPM PCRs (PED-1990)
* 0001-ibmvtpm-Add-support-for-trusted-boot-using-a-vTPM-2..patch
* 0002-ieee1275-implement-vec5-for-cas-negotiation.patch
- Fix efi pcr snapshot related funtion is defined but not used on powerpc
platform.
* safe_tpm_pcr_snapshot.patch
- Include loopback into signed grub2 image (jsc#PED-2150)
- Fix firmware oops after disk decrypting failure (bsc#1204037)
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
- Add patch to fix kernel relocation error in low memory
* 0001-linux-fix-efi_relocate_kernel-failure.patch
- Add safety measure to pcr snapshot by checking platform and tpm status
* safe_tpm_pcr_snapshot.patch
- Fix installation failure due to unavailable nvram device on
ppc64le (bsc#1201361)
* 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch
- Add patches to dynamically allocate additional memory regions for
EFI systems (bsc#1202438)
* 0001-mm-Allow-dynamically-requesting-additional-memory-re.patch
* 0002-kern-efi-mm-Always-request-a-fixed-number-of-pages-o.patch
* 0003-kern-efi-mm-Extract-function-to-add-memory-regions.patch
* 0004-kern-efi-mm-Pass-up-errors-from-add_memory_regions.patch
* 0005-kern-efi-mm-Implement-runtime-addition-of-pages.patch
- Enlarge the default heap size and defer the disk cache
invalidation (bsc#1202438)
* 0001-kern-efi-mm-Enlarge-the-default-heap-size.patch
* 0002-mm-Defer-the-disk-cache-invalidation.patch
- Add patches for ALP FDE support
* 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch
* 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch
* 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch
* 0004-normal-menu-Don-t-show-Booting-s-msg-when-auto-booti.patch
* 0005-EFI-suppress-the-Welcome-to-GRUB-message-in-EFI-buil.patch
* 0006-EFI-console-Do-not-set-colorstate-until-the-first-te.patch
* 0007-EFI-console-Do-not-set-cursor-until-the-first-text-o.patch
* 0008-linuxefi-Use-common-grub_initrd_load.patch
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
* 0010-templates-import-etc-crypttab-to-grub.cfg.patch
* grub-read-pcr.patch
* efi-set-variable-with-attrs.patch
* tpm-record-pcrs.patch
* tpm-protector-dont-measure-sealed-key.patch
* tpm-protector-export-secret-key.patch
* grub-install-record-pcrs.patch
* grub-unseal-debug.patch
- Fix out of memory error cannot be prevented via disabling tpm (bsc#1202438)
* 0001-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
- Fix tpm error stop tumbleweed from booting (bsc#1202374)
* 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
- Patch Removed
* 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
- Add tpm, tpm2, luks2 and gcry_sha512 to default grub.efi (bsc#1197625)
- Make grub-tpm.efi a symlink to grub.efi
* grub2.spec
- Log error when tpm event log is full and continue
* 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
- Patch superseded
* 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
- Add patches for automatic TPM disk unlock (jsc#SLE-24018) (bsc#1196668)
* 0001-luks2-Add-debug-message-to-align-with-luks-and-geli-.patch
* 0002-cryptodisk-Refactor-to-discard-have_it-global.patch
* 0003-cryptodisk-Return-failure-in-cryptomount-when-no-cry.patch
* 0004-cryptodisk-Improve-error-messaging-in-cryptomount-in.patch
* 0005-cryptodisk-Improve-cryptomount-u-error-message.patch
* 0006-cryptodisk-Add-infrastructure-to-pass-data-from-cryp.patch
* 0007-cryptodisk-Refactor-password-input-out-of-crypto-dev.patch
* 0008-cryptodisk-Move-global-variables-into-grub_cryptomou.patch
* 0009-cryptodisk-Improve-handling-of-partition-name-in-cry.patch
* 0010-protectors-Add-key-protectors-framework.patch
* 0011-tpm2-Add-TPM-Software-Stack-TSS.patch
* 0012-protectors-Add-TPM2-Key-Protector.patch
* 0013-cryptodisk-Support-key-protectors.patch
* 0014-util-grub-protect-Add-new-tool.patch
- Fix no disk unlocking happen (bsc#1196668)
* 0001-crytodisk-fix-cryptodisk-module-looking-up.patch
- Fix build error
* fix-tpm2-build.patch
==== gssdp ====
Version update (1.6.0 -> 1.6.1)
- Update to version 1.6.1:
+ Potential fix for sending discovery responses with the wrong
location.
+ Properly parse netlink messages in neighbour discovery.
+ Do not leak the host mask if it was alreay provided on object
client creation.
+ Fix install path for generated documentation.
+ Fix warning message for link-local v4 addresses.
==== gupnp ====
Version update (1.6.0 -> 1.6.1)
- Update to version 1.6.1:
+ ControlPoint:
- Fix error handling if description download fails.
- Do not leak cancellable.
+ Use proper method for detecting IFA_FLAGS availability.
+ ContextManager:
- Do not leak filtered contexts.
- Fix freeing unavailable contexts.
+ Network ContextManager: Do not leak list parts of context
lists.
+ Introspection: Properly chain up to parent class.
+ Service: Fix crash if subscription callback is points
unreachable host.
==== highway ====
- Have armv7 build succeed again.
==== hwinfo ====
- Implement shared library packaging guideline.
- Modernize specfile.
==== icewm ====
Version update (3.0.1 -> 3.2.0)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.2.0:
* Fix for fullscreen wine programs where taskbar would not hide.
* Ensure KeySysWinNext and KeySysWinPrev always work
for rolled up windows which use the Globally Active focus model.
* Give the Alt+Tab a 30 second history.
* The next Alt+Tab will continue where the previous one left off.
* Add "tabto" command to icesh move windows as tabs to a new frame.
* Add "untab" command to icesh to move each tab to its own frame.
* Add "stacking" and "reverse" commands to icesh.
* Let icesh check all atoms in the -Property filter.
* Support edge switching when dragging a window.
* When switching to a tab with size limitations, adapt the frame geometry.
* Fix maximize and fullscreen for tabs with different normal sizes.
* Prevent the flashing when switching tabs.
* Only popup the grouping menu on a task button on the first button click
without key modifiers. This makes it easier to immediately select or
minimize the active application by using the shift or control modifier.
* Update the title bar shape when changing tabs.
* Set common properties when adding another tab to a frame.
* Always update the window list and _NET_CLIENT_LIST when adding more tabs.
* Add special filtered view and flat rendering options to icewm-menu-fdo.
* Updated translations.
- from version 3.1.0:
* Add a winoption "frame" to automatically group application windows
with the same "frame" value as tabs in a single frame.
* Show indicators for the presence of tabs on the title bar.
* Click on the title bar tab indicators to change tabs.
* Give each tab its own set of winoptions.
* Fix for merging a transient window as a tab to its owner window.
* Preserve tray hints across restarts.
* Preserve tabs across restarts.
* Improve the Alt+Tab for tabbed frames.
* When switching tabs, ensure that focus is preserved.
* Add a MouseWinTabbing preference to merge tabs.
* Let the window list support tabs.
* Various improvements to the CMake build.
* Updated translations.
==== irqbalance ====
Subpackages: irqbalance-ui
- add irqbalance-systemd-netlink.patch (related to bsc#1205308)
==== kactivitymanagerd ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kactivitymanagerd-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kcm_sddm ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kcm_sddm-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kde-cli-tools5 ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kde-gtk-config5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kde-gtk-config5-gtk3
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kernel-source ====
Version update (6.0.7 -> 6.0.8)
- Linux 6.0.8 (bsc#1012628).
- usb: dwc3: gadget: Force sending delayed status during soft
disconnect (bsc#1012628).
- usb: dwc3: gadget: Don't delay End Transfer on delayed_status
(bsc#1012628).
- RDMA/cma: Use output interface for net_dev check (bsc#1012628).
- IB/hfi1: Correctly move list in sc_disable() (bsc#1012628).
- RDMA/hns: Disable local invalidate operation (bsc#1012628).
- RDMA/hns: Fix NULL pointer problem in free_mr_init()
(bsc#1012628).
- docs/process/howto: Replace C89 with C11 (bsc#1012628).
- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (bsc#1012628).
- NFSv4: Fix a potential state reclaim deadlock (bsc#1012628).
- NFSv4.1: Handle RECLAIM_COMPLETE trunking errors (bsc#1012628).
- NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot
(bsc#1012628).
- SUNRPC: Fix null-ptr-deref when xps sysfs alloc failed
(bsc#1012628).
- NFSv4.2: Fixup CLONE dest file size for zero-length count
(bsc#1012628).
- nfs4: Fix kmemleak when allocate slot failed (bsc#1012628).
- net: dsa: Fix possible memory leaks in dsa_loop_init()
(bsc#1012628).
- RDMA/core: Fix null-ptr-deref in ib_core_cleanup()
(bsc#1012628).
- RDMA/qedr: clean up work queue on failure in
qedr_alloc_resources() (bsc#1012628).
- tools/nolibc: Fix missing strlen() definition and infinite
loop with gcc-12 (bsc#1012628).
- net: dsa: fall back to default tagger if we can't load the
one from DT (bsc#1012628).
- nfc: fdp: Fix potential memory leak in fdp_nci_send()
(bsc#1012628).
- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
(bsc#1012628).
- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
(bsc#1012628).
- nfc: nfcmrvl: Fix potential memory leak in
nfcmrvl_i2c_nci_send() (bsc#1012628).
- net: fec: fix improper use of NETDEV_TX_BUSY (bsc#1012628).
- ata: pata_legacy: fix pdc20230_set_piomode() (bsc#1012628).
- ata: palmld: fix return value check in palmld_pata_probe()
(bsc#1012628).
- net: sched: Fix use after free in red_enqueue() (bsc#1012628).
- net: tun: fix bugs for oversize packet when napi frags enabled
(bsc#1012628).
- netfilter: nf_tables: netlink notifier might race to release
objects (bsc#1012628).
- netfilter: nf_tables: release flow rule object from commit path
(bsc#1012628).
- sfc: Fix an error handling path in efx_pci_probe()
(bsc#1012628).
- nfsd: fix nfsd_file_unhash_and_dispose (bsc#1012628).
- nfsd: fix net-namespace logic in __nfsd_file_cache_purge
(bsc#1012628).
- net: lan966x: Fix the MTU calculation (bsc#1012628).
- net: lan966x: Adjust maximum frame size when vlan is
enabled/disabled (bsc#1012628).
- net: lan966x: Fix FDMA when MTU is changed (bsc#1012628).
- net: lan966x: Fix unmapping of received frames using FDMA
(bsc#1012628).
- ipvs: use explicitly signed chars (bsc#1012628).
- ipvs: fix WARNING in __ip_vs_cleanup_batch() (bsc#1012628).
- ipvs: fix WARNING in ip_vs_app_net_cleanup() (bsc#1012628).
- rose: Fix NULL pointer dereference in rose_send_frame()
(bsc#1012628).
- mISDN: fix possible memory leak in mISDN_register_device()
(bsc#1012628).
- isdn: mISDN: netjet: fix wrong check of device registration
(bsc#1012628).
- btrfs: fix inode list leak during backref walking at
resolve_indirect_refs() (bsc#1012628).
- btrfs: fix inode list leak during backref walking at
find_parent_nodes() (bsc#1012628).
- btrfs: fix ulist leaks in error paths of qgroup self tests
(bsc#1012628).
- netfilter: ipset: enforce documented limit to prevent allocating
huge memory (bsc#1012628).
- Bluetooth: L2CAP: Fix use-after-free caused by
l2cap_reassemble_sdu (bsc#1012628).
- Bluetooth: hci_conn: Fix CIS connection dst_type handling
(bsc#1012628).
- Bluetooth: virtio_bt: Use skb_put to set length (bsc#1012628).
- Bluetooth: L2CAP: Fix memory leak in vhci_write (bsc#1012628).
- Bluetooth: hci_conn: Fix not restoring ISO buffer count on
disconnect (bsc#1012628).
- net: mdio: fix undefined behavior in bit shift for
__mdiobus_register (bsc#1012628).
- ibmvnic: Free rwi on reset success (bsc#1012628).
- stmmac: dwmac-loongson: fix invalid mdio_node (bsc#1012628).
- net/smc: Fix possible leaked pernet namespace in smc_init()
(bsc#1012628).
- net, neigh: Fix null-ptr-deref in neigh_table_clear()
(bsc#1012628).
- bridge: Fix flushing of dynamic FDB entries (bsc#1012628).
- ipv6: fix WARNING in ip6_route_net_exit_late() (bsc#1012628).
- vsock: fix possible infinite sleep in
vsock_connectible_wait_data() (bsc#1012628).
- iio: adc: stm32-adc: fix channel sampling time init
... changelog too long, skipping 246 lines ...
- commit 0d318d5
==== keylime ====
Version update (6.5.3 -> 6.5.2)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime
- Update to version v6.5.2:
* cloud_verifier: This is the first PR to address the scalability problems uncovered in #1167, starting with `agent` status.
* Bump version number
* Add --retry 5 parameter to curl
* create_mb_refstate: Check tpm2-tools version before running
* create_mb_refstate: Print error messages
* test_tpm: Skip event log parsing test if tpm2-tools is too old
* installer: Enable installation on RHEL-9
* Move the execution of external EK check script to cert_utils
* Move EK cert verification to cert_utils
* Make the tpm cert store path configurable
* ima-policy-converter: Implement a basic test suite for conversion script
* ima-policy-converter: Implement IMA policy conversion script
* ima-policy-converter: Add empty reference IMA policy
* ima: Accept x509 certificates if no Subject Key Identifier is available
* test_tpm: Use doc strings for tests description
* Test binary measured boot event log parsing
* alpha renaming
* shallow type fixes
* ima_emulator_adapter: Print readable error if reading a PCR fails
* tpm: Check whether hash_alg is in jsonout
* Very limited code fixup/cleanup on keylime_tenant CLI
* Set permissions of keylime_agent_secure.mount to 664
* Disable dnf-makecache.timer to save RAM
* tpm_bootlog_enrich: Get DevicePath length from LengthOfDevicePath
* Disable dnf-makecache.service to save RAM
* Fix for writing the same allow list twice during agent activation (#1150)
* Fix improper handling of IMA policy bundle when none is provided
* ima: Fix log evaluation on quick-succession execution of scripts
* Add new tests to packit CI
* Remove semantic-release action to stop erroneous releases
* crypto: Provide input as bytes to encrypt
* Revert "Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)"
* Update runtime_ima.rst
* Back to 6.5.1
* This PR fixes a bug that prevented 6.5.x verifiers from interacting with 6.2. agents
* Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)
* Revert "tenant: open file to send utf-8 encoded" (#1136)
* ca_util: allow users in the same group to read the created certificates and keys (#1138)
* Update sample ima-policy to exclude overlayfs
* installer: remove tarball option
==== kgamma5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kgamma5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== khotkeys5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: khotkeys5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kinfocenter5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kinfocenter5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kmenuedit5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kmenuedit5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kpipewire ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireRecord5
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kscreen5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kscreen5-lang kscreen5-plasmoid
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kscreenlocker ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== ksshaskpass5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: ksshaskpass5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== ksystemstats5 ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kwayland-integration ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kwin5 ====
Version update (5.26.2.1 -> 5.26.3)
Subpackages: kwin5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2.1:
* wayland: Prevent matching dnd actions after drop
* Screencast: Fix inverted screencast on OpenGLES and memfd
* screencasting: Make sure we are reporting properly scaled damage values
* plugins/screencast: centralize format querying into the RenderBackend (kde#460563)
* backends/drm: fix format sorting
* Fix blur/contrast for X11 window if Xwayland is not scaled. (kde#461021)
* [effects/windowview] Don't allow setting non-global shortcuts
* [effects/overview] Don't allow setting non-global shortcuts
* backends/drm: fix common mode generation
* nightcolormanager: Emit timing change only when they have actually changed
* x11: Don't force QT_NO_GLIB=1 (kde#460980)
* x11: Don't force QT_QPA_PLATFORM=xcb
* x11window: revert more from 3a28c02f (kde#461032)
- Drop patches, now upstream:
* 0001-x11window-revert-more-from-3a28c02f.patch
==== kwrited5 ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== layer-shell-qt ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== lcms2 ====
Version update (2.13.1 -> 2.14)
- Added reverse-0001-fix-memory-leaks-on-testbed.patch to fix
colord's i586 build failure
- Update to 2.14:
* lcms2 now implements ICC specification 4.4
* New multi-threaded plug-in
* Several fixes to keep fuzzers happy
* Removed check on DLL when CMS_NO_REGISTER_KEYWORD is used
* Added more validation against broken profiles
* Added more help to several tools
* Revised documentation
==== libX11 ====
Version update (1.8.1 -> 1.8.2)
Subpackages: libX11-6 libX11-data libX11-xcb1
- Update to version 1.8.2
* This is primarily a bug fix release, including further work on
improving the thread-safety-constructor and making it work with
software which had incorrectly called libX11 functions from
inside X*IfEvent() calls.
- supersedes U_fix-a-memory-leak-in-XRegisterIMInstantiateCallback.patch
==== libbpf ====
- Fix out-of-bound heap write (boo#1194248 boo#1194249 CVE-2021-45940 CVE-2021-45941)
+ libbpf-Use-elf_getshdrnum-instead-of-e_shnum.patch
- Fix use-after-free in btf_dump_name_dups (boo#1204391 CVE-2022-3534)
+ libbpf-Fix-use-after-free-in-btf_dump_name_dups.patch
- Fix memory leak in parse_usdt_arg() (boo#1204393 CVE-2022-3533)
+ libbpf-Fix-memory-leak-in-parse_usdt_arg.patch
- Fix null pointer dereference in find_prog_by_sec_insn() (boo#1204502 CVE-2022-3606)
+ libbpf-Fix-null-pointer-dereference-in-find_prog_by_.patch
==== libcontainers-common ====
- set detached sigstore attachments for the SUSE controlled registries
==== libkdecoration2 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libkscreen2 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: libKF5Screen7 libkscreen2-plugin
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libksysguard5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libnftnl ====
Version update (1.2.3 -> 1.2.4)
- Update to release 1.2.4
* rule, set_elem: remove trailing \n in userdata snprintf
* libnftnl: Fix res_id byte order
==== libnma ====
Version update (1.10.2 -> 1.10.4)
Subpackages: libnma-gtk4-0 libnma0 typelib-1_0-NMA-1_0
- Update to version 1.10.4:
+ Split org.gnome.nm-applet.eap GSchema from org.gnome.nm-applet,
so that the latter can be provided by network-manager-applet
again (where it belongs).
+ build: unbreak build with gcr-3.92.
- split out schema file from the library package: adhere to the
shared library policy. The library requires the new
libnma-glib-schema package.
- Drop fix-dependency-pc-name.patch: fixed upstream.
==== libslirp ====
- added patches
fix https://gitlab.freedesktop.org/slirp/libslirp/-/issues/64
+ libslirp-semicolon.patch
==== libstorage-ng ====
Version update (4.5.48 -> 4.5.50)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#903
- fixed typo
- 4.5.50
- merge gh#openSUSE/libstorage-ng#902
- ignore chunk size for RAID1 (bsc#1205172)
- 4.5.49
==== libyui ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-ncurses ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-ncurses-pkg ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt-graph ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt-pkg ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libzypp ====
Version update (17.31.4 -> 17.31.5)
- Create '.no_auto_prune' in the package cache dir to prevent auto
cleanup of orphaned repositories (bsc#1204956)
- properly reset range requests (bsc#1204548)
- version 17.31.5 (22)
==== mdadm ====
Version update (4.1 -> 4.2)
- Update mdadm package to latest mdadm since mdadm-4.2
(jsc#PED-1009)
* Only patches directly change runtime programs included,
- Unify error message.
0001-Unify-error-message.patch
- mdadm: Fix double free
0002-mdadm-Fix-double-free.patch
- Grow_reshape: Add r0 grow size error message and update
0003-Grow_reshape-Add-r0-grow-size-error-message-and-upda.patch
- udev: adapt rules to systemd v247
0004-udev-adapt-rules-to-systemd-v247.patch
- Replace error prone signal() with sigaction()
0005-Replace-error-prone-signal-with-sigaction.patch
- mdadm: Respect config file location in man
0006-mdadm-Respect-config-file-location-in-man.patch
- mdadm: Update ReadMe
0007-mdadm-Update-ReadMe.patch
- mdadm: Update config man regarding default files and
0008-mdadm-Update-config-man-regarding-default-files-and-.patch
- mdadm: Update config manual
0009-mdadm-Update-config-manual.patch
- Create, Build: use default_layout()
0010-Create-Build-use-default_layout.patch
- mdadm: add map_num_s()
0011-mdadm-add-map_num_s.patch
- mdmon: Stop parsing duplicate options
0012-mdmon-Stop-parsing-duplicate-options.patch
- Grow: block -n on external volumes.
0013-Grow-block-n-on-external-volumes.patch
- Incremental: Fix possible memory and resource leaks
0014-Incremental-Fix-possible-memory-and-resource-leaks.patch
- Mdmonitor: Fix segfault
0015-Mdmonitor-Fix-segfault.patch
- Mdmonitor: Improve logging method
0016-Mdmonitor-Improve-logging-method.patch
- Fix possible NULL ptr dereferences and memory leaks
0017-Fix-possible-NULL-ptr-dereferences-and-memory-leaks.patch
- imsm: Remove possibility for get_imsm_dev to return
0018-imsm-Remove-possibility-for-get_imsm_dev-to-return-N.patch
- Revert "mdadm: fix coredump of mdadm --monitor -r"
0019-Revert-mdadm-fix-coredump-of-mdadm-monitor-r.patch
- util: replace ioctl use with function
0020-util-replace-ioctl-use-with-function.patch
- mdadm/super1: restore commit 45a87c2f31335 to fix
0021-mdadm-super1-restore-commit-45a87c2f31335-to-fix-clu.patch
- imsm: introduce get_disk_slot_in_dev()
0022-imsm-introduce-get_disk_slot_in_dev.patch
- imsm: use same slot across container
0023-imsm-use-same-slot-across-container.patch
- imsm: block changing slots during creation
0024-imsm-block-changing-slots-during-creation.patch
- mdadm: block update=ppl for non raid456 levels
0025-mdadm-block-update-ppl-for-non-raid456-levels.patch
- mdadm: Fix array size mismatch after grow
0026-mdadm-Fix-array-size-mismatch-after-grow.patch
- mdadm: Remove dead code in imsm_fix_size_mismatch
0027-mdadm-Remove-dead-code-in-imsm_fix_size_mismatch.patch
- Monitor: use devname as char array instead of pointer
0028-Monitor-use-devname-as-char-array-instead-of-pointer.patch
- Monitor: use snprintf to fill device name
0029-Monitor-use-snprintf-to-fill-device-name.patch
- Makefile: Don't build static build with everything and
0030-Makefile-Don-t-build-static-build-with-everything-an.patch
- DDF: Cleanup validate_geometry_ddf_container()
0031-DDF-Cleanup-validate_geometry_ddf_container.patch
- DDF: Fix NULL pointer dereference in
0032-DDF-Fix-NULL-pointer-dereference-in-validate_geometr.patch
- mdadm/Grow: Fix use after close bug by closing after
0033-mdadm-Grow-Fix-use-after-close-bug-by-closing-after-.patch
- monitor: Avoid segfault when calling NULL
0034-monitor-Avoid-segfault-when-calling-NULL-get_bad_blo.patch
- mdadm: Fix mdadm -r remove option regression
0035-mdadm-Fix-mdadm-r-remove-option-regression.patch
- mdadm: Fix optional --write-behind parameter
0036-mdadm-Fix-optional-write-behind-parameter.patch
- mdadm: Replace obsolete usleep with nanosleep
0037-mdadm-Replace-obsolete-usleep-with-nanosleep.patch
- mdadm: remove symlink option
0038-mdadm-remove-symlink-option.patch
- mdadm: move data_offset to struct shape
0039-mdadm-move-data_offset-to-struct-shape.patch
- mdadm: Don't open md device for CREATE and ASSEMBLE
0040-mdadm-Don-t-open-md-device-for-CREATE-and-ASSEMBLE.patch
- Grow: Split Grow_reshape into helper function
0041-Grow-Split-Grow_reshape-into-helper-function.patch
- Assemble: check if device is container before
0042-Assemble-check-if-device-is-container-before-schedul.patch
- super1: report truncated device
0043-super1-report-truncated-device.patch
- mdadm: Correct typos, punctuation and grammar in man
0044-mdadm-Correct-typos-punctuation-and-grammar-in-man.patch
- Manage: Block unsafe member failing
0045-Manage-Block-unsafe-member-failing.patch
- Monitor: Fix statelist memory leaks
0046-Monitor-Fix-statelist-memory-leaks.patch
- mdadm: added support for Intel Alderlake RST on VMD
0047-mdadm-added-support-for-Intel-Alderlake-RST-on-VMD-p.patch
- mdadm: Add Documentation entries to systemd services
0048-mdadm-Add-Documentation-entries-to-systemd-services.patch
... changelog too long, skipping 172 lines ...
- 0121-imsm-support-for-third-Sata-controller.patch
==== milou5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: milou5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== mobile-broadband-provider-info ====
Version update (20220725 -> 20221107)
- Update to version 20221107:
* build:
- Fix regex in make check
- reject and whitespace in XML via unit test
- use $(SP_XML_DB) in Makefile.am
* de: telekom: give names to plan entries
* dtd: allow "mms-internet-hipri" and "mms-internet-hipri-fota"
types
* fr: include voice mail and balance check for Free Mobile
* in: add Airtel Kerala network-id
* ui: collapse Orange and T-Mobile into EE, fix APNs
* us: add support for Ting USA VVM
* us: update AT&T APNs and APN usages
==== nautilus ====
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4
- Drop nautilus-revert-extra-large-thumbnails.patch: No longer
needed with glib2 2.74.1.
==== ncurses ====
Version update (6.3.20221001 -> 6.3.20221105)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20221105
+ regenerate configure scripts with autoconf 2.52.20221009
+ modify "--with-manpage-format" to support bzip2 and xz compression
(prompted by discussion with Sam James).
+ modify make-tar.sh scripts to make timestamps more predictable.
- Add ncurses patch 20221029
+ improve curs_slk.3x discussion of extensions and portability (report
by Bill Gray).
- Add ncurses patch 20221023
+ change man_db.renames to template, to handle ncurses*-config script
with the extra-suffix configure option.
- Add ncurses patch 20221015
+ fix another memory-leak in tic.
+ update install-sh script from autoconf, to fix install problem for
Ada95 with Arch; as noted in
https://lists.gnu.org/archive/html/automake/2018-09/msg00005.html
there are unaddressed issues.
+ update CF_XOPEN_SOURCE, adding GNU libc suffixes for abi64, abin32,
x32 (report by Sven Joachim):
+ correct ifdef's for _nc_set_read_thread() (patch by Mikhail Korolev,
cf: 20220813).
- Add ncurses patch 20221008
+ correct a switch-statement case in configure script to allow for test
builds with ABI=7.
+ modify misc/gen-pkgconfig.in to allow for the case where the library
directory does not yet exist, since this is processed before doing an
install (report by Michal Liszcz).
==== oxygen5-sounds ====
Version update (5.26.2 -> 5.26.3.1)
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== perl-HTML-Parser ====
Version update (3.79 -> 3.80)
- updated to 3.80
see /usr/share/doc/packages/perl-HTML-Parser/Changes
3.80 2022-11-01
* Fix compatibility with ancient perl by avoiding index in test (GH#33)
(Graham Knop)
==== perl-HTTP-Message ====
Version update (6.41 -> 6.44)
- updated to 6.44
see /usr/share/doc/packages/perl-HTTP-Message/Changes
6.44 2022-10-26 20:49:00Z
- Made the Clone module a hard requirement, so we don't have to
provide a fallback function for HTTP::Headers::clone().
We require at least Clone 0.46, as that release now supports
Perl back to 5.8.1, just like us. (GH#184) (Neil Bowers)
- Import clone from Clone rather than inheriting (GH#189) (Graham Knop)
- Made the Compress::Raw::Zlib 2.062 module minimal required
version. (GH#190) (Jakub 'q84fh' Skory)
6.43 2022-10-22 14:50:35Z
- Remove dependency to IO::Uncompress::Bunzip2. (Michal Josef Spacek)
- Remove dependency to IO::Uncompress::Gunzip. (Michal Josef Spacek)
6.42 2022-10-18 13:53:22Z
- We now don't consider the Content-Location header when asked
for the base URI. RFC 7231 says we shouldn't. (GH#51) (Neil Bowers)
- Increased the (max) buffer size for read() when processing form data,
from 2048 to 8192. This was suggested in RT#105184, as it improved
performance for them. (GH#59) (Neil Bowers)
==== perl-URI ====
Version update (5.16 -> 5.17)
- updated to 5.17
see /usr/share/doc/packages/perl-URI/Changes
5.17 2022-11-02 17:03:48Z
- Updated RFC references in the pod documentation for URI::file (GH#117)
(HÃ¥kon Hgland)
- Fix SIP URI encoder/decoder (GH#118) (ryankereliuk)
==== pixman ====
Version update (0.40.0 -> 0.42.2)
- Update to version 0.42.2 (boo#1205033 CVE-2022-44638):
+ This version contains a fix for a heap overflow.
- Update URL, and tweak source URI.
==== plasma-nm5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma-nm5-lang plasma-nm5-openvpn
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* L2TP: Fix detection of Libreswan 4.9 and later
==== plasma5-addons ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-addons-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-desktop ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-desktop-emojier
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* tablet: Make sure the "lock aspect ratio" stays true
* tablet: Fix the reset button for the outputs view (kde#458608)
* [kcms/tablet] Delete device when removed
* [kcms/tablet] Fix i18n
* Fix panel configuration to properly limit maximum panel size to half height
==== plasma5-disks ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-integration ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.26.3
==== plasma5-pa ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-pa-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-systemmonitor ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-thunderbolt ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-workspace ====
Version update (5.26.2 -> 5.26.3)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Notifications: Use String "0" for null percent
* Revert apples/kicker: fix timer in triangular mouse filter (kde#461395)
* runners/services: Do not parse exec of flatpaks (kde#461241)
* kcms/regionandlanguage: convert ASCII unicode symbol to QChar (kde#460704)
* startplasma-wayland: Don't set GDK_SCALE and GDK_DPI_SCALE (kde#443215)
* runners/services: Do not match exec values of PWAs (kde#460796)
* runners/servicerunner: increase match type when query exactly matches service name (kde#459516)
* runners/recentdocuments: more fine-grained relevance and type assignment
* runners/baloo: increase match type when query exactly matches file name
* runners/locations: decrease match type when not a known existing file
* wallpapers/image: always try to remove a path in `ImageBackend::removeSlidePath` (kde#461003)
==== polkit ====
Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0
- read actions also from /etc/polkit-1/actions (jsc#PED-1405)
added polkit-actions-in-etc.patch
==== polkit-kde-agent-5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== powerdevil5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: powerdevil5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* powerprofileconfig: Use proper signal for detecting user interaction
==== python-Babel ====
Version update (2.10.3 -> 2.11.0)
- Update to 2.11.0
Upcoming deprecation
* This version, Babel 2.11, is the last version of Babel to support Python 3.6. Babel 2.12 will require Python 3.7 or newer.
Improvements
* Support for hex escapes in JavaScript string literals :gh:`877` - Przemyslaw Wegrzyn
* Add support for formatting decimals in compact form :gh:`909` - Jonah Lawrence
* Adapt parse_date to handle ISO dates in ASCII format :gh:`842` - Eric L.
* Use ast instead of eval for Python string extraction :gh:`915` - Aarni Koskela
* This also enables extraction from static f-strings. F-strings with expressions are silently ignored (but won't raise an error as they used to).
Infrastructure
* Tests: Use regular asserts and pytest.raises() :gh:`875` â Aarni Koskela
* Wheels are now built in GitHub Actions :gh:`888` â Aarni Koskela
* Small improvements to the CLDR downloader script :gh:`894` â Aarni Koskela
* Remove antiquated __nonzero__ methods :gh:`896` - Nikita Sobolev
* Remove superfluous __unicode__ declarations :gh:`905` - Lukas Juhrich
* Mark package compatible with Python 3.11 :gh:`913` - Aarni Koskela
* Quiesce pytest warnings :gh:`916` - Aarni Koskela
Bugfixes
* Use email.Message for pofile header parsing instead of the deprecated cgi.parse_header function. :gh:`876` â Aarni Koskela
* Remove determining time zone via systemsetup on macOS :gh:`914` - Aarni Koskela
Documentation
* Update Python versions in documentation :gh:`898` - Raphael Nestler
* Align BSD-3 license with OSI template :gh:`912` - Lukas Kahwe Smith
==== python-Jinja2 ====
Version update (3.0.3 -> 3.1.2)
- update to 3.1.2:
* Add parameters to ``Environment.overlay`` to match ``__init__``.
* Handle race condition in ``FileSystemBytecodeCache``. :issue:`1654`
- specfile:
* update copyright year
* require python-base >= 3.7
- update to version 3.1.1:
* The template filename on Windows uses the primary path separator.
:issue:`1637`
- changes from version 3.1.0:
* Drop support for Python 3.6. :pr:`1534`
* Remove previously deprecated code. :pr:`1544`
+ "WithExtension" and "AutoEscapeExtension" are built-in now.
+ "contextfilter" and "contextfunction" are replaced by
"pass_context". "evalcontextfilter" and "evalcontextfunction"
are replaced by "pass_eval_context". "environmentfilter" and
"environmentfunction" are replaced by "pass_environment".
+ "Markup" and "escape" should be imported from MarkupSafe.
+ Compiled templates from very old Jinja versions may need to be
recompiled.
+ Legacy resolve mode for "Context" subclasses is no longer
supported. Override "resolve_or_missing" instead of "resolve".
+ "unicode_urlencode" is renamed to "url_quote".
* Add support for native types in macros. :issue:`1510`
* The "{% trans %}" tag can use "pgettext" and "npgettext" by
passing a context string as the first token in the tag, like "{%
trans "title" %}". :issue:`1430`
* Update valid identifier characters from Python 3.6 to 3.7.
:pr:`1571`
* Filters and tests decorated with "@async_variant" are pickleable.
:pr:`1612`
* Add "items" filter. :issue:`1561`
* Subscriptions ("[0]", etc.) can be used after filters, tests, and
calls when the environment is in async mode. :issue:`1573`
* The "groupby" filter is case-insensitive by default, matching
other comparison filters. Added the "case_sensitive" parameter
to control this. :issue:`1463`
* Windows drive-relative path segments in template names will not
result in "FileSystemLoader" and "PackageLoader" loading from
drive-relative paths. :pr:`1621`
==== python-M2Crypto ====
- add openssl-stop-parsing-header.patch (bsc#1205042)
- add m2crypto-0.38-ossl3-tests.patch
==== python-pexpect ====
- skip extra tests for qemu based builds
==== python-psutil ====
Version update (5.9.3 -> 5.9.4)
- update to version 5.9.4:
* Enhancements
- 2102: use Limited API when building wheels with CPython 3.6+ on Linux,
macOS and Windows. This allows to use pre-built wheels in all future
versions of cPython 3. (patch by Matthieu Darbois)
* Bug fixes
- 2077, [Windows]: Use system-level values for virtual_memory().
(patch by Daniel Widdis)
- 2156, [Linux]: compilation may fail on very old gcc compilers due to
missing SPEED_UNKNOWN definition. (patch by Amir Rossert)
- 2010, [macOS]: on MacOS, arm64 IFM_1000_TX and IFM_1000_T are
the same value, causing a build failure. (patch by Lawrence D'Anna)
==== python-pytz ====
Version update (2022.5 -> 2022.6)
- Update to 2022.6
* IANA 2022f
* Squashed 'tz/' changes from c4eb3fcf2..623631d84
* Upgrade unittest asserts
* Bump GitHub Actions
* Add support for Python 3.11
==== python-pyzmq ====
- Fix build with OpenSSL 3.0 [bsc#1205042]
* Temporarily disable test_on_recv_basic
==== python-zope.interface ====
Version update (5.5.0 -> 5.5.1)
- Update to version 5.5.1
* Add support for final Python 3.11 release.
==== python310 ====
Subpackages: python310-curses python310-dbm
- Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid
CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding
extremely long domain names.
==== python310-core ====
Subpackages: libpython3_10-1_0 python310-base
- Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid
CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding
extremely long domain names.
==== qalculate ====
Version update (4.3.0 -> 4.4.0)
Subpackages: libqalculate22 qalculate-data
- Update to 4.4.0:
* New prime number functions: primePi(), primes(), nthprime(),
nextprime(), prevprime(), and isprime()
* New functions for intervals and uncertainties: upperEndpoint(),
lowerEndpoint(), midpoint(), and errorPart()
* Add meter of water and related pressure units, and more
derived flow rate units
* Support for vectors and matrices in uncertainty propagation
calculation
* Proper support for uncertainty propagation in total(), sum(),
product(), and for() functions
* Simplify display of parsed expression (primarily for quantities
with units)
* Avoid parsing of implicit multiplication as nested
multiplication
* Include +/- statement in function argument without parentheses
* Return values for approximate variables in exact mode in
dimension() and elements()
* Improve parsing of quotation marks as feet/inch or
arcmin/arcsec (e.g. do not parse s" as sin)
* Fix exact calculation of re((a*i)^(n/2))
(wrong sign in some cases)
* Fix erroneous calculation in some cases with physical constants
both outside and inside unit relations when interval
calculation is set to interval arithmetic
* Fix segfaults in some corner cases
* Fix use of random numbers in iterative functions
* Fix writing beyond end of array during exchange rates check
in some cases (results in activation of old style matrices)
* Fix automatic reactivation of deactivated global object
if a function with the same name exists
* Do not convert function arguments which do not allow units
(fixes "arcsin(0.5+/-0.1) to deg")
* Fix prefix after conversion to optimal unit when the optimal
unit includes a prefix
* Fix exact calculation when function argument is an approximate
vector variable (fail)
* Minor bug fixes and feature enhancements
==== qemu ====
- Enable KVM support on riscv64
==== rebootmgr ====
Version update (1.3.1 -> 2.0)
- Update to version 2.0
- Remove outdated etcd code
- Fix issue#10:
Reboots happen at the first moment of the maintenance window
==== rpm ====
Subpackages: librpmbuild9
- Add selinux_transactional_update.patch to ignore errors when setting
file labels during transactional updates. They will be set upon
reboot once the new policy is loaded (bsc#1204605)
==== shadow ====
Version update (4.12.3 -> 4.13)
Subpackages: libsubid4 login_defs
- Update to 4.13:
* useradd.8: fix default group ID
* Revert drop of subid_init()
* Georgian translation
* useradd: Avoid taking unneeded space: do not reset non-existent data
in lastlog
* relax username restrictions
* selinux: check MLS enabled before setting serange
* copy_tree: use fchmodat instead of chmod
* copy_tree: don't block on FIFOs
* add shell linter
* copy_tree: carefully treat permissions
* lib/commonio: make lock failures more detailed
* lib: use strzero and memzero where applicable
* Update Dutch translation
* Don't test for NULL before calling free
* Use libc MAX() and MIN()
* chage: Fix regression in print_date
* usermod: report error if homedir does not exist
* libmisc: minimum id check for system accounts
* fix usermod -rG x y wrongly adding a group
* man: add missing space in useradd.8.xml
* lastlog: check for localtime() return value
* Raise limit for passwd and shadow entry length
* Remove adduser-old.c
* useradd: Fix buffer overflow when using a prefix
* Don't warn when failed to open /etc/nsswitch.conf
- Remove patches we took from upstream pre-release:
* shadow-copytree-usermod-fifo.patch
* shadow-chage-format.patch
* shadow-prefix-overflow.patch
- Remove chkname-regex.patch:
Upstream now also relaxed the usernames requirements.
They don't use regex for this but the result is similar.
Plus they also check that the name is less than 32 characters long.
- Rebase useradd-userkeleton.patch
- Add shadow-copytree-usermod-fifo.patch:
Fix regression that prevented `usermod -m` to work when their
home directory contained at least one fifo
See https://github.com/shadow-maint/shadow/pull/565
==== systemd ====
Version update (251.7 -> 251.8)
Subpackages: libsystemd0 libudev1 systemd-doc udev
- Import commit 9cdd78585069b133bebcd479f3a204057ad25d76 (merge of v251.8)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/c212388f7de8d22a3f7c22b19553548…
==== systemsettings5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: systemsettings5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Fix kcms inside a category always being indented
==== vmaf ====
- Drop recommends on vmaf-data, the package is gone since vmaf 2.x.
Build model data into the library, since `make install` does not
do anything by default. [boo#1189023]
==== webkit2gtk3 ====
Version update (2.38.1 -> 2.38.2)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124):
+ Fix scrolling issues in some sites having fixed background.
+ Fix prolonged buffering during progressive live playback.
+ Fix the build with accessibility disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824.
==== webkit2gtk4 ====
Version update (2.38.1 -> 2.38.2)
Subpackages: libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles
- Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124):
+ Fix scrolling issues in some sites having fixed background.
+ Fix prolonged buffering during progressive live playback.
+ Fix the build with accessibility disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824.
==== xdg-desktop-portal-kde ====
Version update (5.26.2 -> 5.26.3)
Subpackages: xdg-desktop-portal-kde-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== zypper ====
Version update (1.14.57 -> 1.14.58)
Subpackages: zypper-log zypper-needs-restarting
- Update man page and explain '.no_auto_prune' (bsc#1204956)
- Allow to (re)add a service with the same URL (bsc#1203715)
- Explain outdatedness of repos (fixes #463)
- BuildRequires: libzypp-devel >= 17.31.5
- version 1.14.58
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.51 -> 7.1.0.52)
bash (5.2.2 -> 5.2.9)
dhcp
elfutils
elfutils-debuginfod
fwupd (1.8.6 -> 1.8.7)
icewm (3.0.1 -> 3.2.0)
irqbalance
kernel-source (6.0.7 -> 6.0.8)
keylime (6.5.3 -> 6.5.2)
lcms2 (2.13.1 -> 2.14)
libX11 (1.8.1 -> 1.8.2)
libslirp
python-pytz (2022.5 -> 2022.6)
python-zope.interface (5.5.0 -> 5.5.1)
python310
python310-core
rpm
shadow (4.12.3 -> 4.13)
=== Details ===
==== ImageMagick ====
Version update (7.1.0.51 -> 7.1.0.52)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- update to 7.1.0.52:
* coders: Enable opening https files in mingw #5727
* utilities: Enable support for unicode paths in mingw #5713
upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#710-52---2022…
==== bash ====
Version update (5.2.2 -> 5.2.9)
Subpackages: bash-doc bash-lang bash-sh
- Add upstream patches
* bash52-003
Command substitutions need to preserve newlines instead of replacing them
with semicolons, especially in the presence of multiple here-documents.
* bash52-004
Bash needs to keep better track of nested brace expansions to avoid problems
with quoting and POSIX semantics.
* bash52-005
Null pattern substitution replacement strings can cause a crash.
* bash52-006
In interactive shells, interrupting the shell while entering a command
substitution can inhibit alias expansion.
* bash52-007
This patch fixes several problems with alias expansion inside command
substitutions when in POSIX mode.
* bash52-008
Array subscript expansion can inappropriately quote brackets if the expression
contains < or >.
* bash52-009
Bash arithmetic expansion should allow `@' and `*' to be used as associative
array keys in expressions.
==== dhcp ====
Subpackages: dhcp-client
- Use %_rundir
==== elfutils ====
Subpackages: elfutils-lang libasm1 libdw1 libelf1
- align patches section
- remove date/time handling weirdness, elfutils does no longer
use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time)
==== elfutils-debuginfod ====
Subpackages: debuginfod-profile libdebuginfod1
- align patches section
- remove date/time handling weirdness, elfutils does no longer
use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time)
==== fwupd ====
Version update (1.8.6 -> 1.8.7)
Subpackages: fwupd-bash-completion fwupd-lang libfwupd2 typelib-1_0-Fwupd-2_0
- Update to version 1.8.7:
+ This release adds the following features:
- Add a new HSI check for the leaked Lenovo 'Key Manifest'
hashes
- Measure system integrity when installing UEFI updates
- Record more host DMI data when submitting a report for dbx
failures
- Use xz-compressed metadata to reduce bandwidth used by ~25%
+ This release fixes the following bugs:
- Add documentation for three existing HSI attributes
- Add re-insert requirement for Analogix devices
- Allow parsing metadata more than 1MB in size
- Do not follow symlinks when searching for ESP devices
- Ensure the config file permission is correct for built-in
plugins
- Fix a compile failure when compiling without efiboot
- Fix a regression when using fwuptool install-blob with FMAP
firmware
- Only count the Microsoft hashes when getting the dbx version
- Only use the IFD when the system is Intel-based
- Support loading CoSWID when only one role has been set
+ This release adds support for the following hardware:
- Anker Thunderbolt 4 Mini Hub
- ELAN haptic hardware
- Fingerprint lenfy devices
- Goodix GF3258WNC
- Intel discrete GPUs (experimental)
- More Star Labs laptops
- QSI Godzilla Creek Reference Hub
- Stop passing conditional plugin_amt=disabled, no longer needed,
nor recognized.
==== icewm ====
Version update (3.0.1 -> 3.2.0)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.2.0:
* Fix for fullscreen wine programs where taskbar would not hide.
* Ensure KeySysWinNext and KeySysWinPrev always work
for rolled up windows which use the Globally Active focus model.
* Give the Alt+Tab a 30 second history.
* The next Alt+Tab will continue where the previous one left off.
* Add "tabto" command to icesh move windows as tabs to a new frame.
* Add "untab" command to icesh to move each tab to its own frame.
* Add "stacking" and "reverse" commands to icesh.
* Let icesh check all atoms in the -Property filter.
* Support edge switching when dragging a window.
* When switching to a tab with size limitations, adapt the frame geometry.
* Fix maximize and fullscreen for tabs with different normal sizes.
* Prevent the flashing when switching tabs.
* Only popup the grouping menu on a task button on the first button click
without key modifiers. This makes it easier to immediately select or
minimize the active application by using the shift or control modifier.
* Update the title bar shape when changing tabs.
* Set common properties when adding another tab to a frame.
* Always update the window list and _NET_CLIENT_LIST when adding more tabs.
* Add special filtered view and flat rendering options to icewm-menu-fdo.
* Updated translations.
- from version 3.1.0:
* Add a winoption "frame" to automatically group application windows
with the same "frame" value as tabs in a single frame.
* Show indicators for the presence of tabs on the title bar.
* Click on the title bar tab indicators to change tabs.
* Give each tab its own set of winoptions.
* Fix for merging a transient window as a tab to its owner window.
* Preserve tray hints across restarts.
* Preserve tabs across restarts.
* Improve the Alt+Tab for tabbed frames.
* When switching tabs, ensure that focus is preserved.
* Add a MouseWinTabbing preference to merge tabs.
* Let the window list support tabs.
* Various improvements to the CMake build.
* Updated translations.
==== irqbalance ====
Subpackages: irqbalance-ui
- add irqbalance-systemd-netlink.patch (related to bsc#1205308)
==== kernel-source ====
Version update (6.0.7 -> 6.0.8)
- Linux 6.0.8 (bsc#1012628).
- usb: dwc3: gadget: Force sending delayed status during soft
disconnect (bsc#1012628).
- usb: dwc3: gadget: Don't delay End Transfer on delayed_status
(bsc#1012628).
- RDMA/cma: Use output interface for net_dev check (bsc#1012628).
- IB/hfi1: Correctly move list in sc_disable() (bsc#1012628).
- RDMA/hns: Disable local invalidate operation (bsc#1012628).
- RDMA/hns: Fix NULL pointer problem in free_mr_init()
(bsc#1012628).
- docs/process/howto: Replace C89 with C11 (bsc#1012628).
- RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (bsc#1012628).
- NFSv4: Fix a potential state reclaim deadlock (bsc#1012628).
- NFSv4.1: Handle RECLAIM_COMPLETE trunking errors (bsc#1012628).
- NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot
(bsc#1012628).
- SUNRPC: Fix null-ptr-deref when xps sysfs alloc failed
(bsc#1012628).
- NFSv4.2: Fixup CLONE dest file size for zero-length count
(bsc#1012628).
- nfs4: Fix kmemleak when allocate slot failed (bsc#1012628).
- net: dsa: Fix possible memory leaks in dsa_loop_init()
(bsc#1012628).
- RDMA/core: Fix null-ptr-deref in ib_core_cleanup()
(bsc#1012628).
- RDMA/qedr: clean up work queue on failure in
qedr_alloc_resources() (bsc#1012628).
- tools/nolibc: Fix missing strlen() definition and infinite
loop with gcc-12 (bsc#1012628).
- net: dsa: fall back to default tagger if we can't load the
one from DT (bsc#1012628).
- nfc: fdp: Fix potential memory leak in fdp_nci_send()
(bsc#1012628).
- nfc: nxp-nci: Fix potential memory leak in nxp_nci_send()
(bsc#1012628).
- nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send()
(bsc#1012628).
- nfc: nfcmrvl: Fix potential memory leak in
nfcmrvl_i2c_nci_send() (bsc#1012628).
- net: fec: fix improper use of NETDEV_TX_BUSY (bsc#1012628).
- ata: pata_legacy: fix pdc20230_set_piomode() (bsc#1012628).
- ata: palmld: fix return value check in palmld_pata_probe()
(bsc#1012628).
- net: sched: Fix use after free in red_enqueue() (bsc#1012628).
- net: tun: fix bugs for oversize packet when napi frags enabled
(bsc#1012628).
- netfilter: nf_tables: netlink notifier might race to release
objects (bsc#1012628).
- netfilter: nf_tables: release flow rule object from commit path
(bsc#1012628).
- sfc: Fix an error handling path in efx_pci_probe()
(bsc#1012628).
- nfsd: fix nfsd_file_unhash_and_dispose (bsc#1012628).
- nfsd: fix net-namespace logic in __nfsd_file_cache_purge
(bsc#1012628).
- net: lan966x: Fix the MTU calculation (bsc#1012628).
- net: lan966x: Adjust maximum frame size when vlan is
enabled/disabled (bsc#1012628).
- net: lan966x: Fix FDMA when MTU is changed (bsc#1012628).
- net: lan966x: Fix unmapping of received frames using FDMA
(bsc#1012628).
- ipvs: use explicitly signed chars (bsc#1012628).
- ipvs: fix WARNING in __ip_vs_cleanup_batch() (bsc#1012628).
- ipvs: fix WARNING in ip_vs_app_net_cleanup() (bsc#1012628).
- rose: Fix NULL pointer dereference in rose_send_frame()
(bsc#1012628).
- mISDN: fix possible memory leak in mISDN_register_device()
(bsc#1012628).
- isdn: mISDN: netjet: fix wrong check of device registration
(bsc#1012628).
- btrfs: fix inode list leak during backref walking at
resolve_indirect_refs() (bsc#1012628).
- btrfs: fix inode list leak during backref walking at
find_parent_nodes() (bsc#1012628).
- btrfs: fix ulist leaks in error paths of qgroup self tests
(bsc#1012628).
- netfilter: ipset: enforce documented limit to prevent allocating
huge memory (bsc#1012628).
- Bluetooth: L2CAP: Fix use-after-free caused by
l2cap_reassemble_sdu (bsc#1012628).
- Bluetooth: hci_conn: Fix CIS connection dst_type handling
(bsc#1012628).
- Bluetooth: virtio_bt: Use skb_put to set length (bsc#1012628).
- Bluetooth: L2CAP: Fix memory leak in vhci_write (bsc#1012628).
- Bluetooth: hci_conn: Fix not restoring ISO buffer count on
disconnect (bsc#1012628).
- net: mdio: fix undefined behavior in bit shift for
__mdiobus_register (bsc#1012628).
- ibmvnic: Free rwi on reset success (bsc#1012628).
- stmmac: dwmac-loongson: fix invalid mdio_node (bsc#1012628).
- net/smc: Fix possible leaked pernet namespace in smc_init()
(bsc#1012628).
- net, neigh: Fix null-ptr-deref in neigh_table_clear()
(bsc#1012628).
- bridge: Fix flushing of dynamic FDB entries (bsc#1012628).
- ipv6: fix WARNING in ip6_route_net_exit_late() (bsc#1012628).
- vsock: fix possible infinite sleep in
vsock_connectible_wait_data() (bsc#1012628).
- iio: adc: stm32-adc: fix channel sampling time init
... changelog too long, skipping 246 lines ...
- commit 0d318d5
==== keylime ====
Version update (6.5.3 -> 6.5.2)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime
- Update to version v6.5.2:
* cloud_verifier: This is the first PR to address the scalability problems uncovered in #1167, starting with `agent` status.
* Bump version number
* Add --retry 5 parameter to curl
* create_mb_refstate: Check tpm2-tools version before running
* create_mb_refstate: Print error messages
* test_tpm: Skip event log parsing test if tpm2-tools is too old
* installer: Enable installation on RHEL-9
* Move the execution of external EK check script to cert_utils
* Move EK cert verification to cert_utils
* Make the tpm cert store path configurable
* ima-policy-converter: Implement a basic test suite for conversion script
* ima-policy-converter: Implement IMA policy conversion script
* ima-policy-converter: Add empty reference IMA policy
* ima: Accept x509 certificates if no Subject Key Identifier is available
* test_tpm: Use doc strings for tests description
* Test binary measured boot event log parsing
* alpha renaming
* shallow type fixes
* ima_emulator_adapter: Print readable error if reading a PCR fails
* tpm: Check whether hash_alg is in jsonout
* Very limited code fixup/cleanup on keylime_tenant CLI
* Set permissions of keylime_agent_secure.mount to 664
* Disable dnf-makecache.timer to save RAM
* tpm_bootlog_enrich: Get DevicePath length from LengthOfDevicePath
* Disable dnf-makecache.service to save RAM
* Fix for writing the same allow list twice during agent activation (#1150)
* Fix improper handling of IMA policy bundle when none is provided
* ima: Fix log evaluation on quick-succession execution of scripts
* Add new tests to packit CI
* Remove semantic-release action to stop erroneous releases
* crypto: Provide input as bytes to encrypt
* Revert "Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)"
* Update runtime_ima.rst
* Back to 6.5.1
* This PR fixes a bug that prevented 6.5.x verifiers from interacting with 6.2. agents
* Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)
* Revert "tenant: open file to send utf-8 encoded" (#1136)
* ca_util: allow users in the same group to read the created certificates and keys (#1138)
* Update sample ima-policy to exclude overlayfs
* installer: remove tarball option
==== lcms2 ====
Version update (2.13.1 -> 2.14)
- Added reverse-0001-fix-memory-leaks-on-testbed.patch to fix
colord's i586 build failure
- Update to 2.14:
* lcms2 now implements ICC specification 4.4
* New multi-threaded plug-in
* Several fixes to keep fuzzers happy
* Removed check on DLL when CMS_NO_REGISTER_KEYWORD is used
* Added more validation against broken profiles
* Added more help to several tools
* Revised documentation
==== libX11 ====
Version update (1.8.1 -> 1.8.2)
Subpackages: libX11-6 libX11-data libX11-xcb1
- Update to version 1.8.2
* This is primarily a bug fix release, including further work on
improving the thread-safety-constructor and making it work with
software which had incorrectly called libX11 functions from
inside X*IfEvent() calls.
- supersedes U_fix-a-memory-leak-in-XRegisterIMInstantiateCallback.patch
==== libslirp ====
- added patches
fix https://gitlab.freedesktop.org/slirp/libslirp/-/issues/64
+ libslirp-semicolon.patch
==== python-pytz ====
Version update (2022.5 -> 2022.6)
- Update to 2022.6
* IANA 2022f
* Squashed 'tz/' changes from c4eb3fcf2..623631d84
* Upgrade unittest asserts
* Bump GitHub Actions
* Add support for Python 3.11
==== python-zope.interface ====
Version update (5.5.0 -> 5.5.1)
- Update to version 5.5.1
* Add support for final Python 3.11 release.
==== python310 ====
Subpackages: python310-curses python310-dbm
- Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid
CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding
extremely long domain names.
==== python310-core ====
Subpackages: libpython3_10-1_0 python310-base
- Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid
CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding
extremely long domain names.
==== rpm ====
Subpackages: librpmbuild9
- Add selinux_transactional_update.patch to ignore errors when setting
file labels during transactional updates. They will be set upon
reboot once the new policy is loaded (bsc#1204605)
==== shadow ====
Version update (4.12.3 -> 4.13)
Subpackages: libsubid4 login_defs
- Update to 4.13:
* useradd.8: fix default group ID
* Revert drop of subid_init()
* Georgian translation
* useradd: Avoid taking unneeded space: do not reset non-existent data
in lastlog
* relax username restrictions
* selinux: check MLS enabled before setting serange
* copy_tree: use fchmodat instead of chmod
* copy_tree: don't block on FIFOs
* add shell linter
* copy_tree: carefully treat permissions
* lib/commonio: make lock failures more detailed
* lib: use strzero and memzero where applicable
* Update Dutch translation
* Don't test for NULL before calling free
* Use libc MAX() and MIN()
* chage: Fix regression in print_date
* usermod: report error if homedir does not exist
* libmisc: minimum id check for system accounts
* fix usermod -rG x y wrongly adding a group
* man: add missing space in useradd.8.xml
* lastlog: check for localtime() return value
* Raise limit for passwd and shadow entry length
* Remove adduser-old.c
* useradd: Fix buffer overflow when using a prefix
* Don't warn when failed to open /etc/nsswitch.conf
- Remove patches we took from upstream pre-release:
* shadow-copytree-usermod-fifo.patch
* shadow-chage-format.patch
* shadow-prefix-overflow.patch
- Remove chkname-regex.patch:
Upstream now also relaxed the usernames requirements.
They don't use regex for this but the result is similar.
Plus they also check that the name is less than 32 characters long.
- Rebase useradd-userkeleton.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager
gssdp (1.6.0 -> 1.6.1)
gupnp (1.6.0 -> 1.6.1)
ibus-table (1.16.13 -> 1.16.14)
libcontainers-common
libnftnl (1.2.3 -> 1.2.4)
libnma (1.10.2 -> 1.10.4)
nautilus
pixman (0.40.0 -> 0.42.2)
python-pyzmq
qalculate (4.3.0 -> 4.4.0)
=== Details ===
==== NetworkManager ====
Subpackages: NetworkManager-bluetooth NetworkManager-lang NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Keep netconfig support. The rc-manager auto detection will select
appropriate manager during runtime.
- Use a with_netconfig define instead of relying on bcond: bcond is
meant to have extrenally controllable build conditions (build -D,
or OBS prjconf).
==== gssdp ====
Version update (1.6.0 -> 1.6.1)
- Update to version 1.6.1:
+ Potential fix for sending discovery responses with the wrong
location.
+ Properly parse netlink messages in neighbour discovery.
+ Do not leak the host mask if it was alreay provided on object
client creation.
+ Fix install path for generated documentation.
+ Fix warning message for link-local v4 addresses.
==== gupnp ====
Version update (1.6.0 -> 1.6.1)
- Update to version 1.6.1:
+ ControlPoint:
- Fix error handling if description download fails.
- Do not leak cancellable.
+ Use proper method for detecting IFA_FLAGS availability.
+ ContextManager:
- Do not leak filtered contexts.
- Fix freeing unavailable contexts.
+ Network ContextManager: Do not leak list parts of context
lists.
+ Introspection: Properly chain up to parent class.
+ Service: Fix crash if subscription callback is points
unreachable host.
==== ibus-table ====
Version update (1.16.13 -> 1.16.14)
update: 1.16.13 -> 1.16.14
- Fix a problem in C/POSIX and invalid locales: Use lower() on LC_MESSAGES only if it is a string and not None
==== libcontainers-common ====
- set detached sigstore attachments for the SUSE controlled registries
==== libnftnl ====
Version update (1.2.3 -> 1.2.4)
- Update to release 1.2.4
* rule, set_elem: remove trailing \n in userdata snprintf
* libnftnl: Fix res_id byte order
==== libnma ====
Version update (1.10.2 -> 1.10.4)
Subpackages: libnma-gtk4-0 libnma-lang libnma0 typelib-1_0-NMA-1_0
- Update to version 1.10.4:
+ Split org.gnome.nm-applet.eap GSchema from org.gnome.nm-applet,
so that the latter can be provided by network-manager-applet
again (where it belongs).
+ build: unbreak build with gcr-3.92.
- split out schema file from the library package: adhere to the
shared library policy. The library requires the new
libnma-glib-schema package.
- Drop fix-dependency-pc-name.patch: fixed upstream.
==== nautilus ====
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 nautilus-lang
- Drop nautilus-revert-extra-large-thumbnails.patch: No longer
needed with glib2 2.74.1.
==== pixman ====
Version update (0.40.0 -> 0.42.2)
- Update to version 0.42.2 (boo#1205033 CVE-2022-44638):
+ This version contains a fix for a heap overflow.
- Update URL, and tweak source URI.
==== python-pyzmq ====
- Fix build with OpenSSL 3.0 [bsc#1205042]
* Temporarily disable test_on_recv_basic
==== qalculate ====
Version update (4.3.0 -> 4.4.0)
Subpackages: libqalculate22 qalculate-data
- Update to 4.4.0:
* New prime number functions: primePi(), primes(), nthprime(),
nextprime(), prevprime(), and isprime()
* New functions for intervals and uncertainties: upperEndpoint(),
lowerEndpoint(), midpoint(), and errorPart()
* Add meter of water and related pressure units, and more
derived flow rate units
* Support for vectors and matrices in uncertainty propagation
calculation
* Proper support for uncertainty propagation in total(), sum(),
product(), and for() functions
* Simplify display of parsed expression (primarily for quantities
with units)
* Avoid parsing of implicit multiplication as nested
multiplication
* Include +/- statement in function argument without parentheses
* Return values for approximate variables in exact mode in
dimension() and elements()
* Improve parsing of quotation marks as feet/inch or
arcmin/arcsec (e.g. do not parse s" as sin)
* Fix exact calculation of re((a*i)^(n/2))
(wrong sign in some cases)
* Fix erroneous calculation in some cases with physical constants
both outside and inside unit relations when interval
calculation is set to interval arithmetic
* Fix segfaults in some corner cases
* Fix use of random numbers in iterative functions
* Fix writing beyond end of array during exchange rates check
in some cases (results in activation of old style matrices)
* Fix automatic reactivation of deactivated global object
if a function with the same name exists
* Do not convert function arguments which do not allow units
(fixes "arcsin(0.5+/-0.1) to deg")
* Fix prefix after conversion to optimal unit when the optimal
unit includes a prefix
* Fix exact calculation when function argument is an approximate
vector variable (fail)
* Minor bug fixes and feature enhancements
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
alsa-oss
alsa-plugins
bluedevil5 (5.26.2 -> 5.26.3.1)
breeze (5.26.2 -> 5.26.3.1)
breeze-gtk (5.26.2 -> 5.26.3)
discover (5.26.2 -> 5.26.3)
drkonqi5 (5.26.2 -> 5.26.3)
fontconfig (2.14.0 -> 2.14.1)
gnome-terminal (3.46.3 -> 3.46.4)
gnutls (3.7.7 -> 3.7.8)
gpgme
hwinfo
javapackages-tools
kactivitymanagerd (5.26.2 -> 5.26.3)
kcm_sddm (5.26.2 -> 5.26.3)
kde-cli-tools5 (5.26.2 -> 5.26.3)
kde-gtk-config5 (5.26.2 -> 5.26.3)
kgamma5 (5.26.2 -> 5.26.3)
khotkeys5 (5.26.2 -> 5.26.3)
kinfocenter5 (5.26.2 -> 5.26.3)
kmenuedit5 (5.26.2 -> 5.26.3)
kpipewire (5.26.2 -> 5.26.3)
kscreen5 (5.26.2 -> 5.26.3)
kscreenlocker (5.26.2 -> 5.26.3)
ksshaskpass5 (5.26.2 -> 5.26.3)
ksystemstats5 (5.26.2 -> 5.26.3)
kwayland-integration (5.26.2 -> 5.26.3)
kwin5 (5.26.2.1 -> 5.26.3)
kwrited5 (5.26.2 -> 5.26.3)
layer-shell-qt (5.26.2 -> 5.26.3)
libkdecoration2 (5.26.2 -> 5.26.3)
libkscreen2 (5.26.2 -> 5.26.3)
libksysguard5 (5.26.2 -> 5.26.3)
libstorage-ng (4.5.48 -> 4.5.50)
libyui (4.4.4 -> 4.4.6)
libyui-ncurses (4.4.4 -> 4.4.6)
libyui-ncurses-pkg (4.4.4 -> 4.4.6)
libyui-qt (4.4.4 -> 4.4.6)
libyui-qt-graph (4.4.4 -> 4.4.6)
libyui-qt-pkg (4.4.4 -> 4.4.6)
mdadm (4.1 -> 4.2)
milou5 (5.26.2 -> 5.26.3)
oxygen5-sounds (5.26.2 -> 5.26.3.1)
perl-HTTP-Message (6.41 -> 6.44)
plasma-browser-integration (5.26.2 -> 5.26.3)
plasma-nm5 (5.26.2 -> 5.26.3)
plasma5-addons (5.26.2 -> 5.26.3)
plasma5-desktop (5.26.2 -> 5.26.3)
plasma5-disks (5.26.2 -> 5.26.3)
plasma5-integration (5.26.2 -> 5.26.3)
plasma5-openSUSE
plasma5-pa (5.26.2 -> 5.26.3)
plasma5-systemmonitor (5.26.2 -> 5.26.3)
plasma5-thunderbolt (5.26.2 -> 5.26.3)
plasma5-workspace (5.26.2 -> 5.26.3)
polkit
polkit-kde-agent-5 (5.26.2 -> 5.26.3)
powerdevil5 (5.26.2 -> 5.26.3)
python-Jinja2 (3.0.3 -> 3.1.2)
python-pexpect
python-psutil (5.9.3 -> 5.9.4)
qemu
rebootmgr (1.3.1 -> 2.0)
systemd (251.7 -> 251.8)
systemsettings5 (5.26.2 -> 5.26.3)
vmaf
xdg-desktop-portal-kde (5.26.2 -> 5.26.3)
=== Details ===
==== alsa-oss ====
- Add tarball signature and keyring
==== alsa-plugins ====
Subpackages: alsa-plugins-speexrate alsa-plugins-upmix
- Add keyring
==== bluedevil5 ====
Version update (5.26.2 -> 5.26.3.1)
Subpackages: bluedevil5-lang
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== breeze ====
Version update (5.26.2 -> 5.26.3.1)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== breeze-gtk ====
Version update (5.26.2 -> 5.26.3)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== discover ====
Version update (5.26.2 -> 5.26.3)
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Remove top margin caused by empty header on UpdatesPage
* Notifier: Fix notification logic
* pk/?: Fix problem when using faulty URL
==== drkonqi5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: drkonqi5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== fontconfig ====
Version update (2.14.0 -> 2.14.1)
Subpackages: fontconfig-lang libfontconfig1
- update to 2.14.1:
* Bump the cache version to 8 in doc/fontconfig-user.sgm
* Enable 10-sub-pixel-rgb.conf by default
* build fixes and translation updates
* Avoid misuse of ctype
==== gnome-terminal ====
Version update (3.46.3 -> 3.46.4)
Subpackages: gnome-shell-search-provider-gnome-terminal gnome-terminal-lang nautilus-extension-terminal
- Update to version 3.46.4:
* all: backport: Implement xdg-terminal-exec support.
* docs:
- Fix some wrong info in README.
- Fix some typos in README.
* Updated translations.
- Add f06e6e5.patch: util: Fix interpretation of TryExec desktop
entry key.
- Add appstream-glib and desktop-file-utils BuildRequires and a
check section with meson_test macro, validate appdata and desktop
files and run tests during build.
==== gnutls ====
Version update (3.7.7 -> 3.7.8)
- Verify only the libgnutls library HMAC [bsc#1199881]
* Do not use the brp-50-generate-fips-hmac script as this
is now calculated with the internal fipshmac tool.
* Add gnutls-verify-library-HMAC.patch
- Temporarily revert the jitterentropy patches in s390 and s390x
architectures until a fix is provided [bsc#1204937]
- Disable flaky test that fails in s390x architecture:
* Add gnutls-disable-flaky-test-dtls-resume.patch
- Consolidate the FIPS hmac files [bsc#1203245]
* Use the gnutls fipshmac tool instead of the brp-check-suse
and rename it to reflect on the library version.
* Remove not needed gnutls-FIPS-Run-CFB8-without-offset.patch
- Add a gnutls.rpmlintrc file to remove a hidden-file-or-dir false
positive for the FIPS hmac calculation.
- Update to 3.7.8:
* libgnutls: In FIPS140 mode, RSA signature verification is an
approved operation if the key has modulus with known sizes
(1024, 1280, 1536, and 1792 bits), in addition to any modulus
sizes larger than 2048 bits, according to SP800-131A rev2.
* libgnutls: gnutls_session_channel_binding performs additional
checks when GNUTLS_CB_TLS_EXPORTER is requested. According to
RFC9622 4.2, the "tls-exporter" channel binding is only usable
when the handshake is bound to a unique master secret (i.e.,
either TLS 1.3 or extended master secret extension is
negotiated). Otherwise the function now returns error.
* libgnutls: usage of the following functions, which are designed
to loosen restrictions imposed by allowlisting mode of
configuration, has been additionally restricted. Invoking
them is now only allowed if system-wide TLS priority string
has not been initialized yet:
- gnutls_digest_set_secure
- gnutls_sign_set_secure
- gnutls_sign_set_secure_for_certs
- gnutls_protocol_set_enabled
* Delete gnutls-3.6.6-set_guile_site_dir.patch and use the
- -with-guile-extension-dir configure option to properly
handle the guile extension directory.
* Rebase gnutls-Make-XTS-key-check-failure-not-fatal.patch
* Update gnutls.keyring
* Add a build depencency on gtk-doc required by autoreconf
- FIPS: Set error state when jent init failed in FIPS mode [bsc#1202146]
* Add patch gnutls-FIPS-Set-error-state-when-jent-init-failed.patch
- FIPS: Make XTS key check failure not fatal [bsc#1203779]
* Add gnutls-Make-XTS-key-check-failure-not-fatal.patch
==== gpgme ====
Subpackages: libgpgme11 libgpgmepp6 python310-gpg
- Add gpgme-suse-nobetasuffix.patch
* remove "-unknown" suffix from version string
* boo#1205197
==== hwinfo ====
- Implement shared library packaging guideline.
- Modernize specfile.
==== javapackages-tools ====
Subpackages: javapackages-filesystem
- Reflect the removal of gradle from repositories
==== kactivitymanagerd ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kactivitymanagerd-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kcm_sddm ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kcm_sddm-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kde-cli-tools5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kde-cli-tools5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kde-gtk-config5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kde-gtk-config5-gtk3
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kgamma5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kgamma5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== khotkeys5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: khotkeys5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kinfocenter5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kinfocenter5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kmenuedit5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kmenuedit5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kpipewire ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kpipewire-imports libKPipeWire5 libKPipeWire5-lang libKPipeWireRecord5
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kscreen5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kscreen5-lang kscreen5-plasmoid
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kscreenlocker ====
Version update (5.26.2 -> 5.26.3)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== ksshaskpass5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: ksshaskpass5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== ksystemstats5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: ksystemstats5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kwayland-integration ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== kwin5 ====
Version update (5.26.2.1 -> 5.26.3)
Subpackages: kwin5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2.1:
* wayland: Prevent matching dnd actions after drop
* Screencast: Fix inverted screencast on OpenGLES and memfd
* screencasting: Make sure we are reporting properly scaled damage values
* plugins/screencast: centralize format querying into the RenderBackend (kde#460563)
* backends/drm: fix format sorting
* Fix blur/contrast for X11 window if Xwayland is not scaled. (kde#461021)
* [effects/windowview] Don't allow setting non-global shortcuts
* [effects/overview] Don't allow setting non-global shortcuts
* backends/drm: fix common mode generation
* nightcolormanager: Emit timing change only when they have actually changed
* x11: Don't force QT_NO_GLIB=1 (kde#460980)
* x11: Don't force QT_QPA_PLATFORM=xcb
* x11window: revert more from 3a28c02f (kde#461032)
- Drop patches, now upstream:
* 0001-x11window-revert-more-from-3a28c02f.patch
==== kwrited5 ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== layer-shell-qt ====
Version update (5.26.2 -> 5.26.3)
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libkdecoration2 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libkscreen2 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: libKF5Screen7 libKF5Screen7-lang libkscreen2-plugin
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libksysguard5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== libstorage-ng ====
Version update (4.5.48 -> 4.5.50)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#903
- fixed typo
- 4.5.50
- merge gh#openSUSE/libstorage-ng#902
- ignore chunk size for RAID1 (bsc#1205172)
- 4.5.49
==== libyui ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-ncurses ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-ncurses-pkg ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt-graph ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== libyui-qt-pkg ====
Version update (4.4.4 -> 4.4.6)
- Prevent antisocial focus grabbing in pkg list (bsc#1204429)
- 4.4.6
- Fixed build failure with gcc 13 (gh#libyui/libyui/#80)
- Killed YCP zombies in log output and comments
- 4.4.5
==== mdadm ====
Version update (4.1 -> 4.2)
- Update mdadm package to latest mdadm since mdadm-4.2
(jsc#PED-1009)
* Only patches directly change runtime programs included,
- Unify error message.
0001-Unify-error-message.patch
- mdadm: Fix double free
0002-mdadm-Fix-double-free.patch
- Grow_reshape: Add r0 grow size error message and update
0003-Grow_reshape-Add-r0-grow-size-error-message-and-upda.patch
- udev: adapt rules to systemd v247
0004-udev-adapt-rules-to-systemd-v247.patch
- Replace error prone signal() with sigaction()
0005-Replace-error-prone-signal-with-sigaction.patch
- mdadm: Respect config file location in man
0006-mdadm-Respect-config-file-location-in-man.patch
- mdadm: Update ReadMe
0007-mdadm-Update-ReadMe.patch
- mdadm: Update config man regarding default files and
0008-mdadm-Update-config-man-regarding-default-files-and-.patch
- mdadm: Update config manual
0009-mdadm-Update-config-manual.patch
- Create, Build: use default_layout()
0010-Create-Build-use-default_layout.patch
- mdadm: add map_num_s()
0011-mdadm-add-map_num_s.patch
- mdmon: Stop parsing duplicate options
0012-mdmon-Stop-parsing-duplicate-options.patch
- Grow: block -n on external volumes.
0013-Grow-block-n-on-external-volumes.patch
- Incremental: Fix possible memory and resource leaks
0014-Incremental-Fix-possible-memory-and-resource-leaks.patch
- Mdmonitor: Fix segfault
0015-Mdmonitor-Fix-segfault.patch
- Mdmonitor: Improve logging method
0016-Mdmonitor-Improve-logging-method.patch
- Fix possible NULL ptr dereferences and memory leaks
0017-Fix-possible-NULL-ptr-dereferences-and-memory-leaks.patch
- imsm: Remove possibility for get_imsm_dev to return
0018-imsm-Remove-possibility-for-get_imsm_dev-to-return-N.patch
- Revert "mdadm: fix coredump of mdadm --monitor -r"
0019-Revert-mdadm-fix-coredump-of-mdadm-monitor-r.patch
- util: replace ioctl use with function
0020-util-replace-ioctl-use-with-function.patch
- mdadm/super1: restore commit 45a87c2f31335 to fix
0021-mdadm-super1-restore-commit-45a87c2f31335-to-fix-clu.patch
- imsm: introduce get_disk_slot_in_dev()
0022-imsm-introduce-get_disk_slot_in_dev.patch
- imsm: use same slot across container
0023-imsm-use-same-slot-across-container.patch
- imsm: block changing slots during creation
0024-imsm-block-changing-slots-during-creation.patch
- mdadm: block update=ppl for non raid456 levels
0025-mdadm-block-update-ppl-for-non-raid456-levels.patch
- mdadm: Fix array size mismatch after grow
0026-mdadm-Fix-array-size-mismatch-after-grow.patch
- mdadm: Remove dead code in imsm_fix_size_mismatch
0027-mdadm-Remove-dead-code-in-imsm_fix_size_mismatch.patch
- Monitor: use devname as char array instead of pointer
0028-Monitor-use-devname-as-char-array-instead-of-pointer.patch
- Monitor: use snprintf to fill device name
0029-Monitor-use-snprintf-to-fill-device-name.patch
- Makefile: Don't build static build with everything and
0030-Makefile-Don-t-build-static-build-with-everything-an.patch
- DDF: Cleanup validate_geometry_ddf_container()
0031-DDF-Cleanup-validate_geometry_ddf_container.patch
- DDF: Fix NULL pointer dereference in
0032-DDF-Fix-NULL-pointer-dereference-in-validate_geometr.patch
- mdadm/Grow: Fix use after close bug by closing after
0033-mdadm-Grow-Fix-use-after-close-bug-by-closing-after-.patch
- monitor: Avoid segfault when calling NULL
0034-monitor-Avoid-segfault-when-calling-NULL-get_bad_blo.patch
- mdadm: Fix mdadm -r remove option regression
0035-mdadm-Fix-mdadm-r-remove-option-regression.patch
- mdadm: Fix optional --write-behind parameter
0036-mdadm-Fix-optional-write-behind-parameter.patch
- mdadm: Replace obsolete usleep with nanosleep
0037-mdadm-Replace-obsolete-usleep-with-nanosleep.patch
- mdadm: remove symlink option
0038-mdadm-remove-symlink-option.patch
- mdadm: move data_offset to struct shape
0039-mdadm-move-data_offset-to-struct-shape.patch
- mdadm: Don't open md device for CREATE and ASSEMBLE
0040-mdadm-Don-t-open-md-device-for-CREATE-and-ASSEMBLE.patch
- Grow: Split Grow_reshape into helper function
0041-Grow-Split-Grow_reshape-into-helper-function.patch
- Assemble: check if device is container before
0042-Assemble-check-if-device-is-container-before-schedul.patch
- super1: report truncated device
0043-super1-report-truncated-device.patch
- mdadm: Correct typos, punctuation and grammar in man
0044-mdadm-Correct-typos-punctuation-and-grammar-in-man.patch
- Manage: Block unsafe member failing
0045-Manage-Block-unsafe-member-failing.patch
- Monitor: Fix statelist memory leaks
0046-Monitor-Fix-statelist-memory-leaks.patch
- mdadm: added support for Intel Alderlake RST on VMD
0047-mdadm-added-support-for-Intel-Alderlake-RST-on-VMD-p.patch
- mdadm: Add Documentation entries to systemd services
0048-mdadm-Add-Documentation-entries-to-systemd-services.patch
... changelog too long, skipping 172 lines ...
- 0121-imsm-support-for-third-Sata-controller.patch
==== milou5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: milou5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== oxygen5-sounds ====
Version update (5.26.2 -> 5.26.3.1)
- Update to 5.26.3.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== perl-HTTP-Message ====
Version update (6.41 -> 6.44)
- updated to 6.44
see /usr/share/doc/packages/perl-HTTP-Message/Changes
6.44 2022-10-26 20:49:00Z
- Made the Clone module a hard requirement, so we don't have to
provide a fallback function for HTTP::Headers::clone().
We require at least Clone 0.46, as that release now supports
Perl back to 5.8.1, just like us. (GH#184) (Neil Bowers)
- Import clone from Clone rather than inheriting (GH#189) (Graham Knop)
- Made the Compress::Raw::Zlib 2.062 module minimal required
version. (GH#190) (Jakub 'q84fh' Skory)
6.43 2022-10-22 14:50:35Z
- Remove dependency to IO::Uncompress::Bunzip2. (Michal Josef Spacek)
- Remove dependency to IO::Uncompress::Gunzip. (Michal Josef Spacek)
6.42 2022-10-18 13:53:22Z
- We now don't consider the Content-Location header when asked
for the base URI. RFC 7231 says we shouldn't. (GH#51) (Neil Bowers)
- Increased the (max) buffer size for read() when processing form data,
from 2048 to 8192. This was suggested in RT#105184, as it improved
performance for them. (GH#59) (Neil Bowers)
==== plasma-browser-integration ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma-browser-integration-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma-nm5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma-nm5-lang plasma-nm5-openvpn
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* L2TP: Fix detection of Libreswan 4.9 and later
==== plasma5-addons ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-addons-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-desktop ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-desktop-emojier plasma5-desktop-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* tablet: Make sure the "lock aspect ratio" stays true
* tablet: Fix the reset button for the outputs view (kde#458608)
* [kcms/tablet] Delete device when removed
* [kcms/tablet] Fix i18n
* Fix panel configuration to properly limit maximum panel size to half height
==== plasma5-disks ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-disks-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-integration ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.26.3
==== plasma5-pa ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-pa-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-systemmonitor ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-systemmonitor-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-thunderbolt ====
Version update (5.26.2 -> 5.26.3)
Subpackages: plasma5-thunderbolt-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== plasma5-workspace ====
Version update (5.26.2 -> 5.26.3)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Notifications: Use String "0" for null percent
* Revert apples/kicker: fix timer in triangular mouse filter (kde#461395)
* runners/services: Do not parse exec of flatpaks (kde#461241)
* kcms/regionandlanguage: convert ASCII unicode symbol to QChar (kde#460704)
* startplasma-wayland: Don't set GDK_SCALE and GDK_DPI_SCALE (kde#443215)
* runners/services: Do not match exec values of PWAs (kde#460796)
* runners/servicerunner: increase match type when query exactly matches service name (kde#459516)
* runners/recentdocuments: more fine-grained relevance and type assignment
* runners/baloo: increase match type when query exactly matches file name
* runners/locations: decrease match type when not a known existing file
* wallpapers/image: always try to remove a path in `ImageBackend::removeSlidePath` (kde#461003)
==== polkit ====
Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0
- read actions also from /etc/polkit-1/actions (jsc#PED-1405)
added polkit-actions-in-etc.patch
==== polkit-kde-agent-5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
==== powerdevil5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: powerdevil5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* powerprofileconfig: Use proper signal for detecting user interaction
==== python-Jinja2 ====
Version update (3.0.3 -> 3.1.2)
- update to 3.1.2:
* Add parameters to ``Environment.overlay`` to match ``__init__``.
* Handle race condition in ``FileSystemBytecodeCache``. :issue:`1654`
- specfile:
* update copyright year
* require python-base >= 3.7
- update to version 3.1.1:
* The template filename on Windows uses the primary path separator.
:issue:`1637`
- changes from version 3.1.0:
* Drop support for Python 3.6. :pr:`1534`
* Remove previously deprecated code. :pr:`1544`
+ "WithExtension" and "AutoEscapeExtension" are built-in now.
+ "contextfilter" and "contextfunction" are replaced by
"pass_context". "evalcontextfilter" and "evalcontextfunction"
are replaced by "pass_eval_context". "environmentfilter" and
"environmentfunction" are replaced by "pass_environment".
+ "Markup" and "escape" should be imported from MarkupSafe.
+ Compiled templates from very old Jinja versions may need to be
recompiled.
+ Legacy resolve mode for "Context" subclasses is no longer
supported. Override "resolve_or_missing" instead of "resolve".
+ "unicode_urlencode" is renamed to "url_quote".
* Add support for native types in macros. :issue:`1510`
* The "{% trans %}" tag can use "pgettext" and "npgettext" by
passing a context string as the first token in the tag, like "{%
trans "title" %}". :issue:`1430`
* Update valid identifier characters from Python 3.6 to 3.7.
:pr:`1571`
* Filters and tests decorated with "@async_variant" are pickleable.
:pr:`1612`
* Add "items" filter. :issue:`1561`
* Subscriptions ("[0]", etc.) can be used after filters, tests, and
calls when the environment is in async mode. :issue:`1573`
* The "groupby" filter is case-insensitive by default, matching
other comparison filters. Added the "case_sensitive" parameter
to control this. :issue:`1463`
* Windows drive-relative path segments in template names will not
result in "FileSystemLoader" and "PackageLoader" loading from
drive-relative paths. :pr:`1621`
==== python-pexpect ====
- skip extra tests for qemu based builds
==== python-psutil ====
Version update (5.9.3 -> 5.9.4)
- update to version 5.9.4:
* Enhancements
- 2102: use Limited API when building wheels with CPython 3.6+ on Linux,
macOS and Windows. This allows to use pre-built wheels in all future
versions of cPython 3. (patch by Matthieu Darbois)
* Bug fixes
- 2077, [Windows]: Use system-level values for virtual_memory().
(patch by Daniel Widdis)
- 2156, [Linux]: compilation may fail on very old gcc compilers due to
missing SPEED_UNKNOWN definition. (patch by Amir Rossert)
- 2010, [macOS]: on MacOS, arm64 IFM_1000_TX and IFM_1000_T are
the same value, causing a build failure. (patch by Lawrence D'Anna)
==== qemu ====
- Enable KVM support on riscv64
==== rebootmgr ====
Version update (1.3.1 -> 2.0)
- Update to version 2.0
- Remove outdated etcd code
- Fix issue#10:
Reboots happen at the first moment of the maintenance window
==== systemd ====
Version update (251.7 -> 251.8)
Subpackages: libsystemd0 libudev1 systemd-doc systemd-lang udev
- Import commit 9cdd78585069b133bebcd479f3a204057ad25d76 (merge of v251.8)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/c212388f7de8d22a3f7c22b19553548…
==== systemsettings5 ====
Version update (5.26.2 -> 5.26.3)
Subpackages: systemsettings5-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- Changes since 5.26.2:
* Fix kcms inside a category always being indented
==== vmaf ====
- Drop recommends on vmaf-data, the package is gone since vmaf 2.x.
Build model data into the library, since `make install` does not
do anything by default. [boo#1189023]
==== xdg-desktop-portal-kde ====
Version update (5.26.2 -> 5.26.3)
Subpackages: xdg-desktop-portal-kde-lang
- Update to 5.26.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.3
- No code changes since 5.26.2
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (22.2.2 -> 22.2.3)
Mesa-drivers (22.2.2 -> 22.2.3)
elfutils (0.187 -> 0.188)
elfutils-debuginfod (0.187 -> 0.188)
grub2
highway
java-18-openjdk
libbpf
libzypp (17.31.4 -> 17.31.5)
mobile-broadband-provider-info (20220725 -> 20221107)
ncurses (6.3.20221001 -> 6.3.20221105)
perl-HTML-Parser (3.79 -> 3.80)
perl-URI (5.16 -> 5.17)
python-Babel (2.10.3 -> 2.11.0)
python-M2Crypto
shadow
webkit2gtk3 (2.38.1 -> 2.38.2)
webkit2gtk4 (2.38.1 -> 2.38.2)
zypper (1.14.57 -> 1.14.58)
=== Details ===
==== Mesa ====
Version update (22.2.2 -> 22.2.3)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- third bugfix release
* some regressions in CI worked out
* a bit of everything, and nothing too crazy
- supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch
- supersedes u_nouveau-corrupted-colors-boo1203949.patch
- get rid of Mesa-libVulkan-devel(-32bit) package, which is no
longer needed at all by providing/obsoleting it by
libvulkan_intel
==== Mesa-drivers ====
Version update (22.2.2 -> 22.2.3)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- third bugfix release
* some regressions in CI worked out
* a bit of everything, and nothing too crazy
- supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch
- supersedes u_nouveau-corrupted-colors-boo1203949.patch
- get rid of Mesa-libVulkan-devel(-32bit) package, which is no
longer needed at all by providing/obsoleting it by
libvulkan_intel
==== elfutils ====
Version update (0.187 -> 0.188)
Subpackages: elfutils-lang libasm1 libdw1 libelf1
- Update to version 0.188:
* readelf: Add -D, --use-dynamic option.
* debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply
outgoing debuginfod_find_section.
* debuginfod: Add --disable-source-scan option.
* libdwfl: Add new function dwfl_get_debuginfod_client.
Add new function dwfl_frame_reg.
Add new function dwfl_report_offline_memory.
- Remove upstreamed patches:
* 0001-libelf-Sync-elf.h-from-glibc.patch
* 0002-backends-Handle-new-RISC-V-specific-definitions.patch
* 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch
* 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch
* PR29474-debuginfod.patch
* config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch
* support-nullglob-in-profile.-.in-files.patch
==== elfutils-debuginfod ====
Version update (0.187 -> 0.188)
Subpackages: debuginfod-profile libdebuginfod1
- Update to version 0.188:
* readelf: Add -D, --use-dynamic option.
* debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply
outgoing debuginfod_find_section.
* debuginfod: Add --disable-source-scan option.
* libdwfl: Add new function dwfl_get_debuginfod_client.
Add new function dwfl_frame_reg.
Add new function dwfl_report_offline_memory.
- Remove upstreamed patches:
* 0001-libelf-Sync-elf.h-from-glibc.patch
* 0002-backends-Handle-new-RISC-V-specific-definitions.patch
* 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch
* 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch
* PR29474-debuginfod.patch
* config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch
* support-nullglob-in-profile.-.in-files.patch
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- NVMeoFC support on grub (jsc#PED-996)
* 0001-ieee1275-add-support-for-NVMeoFC.patch
* 0002-ieee1275-ofpath-enable-NVMeoF-logical-device-transla.patch
* 0003-ieee1275-change-the-logic-of-ieee1275_get_devargs.patch
* 0004-ofpath-controller-name-update.patch
- TDX: Enhance grub2 measurement to TD RTMR (jsc#PED-1265)
* 0001-commands-efi-tpm-Refine-the-status-of-log-event.patch
* 0002-commands-efi-tpm-Use-grub_strcpy-instead-of-grub_mem.patch
* 0003-efi-tpm-Add-EFI_CC_MEASUREMENT_PROTOCOL-support.patch
- Measure the kernel on POWER10 and extend TPM PCRs (PED-1990)
* 0001-ibmvtpm-Add-support-for-trusted-boot-using-a-vTPM-2..patch
* 0002-ieee1275-implement-vec5-for-cas-negotiation.patch
- Fix efi pcr snapshot related funtion is defined but not used on powerpc
platform.
* safe_tpm_pcr_snapshot.patch
- Include loopback into signed grub2 image (jsc#PED-2150)
- Fix firmware oops after disk decrypting failure (bsc#1204037)
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
- Add patch to fix kernel relocation error in low memory
* 0001-linux-fix-efi_relocate_kernel-failure.patch
- Add safety measure to pcr snapshot by checking platform and tpm status
* safe_tpm_pcr_snapshot.patch
- Fix installation failure due to unavailable nvram device on
ppc64le (bsc#1201361)
* 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch
- Add patches to dynamically allocate additional memory regions for
EFI systems (bsc#1202438)
* 0001-mm-Allow-dynamically-requesting-additional-memory-re.patch
* 0002-kern-efi-mm-Always-request-a-fixed-number-of-pages-o.patch
* 0003-kern-efi-mm-Extract-function-to-add-memory-regions.patch
* 0004-kern-efi-mm-Pass-up-errors-from-add_memory_regions.patch
* 0005-kern-efi-mm-Implement-runtime-addition-of-pages.patch
- Enlarge the default heap size and defer the disk cache
invalidation (bsc#1202438)
* 0001-kern-efi-mm-Enlarge-the-default-heap-size.patch
* 0002-mm-Defer-the-disk-cache-invalidation.patch
- Add patches for ALP FDE support
* 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch
* 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch
* 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch
* 0004-normal-menu-Don-t-show-Booting-s-msg-when-auto-booti.patch
* 0005-EFI-suppress-the-Welcome-to-GRUB-message-in-EFI-buil.patch
* 0006-EFI-console-Do-not-set-colorstate-until-the-first-te.patch
* 0007-EFI-console-Do-not-set-cursor-until-the-first-text-o.patch
* 0008-linuxefi-Use-common-grub_initrd_load.patch
* 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch
* 0010-templates-import-etc-crypttab-to-grub.cfg.patch
* grub-read-pcr.patch
* efi-set-variable-with-attrs.patch
* tpm-record-pcrs.patch
* tpm-protector-dont-measure-sealed-key.patch
* tpm-protector-export-secret-key.patch
* grub-install-record-pcrs.patch
* grub-unseal-debug.patch
- Fix out of memory error cannot be prevented via disabling tpm (bsc#1202438)
* 0001-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch
- Fix tpm error stop tumbleweed from booting (bsc#1202374)
* 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
- Patch Removed
* 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
- Add tpm, tpm2, luks2 and gcry_sha512 to default grub.efi (bsc#1197625)
- Make grub-tpm.efi a symlink to grub.efi
* grub2.spec
- Log error when tpm event log is full and continue
* 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch
- Patch superseded
* 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch
- Add patches for automatic TPM disk unlock (jsc#SLE-24018) (bsc#1196668)
* 0001-luks2-Add-debug-message-to-align-with-luks-and-geli-.patch
* 0002-cryptodisk-Refactor-to-discard-have_it-global.patch
* 0003-cryptodisk-Return-failure-in-cryptomount-when-no-cry.patch
* 0004-cryptodisk-Improve-error-messaging-in-cryptomount-in.patch
* 0005-cryptodisk-Improve-cryptomount-u-error-message.patch
* 0006-cryptodisk-Add-infrastructure-to-pass-data-from-cryp.patch
* 0007-cryptodisk-Refactor-password-input-out-of-crypto-dev.patch
* 0008-cryptodisk-Move-global-variables-into-grub_cryptomou.patch
* 0009-cryptodisk-Improve-handling-of-partition-name-in-cry.patch
* 0010-protectors-Add-key-protectors-framework.patch
* 0011-tpm2-Add-TPM-Software-Stack-TSS.patch
* 0012-protectors-Add-TPM2-Key-Protector.patch
* 0013-cryptodisk-Support-key-protectors.patch
* 0014-util-grub-protect-Add-new-tool.patch
- Fix no disk unlocking happen (bsc#1196668)
* 0001-crytodisk-fix-cryptodisk-module-looking-up.patch
- Fix build error
* fix-tpm2-build.patch
==== highway ====
- Have armv7 build succeed again.
==== java-18-openjdk ====
Subpackages: java-18-openjdk-headless
- Fix jconsole.desktop icon
==== libbpf ====
- Fix out-of-bound heap write (boo#1194248 boo#1194249 CVE-2021-45940 CVE-2021-45941)
+ libbpf-Use-elf_getshdrnum-instead-of-e_shnum.patch
- Fix use-after-free in btf_dump_name_dups (boo#1204391 CVE-2022-3534)
+ libbpf-Fix-use-after-free-in-btf_dump_name_dups.patch
- Fix memory leak in parse_usdt_arg() (boo#1204393 CVE-2022-3533)
+ libbpf-Fix-memory-leak-in-parse_usdt_arg.patch
- Fix null pointer dereference in find_prog_by_sec_insn() (boo#1204502 CVE-2022-3606)
+ libbpf-Fix-null-pointer-dereference-in-find_prog_by_.patch
==== libzypp ====
Version update (17.31.4 -> 17.31.5)
- Create '.no_auto_prune' in the package cache dir to prevent auto
cleanup of orphaned repositories (bsc#1204956)
- properly reset range requests (bsc#1204548)
- version 17.31.5 (22)
==== mobile-broadband-provider-info ====
Version update (20220725 -> 20221107)
- Update to version 20221107:
* build:
- Fix regex in make check
- reject and whitespace in XML via unit test
- use $(SP_XML_DB) in Makefile.am
* de: telekom: give names to plan entries
* dtd: allow "mms-internet-hipri" and "mms-internet-hipri-fota"
types
* fr: include voice mail and balance check for Free Mobile
* in: add Airtel Kerala network-id
* ui: collapse Orange and T-Mobile into EE, fix APNs
* us: add support for Ting USA VVM
* us: update AT&T APNs and APN usages
==== ncurses ====
Version update (6.3.20221001 -> 6.3.20221105)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20221105
+ regenerate configure scripts with autoconf 2.52.20221009
+ modify "--with-manpage-format" to support bzip2 and xz compression
(prompted by discussion with Sam James).
+ modify make-tar.sh scripts to make timestamps more predictable.
- Add ncurses patch 20221029
+ improve curs_slk.3x discussion of extensions and portability (report
by Bill Gray).
- Add ncurses patch 20221023
+ change man_db.renames to template, to handle ncurses*-config script
with the extra-suffix configure option.
- Add ncurses patch 20221015
+ fix another memory-leak in tic.
+ update install-sh script from autoconf, to fix install problem for
Ada95 with Arch; as noted in
https://lists.gnu.org/archive/html/automake/2018-09/msg00005.html
there are unaddressed issues.
+ update CF_XOPEN_SOURCE, adding GNU libc suffixes for abi64, abin32,
x32 (report by Sven Joachim):
+ correct ifdef's for _nc_set_read_thread() (patch by Mikhail Korolev,
cf: 20220813).
- Add ncurses patch 20221008
+ correct a switch-statement case in configure script to allow for test
builds with ABI=7.
+ modify misc/gen-pkgconfig.in to allow for the case where the library
directory does not yet exist, since this is processed before doing an
install (report by Michal Liszcz).
==== perl-HTML-Parser ====
Version update (3.79 -> 3.80)
- updated to 3.80
see /usr/share/doc/packages/perl-HTML-Parser/Changes
3.80 2022-11-01
* Fix compatibility with ancient perl by avoiding index in test (GH#33)
(Graham Knop)
==== perl-URI ====
Version update (5.16 -> 5.17)
- updated to 5.17
see /usr/share/doc/packages/perl-URI/Changes
5.17 2022-11-02 17:03:48Z
- Updated RFC references in the pod documentation for URI::file (GH#117)
(HÃ¥kon Hgland)
- Fix SIP URI encoder/decoder (GH#118) (ryankereliuk)
==== python-Babel ====
Version update (2.10.3 -> 2.11.0)
- Update to 2.11.0
Upcoming deprecation
* This version, Babel 2.11, is the last version of Babel to support Python 3.6. Babel 2.12 will require Python 3.7 or newer.
Improvements
* Support for hex escapes in JavaScript string literals :gh:`877` - Przemyslaw Wegrzyn
* Add support for formatting decimals in compact form :gh:`909` - Jonah Lawrence
* Adapt parse_date to handle ISO dates in ASCII format :gh:`842` - Eric L.
* Use ast instead of eval for Python string extraction :gh:`915` - Aarni Koskela
* This also enables extraction from static f-strings. F-strings with expressions are silently ignored (but won't raise an error as they used to).
Infrastructure
* Tests: Use regular asserts and pytest.raises() :gh:`875` â Aarni Koskela
* Wheels are now built in GitHub Actions :gh:`888` â Aarni Koskela
* Small improvements to the CLDR downloader script :gh:`894` â Aarni Koskela
* Remove antiquated __nonzero__ methods :gh:`896` - Nikita Sobolev
* Remove superfluous __unicode__ declarations :gh:`905` - Lukas Juhrich
* Mark package compatible with Python 3.11 :gh:`913` - Aarni Koskela
* Quiesce pytest warnings :gh:`916` - Aarni Koskela
Bugfixes
* Use email.Message for pofile header parsing instead of the deprecated cgi.parse_header function. :gh:`876` â Aarni Koskela
* Remove determining time zone via systemsetup on macOS :gh:`914` - Aarni Koskela
Documentation
* Update Python versions in documentation :gh:`898` - Raphael Nestler
* Align BSD-3 license with OSI template :gh:`912` - Lukas Kahwe Smith
==== python-M2Crypto ====
- add openssl-stop-parsing-header.patch (bsc#1205042)
- add m2crypto-0.38-ossl3-tests.patch
==== shadow ====
Subpackages: libsubid4 login_defs
- Add shadow-copytree-usermod-fifo.patch:
Fix regression that prevented `usermod -m` to work when their
home directory contained at least one fifo
See https://github.com/shadow-maint/shadow/pull/565
==== webkit2gtk3 ====
Version update (2.38.1 -> 2.38.2)
Subpackages: WebKit2GTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124):
+ Fix scrolling issues in some sites having fixed background.
+ Fix prolonged buffering during progressive live playback.
+ Fix the build with accessibility disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824.
==== webkit2gtk4 ====
Version update (2.38.1 -> 2.38.2)
Subpackages: WebKit2GTK-5.0-lang libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles
- Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124):
+ Fix scrolling issues in some sites having fixed background.
+ Fix prolonged buffering during progressive live playback.
+ Fix the build with accessibility disabled.
+ Fix several crashes and rendering issues.
+ Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824.
==== zypper ====
Version update (1.14.57 -> 1.14.58)
Subpackages: zypper-log zypper-needs-restarting
- Update man page and explain '.no_auto_prune' (bsc#1204956)
- Allow to (re)add a service with the same URL (bsc#1203715)
- Explain outdatedness of repos (fixes #463)
- BuildRequires: libzypp-devel >= 17.31.5
- version 1.14.58
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
bind (9.18.7 -> 9.18.8)
dnsmasq (2.86 -> 2.87)
gedit (43.alpha -> 43.1)
glib-networking
gnome-packagekit (3.32.0 -> 43.0)
gnome-shell (43.0 -> 43.1)
gnome-shell-extensions (43.0 -> 43.1)
gtksourceview4 (4.8.3 -> 4.8.4)
irqbalance (1.9.1 -> 1.9.2)
libpaper (1.2.2 -> 2.0.3)
libsoup (3.2.1 -> 3.2.2)
lvm2
lvm2-device-mapper
mutter (43.0 -> 43.1)
openexr
texlive
texlive-specs-n (2022.195.2.005svn61719 -> 2022.196.2.005svn61719)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Release 22.2.2 covers bugfixes for bsc#1197045,bsc#1197046,bsc#1200965,bsc#1202850
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Release 22.2.2 covers bugfixes for bsc#1197045,bsc#1197046,bsc#1200965,bsc#1202850
==== bind ====
Version update (9.18.7 -> 9.18.8)
- Update to bind release 9.18.8
New Features:
* Support for parsing and validating the dohpath service
parameter in SVCB records was added.
* named now logs the supported cryptographic algorithms during
startup and in the output of named -V.
* The recursion not available and query (cache) '...' denied log
messages were extended to include the name of the ACL that
caused a given query to be denied.
Bug Fixes:
* An assertion failure was fixed in named that was caused by
aborting the statistics channel connection while sending
statistics data to the client.
* Changing just the TSIG key names for primaries in catalog
zonesâ member zones was not effective. This has been fixed.
Known Issues:
* Upgrading from BIND 9.16.32, 9.18.6, or any older version may
require a manual configuration change. The following
configurations are affected:
- type primary zones configured with dnssec-policy but without
either allow-update or update-policy,
- type secondary zones configured with dnssec-policy.
In these cases please add inline-signing yes; to the individual
zone configuration(s). Without applying this change, named will
fail to start. For more details, see
https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
* BIND 9.18 does not support dynamic update forwarding (see
allow-update-forwarding) in conjuction with zone transfers over
TLS (XoT).
This obsoletes the following patch:
* fix_documentation-Sphinx.patch
==== dnsmasq ====
Version update (2.86 -> 2.87)
- update to 2.87 (bsc#1197872, CVE-2022-0934):
* Allow arbitrary prefix lengths in --rev-server and
- -domain=....,local
* Replace --address=/#/..... functionality which got
missed in the 2.86 domain search rewrite.
* Add --nftset option, like --ipset but for the newer nftables.
* Add --filter-A and --filter-AAAA options, to remove IPv4 or IPv6
addresses from DNS answers.
* Fix crash doing netbooting when --port is set to zero
to disable the DNS server. Thanks to Drexl Johannes
for the bug report.
* Generalise --dhcp-relay. Sending via broadcast/multicast is
now supported for both IPv4 and IPv6 and the configuration
syntax made easier (but backwards compatible).
* Add snooping of IPv6 prefix-delegations to the DHCP-relay system.
* Finesse parsing of --dhcp-remoteid and --dhcp-subscrid. To be treated
as hex, the pattern must consist of only hex digits AND contain
at least one ':'. Thanks to Bengt-Erik Sandstrom who tripped
over a pattern consisting of a decimal number which was interpreted
surprisingly.
* Include client address in TFTP file-not-found error reports.
Thanks to Stefan Rink for the initial patch, which has been
re-worked by me (srk). All bugs mine.
* Note in manpage the change in behaviour of -address. This behaviour
actually changed in v2.86, but was undocumented there. From 2.86 on,
(eg) --address=/example.com/1.2.3.4 ONLY applies to A queries. All other
types of query will be sent upstream. Pre 2.86, that would catch the
whole example.com domain and queries for other types would get
a local NODATA answer. The pre-2.86 behaviour is still available,
by configuring --address=/example.com/1.2.3.4 --local=/example.com/
* Fix problem with binding DHCP sockets to an individual interface.
Despite the fact that the system call tales the interface _name_ as
a parameter, it actually, binds the socket to interface _index_.
Deleting the interface and creating a new one with the same name
leaves the socket bound to the old index. (Creating new sockets
always allocates a fresh index, they are not reused). We now
take this behaviour into account and keep up with changing indexes.
* Add --conf-script configuration option.
* Enhance --domain to accept, for instance,
- -domain=net2.thekelleys.org.uk,eth2 so that hosts get a domain
which relects the interface they are attached to in a way which
doesn't require hard-coding addresses. Thanks to Sten Spans for
the idea.
* Fix write-after-free error in DHCPv6 server code.
CVE-2022-0934 refers.
* Add the ability to specify destination port in
DHCP-relay mode. This change also removes a previous bug
where --dhcp-alternate-port would affect the port used
to relay _to_ as well as the port being listened on.
The new feature allows configuration to provide bug-for-bug
compatibility, if required. Thanks to Damian Kaczkowski
for the feature suggestion.
* Bound the value of UDP packet size in the EDNS0 header of
forwarded queries to the configured or default value of
edns-packet-max. There's no point letting a client set a larger
value if we're unable to return the answer. Thanks to Bertie
Taylor for pointing out the problem and supplying the patch.
- drop dnsmasq-CVE-2022-0934.patch, dnsmasq-resolv-conf.patch (upstream)
==== gedit ====
Version update (43.alpha -> 43.1)
Subpackages: python3-gedit
- Update to version 43.1:
+ Be able to build with Meson >= 0.61
+ AppData fix
+ Add some BuildStream element files in build-aux/buildstream/
- Add api_ver define and set it to 3.38
- Update to version 43.0:
+ Come back to the source code of gedit 40.0 and continue again
from there. It is based on the Tepl and Amtk libraries. The
single Open button is again split in two with a drop-down menu
for recent files.
+ Workaround for bug: text cut off at the bottom in certain
situations.
+ Change app name from "Text Editor" back to "gedit".
+ AppData: some updates, take a new screenshot.
+ Remove gitlab-ci.
+ Remove outdated build-aux/osx/ directory (several MB).
+ Flatpak: generate JSON manifest from YAML manifest.
+ File browser plugin: more robust check if Nautilus GSettings
can be used, even if the key doesn't exist anymore.
+ Rework the I/O error info bars.
+ Handle application/x-zerosize mimetype.
+ Small code maintenance.
+ Documentation updates.
+ Updated translations.
- Rebase gedit-desktop.patch with quilt.
- Add pkgconfig(amtk-5) and pkgconfig(tepl-6) BuildRequires: New
dependencies.
==== glib-networking ====
- Fix build with gnutls 3.7.8:
* tests: skip tls-exporter test for TLS 1.2
* https://gitlab.gnome.org/GNOME/glib-networking/-/issues/201
* Add glib-networking-gnutls-tls-exporter-tls12.patch
==== gnome-packagekit ====
Version update (3.32.0 -> 43.0)
- Update to version 43.0:
+ Add icon for critical updates.
+ Fix smallscreen support.
+ Add back logout support.
+ Automatically remove unused dependencies by default.
- Add explicit pkgconfig(gio-2.0) BuildRequires, as meson checks
for it.
- Drop desktop-file-utils and gnome-menus-devel BuildRequires, no
longer needed.
- Drop patches fixed upstream:
+ gnome-packagekit-displaysize.patch
+ gnome-packagekit-bring-back-logout-support.patch
+ gnome-packagekit-define-HAVE_SYSTEMD.patch
+ gnome-packagekit-drop-NEWEST-on-get-updates.patch
- Rebase patches with quilt.
==== gnome-shell ====
Version update (43.0 -> 43.1)
Subpackages: gnome-extensions gnome-shell-calendar
- Update to version 43.1:
+ Fix default keyboard layout during initial setup.
+ Show Bluetooth switch in more cases.
+ Include origin in sound device switcher.
+ Fix remembering inhibit-shortcut permission for multiple apps.
+ Forward TERMINAL input purpose to ibus.
+ Fix style glitches.
+ Fix tracking of newly installed apps.
+ Fix space key getting stuck in on-screen keyboard.
+ Fix showing passwords as on-screen keyboard suggestions.
+ Fix network portal regression.
+ Fix possible freeze during initialization.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gnome-shell-extensions ====
Version update (43.0 -> 43.1)
Subpackages: gnome-shell-classic gnome-shell-extensions-common
- Update to version 43.1:
+ Fixed crash.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gtksourceview4 ====
Version update (4.8.3 -> 4.8.4)
Subpackages: libgtksourceview-4-0 typelib-1_0-GtkSource-4
- Update to version 4.8.4:
+ Style updates to kate, classic, tango.
+ Language updates to vala, python3, c, cuda, latex.
+ Add unit tests for language specs.
+ Updated translations.
==== irqbalance ====
Version update (1.9.1 -> 1.9.2)
Subpackages: irqbalance-ui
- update to 1.9.2:
* avoid coredump on build_one_dev_entry()
* avoid double free on deinit_thermal()
* change the log level in thermal.c
* fix a minor typo
- drop Avoid-double-free-on-deinit_thermal.patch, uninitialized.patch: (upstream)
==== libpaper ====
Version update (1.2.2 -> 2.0.3)
Subpackages: libpaper-tools
- Update to 2.0.3:
* avoid error in paperconfig
* paperinit: fix a space leak in case of error parsing paperspecs
* paper.c: make unit_list const char *, to fix a warning
* paper.c: fix a trivial leak
* fix segfault when HOME is unset (thanks, Werner Fink)
* fix a segfault in systempapername() (fix from Werner Fink, thanks!)
* hardwire papersize configuration filename to âpapersizeâ
- Remove upstreamed libpaper-foul.patch
==== libsoup ====
Version update (3.2.1 -> 3.2.2)
Subpackages: libsoup-3_0-0 typelib-1_0-Soup-3_0
- Update to version 3.2.2:
+ Various HTTP/2 Fixes:
- Fix `content-sniffed` not being emitted for resources without
content.
- Fix leak of SoupServerConnection when stolen.
- Enable tests on 32-bit again, fixed upstream.
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216)
- bug-1203216_lvmlockd-purge-the-lock-resources-left-in-previous-l.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216)
- bug-1203216_lvmlockd-purge-the-lock-resources-left-in-previous-l.patch
==== mutter ====
Version update (43.0 -> 43.1)
- Update to version 43.1:
+ Add quirk to work around issue with Mali GPUs.
+ Notify changes to night-light support over D-Bus.
+ Fix always-on-top windows unexpectedly taking focus.
+ Fix accidental direct scanout.
+ Disable client modifiers with amdgpu driver.
+ Cancel pointer gesture on wl_pointer.leave.
+ Add black padding to fixed-size wayland fullscreen windows.
+ Stop sending frame callbacks to minimized clients.
+ Fix scrolling in clients with no hi-res scroll support in RDP.
+ Fix skipped low-res scroll events with some high-res mice.
+ Throttle interactive move and resize updates.
+ wayland-keyboard: Send pressed keys on enter.
+ Fix some X11 windows getting unredirected erroneously.
+ Fix Flatpak applications bypassing X11 permission.
+ Fix always visible cursor in virtual streams.
+ Fixed crashes.
+ Misc. bug fixes and cleanups.
+ Updated translations.
- Drop b81429ac.patch: Fixed upstream.
==== openexr ====
Subpackages: libIex-3_1-30 libIlmThread-3_1-30 libOpenEXR-3_1-30
- Add _constraints: 6000 MiB memory
==== texlive ====
- Make it build even ol ppc64le
==== texlive-specs-n ====
Version update (2022.195.2.005svn61719 -> 2022.196.2.005svn61719)
- The boldtensors styles should require the bbold fonts
- Use https for urls
- Update mltex to latest version 4.2svn63213 as upstream has now
removed all .dvi, .pdf, and .tex files from doc tree due to the
used Creative Commons Attribution-NonCommercial-ShareAlike license
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
bind (9.18.7 -> 9.18.8)
dnsmasq (2.86 -> 2.87)
gedit (43.alpha -> 43.1)
glib-networking
gnome-packagekit (3.32.0 -> 43.0)
gnome-shell (43.0 -> 43.1)
gnome-shell-extensions (43.0 -> 43.1)
gtksourceview4 (4.8.3 -> 4.8.4)
irqbalance (1.9.1 -> 1.9.2)
libmfx
libpaper (1.2.2 -> 2.0.3)
libsoup (3.2.1 -> 3.2.2)
lvm2
lvm2-device-mapper
mutter (43.0 -> 43.1)
openexr
texlive
texlive-specs-n (2022.195.2.005svn61719 -> 2022.196.2.005svn61719)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Release 22.2.2 covers bugfixes for bsc#1197045,bsc#1197046,bsc#1200965,bsc#1202850
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Release 22.2.2 covers bugfixes for bsc#1197045,bsc#1197046,bsc#1200965,bsc#1202850
==== bind ====
Version update (9.18.7 -> 9.18.8)
- Update to bind release 9.18.8
New Features:
* Support for parsing and validating the dohpath service
parameter in SVCB records was added.
* named now logs the supported cryptographic algorithms during
startup and in the output of named -V.
* The recursion not available and query (cache) '...' denied log
messages were extended to include the name of the ACL that
caused a given query to be denied.
Bug Fixes:
* An assertion failure was fixed in named that was caused by
aborting the statistics channel connection while sending
statistics data to the client.
* Changing just the TSIG key names for primaries in catalog
zonesâ member zones was not effective. This has been fixed.
Known Issues:
* Upgrading from BIND 9.16.32, 9.18.6, or any older version may
require a manual configuration change. The following
configurations are affected:
- type primary zones configured with dnssec-policy but without
either allow-update or update-policy,
- type secondary zones configured with dnssec-policy.
In these cases please add inline-signing yes; to the individual
zone configuration(s). Without applying this change, named will
fail to start. For more details, see
https://kb.isc.org/docs/dnssec-policy-requires-dynamic-dns-or-inline-signing
* BIND 9.18 does not support dynamic update forwarding (see
allow-update-forwarding) in conjuction with zone transfers over
TLS (XoT).
This obsoletes the following patch:
* fix_documentation-Sphinx.patch
==== dnsmasq ====
Version update (2.86 -> 2.87)
- update to 2.87 (bsc#1197872, CVE-2022-0934):
* Allow arbitrary prefix lengths in --rev-server and
- -domain=....,local
* Replace --address=/#/..... functionality which got
missed in the 2.86 domain search rewrite.
* Add --nftset option, like --ipset but for the newer nftables.
* Add --filter-A and --filter-AAAA options, to remove IPv4 or IPv6
addresses from DNS answers.
* Fix crash doing netbooting when --port is set to zero
to disable the DNS server. Thanks to Drexl Johannes
for the bug report.
* Generalise --dhcp-relay. Sending via broadcast/multicast is
now supported for both IPv4 and IPv6 and the configuration
syntax made easier (but backwards compatible).
* Add snooping of IPv6 prefix-delegations to the DHCP-relay system.
* Finesse parsing of --dhcp-remoteid and --dhcp-subscrid. To be treated
as hex, the pattern must consist of only hex digits AND contain
at least one ':'. Thanks to Bengt-Erik Sandstrom who tripped
over a pattern consisting of a decimal number which was interpreted
surprisingly.
* Include client address in TFTP file-not-found error reports.
Thanks to Stefan Rink for the initial patch, which has been
re-worked by me (srk). All bugs mine.
* Note in manpage the change in behaviour of -address. This behaviour
actually changed in v2.86, but was undocumented there. From 2.86 on,
(eg) --address=/example.com/1.2.3.4 ONLY applies to A queries. All other
types of query will be sent upstream. Pre 2.86, that would catch the
whole example.com domain and queries for other types would get
a local NODATA answer. The pre-2.86 behaviour is still available,
by configuring --address=/example.com/1.2.3.4 --local=/example.com/
* Fix problem with binding DHCP sockets to an individual interface.
Despite the fact that the system call tales the interface _name_ as
a parameter, it actually, binds the socket to interface _index_.
Deleting the interface and creating a new one with the same name
leaves the socket bound to the old index. (Creating new sockets
always allocates a fresh index, they are not reused). We now
take this behaviour into account and keep up with changing indexes.
* Add --conf-script configuration option.
* Enhance --domain to accept, for instance,
- -domain=net2.thekelleys.org.uk,eth2 so that hosts get a domain
which relects the interface they are attached to in a way which
doesn't require hard-coding addresses. Thanks to Sten Spans for
the idea.
* Fix write-after-free error in DHCPv6 server code.
CVE-2022-0934 refers.
* Add the ability to specify destination port in
DHCP-relay mode. This change also removes a previous bug
where --dhcp-alternate-port would affect the port used
to relay _to_ as well as the port being listened on.
The new feature allows configuration to provide bug-for-bug
compatibility, if required. Thanks to Damian Kaczkowski
for the feature suggestion.
* Bound the value of UDP packet size in the EDNS0 header of
forwarded queries to the configured or default value of
edns-packet-max. There's no point letting a client set a larger
value if we're unable to return the answer. Thanks to Bertie
Taylor for pointing out the problem and supplying the patch.
- drop dnsmasq-CVE-2022-0934.patch, dnsmasq-resolv-conf.patch (upstream)
==== gedit ====
Version update (43.alpha -> 43.1)
Subpackages: gedit-lang python3-gedit
- Update to version 43.1:
+ Be able to build with Meson >= 0.61
+ AppData fix
+ Add some BuildStream element files in build-aux/buildstream/
- Add api_ver define and set it to 3.38
- Update to version 43.0:
+ Come back to the source code of gedit 40.0 and continue again
from there. It is based on the Tepl and Amtk libraries. The
single Open button is again split in two with a drop-down menu
for recent files.
+ Workaround for bug: text cut off at the bottom in certain
situations.
+ Change app name from "Text Editor" back to "gedit".
+ AppData: some updates, take a new screenshot.
+ Remove gitlab-ci.
+ Remove outdated build-aux/osx/ directory (several MB).
+ Flatpak: generate JSON manifest from YAML manifest.
+ File browser plugin: more robust check if Nautilus GSettings
can be used, even if the key doesn't exist anymore.
+ Rework the I/O error info bars.
+ Handle application/x-zerosize mimetype.
+ Small code maintenance.
+ Documentation updates.
+ Updated translations.
- Rebase gedit-desktop.patch with quilt.
- Add pkgconfig(amtk-5) and pkgconfig(tepl-6) BuildRequires: New
dependencies.
==== glib-networking ====
Subpackages: glib-networking-lang
- Fix build with gnutls 3.7.8:
* tests: skip tls-exporter test for TLS 1.2
* https://gitlab.gnome.org/GNOME/glib-networking/-/issues/201
* Add glib-networking-gnutls-tls-exporter-tls12.patch
==== gnome-packagekit ====
Version update (3.32.0 -> 43.0)
Subpackages: gnome-packagekit-lang
- Update to version 43.0:
+ Add icon for critical updates.
+ Fix smallscreen support.
+ Add back logout support.
+ Automatically remove unused dependencies by default.
- Add explicit pkgconfig(gio-2.0) BuildRequires, as meson checks
for it.
- Drop desktop-file-utils and gnome-menus-devel BuildRequires, no
longer needed.
- Drop patches fixed upstream:
+ gnome-packagekit-displaysize.patch
+ gnome-packagekit-bring-back-logout-support.patch
+ gnome-packagekit-define-HAVE_SYSTEMD.patch
+ gnome-packagekit-drop-NEWEST-on-get-updates.patch
- Rebase patches with quilt.
==== gnome-shell ====
Version update (43.0 -> 43.1)
Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang
- Update to version 43.1:
+ Fix default keyboard layout during initial setup.
+ Show Bluetooth switch in more cases.
+ Include origin in sound device switcher.
+ Fix remembering inhibit-shortcut permission for multiple apps.
+ Forward TERMINAL input purpose to ibus.
+ Fix style glitches.
+ Fix tracking of newly installed apps.
+ Fix space key getting stuck in on-screen keyboard.
+ Fix showing passwords as on-screen keyboard suggestions.
+ Fix network portal regression.
+ Fix possible freeze during initialization.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gnome-shell-extensions ====
Version update (43.0 -> 43.1)
Subpackages: gnome-shell-classic gnome-shell-extensions-common gnome-shell-extensions-common-lang
- Update to version 43.1:
+ Fixed crash.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gtksourceview4 ====
Version update (4.8.3 -> 4.8.4)
Subpackages: gtksourceview4-lang libgtksourceview-4-0 typelib-1_0-GtkSource-4
- Update to version 4.8.4:
+ Style updates to kate, classic, tango.
+ Language updates to vala, python3, c, cuda, latex.
+ Add unit tests for language specs.
+ Updated translations.
==== irqbalance ====
Version update (1.9.1 -> 1.9.2)
Subpackages: irqbalance-ui
- update to 1.9.2:
* avoid coredump on build_one_dev_entry()
* avoid double free on deinit_thermal()
* change the log level in thermal.c
* fix a minor typo
- drop Avoid-double-free-on-deinit_thermal.patch, uninitialized.patch: (upstream)
==== libmfx ====
- needed for jira#PED-1174 (Video decoding/encoding support
(VA-API, ...) for Intel GPUs is outside of Mesa)
==== libpaper ====
Version update (1.2.2 -> 2.0.3)
Subpackages: libpaper-tools
- Update to 2.0.3:
* avoid error in paperconfig
* paperinit: fix a space leak in case of error parsing paperspecs
* paper.c: make unit_list const char *, to fix a warning
* paper.c: fix a trivial leak
* fix segfault when HOME is unset (thanks, Werner Fink)
* fix a segfault in systempapername() (fix from Werner Fink, thanks!)
* hardwire papersize configuration filename to âpapersizeâ
- Remove upstreamed libpaper-foul.patch
==== libsoup ====
Version update (3.2.1 -> 3.2.2)
Subpackages: libsoup-3_0-0 libsoup-lang typelib-1_0-Soup-3_0
- Update to version 3.2.2:
+ Various HTTP/2 Fixes:
- Fix `content-sniffed` not being emitted for resources without
content.
- Fix leak of SoupServerConnection when stolen.
- Enable tests on 32-bit again, fixed upstream.
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216)
- bug-1203216_lvmlockd-purge-the-lock-resources-left-in-previous-l.patch
==== lvm2-device-mapper ====
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- killed lvmlockd doesn't clear/adopt locks leading to inability to start volume group (bsc#1203216)
- bug-1203216_lvmlockd-purge-the-lock-resources-left-in-previous-l.patch
==== mutter ====
Version update (43.0 -> 43.1)
Subpackages: mutter-lang
- Update to version 43.1:
+ Add quirk to work around issue with Mali GPUs.
+ Notify changes to night-light support over D-Bus.
+ Fix always-on-top windows unexpectedly taking focus.
+ Fix accidental direct scanout.
+ Disable client modifiers with amdgpu driver.
+ Cancel pointer gesture on wl_pointer.leave.
+ Add black padding to fixed-size wayland fullscreen windows.
+ Stop sending frame callbacks to minimized clients.
+ Fix scrolling in clients with no hi-res scroll support in RDP.
+ Fix skipped low-res scroll events with some high-res mice.
+ Throttle interactive move and resize updates.
+ wayland-keyboard: Send pressed keys on enter.
+ Fix some X11 windows getting unredirected erroneously.
+ Fix Flatpak applications bypassing X11 permission.
+ Fix always visible cursor in virtual streams.
+ Fixed crashes.
+ Misc. bug fixes and cleanups.
+ Updated translations.
- Drop b81429ac.patch: Fixed upstream.
==== openexr ====
Subpackages: libIex-3_1-30 libIlmThread-3_1-30 libOpenEXR-3_1-30
- Add _constraints: 6000 MiB memory
==== texlive ====
- Make it build even ol ppc64le
==== texlive-specs-n ====
Version update (2022.195.2.005svn61719 -> 2022.196.2.005svn61719)
- The boldtensors styles should require the bbold fonts
- Use https for urls
- Update mltex to latest version 4.2svn63213 as upstream has now
removed all .dvi, .pdf, and .tex files from doc tree due to the
used Creative Commons Attribution-NonCommercial-ShareAlike license
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.0.50 -> 7.1.0.51)
Mesa
Mesa-drivers
MozillaFirefox (106.0.1 -> 106.0.5)
alsa (1.2.7.2 -> 1.2.8)
alsa-ucm-conf (1.2.7.2 -> 1.2.8)
alsa-utils (1.2.7 -> 1.2.8)
at-spi2-core
augeas (1.12.0 -> 1.13.0)
autoyast2 (4.5.6 -> 4.5.8)
baloo5-widgets (22.08.2 -> 22.08.3)
bash
bluedevil5 (5.26.1 -> 5.26.2)
bluez
breeze (5.26.1 -> 5.26.2)
breeze-gtk (5.26.1 -> 5.26.2)
btrfsprogs (5.19.1 -> 6.0)
conmon
coreutils
curl (7.85.0 -> 7.86.0)
dbus-1 (1.14.0 -> 1.14.4)
dbus-1-glib
dbus-1-x11 (1.14.0 -> 1.14.4)
discover (5.26.1 -> 5.26.2)
dolphin (22.08.2 -> 22.08.3)
drkonqi5 (5.26.1 -> 5.26.2)
evince (43.0 -> 43.1)
expat (2.4.9 -> 2.5.0)
ffmpegthumbs (22.08.2 -> 22.08.3)
firewalld (1.2.0 -> 1.2.1)
fwupd
gcr3
gdb
gdk-pixbuf (2.42.9 -> 2.42.10)
gdm
gettext-runtime (0.21 -> 0.21.1)
gjs (1.74.0 -> 1.74.1)
glib2 (2.74.0 -> 2.74.1)
glibc
gnome-keyring
gnome-shell
gnome-software
gnome-terminal (3.46.2 -> 3.46.3)
gpgme (1.16.0 -> 1.18.0)
graphviz
gstreamer (1.20.3 -> 1.20.4)
gstreamer-plugins-bad (1.20.3 -> 1.20.4)
gstreamer-plugins-base (1.20.3 -> 1.20.4)
gstreamer-plugins-good (1.20.3 -> 1.20.4)
gtk4 (4.8.1 -> 4.8.2)
highway (1.0.1 -> 1.0.2)
irqbalance
kaccounts-integration (22.08.2 -> 22.08.3)
kaccounts-providers (22.08.2 -> 22.08.3)
kactivitymanagerd (5.26.1 -> 5.26.2)
kate (22.08.2 -> 22.08.3)
kcm_sddm (5.26.1 -> 5.26.2)
kde-cli-tools5 (5.26.1 -> 5.26.2)
kde-gtk-config5 (5.26.1 -> 5.26.2)
kde-print-manager (22.08.2 -> 22.08.3)
kdegraphics-thumbnailers (22.08.2 -> 22.08.3)
kdenetwork-filesharing (22.08.2 -> 22.08.3)
kdialog (22.08.2 -> 22.08.3)
kernel-firmware (20220930 -> 20221031)
kernel-source (6.0.3 -> 6.0.7)
kexec-tools
keylime (6.5.1 -> 6.5.3)
kgamma5 (5.26.1 -> 5.26.2)
khelpcenter5 (22.08.2 -> 22.08.3)
khotkeys5 (5.26.1 -> 5.26.2)
kinfocenter5 (5.26.1 -> 5.26.2)
kio
kio-extras5 (22.08.2 -> 22.08.3)
kmenuedit5 (5.26.1 -> 5.26.2)
konsole (22.08.2 -> 22.08.3)
kpipewire (5.26.1 -> 5.26.2)
kscreen5 (5.26.1 -> 5.26.2)
kscreenlocker (5.26.1 -> 5.26.2)
ksshaskpass5 (5.26.1 -> 5.26.2)
ksystemstats5 (5.26.1 -> 5.26.2)
kwalletmanager5 (22.08.2 -> 22.08.3)
kwayland-integration (5.26.1 -> 5.26.2)
kwin5 (5.26.1 -> 5.26.2.1)
kwrited5 (5.26.1 -> 5.26.2)
layer-shell-qt (5.26.1 -> 5.26.2)
libXext (1.3.4 -> 1.3.5)
libXinerama (1.1.4 -> 1.1.5)
libavif
libdrm (2.4.113 -> 2.4.114)
libepoxy
libffi (3.4.3 -> 3.4.4)
libidn2 (2.3.3 -> 2.3.4)
libkdcraw (22.08.2 -> 22.08.3)
libkdecoration2 (5.26.1 -> 5.26.2)
libkexiv2 (22.08.2 -> 22.08.3)
libkscreen2 (5.26.1 -> 5.26.2)
libksysguard5 (5.26.1 -> 5.26.2)
libmysofa (1.2.1 -> 1.3.1)
libnvme (1.1 -> 1.2)
libosinfo
libqt5-qtbase (5.15.6+kde177 -> 5.15.7+kde167)
libqt5-qtdeclarative (5.15.6+kde20 -> 5.15.7+kde18)
libqt5-qtgraphicaleffects (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtimageformats (5.15.6+kde4 -> 5.15.7+kde5)
libqt5-qtlocation (5.15.6+kde3 -> 5.15.7+kde3)
libqt5-qtmultimedia (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qtquickcontrols (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtquickcontrols2 (5.15.6+kde5 -> 5.15.7+kde6)
libqt5-qtsensors (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtspeech (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qtsvg (5.15.6+kde9 -> 5.15.7+kde9)
libqt5-qttools (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qttranslations (5.15.6+kde2 -> 5.15.7+kde0)
libqt5-qtvirtualkeyboard (5.15.6+kde1 -> 5.15.7+kde0)
libqt5-qtwayland (5.15.6+kde49 -> 5.15.7+kde49)
libqt5-qtwebchannel (5.15.6+kde3 -> 5.15.7+kde3)
libqt5-qtwebview (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtx11extras (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtxmlpatterns (5.15.6+kde0 -> 5.15.7+kde0)
libstorage-ng (4.5.47 -> 4.5.48)
libva
libva-gl
libxml2
libxshmfence (1.3 -> 1.3.1)
libyuv (20220713+d248929c -> 20220920+f9fda6e)
llvm15 (15.0.2 -> 15.0.3)
lsof (4.95.0 -> 4.96.4)
luit (20201003 -> 20221028)
lvm2
lvm2-device-mapper (1.02.185 -> 2.03.16_1.02.185)
milou5 (5.26.1 -> 5.26.2)
mobipocket (22.08.2 -> 22.08.3)
mpg123 (1.30.2 -> 1.31.1)
multipath-tools (0.9.1+52+suse.be8809e -> 0.9.2+59+suse.ac8942d)
ntfs-3g_ntfsprogs (2022.5.17 -> 2022.10.3)
nvme-cli (2.1.2 -> 2.2.1)
open-lldp (1.1+44.0f781b4162d3 -> 1.1+58.8ca361bab766)
openSUSE-build-key
openldap2
openldap2-contrib-src
openslp
openssl (1.1.1q -> 1.1.1s)
openssl-1_1 (1.1.1q -> 1.1.1s)
openssl-3 (3.0.5 -> 3.0.7)
osinfo-db (20220830 -> 20221018)
oxygen5-sounds (5.26.1 -> 5.26.2)
pam-config (1.7 -> 1.8)
patterns-microos
pipewire
pkcs11-helper (1.28.0 -> 1.29.0)
plasma-browser-integration (5.26.1 -> 5.26.2)
plasma-nm5 (5.26.1 -> 5.26.2)
plasma5-addons (5.26.1 -> 5.26.2)
plasma5-desktop (5.26.1 -> 5.26.2)
plasma5-disks (5.26.1 -> 5.26.2)
plasma5-integration (5.26.1 -> 5.26.2)
plasma5-openSUSE
plasma5-pa (5.26.1 -> 5.26.2)
plasma5-systemmonitor (5.26.1 -> 5.26.2)
plasma5-thunderbolt (5.26.1 -> 5.26.2)
plasma5-workspace (5.26.1 -> 5.26.2)
plymouth (22.02.122+77.c09c651 -> 22.02.122+94.4bd41a3)
polkit-default-privs (1550+20221018.7616c25 -> 1550+20221102.9f111fa)
polkit-kde-agent-5 (5.26.1 -> 5.26.2)
powerdevil5 (5.26.1 -> 5.26.2)
protobuf (21.6 -> 21.9)
python-Deprecated
python-PyJWT (2.5.0 -> 2.6.0)
python-SQLAlchemy (1.4.41 -> 1.4.42)
python-Twisted (22.4.0 -> 22.10.0)
python-charset-normalizer (2.1.1 -> 3.0.0)
python-cryptography (38.0.1 -> 38.0.3)
python-lark (1.1.2 -> 1.1.3)
python-numpy (1.21.6 -> 1.23.4)
python-oauthlib (3.2.1 -> 3.2.2)
python-psutil (5.9.2 -> 5.9.3)
python-pyOpenSSL (22.0.0 -> 22.1.0)
python-pymongo (4.2.0 -> 4.3.2)
python-pytz (2022.4 -> 2022.5)
python-requests
python-typing_extensions (4.3.0 -> 4.4.0)
python-urllib3
python-zope.interface (5.4.0 -> 5.5.0)
python310 (3.10.7 -> 3.10.8)
python310-core (3.10.7 -> 3.10.8)
qca-qt5 (2.3.4 -> 2.3.5)
qemu
raspberrypi-firmware (2022.10.18 -> 2022.10.26)
raspberrypi-firmware-config (2022.10.18 -> 2022.10.26)
raspberrypi-firmware-dt (2022.10.03 -> 2022.10.26)
redis
rgb (1.0.6 -> 1.1.0)
rubygem-nokogiri (1.13.8 -> 1.13.9)
rust-keylime (0.1.0+git.1664480840.0ea0492 -> 0.1.0+git.1666019359.f5de47b)
samba (4.17.1+git.270.17afe7cb6b -> 4.17.2+git.273.a55a83528b9)
sddm
sessreg (1.1.2 -> 1.1.3)
sg3_utils (1.47+5.d13bc56 -> 1.48~20221101.6d3bd26)
shadow
signon-kwallet-extension (22.08.2 -> 22.08.3)
sqlite3 (3.39.3 -> 3.39.4)
strace (5.19 -> 6.0)
sudo (1.9.11p3 -> 1.9.12)
suse-module-tools (16.0.23 -> 16.0.26)
syslogd (1.4.1 -> 1.5.1)
systemd (251.6 -> 251.7)
systemsettings5 (5.26.1 -> 5.26.2)
tar
tigervnc
timezone (2022e -> 2022f)
tracker (3.4.0 -> 3.4.1)
tracker-miners (3.4.0 -> 3.4.1)
transactional-update (4.0.1 -> 4.1.0)
usbutils (014 -> 015)
vim (9.0.0709 -> 9.0.0814)
vte (0.70.0 -> 0.70.1)
vulkan-loader (1.3.224.0 -> 1.3.231.0)
vulkan-tools (1.3.224.0 -> 1.3.231)
webkit2gtk3 (2.38.0 -> 2.38.1)
webkit2gtk4 (2.38.0 -> 2.38.1)
xcb-util-cursor (0.1.3 -> 0.1.4)
xdg-desktop-portal-kde (5.26.1 -> 5.26.2)
xdg-user-dirs (0.17 -> 0.18)
xmlsec1 (1.2.34 -> 1.2.36)
xorg-x11-server
xsetroot (1.1.2 -> 1.1.3)
xterm (373 -> 375)
xwayland (22.1.3 -> 22.1.5)
yast2 (4.5.17 -> 4.5.18)
yast2-add-on (4.5.1 -> 4.5.2)
yast2-packager (4.5.5 -> 4.5.6)
yast2-ruby-bindings (4.5.3 -> 4.5.4)
zchunk (1.2.2 -> 1.2.3)
=== Details ===
==== ImageMagick ====
Version update (7.1.0.50 -> 7.1.0.51)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- update to 7.1.0.51:
* obtain scene from image structure
* prevent undefined shift
* Added private api to go through a linked list without using semaphores.
* Fixed build.
* latest automake configuration
* fix undefined-shift in ReadTGAImage @ https://oss-fuzz.com/testcase?key=5129864151957504
* prevent divide by zero exception
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- build against llvm15/clang15 on sle15-sp5/Leap 15.5
- u_nouveau-corrupted-colors-boo1203949.patch
* fixes corrupted colors in videos on nouveau with Kepler in
Firefox (boo#1203949, issue#7416)
- moved drirc.d config snippets from Mesa to Mea-dri package;
radv driver specific conf was missing completely (boo#1204866)
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- build against llvm15/clang15 on sle15-sp5/Leap 15.5
- u_nouveau-corrupted-colors-boo1203949.patch
* fixes corrupted colors in videos on nouveau with Kepler in
Firefox (boo#1203949, issue#7416)
- moved drirc.d config snippets from Mesa to Mea-dri package;
radv driver specific conf was missing completely (boo#1204866)
==== MozillaFirefox ====
Version update (106.0.1 -> 106.0.5)
- Mozilla Firefox 106.0.5:
* Addresses a crash experienced by users with Intel Gemini Lake
CPUs (bmo#1702019)
- Mozilla Firefox 106.0.4:
* Fixed an issue with DRM Video playback (bmo#1797292)
* Fixed broken layout of datetime input when switching
types (bmo#1797139)
- Mozilla Firefox 106.0.3
* Fixes for other platforms
- Mozilla Firefox 106.0.2
* Fix missing content on some PDF forms (bmo#1794351)
* Fix column width for the Notification sub-panel in Settings
(bmo#1793558)
* Fix a browser freeze with accessibility enabled on some sites
such as the Proxmox Web UI (bmo#1793748)
* Fix page reloading not working with Firefox View and not
refreshing synced data (bmo#1792680, bmo#1794474)
==== alsa ====
Version update (1.2.7.2 -> 1.2.8)
Subpackages: libasound2 libatopology2
- Update to version 1.2.8:
add FreeBSD/NetBD/OpenBSD build support, fixes in control namehint,
various PCM plugins and UCM. For details, see:
https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
- Add keyring
==== alsa-ucm-conf ====
Version update (1.2.7.2 -> 1.2.8)
- Update to version 1.2.8:
lots of new profiles for USB-audio, SOF and others:
https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
- Add keyring
==== alsa-utils ====
Version update (1.2.7 -> 1.2.8)
- Update to alsa-utils 1.2.8:
automake update, minor alsactl, amixer and aplay fixes.
https://www.alsa-project.org/wiki/Changes_v1.2.7.2_v1.2.8
- Add keyring
==== at-spi2-core ====
Subpackages: libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0
- Ensure xprop is required when xwayland is installed.
==== augeas ====
Version update (1.12.0 -> 1.13.0)
Subpackages: augeas-lenses libaugeas0 libfa1
- Update to 1.13.0
* Fixes bsc#1204554
* Added augeas-1.13.0-replace_security_context_t-patch to fix a
syntax error.
* Rebased gcc9-disable-broken-test.patch
* Dropped the following patches since they are now upstreamed:
- augeas-new_options_for_chrony.patch
- augeas-allow_printable_ASCII.patch
- remove-unportable-tests.patch
* General changes/additions
- Add Dockerfile (Nicolas Gif) (Issue #650)
- augtool: Improved readline integration to handle quoting
issues (Pino Toscano)
- typechecker: Allow including '/' in keys and labels. Thanks
to felixdoerre for pointing out that this restriction was
unnecessary. See issue #668 for the discussion.
- Add function modified() to select nodes which are marked as
dirty (George Hansper) (Issue #691)
- Add CLI command 'preview' and API 'aug_preview' to preview
file contents (George Hansper) (#690)
- Add "else" operator to augeas path-filter expressions
(priority selector) (George Hansper) (#692)
- Add new axis 'seq' to allow /path/seq::*[expr] to match and
create numeric nodes, as idempotent alternative to
/path/*[expr] (George Hansper) (#706)
* Lens changes/additions
- Authinfo2: new lens to parse Authinfo2 format (Nicolas Gif)
(Issue #649)
- Chrony: add new options (Miroslav Lichvar) (Issue #698)
- Cmdline: New lens to parse /proc/cmdline (Thomas WeiÃschuh)
- Crypttab: support UUID in device and / in opt (Raphaël
Pinson) (#713)
- Fail2ban: new lens to parse Fail2ban format (Nicolas Gif)
(Issue #651)
- Grub: support '+' in kernel command line option names (Pino
Toscano) (Issue #647)
- Krb5: handle [plugins] subsection (Pino Toscano) (Issue #663)
- Limits: support colons in the domain pattern of the limits
lens (Xavier Mol) (Issue #645)
- Logrotate: add hourly schedule (Jason A. Smith) (Issue #655)
- Mke2fs: parse more common entries between [defaults] and the
tags in [fs_types], fix the type of few entries, handle the
[options] stanza (Pino Toscano) (Issue #642)
- support quoted values (Pino Toscano) (Issue #661)
- NetworkManager: allow # in values (mfilka) (#723)
- Opendkim: update to match current conffile format (Issue #644)
- Postfix_Master: Allow unix-dgram as type (Issue #635)
- Postfix_transport: Allow underscore (Anton Baranov) (Issue #678)
- Postgresql: Allow hyphen '-' in values that don't require quotes
(Marcin BarczyÅski) (Issues #700 #701)
- Properties: Allow "/" in property names (felixdoerre) (Issue #680)
- Redis: add incl path /etc/redis.conf (Raphaël Pinson) (#726)
- support "replicaof" (Raphaël Pinson) (#727)
- fix support for "sentinel" (Raphaël Pinson) (#728)
- Resolv: Support new options (Trevor Vaughan) (Issues #707 #708)
- Rsyslog: support multiple actions in filters and selectors (Issue
[#653])
- Shellvars: exclude more tcsh profile scripts (Pino Toscano) (Issue
[#627])
- Simplevars: add ocsinventory-agent.cfg (Pat Riehecky) (Issue #637)
- Sudoers: support new @include/@includedir directives (Pino
Toscano) (Issue #693)
- Sudoers: Allow AD groups (luchihoratiu) (Issue #696)
- Support negative integers (Ando David Roots) (#724)
- Ssh: add Match keyword support (granquet) (Issue #695)
- Sshd: support quotes in Match conditions (Issue #739)
- Systemd: fix parsing of envvars with spaces (Pino Toscano) (#659)
- Add incl paths according to 'systemd.network(5)' (chruetli) (#683)
- Tinc: new lens for Tinc VPN configuration files (Thomas WeiÃschuh)
(#718)
- Toml: support arrays (norec) in inline tables (Raphaël Pinson)
(#703)
- Tmpfiles: improvements to the types specification (Pino Toscano)
(Issue #694)
==== autoyast2 ====
Version update (4.5.6 -> 4.5.8)
- Log the profile/rules/classes file SHA1 sum so we can later
verify that a particular file was or was not used by YaST
(related to bsc#1204175)
- 4.5.8
- Allow empty values in ask/default, ask/selection/label and
ask/selection/value elements (bsc#1204448).
- 4.5.7
==== baloo5-widgets ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== bash ====
Subpackages: bash-doc bash-sh
- Set DEFAULT_LOADABLE_BUILTINS_PATH to get BASH_LOADABLES_PATH
correct (boo#1204567)
==== bluedevil5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: bluedevil5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== bluez ====
Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3
- For pushing bluez 5.65 to 15-SP5 (bluez-5.62), sync more change log:
(jsc#PED-1407)
- The hcidump-Fix-set_ext_ctrl-global-buffer-overflow.patch
be merged to bluez-5.51 in 2018. (bsc#1013732)(CVE-2016-9801)
- The following btmon patches are merged to bluez-5.51 and later:
0001-btmon-fix-segfault-caused-by-buffer-over-read.patch
0002-btmon-fix-segfault-caused-by-buffer-over-read.patch
0003-btmon-fix-segfault-caused-by-buffer-over-read.patch
0004-btmon-Fix-crash-caused-by-integer-underflow.patch
0005-btmon-fix-stack-buffer-overflow.patch
0006-btmon-fix-multiple-segfaults.patch
0007-btmon-fix-segfault-caused-by-integer-underflow.patch
0008-btmon-fix-segfault-caused-by-integer-undeflow.patch
0009-btmon-fix-segfault-caused-by-buffer-over-read.patch
0010-btmon-fix-segfault-caused-by-buffer-overflow.patch
0011-btmon-fix-segfault-caused-by-integer-underflow.patch
0012-btmon-fix-segfault-caused-by-buffer-over-read.patch
(bsc#1015173)(CVE-2016-9918)(bsc#1013893)(CVE-2016-9802)
- The shared-gatt-server-Fix-not-properly-checking-for-sec.patch
be merged to bluez-5.57 in 2021.
(bsc#1186463 CVE-2021-0129 CVE-2020-26558)
- The gatt-Fix-potential-buffer-out-of-bound.patch be merged to
bluez-5.56 in 2021. (bsc#1187165 CVE-2021-3588)
- The shared-gatt-db-Introduce-gatt_db_attribute_set_fixed.patch
be merged to bluez-5.56 in 2021. (bsc#1187165 CVE-2021-3588)
- The gatt-Make-use-of-gatt_db_attribute_set_fixed_length.patch
be merged to bluez-5.56 in 2021. (bsc#1187165 CVE-2021-3588)
- Add JIRA-SLE-18497 number to 5.60, 5.61 and 5.62 update log
to sync with bluez.changes in SLE15-SP5.
- Install modprobe.conf files to %_modprobedir
This change already in bluez.sepc in openSUSE:Factory/bluez.
Sync the change log here. (bsc#1196275, jsc#SLE-20639)
==== breeze ====
Version update (5.26.1 -> 5.26.2)
Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== breeze-gtk ====
Version update (5.26.1 -> 5.26.2)
Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== btrfsprogs ====
Version update (5.19.1 -> 6.0)
Subpackages: btrfsprogs-udev-rules libbtrfs0
- update to 6.0
* fi usage: in tabular output, print total size and slack size
* mkfs:
* option -O now accepts values from -R to unify the interface (-R will
continue to work)
* zone reset and discard is done in parallel on all devices
* removed option --leafsize, deprecated long time ago
* corrupt-block: recalculate checksum when changing generation
* fixes:
* convert: fix reserved range detection and overlaps
* mkfs: fix creating files with reserved inode numbers with --rootdir
* receive: escape filenames in command attributes
* fix extent buffer leaks after transaction abort
* experimental:
* mkfs: support for block-group-tree (kernel 6.1)
* fsverity in send (protocol v3, WIP)
* btrfstune -b converts to block-group-tree
* other:
* cleanups, refactoring
* new and updated tests
* update documentation
==== conmon ====
- Add patch to fix build with make >= 4.4:
* 0001-Fix-tools-Makefile-with-GNU-make-4.4.patch
==== coreutils ====
Subpackages: coreutils-doc
- coreutils-tests-workaround-make-fdleak.patch: Add patch to work around
a GNU make bug which leaks file descriptors when using the jobserver;
this makes some tests fail.
- coreutils.spec: Reference the patch.
==== curl ====
Version update (7.85.0 -> 7.86.0)
Subpackages: libcurl4
- Update to 7.86.0:
* Security fixes:
- POST following PUT confusion [bsc#1204383, CVE-2022-32221]
- .netrc parser out-of-bounds access [bsc#1204384, CVE-2022-35260]
- HTTP proxy double-free [bsc#1204385, CVE-2022-42915]
- HSTS bypass via IDN [bsc#1204386, CVE-2022-42916]
* Changes:
- NPN: remove support for and use of
- Websockets: initial support
* Bugfixes:
- altsvc: reject bad port numbers
- autotools: reduce brute-force when detecting recv/send arg list
- aws_sigv4: fix header computation
- cli tool: do not use disabled protocols
- connect: change verbose IPv6 address:port to [address]:port
- connect: fix builds without AF_INET6
- connect: fix Curl_updateconninfo for TRNSPRT_UNIX
- connect: fix the wrong error message on connect failures
- content_encoding: use writer struct subclasses for different encodings
- cookie: reject cookie names or content with TAB characters
- curl/add_file_name_to_url: use the libcurl URL parser
- curl/get_url_file_name: use libcurl URL parser
- curl: warn for --ssl use, considered insecure
- docs/libcurl/symbols-in-versions: add several missing symbols
- ftp: ignore a 550 response to MDTM
- functypes: provide the recv and send arg and return types
- getparameter: return PARAM_MANUAL_REQUESTED for -M even when disabled
- header: define public API functions as extern c
- headers: reset the requests counter at transfer start
- hostip: guard PF_INET6 use
- hostip: lazily wait to figure out if IPv6 works until needed
- http, vauth: always provide Curl_allow_auth_to_host() functionality
- http2: make nghttp2 less picky about field whitespace
- http: try parsing Retry-After: as a number first
- http_proxy: restore the protocol pointer on error
- lib: add missing limits.h includes
- lib: prepare the incoming of additional protocols
- lib: sanitize conditional exclusion around MIME
- libssh: if sftp_init fails, don't get the sftp error code
- mprintf: reject two kinds of precision for the same argument
- mqtt: return error for too long topic
- netrc: compare user name case sensitively
- netrc: replace fgets with Curl_get_line
- netrc: use the URL-decoded user
- ngtcp2: fix build errors due to changes in ngtcp2 library
- noproxy: support proxies specified using cidr notation
- openssl: make certinfo available for QUIC
- resolve: make forced IPv4 resolve only use A queries
- schannel: ban server ALPN change during recv renegotiation
- schannel: don't reset recv/send function pointers on renegotiation
- schannel: when importing PFX, disable key persistence
- setopt: use the handler table for protocol name to number conversions
- setopt: when POST is set, reset the 'upload' field
- single_transfer: use the libcurl URL parser when appending query parts
- smb: replace CURL_WIN32 with WIN32
- tool: avoid generating ambiguous escaped characters in --libcurl
- tool_main: exit at once if out of file descriptors
- tool_operate: more transfer cleanup after parallel transfer fail
- tool_operate: prevent over-queuing in parallel mode
- tool_paramhelp: asserts verify maximum sizes for string loading
- tool_xattr: save the original URL, not the final redirected one
- url: a zero-length userinfo part in the URL is still a (blank) user
- url: allow non-HTTPS HSTS-matching for debug builds
- url: rename function due to name-clash in Watt-32
- url: use IDN decoded names for HSTS checks
- urlapi: detect scheme better when not guessing
- urlapi: fix parsing URL without slash with CURLU_URLENCODE
- urlapi: reject more bad characters from the host name field
* Remove patch upstream:
- connect-fix-Curl_updateconninfo-for-TRNSPRT_UNIX.patch
==== dbus-1 ====
Version update (1.14.0 -> 1.14.4)
Subpackages: dbus-1-common dbus-1-daemon dbus-1-tools libdbus-1-3
- update to 1.14.4 (bsc#1204111, CVE-2022-42010,
bsc#1204112, CVE-2022-42011,
bsc#1204113, CVE-2022-42012):
This is a security update for the dbus 1.14.x stable branch, fixing
denial-of-service issues (CVE-2022-42010, -42011, -42012) and applying
security hardening (dbus#416).
Behaviour changes:
* On Linux, dbus-daemon and other uses of DBusServer now create a
path-based Unix socket, unix:path=..., when asked to listen on a
unix:tmpdir=... address. This makes unix:tmpdir=... equivalent to
unix:dir=... on all platforms.
Previous versions would have created an abstract socket, unix:abstract=...,
in this situation.
This change primarily affects the well-known session bus when run via
dbus-launch(1) or dbus-run-session(1). The user bus, enabled by configuring
dbus with --enable-user-session and running it on a systemd system,
already used path-based Unix sockets and is unaffected by this change.
This behaviour change prevents a sandbox escape via the session bus socket
in sandboxing frameworks that can share the network namespace with the host
system, such as Flatpak.
This change might cause a regression in situations where the abstract socket
is intentionally shared between the host system and a chroot or container,
such as some use-cases of schroot(1). That regression can be resolved by
using a bind-mount to share either the D-Bus socket, or the whole /tmp
directory, with the chroot or container.
(dbus#416, Simon McVittie)
* Denial of service fixes:
- Evgeny Vereshchagin discovered several ways in which an authenticated
local attacker could cause a crash (denial of service) in
dbus-daemon --system or a custom DBusServer. In uncommon configurations
these could potentially be carried out by an authenticated remote attacker.
- An invalid array of fixed-length elements where the length of the array
is not a multiple of the length of the element would cause an assertion
failure in debug builds or an out-of-bounds read in production builds.
This was a regression in version 1.3.0.
(dbus#413, CVE-2022-42011; Simon McVittie)
- A syntactically invalid type signature with incorrectly nested parentheses
and curly brackets would cause an assertion failure in debug builds.
Similar messages could potentially result in a crash or incorrect message
processing in a production build, although we are not aware of a practical
example. (dbus#418, CVE-2022-42010; Simon McVittie)
- A message in non-native endianness with out-of-band Unix file descriptors
would cause a use-after-free and possible memory corruption in production
builds, or an assertion failure in debug builds. This was a regression in
version 1.3.0. (dbus#417, CVE-2022-42012; Simon McVittie)
- Preserve errno on failure to open /proc/self/oom_score_adj
(dbus!285, Gentoo#834725; Mike Gilbert)
- On Linux, don't log warnings if oom_score_adj is read-only but does not
need to be changed (dbus!291, Simon McVittie)
- Slightly improve error-handling for inotify
(dbus!235, Simon McVittie)
- Don't crash if dbus-daemon is asked to watch more than 128 directories
for changes (dbus!302, Jan Tojnar)
==== dbus-1-glib ====
- Try to guard against incomplete update stacks (boo#1202241):
+ Add split-provides to libdbus-1-glib and bash-completion
sub-package.
+ Add explicit conflict to bash-completion subpackage against
dbus-1-glib < 0.112 (when the package split happened)
+ Ensure dbus-1-glib-tool gets the correct library version
installed.
==== dbus-1-x11 ====
Version update (1.14.0 -> 1.14.4)
- update to 1.14.4 (bsc#1204111, CVE-2022-42010,
bsc#1204112, CVE-2022-42011,
bsc#1204113, CVE-2022-42012):
This is a security update for the dbus 1.14.x stable branch, fixing
denial-of-service issues (CVE-2022-42010, -42011, -42012) and applying
security hardening (dbus#416).
Behaviour changes:
* On Linux, dbus-daemon and other uses of DBusServer now create a
path-based Unix socket, unix:path=..., when asked to listen on a
unix:tmpdir=... address. This makes unix:tmpdir=... equivalent to
unix:dir=... on all platforms.
Previous versions would have created an abstract socket, unix:abstract=...,
in this situation.
This change primarily affects the well-known session bus when run via
dbus-launch(1) or dbus-run-session(1). The user bus, enabled by configuring
dbus with --enable-user-session and running it on a systemd system,
already used path-based Unix sockets and is unaffected by this change.
This behaviour change prevents a sandbox escape via the session bus socket
in sandboxing frameworks that can share the network namespace with the host
system, such as Flatpak.
This change might cause a regression in situations where the abstract socket
is intentionally shared between the host system and a chroot or container,
such as some use-cases of schroot(1). That regression can be resolved by
using a bind-mount to share either the D-Bus socket, or the whole /tmp
directory, with the chroot or container.
(dbus#416, Simon McVittie)
* Denial of service fixes:
- Evgeny Vereshchagin discovered several ways in which an authenticated
local attacker could cause a crash (denial of service) in
dbus-daemon --system or a custom DBusServer. In uncommon configurations
these could potentially be carried out by an authenticated remote attacker.
- An invalid array of fixed-length elements where the length of the array
is not a multiple of the length of the element would cause an assertion
failure in debug builds or an out-of-bounds read in production builds.
This was a regression in version 1.3.0.
(dbus#413, CVE-2022-42011; Simon McVittie)
- A syntactically invalid type signature with incorrectly nested parentheses
and curly brackets would cause an assertion failure in debug builds.
Similar messages could potentially result in a crash or incorrect message
processing in a production build, although we are not aware of a practical
example. (dbus#418, CVE-2022-42010; Simon McVittie)
- A message in non-native endianness with out-of-band Unix file descriptors
would cause a use-after-free and possible memory corruption in production
builds, or an assertion failure in debug builds. This was a regression in
version 1.3.0. (dbus#417, CVE-2022-42012; Simon McVittie)
- Preserve errno on failure to open /proc/self/oom_score_adj
(dbus!285, Gentoo#834725; Mike Gilbert)
- On Linux, don't log warnings if oom_score_adj is read-only but does not
need to be changed (dbus!291, Simon McVittie)
- Slightly improve error-handling for inotify
(dbus!235, Simon McVittie)
- Don't crash if dbus-daemon is asked to watch more than 128 directories
for changes (dbus!302, Jan Tojnar)
==== discover ====
Version update (5.26.1 -> 5.26.2)
Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* flatpak: make sure we look up the correct resource (kde#460365)
* flatpak: Only show the beta information for apps (kde#459131)
* flatpak: Properly render if the beta package is too old
* snap: Port away from Kirigami.ItemViewHeader (kde#460391)
==== dolphin ====
Version update (22.08.2 -> 22.08.3)
Subpackages: dolphin-part libdolphinvcs5
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== drkonqi5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: drkonqi5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* check telemetrymode
* Use qdbus to query for the hostname
* allow using debuginfod for symbol resolution with gdb12 (kde#454063)
==== evince ====
Version update (43.0 -> 43.1)
Subpackages: evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 43.1:
+ build: Disable nautilus extension by default.
+ comics:
- Avoid critical when pixbuf can't be rendered.
- Better debug on archive error.
- Fix crash that can happen if archive is damaged.
- Still try to open broken comics.
+ shell: Fix use-after-free on a modified document.
+ Fix incorrect link in README.md.
+ Use https URL for libarchive.org in README.md.
+ Updated translations.
==== expat ====
Version update (2.4.9 -> 2.5.0)
Subpackages: libexpat1
- Update to 2.5.0: (bsc#1204708)
* Security fixes:
- CVE-2022-43680 -- Fix heap use-after-free after overeager
destruction of a shared DTD in function
XML_ExternalEntityParserCreate in out-of-memory situations.
Expected impact is denial of service or potentially arbitrary
code execution.
* Bug fixes:
- Fix curruption from undefined entities
- Fix case when parsing was suspended while processing nested
entities
- Stop leaking opening tag bindings after a closing tag mismatch
error where a parser is reset through XML_ParserReset and then
reused to parse
- CMake: Fix generation of pkg-config file
- MinGW|CMake: Fix static library name
* Other changes:
- Protect header expat_config.h from multiple inclusion
- examples: Make use of XML_GetBuffer and be more consistent
across examples
- Address compiler warnings
- Version info bumped from 9:9:8 to 9:10:8; see
https://verbump.de/ for what these numbers do
==== ffmpegthumbs ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== firewalld ====
Version update (1.2.0 -> 1.2.1)
Subpackages: firewalld-bash-completion python3-firewall
- Update to 1.2.1:
* fix(modules): don't error if /proc/modules is missing (a1f091d)
* fix(readme): format optional <ver> (03e61f2)
* docs: add protocols to rich and zones (191cea4)
* docs(policy): add priority attribute to rule (616ed7c)
* fix(runtimeToPermanent): errors for interfaces not in zone (6b5a70b)
* fix(failsafe): log exception on fatal failure (af1b8f0)
* fix(ipset): defer native ipset creation if nftables (ae0ded4)
* fix(nftables): drop invalid packets before zone dispatch (dc972ae)
* fix(iptables): drop invalid packets before zone dispatch (83a4608)
* fix(policies): Splitting interfaces with wildcards (3806e79)
* fix(ipset): exception on overlap checking empty set (bfe827f)
* fix(bash): fix ipset commands autocompletion (742669b)
* docs(README): fix typo (e40b100)
* fix(treewide): misc typos (d121f0c)
* fix: firewalld.conf: trim trailing whitespace (21809ed)
==== fwupd ====
Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0
- For pushing fwupd-1.8.6 to 15-SP5 (fwupd-1.7.3), sync change log:
(jsc#PED-1232)
- fwupd-bsc1193921-nvme-ignore-non-PCI-NVMe-devices.patch
be merged to fwupd-1.7.3
==== gcr3 ====
Subpackages: gcr3-data gcr3-prompter gcr3-ssh-agent gcr3-ssh-askpass libgck-1-0 libgcr-3-1
- Have libgcr-3-1 require gcr3-ssh-askpass when gnome-keyring is
present: gnome-keyring interacts deeper with this library, which
justifies a hard dep in this case (boo#1204071).
==== gdb ====
- Patches added (swo#29277):
* gdb-fix-assert-in-handle_jit_event.patch
- Maintenance script qa.sh:
* Add PR29706 and PR28617 kfails.
==== gdk-pixbuf ====
Version update (2.42.9 -> 2.42.10)
Subpackages: gdk-pixbuf-query-loaders gdk-pixbuf-thumbnailer libgdk_pixbuf-2_0-0 typelib-1_0-GdkPixbuf-2_0
- Update to version 2.42.10:
+ Search for rst2man.py.
+ Update the memory size limit for JPEG images.
+ Updated translations.
- Drop patch fixed upstream (with different limit):
+ 0001-jpeg-Increase-memory-limit-for-loading-image-data.patch
==== gdm ====
Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Update gdm-sysconfig-settings.patch: Fix gdm doesn't start
if /etc/sysconfig/displaymanager is missing (bsc#1204578).
==== gettext-runtime ====
Version update (0.21 -> 0.21.1)
Subpackages: libtextstyle0
- update keyring for the last version update
- Update to Version 0.21.1
* Runtime behaviour:
- On AIX, locale names with a script or with an uppercase language are now
supported.
For example, sr_Cyrl_RS.UTF-8 is treated like sr_RS.UTF-8@cyrillic, and
EN_US.UTF-8 is treated like en_US.UTF-8.
* The base Unicode standard is now updated to 14.0.0.
* Portability:
- Building on macOS 11/arm64 is now supported.
- Building on Linux/powerpc64le with glibc ⥠2.35 is now supported.
==== gjs ====
Version update (1.74.0 -> 1.74.1)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.74.1:
+ Closed bugs and merge requests:
- Problem calling promisified D-Bus wrappers with callback.
- docs:
. Fix link in issue template.
. Document Gio.FileEnumerator iteration.
. Fix Markdown formatting in README.MSVC.md.
==== glib2 ====
Version update (2.74.0 -> 2.74.1)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Add a1151bc1.patch: gio/gdesktopappinfo: Free the wrapped argv
array on launch failure.
- Add ca905744.patch: Revert "Handling collision between standard
i/o file descriptors and newly created ones". The user-visible
problem this solves is gnome-keyring-daemon eating 100% CPU.
- Update to version 2.74.1:
+ Update Unicode data to version 15
+ Fix various build failures in different situations
+ Fix over-eager deprecated property warnings for construct
properties
+ Fix a crash calling `g_param_value_is_valid()` on a
`GParamSpecParam`
+ Fix floating `GVariant` leaks with GObject properties
+ Add inline optimised version of `g_str_equal()`
+ Fix `GVariant` type depths checks on text format variants
+ Fix regression with int64 and double hashing functions on
big-endian architectures
+ Build the API documentation only when building GLib as a shared
library
+ Ignore weird `/etc/localtime` configurations generated by
toolbx
+ Avoid `EINTR` races when closing FDs in `g_spawn_*()`
+ Bugs fixed: glgo#GNOME/GLib#16, glgo#GNOME/GLib#333,
glgo#GNOME/GLib#2735, glgo#GNOME/GLib#2740,
glgo#GNOME/GLib#2742, glgo#GNOME/GLib#2748,
glgo#GNOME/GLib#2758, glgo#GNOME/GLib#2759,
glgo#GNOME/GLib#2766, glgo#GNOME/GLib#2767,
glgo#GNOME/GLib#2770, glgo#GNOME/GLib#2774,
glgo#GNOME/GLib#2775, glgo#GNOME/GLib#2782,
glgo#GNOME/GLib#2787, glgo#GNOME/GLib#2788,
glgo#GNOME/GLib!2852, glgo#GNOME/GLib!2857,
glgo#GNOME/GLib!2864, glgo#GNOME/GLib!2866,
glgo#GNOME/GLib!2880, glgo#GNOME/GLib!2885,
glgo#GNOME/GLib!2892, glgo#GNOME/GLib!2896,
glgo#GNOME/GLib!2899, glgo#GNOME/GLib!2901,
glgo#GNOME/GLib!2903, glgo#GNOME/GLib!2904,
glgo#GNOME/GLib!2905, glgo#GNOME/GLib!2907,
glgo#GNOME/GLib!2911, glgo#GNOME/GLib!2913,
glgo#GNOME/GLib!2915, glgo#GNOME/GLib!2916,
glgo#GNOME/GLib!2920, glgo#GNOME/GLib!2922,
glgo#GNOME/GLib!2924, glgo#GNOME/GLib!2928,
glgo#GNOME/GLib!2931, glgo#GNOME/GLib!2933,
glgo#GNOME/GLib!2938, glgo#GNOME/GLib!2939,
glgo#GNOME/GLib!2946, glgo#GNOME/GLib!2948,
glgo#GNOME/GLib!2949, glgo#GNOME/GLib!2958,
glgo#GNOME/GLib!2960, glgo#GNOME/GLib!2973,
glgo#GNOME/GLib!2975, glgo#GNOME/GLib!2982,
glgo#GNOME/GLib!2983, glgo#GNOME/GLib!2988,
glgo#GNOME/GLib!2989, glgo#GNOME/GLib!2995,
glgo#GNOME/GLib!2996, glgo#GNOME/GLib!2998,
glgo#GNOME/GLib!3010.
+ Updated translations.
- Rebase patches with quilt.
- Drop f0dd96c28751f15d0703b384bfc7c314af01caa8.diff: Fixed
upstream.
==== glibc ====
Subpackages: glibc-extra glibc-locale glibc-locale-base nscd
- dl-debug-bindings.patch: elf: Reinstate on DL_DEBUG_BINDINGS
_dl_lookup_symbol_x (bsc#1204710)
==== gnome-keyring ====
Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring
- Use %_pam_moduledir instead of %{_lib}/security (boo#1191034).
==== gnome-shell ====
Subpackages: gnome-extensions gnome-shell-calendar
- Add gnome-shell-disable-offline-update-dialog.patch :
Disable offline update suggestion before shutdown/reboot
in SLE and openSUSE Leap (bsc#944832).
==== gnome-software ====
- Add gnome-software-disable-offline-update.patch: Disable offline
update in SLE and openSUSE Leap(bsc#944832).
==== gnome-terminal ====
Version update (3.46.2 -> 3.46.3)
Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal
- Update to version 3.46.3:
* client: More env vars to filter.
* desktop: Use Preferences icon.
* icons: Add separate icons for Preferences.
* l10n: Remove mjw from LINGUAS.
* metainfo: Remove XML namespaces.
* prefs:
- Use different wm class.
- Use new icon.
* profile: Use correct schema source for the profiles list
schema.
* Updated translations.
==== gpgme ====
Version update (1.16.0 -> 1.18.0)
Subpackages: libgpgme11 libgpgmepp6 python310-gpg
- gpgme 1.18.0
* New keylist mode to force refresh via external methods
* The keylist operations now create an import result to report the
result of the locate keylist modes
* core: Return BAD_PASSPHRASE error code on symmetric decryption
failure
* cpp, qt: Do not export internal symbols anymore
* cpp, qt: Support revocation of own OpenPGP keys
* qt: The file name of (signed and) encrypted data can now be set
* cpp, qt: Support setting the primary user ID
* python: Fix segv(NULL) when inspecting contect after exeception
- includes changes from version 1.17.1:
* qt: Fix a bug in the ABI compatibility of 1.17.0
- includes changes from 1.17.0:
* New context flag "key-origin"
* New context flag "import-filter"
* New export mode to export secret subkeys
* Detect errors during the export of secret keys
* New function gpgme_op_receive_keys to import keys from a keyserver
without first running a key listing
* Detect bad passphrase error in certificate import
* Allow setting --key-origin when importing keys
* Support components "keyboxd", "gpg-agent", "scdaemon", "dirmngr",
"pinentry", and "socketdir" in gpgme_get_dirinfo
* Under Unix use poll(2) instead of select(2), when available.
* Fix results returned by gpgme_data_* functions
* Support closefrom also for glibc
(drop upstream gpgme-use-glibc-closefrom.patch
* cpp,qt: Add support for export of secret keys and secret subkeys.
* cpp,qt: Support for adding existing subkeys to other keys
* qt: Extend ChangeExpiryJob to change expiration of primary key
and of subkeys at the same time
* qt: Support WKD lookup without implicit import
* qt: Allow specifying an import filter when importing keys
* qt: Allow retrieving the default value of a config entry
- drop patches included upstream
* gpgme-1.16.0-Use-after-free-in-t-edit-sign-test.patch
* gpgme-1.16.0-t-various-testSignKeyWithExpiration-32-bit.patch
- add patches to fix tests:
* gpgme-1.18.0-T6137-qt_test.patch
==== graphviz ====
Subpackages: libcdt5 libcgraph6 libgvc6 libpathplan4
- add swig-4.1.0.patch to work around graphviz's incompatibility
with swig-4.1.0.
==== gstreamer ====
Version update (1.20.3 -> 1.20.4)
Subpackages: libgstreamer-1_0-0 typelib-1_0-Gst-1_0
- Update to version 1.20.4:
+ Highlighted bugfixes in 1.20.4:
- avaudiodec: fix playback issue with WMA files, would throw an
error at EOS with FFmpeg 5.x
- Fix deadlock when loading gst-editing-services plugin
- Fix input buffering capacity in live mode for aggregator,
video/audio aggregator subclasses, muxers
- glimagesink: fix crash on Android
- subtitle handling and subtitle overlay fixes
- matroska-mux: allow width + height changes for
avc3|hev1|vp8|vp9
- rtspsrc: fix control url handling for spec compliant servers
and add fallback for incompliant servers
- WebRTC fixes
- RTP retransmission fixes
- video: fixes for formats with 4x subsampling and horizontal
co-sited chroma (Y41B, YUV9, YVU9 and IYU9)
- Fix consuming of the macOS package as a framework in XCode
- Performance improvements
- Miscellaneous bug fixes, memory leak fixes, and other
stability and reliability improvements
+ gstreamer:
- buffer: drop parent meta in deep copy/foreach_metadata
- devicemonitor: Use a sync bus handler for the provider to
avoid accumulating all messages until the provider is stopped
- element: Fix requesting of pads with string templates
- gst:
. Protect initialization state with a recursive mutex
. Add missing define guard for build without gstreamer debug
logging support
- gst_init: Initialize static plugins just before dynamic plugins
- info: Parse "NONE" as a valid level name
- meta: Set the parent refcount of the GstStructure correctly
- pluginloader: Don't hang on short reads/writes
- tracers: leaks:
. Fix potentially invalid memory access when trying to detect
object type
. Fix object-refings.class flags
- uri: When setting the same string again do nothing
- value: Don't loop forever when serializing invalid flag
+ Base Libraries:
- aggregator:
. Fix input buffering in live mode (was too low before in
many cases)
. Fix reversed active/flushing arguments in debug log output
. Reset EOS flag after receiving a stream-start event
+ Core Elements: queue2:
- Hold the lock when modifying sinkresult
- Fix deadlock when deactivate is called in pull mode
==== gstreamer-plugins-bad ====
Version update (1.20.3 -> 1.20.4)
Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0
- Update to version 1.20.4:
+ amcvideodec: fix GstAmcSurfaceTexture segfault.
+ audiobuffersplit: Fix drift that was introduced by wrong
calculations in gapless mode.
+ audiovisualizer: fix buffer mapping to not increase refcount.
+ avfvideosrc: Fix wrong default framerate value.
+ d3d11decoder: Check 16K resolution support.
+ d3d11videosink: Fix for force-aspect-ratio setting when
rendering on shared texture.
+ GstPlay: missing cleanup for g_autoptr.
+ mxfdemux: Always calculate BlockAlign of raw audio to work
around files with broken BlockAlign field in the headers.
+ nvdec: Fix for HEVC decoding when coded resolution is larger
than display resolution.
+ openh264enc: Fix constrained-high encoding.
+ openh264: Register debug categories earlier.
+ openmpt: update from now deprecated api.
+ player/play: Fix object construction and various leaks.
+ player: Plug a memory leak.
+ proxysink: Make sure stream-start and caps events are
forwarded, and fix memory leak.
+ tests: skip unit tests for dependency-less elements that have
been disabled.
+ tsdemux: Don't trigger a program change when falling back to
ignore-pcr behaviour.
+ va:
- allocator: Fix translation of VADRMPRIMESurfaceDescriptor.
- h265dec: Fix a crash because of missing reference frame.
- vah265dec: Decoder segfaults on seek.
+ wasapi2: Fix initial mute/volume setting.
+ wasapi: Implement default audio channel mask.
+ webrtcbin:
- Fix pointer dereference before null check.
- Limit sink query to sink pads.
+ webrtc: Make sure to return NULL when validating TURN server
fails.
- Drop va-allocator-fix.patch: fixed upstream.
==== gstreamer-plugins-base ====
Version update (1.20.3 -> 1.20.4)
Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0
- Update to version 1.20.4:
+ decodebin3:
- Fix mutex leaks
- Fix memory issues with active selection list
- uridecodebin3, urisourcebin: Event handling fixes
- Fix EOS event sequence
+ parsebin:
- Avoid crash with unknown streams
- SIGSEGV during HLS stream using souphttpsrc
+ glimagesink:
- Only allow setting the GL display/context if it is a valid
value
- Segfault on android devices
+ gstgl: Fix several memory leaks in macOS
+ opusenc: improve inband-fec property documentation
+ playsink: Hold a reference to the soft volume element
+ pbutils: descriptions: fix
gst_pb_utils_get_caps_description_flags()
+ rtspurl: Use gst_uri_join_strings() in
gst_rtsp_url_get_request_uri_with_control() instead of a
hand-crafted, wrong version
+ rtspconnection: protect cancellable by a mutex
+ sdpmessage: Don't set SDP medias from caps without
media/payload/clock-rate fields
+ samiparse: fix handling of self-closing tags
+ ssaparse: include required system headers for isspace() and
sscanf() functions
+ subparse: fix crash when parsing invalid timestamps in mpl2
+ subparse fixes
+ textoverlay: Don't miscalculate text running times
+ videoaggregator: always convert when user provides
converter-config
+ video: Fix scaling in 4x horizontal co-sited chroma (Y41B,
YUV9, YVU9 and IYU9)
+ xmptag: register musicbrainz tags during init to fix critical
in jpegparse
+ xvimagesink: fix image leaks in error code path
+ tests: skip unit tests for dependency-less elements that have
been disabled
==== gstreamer-plugins-good ====
Version update (1.20.3 -> 1.20.4)
Subpackages: gstreamer-plugins-good-gtk
- Update to version 1.20.4:
+ alpha: fix stride issue when out buffer has padding on right
+ isoff: Fix earliest pts field parse issue
+ matroska-mux: allow width + height changes for
avc3|hev1|vp8|vp9
+ qt: Fix another instance of Qt/GStreamer both defining GLsync differently
+ qtdemux:
- Avoid crash on reconfiguring.
- Guard against timestamp calculation overflow in gap event loop
- Don't use invalid values from failed trex parsing
- Possible endless loop
+ rtpjitterbuffer:
- Only unschedule timers for late packets if they're not RTX
packets and only once
- Remove lost timer for out of order packets
+ rtspsrc:
- SETUP generates 400 Bad Request
- Retry SETUP with non-compliant URL resolution on "Bad
Request" and "Not found"
+ rtpst2022-1-fecenc: Drain column packets on EOS
+ rtpvp8depay: If configured to wait for keyframes after packet
loss, also do that if incomplete frames are detected
+ splitmuxsink: Don't crash on EOS without buffer
+ splitmuxsrc:
- Stop pad task before cleanup
- Don't consider unlinked pads when deactivating part
+ soup: libsoup3 makes audio streaming stop
+ v4l2: fix critical when unreferencign buffer with no data
+ v4l2bufferpool: Fix debug trace
+ v4l2object: Add support for Apple's full-range bt709 colorspace
variant 1:3:5:1
+ v4l2videocodec: workaround for failure to fully drain frames
preceding MIDSTREAM renegotiation
+ v4l2allocator: Fix invalid imported dmabuf fd
+ videoflip: Fix caps negotiation when method is selected
+ build failure trying to build jack examples
+ examples: don't try and build jack examples if jack was
disabled
+ tests: skip unit tests for dependency-less elements that have
been disabled
==== gtk4 ====
Version update (4.8.1 -> 4.8.2)
Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.8.2:
+ Input:
- Give input methods more control over resets and allow them to
preserve state.
- Align interpretation of modifiers in key events in X11 and
Wayland.
+ GtkColumnView: Fixes to focus handling.
+ GtkPopover:
- Fix problems with focus when dismissing popovers.
- Fix problems with focusing editable labels in popovers.
+ Build:
- Fix build problems with resources and non-gnu linkers.
- Fix gi-docgen detection in cross builds.
- Require meson 0.60.
+ Debugging:
- Make more debug options available in no-debug builds.
- Improve consistency of debug logging.
- Give names to all sources.
+ Accessibility: Introduce GtkAccessibleRange.
+ Wayland:
- Make monitor bounds handling more robust.
- Prevent shrinking clients due to wrong toplevel bounds.
+ Broadway: Return correct pointer coordinates from device
queries.
+ Updated translations.
==== highway ====
Version update (1.0.1 -> 1.0.2)
- Update to release 1.0.2
* Add ExclusiveNeither, FindKnownFirstTrue, Ne128
* Add 16-bit SumOfLanes/ReorderWidenMulAccumulate/ReorderDemote2To
* Faster sort for low-entropy input, improved pivot selection
* Support static dispatch to SVE2_128 and SVE_256
- Leap just needs a modern gcc, no need for clang
- Fix build on openSUSE Leap by using clang
==== irqbalance ====
Subpackages: irqbalance-ui
- run tests
- add Avoid-double-free-on-deinit_thermal.patch (bsc#1204607)
==== kaccounts-integration ====
Version update (22.08.2 -> 22.08.3)
Subpackages: libkaccounts2
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kaccounts-providers ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kactivitymanagerd ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kactivitymanagerd-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kate ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kate-plugins
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kcm_sddm ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kcm_sddm-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kde-cli-tools5 ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kde-gtk-config5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kde-gtk-config5-gtk3
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
- Require gsettings-desktop-schemas otherwise the kded module
throws a fatal error in glib
==== kde-print-manager ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdegraphics-thumbnailers ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdenetwork-filesharing ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdialog ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kernel-firmware ====
Version update (20220930 -> 20221031)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20221031 (git commit 8bb75626e9dd):
* linux-firmware: Add firmware for Cirrus CS35L41 on new ASUS Laptop
* iwlwifi: add new PNVM binaries from core74-44 release
* iwlwifi: add new FWs from core69-81 release
* qcom: update venus firmware files for VPU-2.0
* qcom: remove split SC7280 venus firmware images
* qcom: update venus firmware file for v5.4
* qcom: replace split SC7180 venus firmware images with symlink
* rtw89: 8852b: update fw to v0.27.32.1
* rtlwifi: update firmware for rtl8192eu to v35.7
* rtlwifi: Add firmware v4.0 for RTL8188FU
* i915: Add HuC 7.10.3 for DG2
* linux-firmware: Add firmware for Cirrus CS35L41 on ASUS Laptops
* linux-firmware: Add firmware for Cirrus CS35L41 on Lenovo Laptops
* linux-firmware: Add firmware for Cirrus CS35L41 on HP Laptops
- Drop the CS35L41 firmware tarball that has been merged
- Drop obsoleted cirrus-WHENCE-update.patch
- Update to version 20221017 (git commit 48407ffd7adb):
* cnm: update chips&media wave521c firmware.
* brcm: add symlink for Pi Zero 2 W NVRAM file
* rtw89: 8852b: add initial fw v0.27.32.0
* iwlwifi: add new FWs from core72-129 release
* iwlwifi: update 9000-family firmwares to core72-129
* rtl_bt: Update RTL8852C BT USB firmware to 0xD5B8_A40A
* amdgpu: update GC 10.3.6 RLC firmware
* amdgpu: update GC 10.3.7 RLC firmware
* amdgpu: update Yellow Carp RLC firmware
* amdgpu: update Beige Goby RLC firmware
* amdgpu: update Dimgrey Cavefish RLC firmware
* amdgpu: update Navy Flounder RLC firmware
* amdgpu: update Sienna Cichlid RLC firmware
* mediatek: Update mt8195 SOF firmware to v0.4.1
* qcom: add squashed version of a530 zap shader
* rtw89: 8852c: update fw to v0.27.56.1
* rtw89: 8852c: update fw to v0.27.56.0
* mediatek: Update mt8186 SCP firmware
- Update Cirrus CS35L41 firmware (bsc#1203699)
cirrus-WHENCE-update.patch
- Update aliases from 6.1-rc1 kernel
==== kernel-source ====
Version update (6.0.3 -> 6.0.7)
- Update config files.
- commit bd8c959
- Linux 6.0.7 (bsc#1012628).
- platform/x86/amd: pmc: remove CONFIG_DEBUG_FS checks
(bsc#1012628).
- can: j1939: transport: j1939_session_skb_drop_old():
spin_unlock_irqrestore() before kfree_skb() (bsc#1012628).
- can: kvaser_usb: Fix possible completions during init_completion
(bsc#1012628).
- can: rcar_canfd: rcar_canfd_handle_global_receive(): fix IRQ
storm on global FIFO receive (bsc#1012628).
- can: rcar_canfd: fix channel specific IRQ handling for RZ/G2L
(bsc#1012628).
- ALSA: Use del_timer_sync() before freeing timer (bsc#1012628).
- ALSA: usb-audio: Add quirks for M-Audio Fast Track C400/600
(bsc#1012628).
- ALSA: control: add snd_ctl_rename() (bsc#1012628).
- ALSA: hda/realtek: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: emu10k1: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: ac97: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: usb-audio: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: ca0106: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: au88x0: use explicitly signed char (bsc#1012628).
- ALSA: rme9652: use explicitly signed char (bsc#1012628).
- USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM
(bsc#1012628).
- usb: gadget: uvc: limit isoc_sg to super speed gadgets
(bsc#1012628).
- Revert "usb: gadget: uvc: limit isoc_sg to super speed gadgets"
(bsc#1012628).
- usb: gadget: uvc: fix dropped frame after missed isoc
(bsc#1012628).
- usb: gadget: uvc: fix sg handling in error case (bsc#1012628).
- usb: gadget: uvc: fix sg handling during video encode
(bsc#1012628).
- usb: gadget: aspeed: Fix probe regression (bsc#1012628).
- usb: dwc3: gadget: Stop processing more requests on IMI
(bsc#1012628).
- usb: dwc3: gadget: Don't set IMI for no_interrupt (bsc#1012628).
- usb: dwc3: gadget: Force sending delayed status during soft
disconnect (bsc#1012628).
- usb: dwc3: gadget: Don't delay End Transfer on delayed_status
(bsc#1012628).
- usb: typec: ucsi: Check the connection on resume (bsc#1012628).
- usb: typec: ucsi: acpi: Implement resume callback (bsc#1012628).
- usb: dwc3: st: Rely on child's compatible instead of name
(bsc#1012628).
- usb: dwc3: Don't switch OTG -> peripheral if extcon is present
(bsc#1012628).
- usb: bdc: change state when port disconnected (bsc#1012628).
- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being
a V0.96 controller (bsc#1012628).
- mtd: rawnand: tegra: Fix PM disable depth imbalance in probe
(bsc#1012628).
- mtd: spi-nor: core: Ignore -ENOTSUPP in spi_nor_init()
(bsc#1012628).
- mtd: parsers: bcm47xxpart: Fix halfblock reads (bsc#1012628).
- mtd: rawnand: marvell: Use correct logic for nand-keep-config
(bsc#1012628).
- squashfs: fix read regression introduced in readahead code
(bsc#1012628).
- squashfs: fix extending readahead beyond end of file
(bsc#1012628).
- squashfs: fix buffer release race condition in readahead code
(bsc#1012628).
- xhci: Add quirk to reset host back to default state at shutdown
(bsc#1012628).
- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or
later devices (bsc#1012628).
- xhci: Remove device endpoints from bandwidth list when freeing
the device (bsc#1012628).
- tools: iio: iio_utils: fix digit calculation (bsc#1012628).
- iio: light: tsl2583: Fix module unloading (bsc#1012628).
- iio: temperature: ltc2983: allocate iio channels once
(bsc#1012628).
- iio: adxl372: Fix unsafe buffer attributes (bsc#1012628).
- iio: adxl367: Fix unsafe buffer attributes (bsc#1012628).
- fbdev: stifb: Fall back to cfb_fillrect() on 32-bit HCRX cards
(bsc#1012628).
- fbdev: smscufx: Fix several use-after-free bugs (bsc#1012628).
- cpufreq: intel_pstate: Read all MSRs on the target CPU
(bsc#1012628).
- cpufreq: intel_pstate: hybrid: Use known scaling factor for
P-cores (bsc#1012628).
- fs/binfmt_elf: Fix memory leak in load_elf_binary()
(bsc#1012628).
- exec: Copy oldsighand->action under spin-lock (bsc#1012628).
- mac802154: Fix LQI recording (bsc#1012628).
- scsi: qla2xxx: Use transport-defined speed mask for
supported_speeds (bsc#1012628).
- drm/i915: Extend Wa_1607297627 to Alderlake-P (bsc#1012628).
- drm/amdgpu: Remove ATC L2 access for MMHUB 2.1.x (bsc#1012628).
- drm/amdgpu: disallow gfxoff until GC IP blocks complete s2idle
resume (bsc#1012628).
... changelog too long, skipping 551 lines ...
- commit c41533c
==== kexec-tools ====
- add kexec-tools-riscv64.patch
==== keylime ====
Version update (6.5.1 -> 6.5.3)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime
- Update to version v6.5.3:
* crypto: Provide input as bytes to encrypt
* Revert "Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)"
* Update runtime_ima.rst
- Update to version v6.5.2:
* Back to 6.5.1
* This PR fixes a bug that prevented 6.5.x verifiers from interacting with 6.2. agents
* Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)
* Revert "tenant: open file to send utf-8 encoded" (#1136)
* ca_util: allow users in the same group to read the created certificates and keys (#1138)
* Update sample ima-policy to exclude overlayfs
* installer: remove tarball option
==== kgamma5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kgamma5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== khelpcenter5 ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== khotkeys5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: khotkeys5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kinfocenter5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kinfocenter5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* CommandOutputKCM: Fix text sizing and make it selectable
==== kio ====
Subpackages: kio-core
- Add kio-mr1008-fix-webdav.diff
* Fixes WebDAV upload (kde#460717)
* https://invent.kde.org/frameworks/kio/-/merge_requests/1008
==== kio-extras5 ====
Version update (22.08.2 -> 22.08.3)
Subpackages: libkioarchive5
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kmenuedit5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kmenuedit5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== konsole ====
Version update (22.08.2 -> 22.08.3)
Subpackages: konsole-part konsole-part-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kpipewire ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireRecord5
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kscreen5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kscreen5-lang kscreen5-plasmoid
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kscreenlocker ====
Version update (5.26.1 -> 5.26.2)
Subpackages: kscreenlocker-lang libKScreenLocker5
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== ksshaskpass5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: ksshaskpass5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== ksystemstats5 ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kwalletmanager5 ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kwayland-integration ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== kwin5 ====
Version update (5.26.1 -> 5.26.2.1)
Subpackages: kwin5-lang
- Add patch to fix redraw issues with window scaling (kde#461032):
* 0001-x11window-revert-more-from-3a28c02f.patch
- Update to 5.26.2.1
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* fix compile
* x11window: partially revert 3a28c02f
* Replace some manual floored QPointF->QPoint conversion with flooredPoint calls
* DecorationInputFilter: Use QPointF instead of QPoint for events
* Window: Floor rather than round when doing hitTest for the decoration (kde#460686)
* Add a helper function to convert QPointF to QPoint using floor instead of round
* wayland: Fix missing relative motion events (kde#444510)
* Implement a enableRequested signal for text-input-v3
* kcmkwin/kwindecoration: use Kirigami.ActionToolBar for the footer actions (kde#460793)
* autotests/integration: make inputmethodtest more realstic
* inputpanelv1window: never hide overlay panels
* inputmethod: reset m_shouldShowPanel when the tracked window changes
* inputpanelv1window: show window when client maps it after setting the mode (kde#460537)
* x11window: don't change size for centering windows with maximization
* output: don't round geometry as often
* effects/blur: Fix clipping when sliding virtual desktops (kde#460382)
* Fix potential race condition when text input state change and focus change happened at the same time
* Fix wording in action 'Switch to Screen'
* backends/drm: don't crash if connector has no modes
==== kwrited5 ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== layer-shell-qt ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== libXext ====
Version update (1.3.4 -> 1.3.5)
- Update to version 1.3.5
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* Xge.c, Xge.h: convert from ISO-8859-1 to UTF-8
* Add extutilP.h header for xgeExtRegister() prototype
* Remove unnecessary casts of malloc/calloc results
* Remove unnecessary (char *) casts from Xfree() arguments
* Use calloc instead of malloc if we may not initialize all the bytes
* Import reallocarray() from libX11
* Convert calls to Xmalloc arrays to use Xmallocarray instead
* configure: Use AC_USE_SYSTEM_EXTENSIONS to set GNU_SOURCE & other defines
* Remove "All rights reserved" from Oracle copyright notices.
* COPYING: Add info for Xge.* and reallocarray.* files
* add ACLOCAL_AMFLAGS = -I m4 to make aclocal pick ax_gcc_builtin.m4
==== libXinerama ====
Version update (1.1.4 -> 1.1.5)
- Update to version 1.1.6
* Update README for gitlab migration
* Update configure.ac bug URL for gitlab migration
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* XineramaQueryScreens: fix -Wsign-compare warning
* Remove "register" type qualifier from variable declarations
==== libavif ====
- Remove unused BuildRequires on nasm
- Remove indirect/incorrect Buildrequires on zlib
- add direct glib Buildrequires
==== libdrm ====
Version update (2.4.113 -> 2.4.114)
Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1
- Update to 2.4.114
* amdgpu.ids: use consistent formatting for RID
* amdgpu.ids: sort the file
* amdgpu.ids: update to the latest marketing name
* amdgpu_ids: add MI marketing names
* amdgpu: Add a default marketing name if none is found
* meson: fast-fail on unsupported OSes
* include/drm/drm_fourcc.h: Update from Linux v6.0-rc7
* include/drm/i915_drm.h: Update from Linux v6.0-rc7
* tests/util: add imx-lcdif driver
* intel: move declarations to top in drm_intel_gem_bo_unreference()
* build: automatically disable Intel if pciaccess is not found
* xf86drm: handle DRM_FORMAT_BIG_ENDIAN in drmGetFormatName()
* amdgpu: silence uninitialized variable warning
* xf86drmMode: add helpers for dumb buffers
* modetest: drop unused offset field in struct bo
* modetest: use sized integers in struct bo
* modetest: use dumb buffer helpers
==== libepoxy ====
- needed by jira#PED-1174 (Mesa needs sync with Xserver, which
then needs updated libepoxy)
==== libffi ====
Version update (3.4.3 -> 3.4.4)
- Update to libffi 3.4.4
* Important aarch64 fixes, including support for linux builds
with Link Time Optimization (-flto).
* Fix x86 stdcall stack alignment.
* Fix x86 Windows msvc assembler compatibility.
* Fix moxie and or1k small structure args.
- drop riscv64-handle-big-structures.patch
- reenable LTO
==== libidn2 ====
Version update (2.3.3 -> 2.3.4)
- update to 2.3.4:
* Support for Unicode 15.0.0
* Uses IDNA2008 from tables from unicode.org rather than IANA
for consistency with other implementation and support for
Unicode versions 12 through 15. This breaks backwards-
compatibility regarding U+19DA and recent releases
==== libkdcraw ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== libkdecoration2 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* Floor mouse positions rather than rounding
==== libkexiv2 ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== libkscreen2 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: libKF5Screen7 libkscreen2-plugin
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* Make error messages translatable
- Use %autosetup
- Use %fdupes with hardlinks
==== libksysguard5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== libmysofa ====
Version update (1.2.1 -> 1.3.1)
- Update to 1.3.1:
* added a memory loader for HRTFs
* supporting strange head geometrics from MeshHRTF
- Enable test suite
==== libnvme ====
Version update (1.1 -> 1.2)
- Update to version 1.2:
* Add more details for return code of MI admin cmds
* Parse dhchap_host_key on controller level
* Update json config schema for missing dhchap host key
* fabrics: Add new TP8010 definitions
* fabrics: Add nvmf_get_discovery_wargs()
* fabrics: Duplicate strings when merging configs
* fabrics: Filter out empty strings in add_argument()
* fabrics: Use fallthrough statement
* ioctl: Set log page offset for nvme_get_log_telemetry_host
* json-schema: add dhchap_key details to host section
* json: Enforce correctly formatted JSON config files
* json: Verify JSON config file starts with an array
* mi: Add Get Log Page helpers
* mi: Add Identify function for secondary controller list
* mi: Add Identify helper for ns-descs and primary-ctrl-caps
* mi: Add firmware download and commit commands
* mi: Add identify helper for nsid-capable Controller List
* mi: Add identify helpers for namespace lists
* mi: Add identify helpers for namespaces
* mi: Allow Admin-message sized More Processing Required responses
* mi: Distinguish MI status from NVMe (CDW3) status
* mi: Fix C++ compiler errors
* mi: Implement Format NVM command
* mi: Implement Get & Set Features Admin commands
* mi: Implement NS attach command and helpers
* mi: Implement Namespace Management command and create/delete helpers
* mi: Implement Sanitize command
* mi: Init ctrl_id within xfer
* mi: Introduce a helper for response status, unify values with ioctls
* mi: Set log page offset for nvme_get_log_telemetry_host
* mi: add nvme_mi_status_to_string()
* mi: fix a memory leak in nvme_mi_open_mctp()
* mi: fix get_log_page chunked offset check
* nvme-tree: avoid segfault if auth keys are unavailable
* python: Use nvmf_get_discovery_wargs()
* tree: rename controller 'dhchap_key' to 'dhchap_ctrl_key'
* types: Move enum nvme_data_tfr to types
* util: Add LINE_MAX define
* util: Add get feature length 2 API to support direction parameter
* util: Add simple UUID type
* util: Do not expose fallthrough defines
- Make man page build conditiional. Install man page location has been
fixed upstream.
- Mark the Python directory own by the libnvme3-python package
- Use fixed manpage build date (boo#1047218)
==== libosinfo ====
Subpackages: libosinfo-1_0-0
- jsc#PED-2113 [Virt Tools] Refresh Virtualization Tools for Xen
and KVM Management
==== libqt5-qtbase ====
Version update (5.15.6+kde177 -> 5.15.7+kde167)
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Update to version 5.15.7+kde167, rebased upstream:
* offer an opt out of automatic xdg-desktop-portal use
* Send string to Atspi DBus interface on name/description changed
* Send string to Atspi DBus interface on value changed for comboboxes
* iOS: Use generic simulator device for building apps via xcodebuild
* xcode: Allow automatic provisioning updates when calling xcodebuild
* Revert "[Android] Remove signal and slot mechanism to listen states in editor's"
* Android: fix error when signing bundles
* Doc: Fix notes in QObject
* Allow dragging of a floating dockwidget on macOS with a custom titlebar
* Http/2 - handle PADDED flag correctly
* QTlsBackend (OpenSSL) : detect incompatible versions
* Reduce the width of a hfw-widget if scrollbar would be flipping
* QCocoaWindow: Make window key if the app's modal window is hidden
* Doc: clarify case sensitivity in QCompleter
* Doc: Note that qmake's CONFIG values are case-sensitive
* Clear up QWindow::isActive() documentation
* QWinRtFunctions::await() - introduce early exit condition
* rhi: metal: Use the layer as the single source of truth
* Include <QHash> explicitly
* Update PCRE2 to 10.38
* Add testing of QPdfWriter output to QPainter lancelot test
* Update the COPYRIGHT.txt file
* QTranslator: Fix loading of meta catalogs from absolute .qm path
* tst_qtranslator: Simplify extraction of test data
* Cocoa: Don't call makeKeyAndOrderFront for native app-modal dialogs
* Fix querying font aliases that share name with other fonts
* Update bundled libjpeg-turbo to version 2.1.1
* macOS: Compute NSWindow background color without checking styleMask
* SQLite: Update SQLite to v3.36.0
* Android: Fix path of qmake_qmake_immediate.qrc in single_abi with qmake
* qmake: Print error when iOS simulator device could not be found
* Fix loading of OpenSSL on macOS versions that ship its own OpenSSL
* QWidgetWindow: Stabilize test on Xcb
* Blacklist flaky test
* Fix license information for libjpeg-turbo
* Don't unload libraries on Darwin-based operating systems
* QThreadPool: Fix restarting of expired threads
* Make test pass on machines with many cores
* Blacklist tst_QSocks5SocketEngine::simpleConnectToIMAP() because of flakiness
* Blacklist tst_qgl:closeAndThenShow() because of flakiness
* Update Android default SDK from 29 to 30
* Make clear why QTestLog::addB?XFail() don't add to counters
* Fix .qm file name calculation in lrelease.prf
* qmake/xcode: Do not create OBJECTS_DIR
* QSslCertificate(OpenSSL plugin): fix memory leaks in extension 'parser'
* OpenSSL: Let people opt-in to use TLS 1.3 PSK callback
* tst_http2: Fix flaky authentication test
* Cocoa: Make sure we can display multiple sheets for the same NSWindow
* Fix QTextCodec::canEncode() for ICU codec
* wasm: fix network data URI scheme
* Doc: add more notes about full screen windows on macOS
* macOS: Don't rely on invalidateCursorRectsForView when mouse is over view
* Doc: add note that hiding a window doesn't close a full screen space
* qlocale_win: Fix non-standalone month names
* androiddeployqt: Check if apk is already aligned
* Fix corner case in QTimeZonePrivate::dataForLocalTime()
* Improve lancelot test of dashed line painting
* qmake: Add support for C17/C18
* qmake/vcxproj: Read C language standard from QMAKE_CFLAGS
* qmake/vcxproj generator: Handle C standard compiler flags
* qmake: Make it possible to set CONFIG += c11 with MSVC 19.28
* qmake: Recognize MSVC 16.x as VS 2019 in the VS project generator
* Doc: Replace the example for QFileInfo::setFile
* QMetaEnum: avoid quadratic behavior in valueToKeys()
* QGraphicsProxyWidget: forward Window(De)Activate events
* QDashStroker: cap the number of repetitions of the pattern
* Fix bug with NoFontMerging when font does not support script
* Android: Fix unnecessary clipboard data access
* macOS: Don't wipe NSWindowStyleMaskFullSizeContentView if set manually
* Fix broken build when LTTng tracing is enabled
* Attempt to unwedge tst_QThread::wait3_slowDestructor()
* macOS: close popups on mousedown within the window frame
* Use a scope-guard to take care of process deletion in a test
* QVarLengthArray: add missing default-ctor documentation
- Commits dropped by the rebase:
* Fix compile of tst_qimage in Qt5
- Update to version 5.15.6+kde178:
* ANGLE: Fix compilation on GCC 11
==== libqt5-qtdeclarative ====
Version update (5.15.6+kde20 -> 5.15.7+kde18)
- Update to version 5.15.7+kde18, rebased upstream:
* Revert "Fix ListView.isCurrentItem when used with DelegateModel"
* Stop using QHash::unite() in storage model manual test
* SaveableUnitPointer::saveToDisk restores flags incorrectly at cleanup
* Document that clearComponentCache() does not clear existing objects
* Doc: Replace return `0` with nullptr
* Doc: Fix QtQuick::Keys::forwardTo generic list type
* Doc: QQmlContext: make it more readable
* Fix ListView.isCurrentItem when used with DelegateModel
* Fix documentation on JavaScript imports
* doc: Remove bogus PinchHandler.minimumTouchPoints prop; improve actual
* tst_grabImage: Fix the cases were visually comparing invisible items
* Reinitialize shader data structure when effect changes
* Doc: mention that clipping can affect performance and link to page
* Ensure init of m_current_projection_matrix in single-clipped-item scene
* Canvas: Add a means to override the DPR used via an environment variable
* Fix regression in ListView/Flickable event delivery
* qquicktextinput: Clear pre-edit text after input method reset
- Rebase qtdeclarative-5.15.0-FixMaxXMaxYExtent.patch
==== libqt5-qtgraphicaleffects ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtimageformats ====
Version update (5.15.6+kde4 -> 5.15.7+kde5)
- Update to version 5.15.7+kde5, rebased upstream:
* Reject tiled tiffs with corrupt tile size early
* Update bundled libwebp to version 1.2.1
==== libqt5-qtlocation ====
Version update (5.15.6+kde3 -> 5.15.7+kde3)
- Update to version 5.15.7+kde3, rebased upstream:
* No code changes
==== libqt5-qtmultimedia ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
- Update to version 5.15.7+kde1, rebased upstream:
* PulseAudio: Call pa_stream_flush() with PulseDaemonLocker lock held
* Fix incorrectly generated CMake files for the QNX audio plugin
==== libqt5-qtquickcontrols ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtquickcontrols2 ====
Version update (5.15.6+kde5 -> 5.15.7+kde6)
Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5
- Update to version 5.15.7+kde6, rebased upstream:
* implement a11y pressing of qquickabstractbutton
* Blacklist some flaky tst_qquickpopup functions on openSUSE
* Fix memory leak in Qt Quick Controls icon
==== libqt5-qtsensors ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5Sensors5 libQt5Sensors5-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtspeech ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd
- Update to version 5.15.7+kde1, rebased upstream:
* Android: Protect against a null Locale object when calling getLocale
==== libqt5-qtsvg ====
Version update (5.15.6+kde9 -> 5.15.7+kde9)
- Update to version 5.15.7+kde9, rebased upstream:
* No code changes
==== libqt5-qttools ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
Subpackages: libqt5-qdbus libqt5-qtpaths
- Update to version 5.15.7+kde1, rebased upstream:
* qdoc: Fix warnings about generatelist arguments
* qdoc: Fix Section::reduce() omitting sections with obsolete members
* macdeployqt: detect debug libs by using â_debugâ suffix
* Fix extensions without leading period having first character dropped
* Doc: Remove mention of custom filters, part 2
==== libqt5-qttranslations ====
Version update (5.15.6+kde2 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* Update simplified chinese translation
* update dutch translations
* Update Catalan translations for Qt 5.15.2
==== libqt5-qtvirtualkeyboard ====
Version update (5.15.6+kde1 -> 5.15.7+kde0)
Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtwayland ====
Version update (5.15.6+kde49 -> 5.15.7+kde49)
Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5
- Update to version 5.15.7+kde49, rebased upstream:
* Hold surface read lock throughout QWaylandEglWindow::updateSurface
* Keep reference to buffer until it has been replaced
* Implement wp_viewporter support for video buffer formats
* Ignore viewporter buffer size when buffer is null
==== libqt5-qtwebchannel ====
Version update (5.15.6+kde3 -> 5.15.7+kde3)
Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports
- Update to version 5.15.7+kde3, rebased upstream:
* No code changes
==== libqt5-qtwebview ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5WebView5 libQt5WebView5-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtx11extras ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtxmlpatterns ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libstorage-ng ====
Version update (4.5.47 -> 4.5.48)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#901
- set used feature flag for quota (bsc#1204773)
- 4.5.48
==== libva ====
Subpackages: libva-drm2 libva-x11-2 libva2
- needed for jira#PED-1174 (Video decoding/encoding support
(VA-API, ...) for Intel GPUs is outside of Mesa)
==== libva-gl ====
- needed for jira#PED-1174 (Video decoding/encoding support
(VA-API, ...) for Intel GPUs is outside of Mesa)
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Add W3C conformance tests to the testsuite (bsc#1204585):
* Added file xmlts20080827.tar.gz
==== libxshmfence ====
Version update (1.3 -> 1.3.1)
- Update to version 1.3.1
* Update README for gitlab migration
* Update configure.ac bug URL for gitlab migration
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* alloc: prefer atomic close-on-exec without O_TMPFILE as well
* alloc: prefer SHM_ANON on FreeBSD a la memfd_create
==== libyuv ====
Version update (20220713+d248929c -> 20220920+f9fda6e)
- Update to version 20220920+f9fda6e:
* Fix shift amount for SSSE3 assembly for I012 format conversions
* 10/12 bit YUV replicate upper bits to low bits before converting to RGB
* Fix immediate offsets for row_neon build on gcc
- Update to version 20220920+248172e:
* I422ToRGB24, I422ToRAW, I422ToRGB24MatrixFilter conversion functions added.
* Remove include resource.h for Fuchsia build
* I420ToRGB24MatrixFilter function added
* SSE2 MM21->YUY2 conversion
* MM21ToYUY2 and ABGRToJ420 conversion
* AB64ToARGB fix for inplace conversion
* Bump up version to 1838
* Add I422ToRGB565Matrix
* RAWToJ400 require multiple of 16 pixels for NEON
* row_neon*: Explicitly initialize pad in RgbConstants
* Fix MSVC warnings by adding casts
* Define _CRT_SECURE_NO_WARNINGS if MSVC CRT is used
* Reduce cmake verbosity and update min version
* Set IMPORT_PREFIX to "lib" on Windows
* Android.bp: Remove reference to LICENSE_THIRD_PARTY
* Fix SSE2 version of ScalePlaneUp2_16_Bilinear
* Disable bilinear 16 bit scale up for SSE2
* Add .vpython3 to libyuv.
* Switch from python to python3.
==== llvm15 ====
Version update (15.0.2 -> 15.0.3)
- Update to version 15.0.3.
* This release contains bug-fixes for the LLVM 15.0.0 release.
This release is API and ABI compatible with 15.0.0.
- Add llvm-armv7-fix-vector-compare-with-zero-lowering.patch: Fix
lowering of non-canonical vector comparison with zero on armv7,
preventing a crash (boo#1204267, gh#llvm/llvm-project#58514).
- Add lldb-swig-4.1.0-build-fix.patch: Fix build with Swig 4.1.0.
- Rebase llvm-do-not-install-static-libraries.patch.
==== lsof ====
Version update (4.95.0 -> 4.96.4)
- update to 4.96.4
* fix hash functions used for finding local tcp/udp IPCs
* Show copyright notice in --version output.
* Avoid some easy collissions for udp/udp6 sockets when hashing
* Changing the number of ipcbuckets to 4096
* obtain correct information of memory-mapped file.
- drop remove-hostname.patch now upstream
==== luit ====
Version update (20201003 -> 20221028)
- Update to version 20221028
* fix a few compiler-warnings
* updated plink.sh, from xterm.
* updated configure script, to work around regression in grep 3.8
* updated configure macros for compiler-warning fixes.
* update config.guess, config.sub, install-sh
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- dracut-initqueue timeouts with 5.3.18-150300.59.63 kernel on ppc64le (bsc#1199074)
- in lvm2.spec, change device_mapper_version from 1.02.185 to %{lvm2_version}_1.02.185
==== lvm2-device-mapper ====
Version update (1.02.185 -> 2.03.16_1.02.185)
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- dracut-initqueue timeouts with 5.3.18-150300.59.63 kernel on ppc64le (bsc#1199074)
- in lvm2.spec, change device_mapper_version from 1.02.185 to %{lvm2_version}_1.02.185
==== milou5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: milou5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== mobipocket ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== mpg123 ====
Version update (1.30.2 -> 1.31.1)
Subpackages: libmpg123-0 mpg123-openal
- Update to version 1.31.1
* Fix largefile aliases for the case of a largefile-insensitive
build that still does define _FILE_OFFSET_BITS from the
outside (sys/feature_tests.h on Illumos).
- Update to version 1.31.0
mpg123:
* The --control / -C switch will make mpg123 abort now if
terminal control cannot be enabled.
* Revert to internal network code for plain HTTP to ensure
continued support for original shoutcast servers that do not
talk proper HTTP. External backends are built at the same
time and can be enforced using --network <backend>.
* Try-witout-port for internal network code is gone. We do not
need to keep each ancient hack for specific hosts.
* Handle redirections independently of the backend behind
net123.
* Set proxy environment variables when --proxy is specified,
for net123 backends to use.
* Continue reading for long commands in generic control,
avoiding unnecessary unfinished command errors.
* Change error message from 'unknown command' to
'unknown command with arguments' to avoid confusion why
'help foo' is unknown, as opposed to 'help'.
* Reduce CPU load while just waiting for terminal input.
* Condense terminal control help output and excessive vertical
whitespace in printouts.
* Fix interaction of pause (looping) with buffer, adding
- -pauseloop to set the loop interval.
* Numeric option arguments are strictly checked now for
conversion errors. This also catches -devbuffer, which was
interpretd as -d 0 before. This also applies to out123.
libout123:
* Add same interruption handling to out123_write() as to
unintr_write(), adding EAGAIN to fix bug 342 for certain
ALSA setups.
* Fix race condition to deadlock on buffer_sync_param() where
parameters after the command byte got read as more commands.
This got triggered easily by using the pause key in terminal
mode with buffer (which was discouraged before because of
buffer flushing). Generally, changing parameters with active
buffer process was dangerous since libout123 entered the
scene.
other:
* some build fixes for compiler pickyness
* Disable largefile renames also for non-sensitive POSIX
systems
==== multipath-tools ====
Version update (0.9.1+52+suse.be8809e -> 0.9.2+59+suse.ac8942d)
Subpackages: kpartx libmpath0
- Update to version 0.9.2+59+suse.ac8942d:
* Fix segfault in "multipath -t" command (boo#1204731)
- Update to version 0.9.2+57+suse.cf3c1e9:
* Fix multipathd authorization bypass and symlink attack
(bsc#1202739 CVE-2022-41973 CVE-2022-41974)
* add multipath-dracut.conf: dracut config file to install
tmpfiles.d/multipath.conf in initramfs
* Use "queue_mode bio" for NVMeoF/TCP devices
* Upstream bug fixes and hwtable updates
- Drop recompress.service, it just slows down build
==== ntfs-3g_ntfsprogs ====
Version update (2022.5.17 -> 2022.10.3)
Subpackages: libntfs-3g89 ntfs-3g ntfsprogs
- update to 2022.10.3 (bsc#1204734 CVE-2022-40284):
* Rejected zero-sized runs.
* Avoided merging runlists with no runs.
==== nvme-cli ====
Version update (2.1.2 -> 2.2.1)
Subpackages: nvme-cli-bash-completion
- Update to version 2.2.1:
* Added parsing for Solidigm telemetry observable data.
* add item ddr_ecc_err_cnt in smart-log-add
* build: Drop dependency on libuuid
* build: Fix endian check for cross build
* build: Remove unused uuid.wrap file
* build: Remove unusned uuid.h include
* completions: Add show-topology tab completion
* fabrics: Honor JSON config file in connect-all command
* fabrics: Trigger auto connect if config.json exists
* fabrics: fix 'persistent' handling during connect-all with JSON file
* fabrics: nvme config --modify depends on -n and -t argument
* fabrics: re-read the discovery log page when a discovery controller reconnected
* json: Support uint64 types serialization for older json-c versions
* nvme, plugins: fix __u64 -> unsigned long long assumptions
* nvme-print: Add missing values in id-ctrl for JSON output
* nvme-print: Handle NULL hostid in JSON output
* nvme-print: Output 128bit values as uint128 type instead of double
* nvme-print: Print fguid as a UUID
* nvme-print: Use uint128 JSON function for media_units_written
* nvme-print: decode MI status values
* nvme-print: decode status types
* nvme-print: fix wrong json key
* nvme: Add helper function to parse 16-bit comma separated list
* nvme: Add nvme_cmd wrapper for get_features
* nvme: Add show-topology command
* nvme: Add wrapper for Format NVM
* nvme: Add wrapper for Sanitize NVM
* nvme: Add wrappers for Get Log page helpers
* nvme: Add wrappers for Identify controller lists
* nvme: Add wrappers for NS attach/detach
* nvme: Add wrappers for NS management functions
* nvme: Add wrappers for basic NS identify
* nvme: Add wrappers for firmware commands
* nvme: Fix set feature command to get feature identifier 0Dh length as zero
* nvme: Introduce a union in struct nvme_dev for different transport types
* nvme: Introduce nvme_cli_ wrappers, wrap identify and identify_ctrl
* nvme: Make static nvme_dev private to open_dev(), use locals elsewhere
* nvme: Masks SSTAT in sanize-log output
* nvme: Remove static nvme_dev, allocate on open instead
* nvme: Use correct print format specifier for sizeof arguments
* nvme: Use local struct nvme_dev for show_registers & map_registers
* nvme: check if cfg.metadata is NULL before passing it to strlen()
* nvme: use helpers for checking status types
* plugins/innogrit: Include timer.h
* plugins/innogrit: add smart items for smart-log-add
* plugins/micron-nvme: Use correct print format specifier for sizeof arguments
* plugins/ocp: Include timer.h
* plugins/ocp: Output 128bit values as uint128 type instead of double
* plugins/ocp: pass struct nvme_dev to internal functions
* plugins/seagate: Add support for OCP
* plugins/toshiba: pass struct nvme_dev rather than fd + name
* plugins/virtium: Output 128bit values as uint128 type instead of double
* plugins/wdc: Add support for SN660 drive
* plugins/wdc: Add type case for feature id
* plugins/wdc: Output 128bit values as uint128 type instead of double
* plugins/wdc: pass a struct nvme_dev around rather than a fd
* plugins/wdc: pass struct nvme_dev rather than using global nvme_dev
* plugins/ytmc: pass struct nvme_dev rather than fd + name
* plugins: Use PRIu64 format specifier for 64bit types
* print: Add Controller Ready Timeout Exceeded HW error code
* solidgm: fix initialization warning
* solidigm: Added parsing for telemetry customer screenable data
* solidigm: Fix printf format for size_t variable
* solidigm: Updated Telemetry parsing code to MIT license.
* subprojects/libnvme: update for MI admin command coverage
* tests: Update license to GPL-2.0-or-later
* tree: Add NVMe-MI support
* tree: Add dev_fd() helper
* tree: Change nvme_dev from global to static
* tree: Combine NVMe file descriptor into struct nvme_dev
* tree: Move global device info to a single struct
* tree: fail on non-negative return values from parse_and_open
* udev: Add HOST_IFACE to udev rule
* util/json.h: Add json_object_get_uint64 fallback implementation
* util/json: Add 128 bit JSON helpers
* util/types: Add 128 bit conversion helpers
* util: Fix le128_to_cpu on big-endian
* util: Fix le128_to_cpu on little-endian
* util: Move common type conversion helpers into util section
* utils/json: Add json_object_new_uint64 for json-c < 0.14
* utils: Fix uint128_t usage
* wdc: OCP Log page updates and fixes
* zns.c: report zones should be started after retrieved zone
- Handle suse-missing-rclink lint warnings by providing the symlinks
- Drop rpmlintrc as it is not needed anymore
==== open-lldp ====
Version update (1.1+44.0f781b4162d3 -> 1.1+58.8ca361bab766)
Subpackages: liblldp_clif1
- Update to version v1.1+58.8ca361bab766:
* clif: Include string.h for mem* function prototypes
* basman: use return address when pulling address
* Revert "Use interface index instead of name in libconfig"
* 8021Qaz: check for rx block validity
* 8021qaz: squelch initialization errors
* macvtap: fix error condition
* vdp22: convert command parsing to null term
==== openSUSE-build-key ====
- add the SUSE Container key in PEM format too to new
/usr/share/pki/containers/ directory. (bsc#1204706)
==== openldap2 ====
Subpackages: libldap-data libldap2 openldap2-client
- bsc#1202931 - CVE-2022-31253 - Openldap start script allowed the ldap user
to privilege escalate to root due to unbound chown commands.
==== openldap2-contrib-src ====
- bsc#1202931 - CVE-2022-31253 - Openldap start script allowed the ldap user
to privilege escalate to root due to unbound chown commands.
==== openslp ====
Subpackages: libslp1
- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.
==== openssl ====
Version update (1.1.1q -> 1.1.1s)
- updated to 1.1.s release
==== openssl-1_1 ====
Version update (1.1.1q -> 1.1.1s)
Subpackages: libopenssl1_1
- Updated openssl.keyring with key A21FAB74B0088AA361152586B8EF1A6BA9DA2D5C
- Update to 1.1.1s:
* Fixed a regression introduced in 1.1.1r version not refreshing the
certificate data to be signed before signing the certificate.
- Update to 1.1.1r:
* Fixed the linux-mips64 Configure target which was missing the
SIXTY_FOUR_BIT bn_ops flag. This was causing heap corruption on that
platform.
* Fixed a strict aliasing problem in bn_nist. Clang-14 optimisation was
causing incorrect results in some cases as a result.
* Fixed SSL_pending() and SSL_has_pending() with DTLS which were failing to
report correct results in some cases
* Fixed a regression introduced in 1.1.1o for re-signing certificates with
different key sizes
* Added the loongarch64 target
* Fixed a DRBG seed propagation thread safety issue
* Fixed a memory leak in tls13_generate_secret
* Fixed reported performance degradation on aarch64. Restored the
implementation prior to commit 2621751 ("aes/asm/aesv8-armx.pl: avoid
32-bit lane assignment in CTR mode") for 64bit targets only, since it is
reportedly 2-17% slower and the silicon errata only affects 32bit targets.
The new algorithm is still used for 32 bit targets.
* Added a missing header for memcmp that caused compilation failure on some
platforms
==== openssl-3 ====
Version update (3.0.5 -> 3.0.7)
- Temporary disable tests test_ssl_new and test_sslapi because they are
failing in openSUSE_Tumbleweed
- Update to 3.0.7: [bsc#1204714, CVE-2022-3602,CVE-2022-3786]
* Fixed two buffer overflows in punycode decoding functions.
A buffer overrun can be triggered in X.509 certificate verification,
specifically in name constraint checking. Note that this occurs after
certificate chain signature verification and requires either a CA to
have signed the malicious certificate or for the application to continue
certificate verification despite failure to construct a path to a trusted
issuer.
In a TLS client, this can be triggered by connecting to a malicious
server. In a TLS server, this can be triggered if the server requests
client authentication and a malicious client connects.
An attacker can craft a malicious email address to overflow
an arbitrary number of bytes containing the `.` character (decimal 46)
on the stack. This buffer overflow could result in a crash (causing a
denial of service).
([CVE-2022-3786])
An attacker can craft a malicious email address to overflow four
attacker-controlled bytes on the stack. This buffer overflow could
result in a crash (causing a denial of service) or potentially remote code
execution depending on stack layout for any given platform/compiler.
([CVE-2022-3602])
* Removed all references to invalid OSSL_PKEY_PARAM_RSA names for CRT
parameters in OpenSSL code.
Applications should not use the names OSSL_PKEY_PARAM_RSA_FACTOR,
OSSL_PKEY_PARAM_RSA_EXPONENT and OSSL_PKEY_PARAM_RSA_COEFFICIENT.
Use the numbered names such as OSSL_PKEY_PARAM_RSA_FACTOR1 instead.
Using these invalid names may cause algorithms to use slower methods
that ignore the CRT parameters.
* Fixed a regression introduced in 3.0.6 version raising errors on some stack
operations.
* Fixed a regression introduced in 3.0.6 version not refreshing the certificate
data to be signed before signing the certificate.
* Added RIPEMD160 to the default provider.
* Ensured that the key share group sent or accepted for the key exchange
is allowed for the protocol version.
- Update to 3.0.6: [bsc#1204226, CVE-2022-3358]
* OpenSSL supports creating a custom cipher via the legacy
EVP_CIPHER_meth_new() function and associated function calls. This function
was deprecated in OpenSSL 3.0 and application authors are instead encouraged
to use the new provider mechanism in order to implement custom ciphers.
* OpenSSL versions 3.0.0 to 3.0.5 incorrectly handle legacy custom ciphers
passed to the EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() and
EVP_CipherInit_ex2() functions (as well as other similarly named encryption
and decryption initialisation functions). Instead of using the custom cipher
directly it incorrectly tries to fetch an equivalent cipher from the
available providers. An equivalent cipher is found based on the NID passed
to EVP_CIPHER_meth_new(). This NID is supposed to represent the unique NID
for a given cipher. However it is possible for an application to incorrectly
pass NID_undef as this value in the call to EVP_CIPHER_meth_new(). When
NID_undef is used in this way the OpenSSL encryption/decryption
initialisation function will match the NULL cipher as being equivalent and
will fetch this from the available providers. This will succeed if the
default provider has been loaded (or if a third party provider has been
loaded that offers this cipher). Using the NULL cipher means that the
plaintext is emitted as the ciphertext.
* Applications are only affected by this issue if they call
EVP_CIPHER_meth_new() using NID_undef and subsequently use it in a call to
an encryption/decryption initialisation function. Applications that only use
SSL/TLS are not impacted by this issue. ([CVE-2022-3358])
* Fix LLVM vs Apple LLVM version numbering confusion that caused build
failures on MacOS 10.11
* Fixed the linux-mips64 Configure target which was missing the SIXTY_FOUR_BIT
bn_ops flag. This was causing heap corruption on that platform.
* Fix handling of a ticket key callback that returns 0 in TLSv1.3 to not send
a ticket
* Correctly handle a retransmitted ClientHello in DTLS
* Fixed detection of ktls support in cross-compile environment on Linux
* Fixed some regressions and test failures when running the 3.0.0 FIPS
provider against 3.0.x
* Fixed SSL_pending() and SSL_has_pending() with DTLS which were failing to
report correct results in some cases
* Fix UWP builds by defining VirtualLock
* For known safe primes use the minimum key length according to RFC 7919.
Longer private key sizes unnecessarily raise the cycles needed to compute
the shared secret without any increase of the real security. This fixes a
regression from 1.1.1 where these shorter keys were generated for the known
safe primes.
* Added the loongarch64 target
* Fixed EC ASM flag passing. Flags for ASM implementations of EC curves were
only passed to the FIPS provider and not to the default or legacy provider.
* Fixed reported performance degradation on aarch64. Restored the
implementation prior to commit 2621751 ("aes/asm/aesv8-armx.pl: avoid 32-bit
lane assignment in CTR mode") for 64bit targets only, since it is reportedly
2-17% slower and the silicon errata only affects 32bit targets. The new
algorithm is still used for 32 bit targets.
* Added a missing header for memcmp that caused compilation failure on some
platforms
==== osinfo-db ====
Version update (20220830 -> 20221018)
- Update to database version 20221018
osinfo-db-20221018.tar.xz
- jsc#PED-2113 [Virt Tools] Refresh Virtualization Tools for Xen
and KVM Management
==== oxygen5-sounds ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== pam-config ====
Version update (1.7 -> 1.8)
- Update to Version 1.8
- Move systemd_home after all optional modules (#13)
- Add pam_u2f support [bsc#1115512]
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- cups-pk-helper shouldn't be linked to PackageKit, as "pk" stands
for PolicyKit in this case (boo#1204949)
- Add gcr3-ssh-askpass as it's also needed with latest GNOME
==== pipewire ====
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Fix regression with Dell WD15 Dock and others (bsc#1204719):
0002-spa-support-the-speakers-output-only-case-in-report_.patch
==== pkcs11-helper ====
Version update (1.28.0 -> 1.29.0)
Subpackages: libpkcs11-helper1
- Update to 1.29.0:
* build: do not fail if slot evnets are disabled, thanks to Fabrice Fontaine.
* core: do not assume standard objects supported by provider.
* openssl: set back key into EVP for openssl-3 to work, thanks to apollo13.
==== plasma-browser-integration ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma-browser-integration-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma-nm5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma-nm5-lang plasma-nm5-openvpn
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-addons ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma5-addons-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* runners/spellchecker: Fix config group name mismatch (kde#460899)
==== plasma5-desktop ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma5-desktop-emojier
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* kcms/tablet: Fix dragging components (kde#460376)
* Revert "applets/taskmanager: make it harder to accidentally start a drag" (kde#460809)
* [applets/digitalclock] Fix font size change when migrating from 5.25 (kde#460415)
* kcms/mouse: Set preventStealing on the button capture
* Use KeySequenceItem.captureFinished to notify a binding has been entered
==== plasma5-disks ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-integration ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-openSUSE ====
Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE
- Update to 5.26.2
==== plasma5-pa ====
Version update (5.26.1 -> 5.26.2)
Subpackages: plasma5-pa-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-systemmonitor ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-thunderbolt ====
Version update (5.26.1 -> 5.26.2)
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== plasma5-workspace ====
Version update (5.26.1 -> 5.26.2)
Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* Revert "applets/notifications: allow screen reader to read notification body in FullRepresentation" (kde#460895)
* runners/kill: Fix config group name mismatch (kde#460899)
* [kcms/kcm_regionandlanguage] fix config not saved after clicking 'defaults' and 'save' (kde#460842)
* disable automatic portal launching early on (kde#458865)
* wallpapers/image: disable animated wallpaper on X11
* wallpapers/image: fall back to default wallpaper when url is empty (kde#460692)
* systemtray: Avoid dbus calls after exit (kde#460814)
* Save layout immediately after a resolution change triggered relayout
* Remove unnecessary heuristic relayout function call
* Use KeySequenceItem.captureFinished to notify a binding has been entered (kde#459322)
==== plymouth ====
Version update (22.02.122+77.c09c651 -> 22.02.122+94.4bd41a3)
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
- Update to version 22.02.122+94.4bd41a3:
* plugins: label-freetype: Fixes calculation of line width.
* plugins: label-freetype: Fix font alignment.
* populate-initrd: Install label-freetype plugin into initrd if
available.
* plugins: Add FreeType-based label plugin.
* ply-label: Don't crash if label plugin fails.
* details: Don't replay boot buffer on serial consoles.
* main: Add "reload" command.
* ply-device-manager: Add plymouth.force-frame-buffer-on-boot
parameter, allow to choose force framebuffer mode.
* systemd: Add mkinitcpio support to
plymouth-switch-root-initramfs.service.
* Rebase plymouth-only_use_fb_for_cirrus_bochs.patch;
for build success.
* Rebase plymouth-watermark-config.patch;
for build success.
* Drop 0001-Add-label-ft-plugin.patch;
for already merged by upstream.
* Drop 0002-Install-label-ft-plugin-into-initrd-if-available.patch
for already merged by upstream.
* Drop 0003-fix_null_deref.patch
for already merged by upstream.
* Drop 0004-label-ft-fix-alignment.patch
for already merged by upstream.
==== polkit-default-privs ====
Version update (1550+20221018.7616c25 -> 1550+20221102.9f111fa)
- Update to version 1550+20221102.9f111fa:
* allow local logged in users to change NetworkManager configuration,
keyboard layout and locale settings without entering a password (in the
easy profile).
==== polkit-kde-agent-5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: polkit-kde-agent-5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== powerdevil5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: powerdevil5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== protobuf ====
Version update (21.6 -> 21.9)
- update to 21.9:
* Ruby
* Replace libc strdup usage with internal impl to restore musl compat (#10818)
* Auto capitalize enums name in Ruby (#10454) (#10763)
* Other
* Fix for grpc.tools #17995 & protobuf #7474 (handle UTF-8 paths in argumentfile) (#10721)
* C++
* 21.x No longer define no_threadlocal on OpenBSD (#10743)
* Java
* Mark default instance as immutable first to avoid race during static initialization of default instances (#10771)
* Refactoring java full runtime to reuse sub-message builders and prepare to
migrate parsing logic from parse constructor to builder.
* Move proto wireformat parsing functionality from the private "parsing
constructor" to the Builder class.
* Change the Lite runtime to prefer merging from the wireformat into mutable
messages rather than building up a new immutable object before merging. This
way results in fewer allocations and copy operations.
* Make message-type extensions merge from wire-format instead of building up
instances and merging afterwards. This has much better performance.
* Fix TextFormat parser to build up recurring (but supposedly not repeated)
sub-messages directly from text rather than building a new sub-message and
merging the fully formed message into the existing field.
==== python-Deprecated ====
- Provid canonicalized lowercase name
- Don't catchall files section
==== python-PyJWT ====
Version update (2.5.0 -> 2.6.0)
- Clean up SPEC file.
- Update to 2.6.0
Changed
* bump up cryptography >= 3.4.0 by @jpadilla in #807
* Remove types-cryptography from crypto extra by @lautat in #805
Fixed
* Invalidate token on the exact second the token expires #797
* fix: version 2.5.0 heading typo by @c0state in #803
Added
* Adding validation for issued_at when iat > (now + leeway) as ImmatureSignatureError by @sriharan16 in #794
==== python-SQLAlchemy ====
Version update (1.4.41 -> 1.4.42)
- update to version 1.4.42:
* orm
+ The Session.execute.bind_arguments dictionary is no longer
mutated when passed to Session.execute() and similar; instead,
itâs copied to an internal dictionary for state changes. Among
other things, this fixes and issue where the âclauseâ passed to
the Session.get_bind() method would be incorrectly referring to
the Select construct used for the âfetchâ synchronization
strategy, when the actual query being emitted was a Delete or
Update. This would interfere with recipes for ârouting
sessionsâ. References: #8614
+ A warning is emitted in ORM configurations when an explicit
remote() annotation is applied to columns that are local to the
immediate mapped class, when the referenced class does not
include any of the same table columns. Ideally this would raise
an error at some point as itâs not correct from a mapping point
of view. References: #7094
+ A warning is emitted when attempting to configure a mapped class
within an inheritance hierarchy where the mapper is not given
any polymorphic identity, however there is a polymorphic
discriminator column assigned. Such classes should be abstract
if they never intend to load directly. References: #7545
+ Fixed regression for 1.4 in contains_eager() where the âwrap in
subqueryâ logic of joinedload() would be inadvertently triggered
for use of the contains_eager() function with similar statements
(e.g. those that use distinct(), limit() or offset()), which
would then lead to secondary issues with queries that used some
combinations of SQL label names and aliasing. This âwrappingâ is
not appropriate for contains_eager() which has always had the
contract that the user-defined SQL statement is unmodified with
the exception of adding the appropriate columns to be fetched.
References: #8569
+ Fixed regression where using ORM update() with
synchronize_session=âfetchâ would fail due to the use of
evaluators that are now used to determine the in-Python value
for expressions in the the SET clause when refreshing objects;
if the evaluators make use of math operators against non-numeric
values such as PostgreSQL JSONB, the non-evaluable condition
would fail to be detected correctly. The evaluator now limits
the use of math mutation operators to numeric types only, with
the exception of â+â that continues to work for strings as
well. SQLAlchemy 2.0 may alter this further by fetching the SET
values completely rather than using evaluation. References:
[#8507]
* engine
+ Fixed issue where mixing â*â with additional explicitly-named
column expressions within the columns clause of a select()
construct would cause result-column targeting to sometimes
consider the label name or other non-repeated names to be an
ambiguous target. References: #8536
* asyncio
+ Improved implementation of asyncio.shield() used in context
managers as added in #8145, such that the âcloseâ operation is
enclosed within an asyncio.Task which is then strongly
referenced as the operation proceeds. This is per Python
documentation indicating that the task is otherwise not strongly
referenced. References: #8516
* postgresql
+ aggregate_order_by now supports cache generation. References:
[#8574]
* mysql
+ Adjusted the regular expression used to match âCREATE VIEWâ when
testing for views to work more flexibly, no longer requiring the
special keyword âALGORITHMâ in the middle, which was intended to
be optional but was not working correctly. The change allows
view reflection to work more completely on MySQL-compatible
variants such as StarRocks. Pull request courtesy John Bodley.
References: #8588
* mssql
+ Fixed yet another regression in SQL Server isolation level fetch
(see #8231, #8475), this time with âMicrosoft Dynamics CRM
Database via Azure Active Directoryâ, which apparently lacks the
system_views view entirely. Error catching has been extended
that under no circumstances will this method ever fail, provided
database connectivity is present. References: #8525
- Also remove the conditional definition of python_module.
==== python-Twisted ====
Version update (22.4.0 -> 22.10.0)
Subpackages: python310-Twisted python310-Twisted-tls
- Update to 22.10.0:
* Features
+ twisted.internet.defer.maybeDeferred will now schedule a coroutine
result as asynchronous operation and return a Deferred that fires with
the result of the coroutine.
+ Twisted now works with Cryptography versions 37 and above, and as a
result, its minimum TLS protocol version has been upgraded to TLSv1.2.
+ The systemd: endpoint parser now supports "named" file descriptors. This
is a more reliable mechanism for choosing among several inherited
descriptors.
* Bugfixes
+ twisted.internet.base.DelayedCall.__repr__ will no longer raise
AttributeError if the DelayedCall was created before debug mode was
enabled. As a side-effect, twisted.internet.base.DelayedCall.creator is
now defined as None in cases where previously it was undefined.
+ twisted.internet.iocpreactor.udp now properly re-queues its listener
when there is a failure condition on the read from the socket.
+ twisted.internet.defer.inlineCallbacks no longer causes confusing
StopIteration tracebacks to be added to the top of tracebacks
originating in triggered callbacks.
+ The typing of twisted.internet.task.react no longer constrains the
type of argv.
+ ContextVar.reset() now works correctly inside inlineCallbacks functions
and coroutines.
+ Implement twisted.python.failure._Code.co_positions for compatibility
with Python 3.11.
+ twisted.pair.tuntap._TUNSETIFF and ._TUNGETIFF values are now correct
parisc, powerpc and sparc architectures.
+ twisted.web.vhost.NameVirtualHost will no longerreturn a NoResource
error. (bsc#1204781, CVE-2022-39348)
* Deprecations and Removals
+ Python 3.6 is no longer supported.
+ Twisted 22.4.0 was the last version with support for Python 3.6.
+ twisted.protocols.dict, which was deprecated in 17.9, has been removed.
- Remove Python 3.6 Requires.
- Drop patch skip-namespacewithwhitespace.patch, no longer required.
- Refresh all patches.
==== python-charset-normalizer ====
Version update (2.1.1 -> 3.0.0)
- Update to 3.0.0
Added
* Extend the capability of explain=True when cp_isolation contains at most two entries (min one), will log in details of the Mess-detector results
Support for alternative language frequency set in charset_normalizer.assets.FREQUENCIES
Add parameter language_threshold in from_bytes, from_path and from_fp to adjust the minimum expected coherence ratio
normalizer --version now specify if current version provide extra speedup (meaning mypyc compilation whl)
* Changed
Build with static metadata using 'build' frontend
Make the language detection stricter
Optional: Module md.py can be compiled using Mypyc to provide an extra speedup up to 4x faster than v2.1
* Fixed
CLI with opt --normalize fail when using full path for files
TooManyAccentuatedPlugin induce false positive on the mess detection when too few alpha character have been fed to it
Sphinx warnings when generating the documentation
* Removed
Coherence detector no longer return 'Simple English' instead return 'English'
Coherence detector no longer return 'Classical Chinese' instead return 'Chinese'
Breaking: Method first() and best() from CharsetMatch
UTF-7 will no longer appear as "detected" without a recognized SIG/mark (is unreliable/conflict with ASCII)
Breaking: Class aliases CharsetDetector, CharsetDoctor, CharsetNormalizerMatch and CharsetNormalizerMatches
Breaking: Top-level function normalize
Breaking: Properties chaos_secondary_pass, coherence_non_latin and w_counter from CharsetMatch
Support for the backport unicodedata2
==== python-cryptography ====
Version update (38.0.1 -> 38.0.3)
- update to 38.0.3:
- Updated Windows, macOS, and Linux wheels to be compiled
with OpenSSL 3.0.7, which resolves CVE-2022-3602 and
CVE-2022-3786.
==== python-lark ====
Version update (1.1.2 -> 1.1.3)
- Update to v1.1.3
Various fixes and refactors
* Add user to cache filename; better handle cache load/save failures by @klauer in #1179
* refactor: add 'usedforsecurity=False' arg to hashlib.md5 usage by @cquick01 in #1190
* Create lark/grammars/init.py by @chanicpanic in #1171
* Adjust imports for Python 3.11 by @The-Compiler in #1140
* Fix for issue #1173 by @erezsh in #1198
* Add match stmt support to python.lark by @joseph-e-k in #1123
* Added match stmt support to python.lark by @MegaIng in #1016
* Linting to fix minor issues by @Erotemic in #1128
* Simplify lexer: Use Match.lastgroup instead of lastindex by @erezsh in #1129
* Fix confusing import in examples by @JonasLoos in #1138
* Move iter_subtrees_topdown into standalone by @camgunz in #1137
* Fix 1146: use the class's get instead of the instance's get by @MegaIng in #1147
* fix: remove Python 2 legacy packaging code by @henryiii in #1148
* Fix for PR #1149 by @erezsh in #1150
* Old link for sppf is no longer valid. Point to web archive instead. by @patrickhuber in #1159
* Fix ForestToPyDotVisitor by @chanicpanic in #1167
* Close file-like objects to address ResourceWarning. by @shawnbrown in #1183
* Minor adjustments to PR #1179 by @erezsh in #1189
* Adjustments for PR #1152 by @erezsh in #1191
* Remove trailing whitespace by @bcr in #1196
==== python-numpy ====
Version update (1.21.6 -> 1.23.4)
- Update to 1.23.4
* NumPy 1.23.4 is a maintenance release that fixes bugs
discovered after the 1.23.3 release and keeps the build
infrastructure current. The main improvements are fixes for
some annotation corner cases, a fix for a long time
nested_iters memory leak, and a fix of complex vector dot for
very large arrays. The Python versions supported for this
release are 3.8-3.11.
- Revert some spec-cleaner "Verschlimmbesserungen"
- Remove old unused directives for Python <=3.6 from specfile
- specfile:
* remove patch numpy-fix-cpu_asimdfhm.patch, included upstream
* update line numbers for other patches
* require c++ compiler
- update to version 1.23.3:
* #22136: BLD: Add Python 3.11 wheels to aarch64 build
* #22148: MAINT: Update setup.py for Python 3.11.
* #22155: CI: Test NumPy build against old versions of GCC(6, 7, 8)
* #22156: MAINT: support IBM i system
* #22195: BUG: Fix circleci build
* #22214: BUG: Expose heapsort algorithms in a shared header
* #22215: BUG: Support using libunwind for backtrack
* #22216: MAINT: fix an incorrect pointer type usage in f2py
* #22220: BUG: change overloads to play nice with pyright.
* #22221: TST,BUG: Use fork context to fix MacOS savez test
* #22222: TYP,BUG: Reduce argument validation in C-based
__class_getitem__
* #22223: TST: ensure np.equal.reduce raises a TypeError
* #22224: BUG: Fix the implementation of numpy.array_api.vecdot
* #22230: BUG: Better report integer division overflow (backport)
- changes from version 1.23.2:
* #22030: ENH: Add __array_ufunc__ typing support to the nin=1
ufuncs
* #22031: MAINT, TYP: Fix np.angle dtype-overloads
* #22032: MAINT: Do not let _GenericAlias wrap the underlying
classes'...
* #22033: TYP,MAINT: Allow einsum subscripts to be passed via
integer...
* #22034: MAINT,TYP: Add object-overloads for the np.generic rich
comparisons
* #22035: MAINT,TYP: Allow the squeeze and transpose method to...
* #22036: BUG: Fix subarray to object cast ownership details
* #22037: BUG: Use Popen to silently invoke f77 -v
* #22038: BUG: Avoid errors on NULL during deepcopy
* #22039: DOC: Add versionchanged for converter callable behavior.
* #22057: MAINT: Quiet the anaconda uploads.
* #22078: ENH: reorder includes for testing on top of system
installations...
* #22106: TST: fix test_linear_interpolation_formula_symmetric
* #22107: BUG: Fix skip condition for
test_loss_of_precision[complex256]
* #22115: BLD: Build python3.11.0rc1 wheels.
- changes from version 1.23.1:
* #21866: BUG: Fix discovered MachAr (still used within valgrind)
* #21867: BUG: Handle NaNs correctly for float16 during sorting
* #21868: BUG: Use keepdims during normalization in np.average
and...
* #21869: DOC: mention changes to max_rows behaviour in np.loadtxt
* #21870: BUG: Reject non integer array-likes with size 1 in delete
* #21949: BLD: Make can_link_svml return False for 32bit builds on
x86_64
* #21951: BUG: Reorder extern "C" to only apply to function
declarations...
* #21952: BUG: Fix KeyError in crackfortran operator support
- changes from version 1.23.0:
* long changelog
https://github.com/numpy/numpy/blob/main/doc/changelog/1.23.0-changelog.rst
- changes from version 1.22.4:
* #21191: TYP, BUG: Fix np.lib.stride_tricks re-exported under
the...
* #21192: TST: Bump mypy from 0.931 to 0.940
* #21243: MAINT: Explicitly re-export the types in numpy._typing
* #21245: MAINT: Specify sphinx, numpydoc versions for CI doc builds
* #21275: BUG: Fix typos
* #21277: ENH, BLD: Fix math feature detection for wasm
* #21350: MAINT: Fix failing simd and cygwin tests.
* #21438: MAINT: Fix failing Python 3.8 32-bit Windows test.
* #21444: BUG: add linux guard per #21386
* #21445: BUG: Allow legacy dtypes to cast to datetime again
* #21446: BUG: Make mmap handling safer in frombuffer
* #21447: BUG: Stop using PyBytesObject.ob_shash deprecated in
Python 3.11.
* #21448: ENH: Introduce numpy.core.setup_common.NPY_CXX_FLAGS
* #21472: BUG: Ensure compile errors are raised correclty
* #21473: BUG: Fix segmentation fault
* #21474: MAINT: Update doc requirements
* #21475: MAINT: Mark npy_memchr with no_sanitize("alignment") on
clang
* #21512: DOC: Proposal - make the doc landing page cards more
similar...
* #21525: MAINT: Update Cython version to 0.29.30.
* #21536: BUG: Fix GCC error during build configuration
* #21541: REL: Prepare for the NumPy 1.22.4 release.
* #21547: MAINT: Skip tests that fail on PyPy.
- changes from version 1.22.3:
* #21048: MAINT: Use "3.10" instead of "3.10-dev" on travis.
* #21106: TYP,MAINT: Explicitly allow sequences of array-likes in
np.concatenate
* #21137: BLD,DOC: skip broken ipython 8.1.0
... changelog too long, skipping 70 lines ...
https://github.com/numpy/numpy/blob/main/doc/changelog/1.22.0-changelog.rst
==== python-oauthlib ====
Version update (3.2.1 -> 3.2.2)
- update to version 3.2.2:
* OAuth2.0 Provider: * CVE-2022-36087
- Also remove the conditional definition of python_module.
==== python-psutil ====
Version update (5.9.2 -> 5.9.3)
- update to version 5.9.3:
* Enhancements
+ 2040, [macOS]: provide wheels for arm64 architecture. (patch by
Matthieu Darbois)
* Bug fixes
+ 2116, [macOS], [critical]: `psutil.net_connections`_ fails with
RuntimeError.
+ 2135, [macOS]: Process.environ() may contain garbage data. Fix
out-of-bounds read around sysctl_procargs. (patch by Bernhard
Urban-Forster)
+ 2138, [Linux], [critical]: can't compile psutil on Android due
to undefined ethtool_cmd_speed symbol.
+ 2142, [POSIX]: net_if_stats() 's flags on Python 2 returned
unicode instead of str. (patch by Matthieu Darbois)
+ 2147, [macOS] Fix disk usage report on macOS 12+. (patch by
Matthieu Darbois)
+ 2150, [Linux] Process.threads() may raise NoSuchProcess. Fix
race condition. (patch by Daniel Li)
+ 2153, [macOS] Fix race condition in
test_posix.TestProcess.test_cmdline. (patch by Matthieu Darbois)
==== python-pyOpenSSL ====
Version update (22.0.0 -> 22.1.0)
- Upstream post-release doc fix (gh#pyca/pyopenssl#1150)
* The minimum cryptography version is now 38.0.x (and we now pin
releases against cryptography major versions to prevent future
breakage)
- Add pyOpenSSL-pr1158-conditional-__all__.patch
gh#pyca/pyopenssl#1158
- update to 22.1.0:
* Remove support for SSLv2 and SSLv3.
* The minimum ``cryptography`` version is now 37.0.2.
* The ``OpenSSL.crypto.X509StoreContextError`` exception has been refactored,
changing its internal attributes.
* Add ``OpenSSL.SSL.Connection.set_verify`` and ``OpenSSL.SSL.Connection.get_verify_mode``
to override the context object's verification flags.
* Add ``OpenSSL.SSL.Connection.use_certificate`` and
``OpenSSL.SSL.Connection.use_privatekey``
to set a certificate per connection (and not just per context)
==== python-pymongo ====
Version update (4.2.0 -> 4.3.2)
- Update to 4.3.2
Complete Changelog https://pymongo.readthedocs.io/en/4.3.2/changelog.html
==== python-pytz ====
Version update (2022.4 -> 2022.5)
- Update to 2022.5
* IANA 2022e
Squashed 'tz/' changes from 0fc8f915a..16bd7a384
c4eb3fcf2 Release 2022e
842ad565d Add Jordan URL from Brian Inglis
3aa74b7f7 Jordan to switch from +02/+03 with DST to plain +03
59aa97e8e Syria to switch from +02/+03 with DST to plain +03
f29068291 Prefer UT for whole-hour UT transitions
7f860c0fe Circa-1922 Mexico fixes
ff2e2a09a Treat 1931 changes in Mexico as DST
==== python-requests ====
- allow using newest version of charset-normalizer (3.0+)
* requests-allow-charset-normalizer-3.patch
==== python-typing_extensions ====
Version update (4.3.0 -> 4.4.0)
- Clean specfile from old cruft.
- Requires Python 3.7+
- Fix testsuite: Must test as module; don't need multibuild.
- Update Summary and Description
- Update to version 4.4.0
* Add `typing_extensions.Any` a backport of python 3.11's Any class which is
subclassable at runtime. (backport from python/cpython#31841, by Shantanu
and Jelle Zijlstra). Patch by James Hilton-Balfe (@Gobot1234).
* Add initial support for TypeVarLike `default` parameter, PEP 696.
Patch by Marc Mueller (@cdce8p).
* Runtime support for PEP 698, adding `typing_extensions.override`. Patch by
Jelle Zijlstra.
* Add the `infer_variance` parameter to `TypeVar`, as specified in PEP 695.
Patch by Jelle Zijlstra.
==== python-urllib3 ====
- Fix pycache when undbundling six
==== python-zope.interface ====
Version update (5.4.0 -> 5.5.0)
- Update to version 5.5.0
* Add support for Python 3.10 and 3.11 (as of 3.11.0rc2).
* Add missing Trove classifier showing support for Python 3.9.
* Add some more entries to zope.interface.interfaces.__all__.
* Disable unsafe math optimizations in C code. See pull request 262.
==== python310 ====
Version update (3.10.7 -> 3.10.8)
Subpackages: python310-curses python310-dbm
- Add CVE-2022-42919-loc-priv-mulitproc-forksrv.patch to avoid
CVE-2022-42919 (bsc#1204886) avoiding Linux specific local
privilege escalation via the multiprocessing forkserver start
method.
- Add 98437-sphinx.locale._-as-gettext-in-pyspecific.patch to
allow building of documentation with the latest Sphinx 5.3.0
(gh#python/cpython#98366).
- Update to 3.10.8:
- Fix multiplying a list by an integer (list *= int): detect
the integer overflow when the new allocated length is close
to the maximum size.
- Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no
longer uses a shell to run openssl commands. (originally
filed as CVE-2022-37460, later withdrawn)
- Fix command line parsing: reject -X int_max_str_digits option
with no value (invalid) when the PYTHONINTMAXSTRDIGITS
environment variable is set to a valid limit.
- When ValueError is raised if an integer is larger than the
limit, mention the sys.set_int_max_str_digits() function in
the error message.
- The deprecated mailcap module now refuses to inject unsafe
text (filenames, MIME types, parameters) into shell
commands. Instead of using such text, it will warn and act
as if a match was not found (or for test commands, as if the
test failed).
- os.sched_yield() now release the GIL while calling
sched_yield(2).
- Bugfix: PyFunction_GetAnnotations() should return a borrowed
reference. It was returning a new reference.
- Fixed a missing incref/decref pair in
Exception.__setstate__().
- Fix overly-broad source position information for chained
comparisons used as branching conditions.
- Fix undefined behaviour in _testcapimodule.c.
- At Python exit, sometimes a thread holding the GIL can
wait forever for a thread (usually a daemon thread) which
requested to drop the GIL, whereas the thread already
exited. To fix the race condition, the thread which requested
the GIL drop now resets its request before exiting.
- Fix a possible assertion failure, fatal error, or SystemError
if a line tracing event raises an exception while opcode
tracing is enabled.
- Fix undefined behaviour in C code of null pointer arithmetic.
- Do not expose KeyWrapper in _functools.
- When loading a file with invalid UTF-8 inside a multi-line
string, a correct SyntaxError is emitted.
- Disable incorrect pickling of the C implemented classmethod
descriptors.
- Fix AttributeError missing name and obj attributes in .
object.__getattribute__() bpo-42316: Document some places .
where an assignment expression needs parentheses .
- Wrap network errors consistently in urllib FTP support, so
the test suite doesnât fail when a network is available but
the public internet is not reachable.
- Fixes AttributeError when subprocess.check_output() is used
with argument input=None and either of the arguments encoding
or errors are used.
- Avoid spurious tracebacks from asyncio when default executor
cleanup is delayed until after the event loop is closed (e.g.
as the result of a keyboard interrupt).
- Avoid a crash in the C version of
asyncio.Future.remove_done_callback() when an evil argument
is passed.
- Remove tokenize.NL check from tabnanny.
- Make Semaphore run faster.
- Fix generation of the default name of
tkinter.Checkbutton. Previously, checkbuttons in different
parent widgets could have the same short name and share
the same state if arguments ânameâ and âvariableâ are not
specified. Now they are globally unique.
- Update bundled libexpat to 2.4.9
- Fix race condition in asyncio where process_exited() called
before the pipe_data_received() leading to inconsistent
output.
- Fixed check in multiprocessing.resource_tracker that
guarantees that the length of a write to a pipe is not
greater than PIPE_BUF.
- Corrected type annotation for dataclass attribute
pstats.FunctionProfile.ncalls to be str.
- Fix the faulthandler implementation of
faulthandler.register(signal, chain=True) if the sigaction()
function is not available: donât call the previous signal
handler if itâs NULL.
- In inspect, fix overeager replacement of âtyping.â in
formatting annotations.
- Fix asyncio.streams.StreamReaderProtocol to keep a strong
reference to the created task, so that itâs not garbage
collected
- Fix handling compiler warnings (SyntaxWarning and
DeprecationWarning) in codeop.compile_command() when checking
for incomplete input. Previously it emitted warnings and
raised a SyntaxError. Now it always returns None for
incomplete input without emitting any warnings.
- Fixed flickering of the turtle window when the tracer is
turned off.
- Allow asyncio.StreamWriter.drain() to be awaited concurrently
by multiple tasks.
- Fix broken asyncio.Semaphore when acquire is cancelled.
... changelog too long, skipping 14 lines ...
- Remove upstreamed test-int-timing.patch.
==== python310-core ====
Version update (3.10.7 -> 3.10.8)
Subpackages: libpython3_10-1_0 python310-base
- Add CVE-2022-42919-loc-priv-mulitproc-forksrv.patch to avoid
CVE-2022-42919 (bsc#1204886) avoiding Linux specific local
privilege escalation via the multiprocessing forkserver start
method.
- Add 98437-sphinx.locale._-as-gettext-in-pyspecific.patch to
allow building of documentation with the latest Sphinx 5.3.0
(gh#python/cpython#98366).
- Update to 3.10.8:
- Fix multiplying a list by an integer (list *= int): detect
the integer overflow when the new allocated length is close
to the maximum size.
- Fix a shell code injection vulnerability in the
get-remote-certificate.py example script. The script no
longer uses a shell to run openssl commands. (originally
filed as CVE-2022-37460, later withdrawn)
- Fix command line parsing: reject -X int_max_str_digits option
with no value (invalid) when the PYTHONINTMAXSTRDIGITS
environment variable is set to a valid limit.
- When ValueError is raised if an integer is larger than the
limit, mention the sys.set_int_max_str_digits() function in
the error message.
- The deprecated mailcap module now refuses to inject unsafe
text (filenames, MIME types, parameters) into shell
commands. Instead of using such text, it will warn and act
as if a match was not found (or for test commands, as if the
test failed).
- os.sched_yield() now release the GIL while calling
sched_yield(2).
- Bugfix: PyFunction_GetAnnotations() should return a borrowed
reference. It was returning a new reference.
- Fixed a missing incref/decref pair in
Exception.__setstate__().
- Fix overly-broad source position information for chained
comparisons used as branching conditions.
- Fix undefined behaviour in _testcapimodule.c.
- At Python exit, sometimes a thread holding the GIL can
wait forever for a thread (usually a daemon thread) which
requested to drop the GIL, whereas the thread already
exited. To fix the race condition, the thread which requested
the GIL drop now resets its request before exiting.
- Fix a possible assertion failure, fatal error, or SystemError
if a line tracing event raises an exception while opcode
tracing is enabled.
- Fix undefined behaviour in C code of null pointer arithmetic.
- Do not expose KeyWrapper in _functools.
- When loading a file with invalid UTF-8 inside a multi-line
string, a correct SyntaxError is emitted.
- Disable incorrect pickling of the C implemented classmethod
descriptors.
- Fix AttributeError missing name and obj attributes in .
object.__getattribute__() bpo-42316: Document some places .
where an assignment expression needs parentheses .
- Wrap network errors consistently in urllib FTP support, so
the test suite doesnât fail when a network is available but
the public internet is not reachable.
- Fixes AttributeError when subprocess.check_output() is used
with argument input=None and either of the arguments encoding
or errors are used.
- Avoid spurious tracebacks from asyncio when default executor
cleanup is delayed until after the event loop is closed (e.g.
as the result of a keyboard interrupt).
- Avoid a crash in the C version of
asyncio.Future.remove_done_callback() when an evil argument
is passed.
- Remove tokenize.NL check from tabnanny.
- Make Semaphore run faster.
- Fix generation of the default name of
tkinter.Checkbutton. Previously, checkbuttons in different
parent widgets could have the same short name and share
the same state if arguments ânameâ and âvariableâ are not
specified. Now they are globally unique.
- Update bundled libexpat to 2.4.9
- Fix race condition in asyncio where process_exited() called
before the pipe_data_received() leading to inconsistent
output.
- Fixed check in multiprocessing.resource_tracker that
guarantees that the length of a write to a pipe is not
greater than PIPE_BUF.
- Corrected type annotation for dataclass attribute
pstats.FunctionProfile.ncalls to be str.
- Fix the faulthandler implementation of
faulthandler.register(signal, chain=True) if the sigaction()
function is not available: donât call the previous signal
handler if itâs NULL.
- In inspect, fix overeager replacement of âtyping.â in
formatting annotations.
- Fix asyncio.streams.StreamReaderProtocol to keep a strong
reference to the created task, so that itâs not garbage
collected
- Fix handling compiler warnings (SyntaxWarning and
DeprecationWarning) in codeop.compile_command() when checking
for incomplete input. Previously it emitted warnings and
raised a SyntaxError. Now it always returns None for
incomplete input without emitting any warnings.
- Fixed flickering of the turtle window when the tracer is
turned off.
- Allow asyncio.StreamWriter.drain() to be awaited concurrently
by multiple tasks.
- Fix broken asyncio.Semaphore when acquire is cancelled.
... changelog too long, skipping 14 lines ...
- Remove upstreamed test-int-timing.patch.
==== qca-qt5 ====
Version update (2.3.4 -> 2.3.5)
Subpackages: libqca-qt5-2 qca-qt5-plugins
- BR ca-certificates-mozilla for the testsuite
- Have the devel package require the library
- Drop qca-2.3.0-fixDSA.patch, that was fixed in 2014 already by
just disabling DSA
- Add upstream change:
* 0001-hashunittest-run-sha384longtest-only-for-providers-t.patch
- Update to 2.3.5
* find dependencies of Qca when the cmake package is used by a
project
* Handle openssl without case5 support
* Update rootcerts.pem
* SafeSocketNotifier: fix socket FD type and remove signal
argument
- Drop patch, merged upstream:
* 0001-Make-filewatchunittest-much-quicker.patch
==== qemu ====
- qtests test are not realiable when run inside OBS builders, so
let's disable that part of the testsuite for now. There is work
ongoing to run it somewhere else (on dedicated hosts) to avoid
loosing coverage. (bsc#1204566)
- Improve dependency handling (e.g., what's recommended vs. what's
required.
- Add a subpackage (qemu-headless) that brings in all the packages
that are needed for creating VMs with tools like virt-install
or VirtManager, run either locally or from a remote host.
(bsc#1202166)
- Build fails due to exceeding 10 GB disk limit (10430 MB):
raise disk space contraint to 12 GB
==== raspberrypi-firmware ====
Version update (2022.10.18 -> 2022.10.26)
- Update to 13691cee9 (2022-10-26):
* firmware: arm_loader: Add vcmailbox support for 256bit OTP
customer device key
See: raspberrypi/usbboot#163
* firmware: il: video_encode: MJPEG is not conditional on
being RASPBERRYPI_FULL
==== raspberrypi-firmware-config ====
Version update (2022.10.18 -> 2022.10.26)
- Update to 13691cee9 (2022-10-26):
* firmware: arm_loader: Add vcmailbox support for 256bit OTP
customer device key
See: raspberrypi/usbboot#163
* firmware: il: video_encode: MJPEG is not conditional on
being RASPBERRYPI_FULL
==== raspberrypi-firmware-dt ====
Version update (2022.10.03 -> 2022.10.26)
- Update to 692039799e78 (2022-10-26)
==== redis ====
- Fix CVE-2022-3647, crash in sigsegvHandler debug function
(CVE-2022-3647, bsc#1204633)
* cve-2022-3647.patch
==== rgb ====
Version update (1.0.6 -> 1.1.0)
- Update to version 1.1.0
* This release adds a new configure option --with-rgb-db-library to allow
builders more control over which dbm or ndbm compatible library is used
if --with-rgb-db-type is set to one of the non-default database options
instead of the default of "text". The --with-rgb-db-library option can
allow use of libraries that are not normally searched for (gdbm_compat)
or to bypass libraries we do normally search for (like Berkeley db).
==== rubygem-nokogiri ====
Version update (1.13.8 -> 1.13.9)
updated to version 1.13.9
see installed CHANGES.md
==== rust-keylime ====
Version update (0.1.0+git.1664480840.0ea0492 -> 0.1.0+git.1666019359.f5de47b)
- Add cargo-audit service per policy
- Update to version 0.1.0+git.1666019359.f5de47b:
* README: mark Rust agent as the official one, fix cargo run command
==== samba ====
Version update (4.17.1+git.270.17afe7cb6b -> 4.17.2+git.273.a55a83528b9)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- Update to 4.17.2
* CVE-2022-3592 [SECURITY] samba: Wide links protection broken;
(bso#15207); (bsc#1204499).
* CVE-2022-3437 [SECURITY] samba: Buffer overflow in Heimdal
unwrap_des3();(bso#15134); (bsc#1204254).
==== sddm ====
Subpackages: sddm-branding-openSUSE
- Add patch to avoid launching xdg-desktop-portal by accident:
* 0001-disable-automatic-portal-launching.patch
==== sessreg ====
Version update (1.1.2 -> 1.1.3)
- Update to version 1.1.3
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* gitlab CI: stop requiring Signed-off-by in commits
* Fix -Wstringop-truncation warnings in safe_strncpy()
==== sg3_utils ====
Version update (1.47+5.d13bc56 -> 1.48~20221101.6d3bd26)
- Update to new upstream version 1.48~20221101.6d3bd26:
(pre-release sg3_utils-1.48 [20221101] [svn: r978])
* sg_read_block_limits: fix granularity value, add --mloi option; sg_lib: add sg_ll_read_block_limits_v2(); sg_logs: json work
* sg_stream_ctl: --get fix better; sg_rem_rest_elem: cleanup
* sg_stream_ctl: fix --get indexing; fix some './configure --enable-debug' issues
* sg_inq+sg_vpd: JSON updates
* rescan-scsi-bus: speed large multipath scans
* rescan-scsi-bus.sh speed testonline()
* rescan-scsi-bus.sh: add option --no-lip-scan
* rescan-scsi-bus: sgdevice26: do not traverse sg class if scsi_device isnot added
* rescan-scsi-bus.sh: fix handling of '-I <secs>' option
* Prepare for removing /proc/scsi from the Linux kernel
* sg_inq+sg_vpd: merge VPD page processing
* sg_get_elem_status: change '--maxlen=' option default to 1056 (was 32), other cleanups
* sg_rep_zones: add experimental --json[=JO] option and generation
* sg_logs: add --exclude and --undefined options
* zoned disk man page improvements
* sg_rep_zones: add --statistics option
* sg_read_buffer: add --eh_code= and --no_output options
* sg_format: allow disk formats on ZBC (zoned) disks
* sg_rep_zones: add --brief option and --find ZT option
* sg_rep_density: new utility for decoding the response of Report density support command [ssc (tape)]
* Zoned block device characteristics VPD page support
==== shadow ====
Subpackages: libsubid4 login_defs
- bsc#1204811: Fix chage date format string regression
* Add shadow-chage-format.patch
- Add shadow-prefix-overflow.patch:
Fix buffer overflow when calling useradd with --prefix
See https://github.com/shadow-maint/shadow/pull/588
==== signon-kwallet-extension ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== sqlite3 ====
Version update (3.39.3 -> 3.39.4)
Subpackages: libsqlite3-0 sqlite3-tcl
- update to 3.39.4:
* Fix a long-standing problem in the btree balancer that might,
in rare cases, cause database corruption if the application
uses an application-defined page cache
* Enhance SQLITE_DBCONFIG_DEFENSIVE so that it disallows
CREATE TRIGGER statements if one or more of the statements in
the body of the trigger write into shadow tables
* Fix a possible integer overflow in the size computation for a
memory allocation in FTS3.
* Fix a misuse of the sqlite3_set_auxdata() interface in the ICU
Extension
==== strace ====
Version update (5.19 -> 6.0)
- Update to strace 6.0
* Enhanced decoding of PTP_* ioctl commands.
* Updated decoding of setns syscall.
* Updated lists of BPF_*, BTRFS_*, FAN_*, ETH_P_*, KVM_*, NDTPA_*,
NT_*, PERF_*, and TLS_INFO_* constants.
* Updated lists of ioctl commands from Linux 6.0.
==== sudo ====
Version update (1.9.11p3 -> 1.9.12)
Subpackages: sudo-plugin-python
- Added sudo-CVE-2022-43995.patch
* CVE-2022-43995
* bsc#1204986
* Fixed a potential heap-based buffer over-read when entering a password
of seven characters or fewer and using the crypt() password backend.
- Update to 1.9.12:
* Dropped sudo-1.9.10-update_sudouser_to_utf8.patch
* Changes in Sudo 1.9.12:
* Fixed a bug when logging the commandâs exit status in intercept mode.
The wrong command could be logged with the exit status.
* For ptrace-based intercept mode, sudo will now attempt to verify that
the command path name, arguments and environment have not changed from
the time when they were authorized by the security policy. The new
intercept_verify sudoers setting can be used to control this behavior.
* Fixed running commands with a relative path (e.g. ./foo) in intercept
mode. Previously, this would fail if sudoâs current working directory
was different from that of the command.
* Sudo now supports passing the execve(2) system call the NULL pointer
for the argv and/or envp arguments when in intercept mode. Linux treats
a NULL pointer like an empty array.
* The sudoers LDAP schema now allows sudoUser, sudoRunasUser and
sudoRunasGroup to include UTF-8 characters, not just 7-bit ASCII.
* Fixed a problem with sudo -i on SELinux when the target userâs home
directory is not searchable by sudo. GitHub issue #160.
* Neovim has been added to the list of visudo editors that support passing
the line number on the command line.
* Fixed a bug in sudoâs SHA384 and SHA512 message digest padding.
* Added a new -N (no-update) command line option to sudo which can be used
to prevent sudo from updating the userâs cached credentials. It is now
possible to determine whether or not a userâs cached credentials are
currently valid by running:
$ sudo -Nnv
and checking the exit value. One use case for this is to indicate in a
shell prompt that sudo is âactiveâ for the user.
* PAM approval modules are no longer invoked when running sub-commands in
intercept mode unless the intercept_authenticate option is set. There is
a substantial performance penalty for calling into PAM for each command
run. PAM approval modules are still called for the initial command.
* Intercept mode on Linux now uses process_vm_readv(2) and process_vm_writev(2)
if available.
* The XDG_CURRENT_DESKTOP environment variable is now preserved by default.
This makes it possible for graphical applications to choose the correct
theme when run via sudo.
* On 64-bit systems, if sudo fails to load a sudoers group plugin, it will
use system-specific heuristics to try to locate a 64-bit version of the plugin.
* The cvtsudoers manual now documents the JSON and CSV output formats.
GitHub issue #172.
* Fixed a bug where sub-commands were not being logged to a remote log server
when log_subcmds was enabled. GitHub issue #174.
* The new log_stdin, log_stdout, log_stderr, log_ttyin, and log_ttyout
sudoers settings can be used to support more fine-grained I/O logging.
The sudo front-end no longer allocates a pseudo-terminal when running a
command if the I/O logging plugin requests logging of stdin, stdout, or
stderr but not terminal input/output.
* Quieted a libgcrypt run-time initialization warning. This fixes Debian
bug #1019428 and Ubuntu bug #1397663.
* Fixed a bug in visudo that caused literal backslashes to be removed from
the EDITOR environment variable. GitHub issue #179.
* The sudo Python plugin now implements the find_spec method instead of the
the deprecated find_module. This fixes a test failure when a newer version
of setuptools that doesnât include find_module is found on the system.
* Fixed a bug introduced in sudo 1.9.9 where sudo_logsrvd created the process
ID file, usually /var/run/sudo/sudo_logsrvd.pid, as a directory instead of a
plain file. The same bug could result in I/O log directories that end in six
or more Xâs being created literally in addition to the name being used as a
template for the mkdtemp(3) function.
* Fixed a long-standing bug where a sudoers rule with a command line argument
of ââ, which indicates the command may be run with no arguments, would also
match a literal "" on the command line. GitHub issue #182.
* Added the -I option to visudo which only edits the main sudoers file. Include
files are not edited unless a syntax error is found.
* Fixed sudo -l -U otheruser output when the runas list is empty. Previously,
sudo would list the invoking user instead of the list user. GitHub issue #183.
* Fixed the display of command tags and options in sudo -l output when the RunAs
user or group changes. A new line is started for RunAs changes which means we
need to display the command tags and options again. GitHub issue #184.
* The sesh helper program now uses getopt_long(3) to parse the command line options.
* The embedded copy of zlib has been updated to version 1.2.13.
* Fixed a bug that prevented event log data from being sent to the log server when
I/O logging was not enabled. This only affected systems without PAM or
configurations where the pam_session and pam_setcred options were disabled in
the sudoers file.
* Fixed a bug where sudo -l output included a carriage return after the newline.
This is only needed when displaying to a terminal in raw mode. Bug #1042.
==== suse-module-tools ====
Version update (16.0.23 -> 16.0.26)
* Revert "Split kernel scriptlets into separate sub-package"
(that change broke some package builds on OBS)
- Update to version 16.0.25:
* 80-hotplug-cpu-mem.rules: restrict cpu rule to x86_64 (bsc#1204423)
- Update to version 16.0.24:
* Split kernel scriptlets into separate sub-package
"suse-module-tools-scriptlets" on Tumbleweed
(gh#openSUSE/suse-module-tools#64)
==== syslogd ====
Version update (1.4.1 -> 1.5.1)
- Update ot version 1.5.1
ChangeLog for version 1.5.1
Many thanks to Rainer Gerhards, rsyslog project lead, for
identifying a problem with how rsyslog's rsyslogd and sysklogd's
syslogd check for invalid priority values (CVE-2014-3634).
ChangeLog for version 1.5
* Fix file descriptor leak in klogd
* Improve argument list processing
* Prevent potential buffer overflow in reading messages from the
kernel log ringbuffer
* Ensure that "len" is not placed in a register, and that the endtty()
signal handler is not installed too early which could cause a
segmentation fault or worse
* klogd will reconnect to the logger (mostly syslogd) after it went
away during operation
* On heavily loaded system syslog will not spit out error messages
anymore when recvfrom() results in EAGAIN
* Makefile improvements
* Local copy of module.h
* Improved manpage
* Always log with syslogd's timezone and locale
* Remove trailing newline when forwarding messages
* Continue working properly if /etc/service is missing and ignore
network activity
* Continue writing to log files as soon as space becomes available
again after a filled up disk
* Removed test to detect control characters> 0x20 as this prevented
characters encoded in UTF-8 to be properly passed through
* Only resolve the local domain when accepting messages from remote
* Properly accompany the MARK message with the facility
* Improved daemonise routine in klogd to stabilise startup
* klogd will not change the console log level anymore unless -c is given
* Added back /usr/src/linux/System.map as fall-back location
* Rewrite the module symbol parser to read from /proc/kallsyms
* Notify the waiting parent process if the client dies
* Complete rewrite of the oops kernel module for Linux 2.6
* Only read kernel symbols from /proc/kallsyms if no System.map
has been read
* Improved symbol lookup
* Prevent named pipes from becoming the controlling tty
* Fixing a race condition in syslogd discovered in UML
* Improved README.linux
* Added boundary checks in klogd
* Don't block on the network socket in case of packet loss
* Don't crash when filesize limit is reached (e.g. without LFS)
* Fix spurious hanging syslogd in connection with futex and NPTL
introduced in recent glibc versions and Linux 2.6 (details)
* Improved syslog.conf(5) manpage
* Use socklen_t where appropriate
* Use newer query_module function rather than stepping through /dev/kmem.
* Remove special treatment of the percent sign in klogd
- Remove patches now upstream solved
* klogd-obsolete.patch
* sysklogd-1.4.1-fileleak.patch
* sysklogd-1.4.1-ksym.patch
* sysklogd-1.4.1-no_SO_BSDCOMPAT.diff
* sysklogd-1.4.1-owl-crunch_list.diff
* sysklogd-1.4.1-preserve_percents.patch
* sysklogd-1.4.1-utf8.patch
- Port patches
* sysklogd-1.4.1-CVE-2014-3634.patch
* sysklogd-1.4.1-clearing.patch
* sysklogd-1.4.1-dgram.patch
* sysklogd-1.4.1-dns.patch
* sysklogd-1.4.1-dontsleep.patch
* sysklogd-1.4.1-forw.patch
* sysklogd-1.4.1-klogd24.dif
* sysklogd-1.4.1-ksyslogsize.diff
* sysklogd-1.4.1-large.patch
* sysklogd-1.4.1-nofortify.patch
* sysklogd-1.4.1-reload.dif
* sysklogd-1.4.1-reopen.patch
* sysklogd-1.4.1-showpri.patch
* sysklogd-1.4.1-signal.dif
* sysklogd-1.4.1-sparc.patch
* sysklogd-1.4.1-sysmap-prior-to-2.5.patch
* sysklogd-1.4.1-systemd-multi.dif
* sysklogd-1.4.1-systemd-sock-name.patch
* sysklogd-1.4.1-systemd.dif
* sysklogd-1.4.1-unix_sockets.patch
* sysklogd-1.4.1.dif
* sysklogd-ipv6.diff
==== systemd ====
Version update (251.6 -> 251.7)
Subpackages: libsystemd0 libudev1 systemd-doc udev
- Import commit c212388f7de8d22a3f7c22b19553548ccc0cdd15 (merge of v251.7)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/f78bba8d037cc26c09bbdd167625b2d…
- specfile: reindent comments
==== systemsettings5 ====
Version update (5.26.1 -> 5.26.2)
Subpackages: systemsettings5-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- Changes since 5.26.1:
* Recognize SystemSettingsExternalApp again
- Drop patches, now upstream:
* 0001-Recognize-SystemSettingsExternalApp-again.patch
==== tar ====
Subpackages: tar-rmt
- Fix unexpected inconsistency when making directory, bsc#1203600
* tar-avoid-overflow-in-symlinks-tests.patch
* tar-fix-extract-unlink.patch
- Update race condition fix, bsc#1200657
* tar-fix-race-condition.patch
- Refresh bsc1200657.patch
==== tigervnc ====
Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module
- Release 1.12.0 supersedes the following patches still used with
tigervnc 1.10.1 on sle15-sp4/Leap 15.4:
* U_0003-Update-Surface_X11.cxx.patch
* U_Handle-pending-data-in-TLS-buffers.patch
==== timezone ====
Version update (2022e -> 2022f)
- timezone update 2022f:
* Mexico will no longer observe DST except near the US border
* Chihuahua moves to year-round -06 on 2022-10-30
* Fiji no longer observes DST
* Move links to 'backward'
* In vanguard form, GMT is now a Zone and Etc/GMT a link
* zic now supports links to links, and vanguard form uses this
* Simplify four Ontario zones
* Fix a Y2438 bug when reading TZif data
* Enable 64-bit time_t on 32-bit glibc platforms
* Omit large-file support when no longer needed
* In C code, use some C23 features if available
* Remove no-longer-needed workaround for Qt bug 53071
==== tracker ====
Version update (3.4.0 -> 3.4.1)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files
- Update to version 3.4.1:
+ Fixes to VAPI file.
+ Fixes to IRI escaping checks in TrackerResource.
+ Move fts: prefix definition to base ontology.
+ Improve memory usage of already executed TrackerBatch objects
for GC languages.
+ Replace deprecated egrep tool usage in bash completion script.
+ Fixes for memory leaks and invalid memory access.
+ Fix endpoint-side cancellation of client-side D-Bus cancelled
queries.
+ Updated translations.
- Drop tracker-no-egrep.patch: Fixed upstream.
==== tracker-miners ====
Version update (3.4.0 -> 3.4.1)
Subpackages: tracker-miner-files
- Update to version 3.4.1:
+ Warning fixes to gstreamer extractor.
+ Silence EXDEV warnings on FANotify monitor failures, likely in
some systems.
+ New handled syscalls in seccomp: set_mempolicy, get_mempolicy,
epoll_create1.
+ Improve performance of lookups of related CUE files for
gstreamer media.
+ Fix memory leaks.
+ Updated translations.
==== transactional-update ====
Version update (4.0.1 -> 4.1.0)
Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit
- Version 4.1.0
- t-u: Add a "setup-kdump" command; implements [jsc#PED-1441]
- Export TRANSACTIONAL_UPDATE_ROOT (the path to the snapshot) in
the update environment; implements [jsc#PED-1078]
- Add support for "notify" reboot method for desktop use
[gh#openSUSE/transactional-update#93]
- Fix kdump initrd recreation detection; the check was performed in the
active snapshot instead of the target snapshot
- Document register command [bsc#1202900]
- Avoid unnecessary snapshots for register command [bsc#1202901]
- Various optimizations for register command
- Remove bogus error message when triggering reboot
- Rework /etc overlay documentation in "The Transactional Update Guide"
- Fix incorrect manpage formatting
- Remove leftover "salt" reboot method in configuration example file
- Replace deprecated std::mem_fn with lambdas
==== usbutils ====
Version update (014 -> 015)
- update to 015:
* usb-devices: list the root devices in numerical order
* usb-devices: use 'local' variable type to handle recursion
* lsusb: remove unused wireless check
* lsusb: remove wireless descriptor information
* usb-devices: fix field width on device speed field
* lsusb: fix up Midi Device specification devices
* Fix an runtime error reported by undefind sanitizer
* lsusb: Improve status display for SuperSpeedPlus hubs
* lsusb-t: Fix recursive sorting on child devices.
==== vim ====
Version update (9.0.0709 -> 9.0.0814)
Subpackages: vim-data vim-data-common vim-small
- Updated to version 9.0.0814, fixes the following problems
* Kitty terminal is not recognized.
* GUI mouse scrollwheel mappings don't work.
* Error if :echowin is preceded by a command modifier
* readblob() returns empty when trying to read too much
* Test for job writing to buffer fails
* sonnet filetype detection has a typo
* With 'smoothscroll' typing "0" may not go to the first column
* 'langmap' works differently when there are modifiers
* Filetype autocmd may cause freed memory access
* Crash when trying to divice the largest negative number by -1
* readblob() cannot read from character device.
* The modifyOtherKeys flag is set when it should not.
* In compiled function ->() on next line not recognized
* Clang format configuration files are not recognized.
* Order of assert function arguments is reverted.
* readblob() always reads the whole file.
* At the hit-Enter prompt the End and Home keys may not work.
* Dummy buffer ends up in a window
* User command does not get number from :tab modifier
* Memory leak with empty shell command
* ":!" doesn't do anything but does update the previous command.
* OpenVPN files are not recognized.
* 'scroll' value computed in unexpected location
* The libvterm code is outdated.
* Quickfix commands may keep memory allocated.
* With a Visual block a put command column may go negative.
* Indent and option tests fail.
* Cannot use 'indentexpr' for Lisp indenting.
* Display test for 'listchars' "precedes" fails
* Line number not visisble with smoothscroll'', 'nu' and 'rnu'
* No autocmd event for changing text in a terminal window
* 'scrolloff' does not work well with 'smoothscroll'.
* Crash when popup closed in callback
* Alloc/free of buffer for each quickfix entry is inefficient
* Wrong cursor position when using "gj" and "gk" in a long line.
* In script in autoload dir exported variable is not found.
- Updated to version 9.0.0743, fixes the following problems
* Virtual text "after" not correct with 'nowrap'.
* Quitting/unloading/hiding a terminal buffer does not always work properly.
* SubStation Alpha files are not recognized.
* Wrong column when calling setcursorcharpos() with zero lnum.
* <amatch> of MenuPopup event is expanded like a file name.
* With 'nowrap' two virtual text below not displayed correctly.
* Wrong argument for append() gives two error messages.
* With 'nowrap' virtual text "after" does not scroll left.
* Compiler warning for unused variable in tiny build.
* Extra empty line between two virtual text "below" when 'wrap' and 'number'
are set.
* Too many delete() calls in tests.
* Virtual text "above" with padding not displayed correctly.
* Virtual text "after" does not show with 'list' set.
* Extra empty line below virtual text when 'list' is set.
* Closure in compiled function gets same variable in block.
* Virtual text "after" wraps to next line even when 'wrap' is off and
'list' is set.
* Looping over list of lists and changing the list contents works in Vim9
script, not in a compiled function.
* Help in the repository differs from patched version too much.
* extend() test fails.
* The rightleft and arabic features are disabled.
* Startup test fails with right-left feature.
* clang-tidy configuration files are not recognized.
* No check for white space before and after "=<<". (Doug Kearns)
* Use of strftime() is not safe.
* Cursor position invalid when scrolling with 'smoothscroll' set. (Ernie
Rael)
* Breakindent and scrolloff tests fail.
* Quickfix listing does not handle very long messages.
* Lisp word only recognized when a space follows.
* Cannot suppress completion "scanning" messages.
* Mouse column not correctly used for popup_setpos.
* prop_add_list() gives multiple errors for invalid argument.
* Cannot specify an ID for each item with prop_add_list(). (Sergey Vlasov)
* Starting cscope on Unix does not quote the arguments correctly. (Gary
Johnson)
==== vte ====
Version update (0.70.0 -> 0.70.1)
- Update to version 0.70.1:
+ app:
- Disconnect signal handlers on dispose.
- Filter unwanted environment variables.
+ build:
- Add define for darwin.
- Fix netbsd define.
+ widget:
- Don't consume right clicks on gtk4.
- Implement clipboard for gtk4.
* Updated translations.
==== vulkan-loader ====
Version update (1.3.224.0 -> 1.3.231.0)
- Update to release SDK-1.3.231.0
* Don't pass portability bit to ICDs that dont expect it.
* Allow implicit layers for all API versions.
==== vulkan-tools ====
Version update (1.3.224.0 -> 1.3.231)
- Update to release 1.3.231.0
* Adapt to Vulkan 231 API, but otherwise no interesting changes
- Add 0001-cubepp-Fix-presentKHR-assert.patch
==== webkit2gtk3 ====
Version update (2.38.0 -> 2.38.1)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.38.1:
+ Make xdg-dbus-proxy work if host session bus address is an
abstract socket.
+ Use a single xdg-dbus-proxy process when sandbox is enabled.
+ Fix high resolution video playback due to unimplemented
changeType operation.
+ Ensure GSubprocess uses posix_spawn() again and inherit file
descriptors.
+ Fix player stucking in buffering (paused) state for progressive
streaming.
+ Do not try to preconnect on link click when link preconnect
setting is disabled.
+ Fix close status code returned when the client closes a
WebSocket in some cases.
+ Fix media player duration calculation.
+ Fix several crashes and rendering issues.
==== webkit2gtk4 ====
Version update (2.38.0 -> 2.38.1)
Subpackages: libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles
- Update to version 2.38.1:
+ Make xdg-dbus-proxy work if host session bus address is an
abstract socket.
+ Use a single xdg-dbus-proxy process when sandbox is enabled.
+ Fix high resolution video playback due to unimplemented
changeType operation.
+ Ensure GSubprocess uses posix_spawn() again and inherit file
descriptors.
+ Fix player stucking in buffering (paused) state for progressive
streaming.
+ Do not try to preconnect on link click when link preconnect
setting is disabled.
+ Fix close status code returned when the client closes a
WebSocket in some cases.
+ Fix media player duration calculation.
+ Fix several crashes and rendering issues.
==== xcb-util-cursor ====
Version update (0.1.3 -> 0.1.4)
- Update to version 0.1.4
* Update README for gitlab migration
* Add README.md to EXTRA_DIST
* Use AC_CONFIG_FILES to replace the deprecated AC_OUTPUT with parameters
* Update m4 to xorg/util/xcb-util-m4@c617eee22ae5c285e79e81
* gitlab CI: add a basic build test
* configure: Drop AM_MAINTAINER_MODE
* autogen.sh: Honor NOCONFIGURE=1
* autogen.sh: use quoted string variables
* autogen: add default patch prefix
* autogen.sh: use exec instead of waiting for configure to finish
* documentation: Call xcb_free_cursor() when done
* Fix out-of-source builds
==== xdg-desktop-portal-kde ====
Version update (5.26.1 -> 5.26.2)
Subpackages: xdg-desktop-portal-kde-lang
- Update to 5.26.2
* New bugfix release
* For more details please see:
* https://kde.org/announcements/plasma/5/5.26.2
- No code changes since 5.26.1
==== xdg-user-dirs ====
Version update (0.17 -> 0.18)
- update to 0.18:
+ Fixed minor leak
+ Updated translations
+ Documentation fixes
==== xmlsec1 ====
Version update (1.2.34 -> 1.2.36)
Subpackages: libxmlsec1-1 libxmlsec1-openssl1
- Update to 1.2.36:
* Retired the XMLSec mailing list "xmlsec(a)aleksey.com" and the
XMLSec Online Signature Verifier.
- Update to 1.2.35:
* Migration to OpenSSL 3.0 API (based on PR by @snargit). Note
that OpenSSL engines are disabled by default when XMLSec
library is compiled against OpenSSL 3.0. To re-enable OpenSSL
engines, use "--enable-openssl3-engines" configure flag (there
will be a lot of deprecation warnings).
* The OpenSSL before 1.1.0 and LibreSSL before 2.7.0 are now
deprecated and will be removed in the future versions of
XMLSec Library.
* Refactored all the integer casts to ensure cast-safety. Fixed
all warnings and enabled "-Werror" and "-pedantic" flags on
CI builds.
* Added configure flag to use size_t for xmlSecSize (currently
disabled by default for backward compatibility).
* Moved all CI builds to GitHub actions.
==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra
- Release 21.1 supersedes the following patches still used with
xorg-x11-server 1.20.3 on sle15-sp4/Leap 15.4:
* U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch
* U_0002-Fix-crash-on-XkbSetMap.patch
* U_0003-Fix-crash-on-XkbSetMap.patch
* U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch
* U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch
* U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch
* U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch
* U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch
* U_hw_do-not-include-sys-io-with-glibc.patch
* U_meson-Fix-another-reference-to-gl-9.2.0.patch
* U_modesetting-Fix-broken-manpage-in-autoconf-build.patch
* U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch
* U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch
* U_xfree86-Change-displays-array-to-pointers-array-to-f.patch
* U_xfree86-Fix-NULL-pointer-dereference-crash.patch
* U_xkbsetdeviceinfo.patch
* u_sync-pci-ids-with-Mesa-21.2.4.patch
* u_xf86-Accept-devices-with-the-simpledrm-driver.patch
* u_xichangehierarchy-CVE-2020-14346.patch
* u_xkb-CVE-2020-14345.patch
* u_xkb-CVE-2020-14360.patch
- removed N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch
* meanwhile cirrus and mgag200 Kernel drivers have been rewritten
multiple times and no longer have (broken) hardware cursor
- u_xf86-Accept-devices-with-the-kernels-ofdrm-driver.patch
* Add workaround to support ofdrm
==== xsetroot ====
Version update (1.1.2 -> 1.1.3)
- Update to version 1.1.3
* Update README for gitlab migration
* Update configure.ac bug URL for gitlab migration
* gitlab CI: add a basic build test
* Variable scope reductions as recommended by cppcheck
* Handle -Wsign-compare warnings
* gitlab CI: stop requiring Signed-off-by in commits
==== xterm ====
Version update (373 -> 375)
Subpackages: xterm-bin xterm-resize
- update to 375:
* improve error-recovery when setting a bitmap font for the VT100
window, e.g., in case OSC 50 failed, restoring the most recent
valid font so that a subsequent OSC 50 reports this correctly
* exclude MC_XDG_OPEN from environment variables trimmed on
startup
* check for null pointer in isSelect()
- includes changes from 374:
* change default for sixelScrolling resource to better match
VT330/VT340 DECSDM setting
* fix some gcc and coverity warnings.
* improve memory usage for OSC 52
* fix regression in xterm-373 change adding resources
xftTrackMemUsage to xftMaxGlyphMemory, which did not first
cache the server's resource-settings
* fix regression in xterm-373 change for status-line vs
alternate screen
* modify configure checks for egrep/fgrep aliases to work around
warning messages from GNU grep 3.8 boo#1203092
==== xwayland ====
Version update (22.1.3 -> 22.1.5)
- Update to version 22.1.5
* This is a follow-up release to address a couple of regressions
which found their way into the recent xwayland-22.1.4 release,
namely:
+ Double scroll wheel events with some Wayland compositors
https://gitlab.freedesktop.org/xorg/xserver/-/issues/1392
+ Key keeps repeating when a window is closed while a key is pressed
https://gitlab.freedesktop.org/xorg/xserver/-/issues/1395
- supersedes U_Do-not-ignore-leave-events.patch
- U_Do-not-ignore-leave-events.patch
* fixes xwayland issue#1397, issue#1395
- Update to version 22.1.4
* xwayland: Aggregate scroll axis events to fix kinetic scrolling
* Forbid server grabs by non-WM on *rootless* XWayland
* xkb: Avoid length-check failure on empty strings.
* ci: remove redundant slash in libxcvt repository url
* dix: Skip more code in SetRootClip for ROOT_CLIP_INPUT_ONLY
* dix: Fix overzealous caching of ResourceClientBits()
* xwayland: Prevent Xserver grabs with rootless
* xwayland: Delay wl_surface destruction
* build: Bump wayland requirement to 1.18
* xwayland: set tag on our surfaces
* xwayland: Clear the "xwl-window" tag on unrealize
* xwayland: correct the type for the discrete scroll events
* xkb: fix some possible memleaks in XkbGetKbdByName
* xkb: length-check XkbGetKbdByName before accessing the fields
* xkb: length-check XkbListComponents before accessing the fields
* xkb: proof GetCountedString against request length attacks
- supersedes security patches:
* U_xkb-fix-some-possible-memleaks-in-XkbGetKbdByName.patch
* U_xkb-proof-GetCountedString-against-request-length-at.patch
==== yast2 ====
Version update (4.5.17 -> 4.5.18)
Subpackages: yast2-logs
- Improve logging in the ProductControl module, use the new
"log.group" call to group logs for each workflow step
(bsc#1204625)
- 4.5.18
==== yast2-add-on ====
Version update (4.5.1 -> 4.5.2)
- support 'repo' scheme for add-ons (jsc#SLE-22578, jsc#SLE-24584)
- 4.5.2
==== yast2-packager ====
Version update (4.5.5 -> 4.5.6)
- support 'repo' scheme for add-ons (jsc#SLE-22578, jsc#SLE-24584)
- 4.5.6
==== yast2-ruby-bindings ====
Version update (4.5.3 -> 4.5.4)
- Added "log.group" method for grouping the log messages
(bsc#1204625)
- Update Rakefile to allow installing the Ruby files in inst-sys
using the "yupdate" command
- 4.5.4
==== zchunk ====
Version update (1.2.2 -> 1.2.3)
- update to 1.2.3:
* Remove meson deprecation warning
* Add license scan report and status
* test/zck_cmp_uncomp: fix printf format types
* meson: add option to build without docs
* zck: declare write_data as static
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
conmon
libepoxy
libva
libva-gl
tigervnc
xorg-x11-server
xterm (373 -> 375)
=== Details ===
==== conmon ====
- Add patch to fix build with make >= 4.4:
* 0001-Fix-tools-Makefile-with-GNU-make-4.4.patch
==== libepoxy ====
- needed by jira#PED-1174 (Mesa needs sync with Xserver, which
then needs updated libepoxy)
==== libva ====
Subpackages: libva-drm2 libva-x11-2 libva2
- needed for jira#PED-1174 (Video decoding/encoding support
(VA-API, ...) for Intel GPUs is outside of Mesa)
==== libva-gl ====
- needed for jira#PED-1174 (Video decoding/encoding support
(VA-API, ...) for Intel GPUs is outside of Mesa)
==== tigervnc ====
Subpackages: libXvnc1 xorg-x11-Xvnc xorg-x11-Xvnc-module
- Release 1.12.0 supersedes the following patches still used with
tigervnc 1.10.1 on sle15-sp4/Leap 15.4:
* U_0003-Update-Surface_X11.cxx.patch
* U_Handle-pending-data-in-TLS-buffers.patch
==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra
- Release 21.1 supersedes the following patches still used with
xorg-x11-server 1.20.3 on sle15-sp4/Leap 15.4:
* U_0002-DRI2-Add-another-Coffeelake-PCI-ID.patch
* U_0002-Fix-crash-on-XkbSetMap.patch
* U_0003-Fix-crash-on-XkbSetMap.patch
* U_0003-dri2-Sync-i965_pci_ids.h-from-mesa.patch
* U_0004-dri2-Set-fallback-driver-names-for-Intel-and-AMD-chi.patch
* U_0005-dri2-Sync-i965_pci_ids.h-from-mesa-iris_pci_ids.h.patch
* U_build-glx-Lower-gl-version-to-work-with-libglvnd.patch
* U_glamor-Make-pixmap-exportable-from-gbm_bo_from_pixma.patch
* U_hw_do-not-include-sys-io-with-glibc.patch
* U_meson-Fix-another-reference-to-gl-9.2.0.patch
* U_modesetting-Fix-broken-manpage-in-autoconf-build.patch
* U_present-wnmd-Fix-use-after-free-on-CRTC-removal.patch
* U_present-wnmd-Relax-assertion-on-CRTC-on-abort_vblank.patch
* U_xfree86-Change-displays-array-to-pointers-array-to-f.patch
* U_xfree86-Fix-NULL-pointer-dereference-crash.patch
* U_xkbsetdeviceinfo.patch
* u_sync-pci-ids-with-Mesa-21.2.4.patch
* u_xf86-Accept-devices-with-the-simpledrm-driver.patch
* u_xichangehierarchy-CVE-2020-14346.patch
* u_xkb-CVE-2020-14345.patch
* u_xkb-CVE-2020-14360.patch
==== xterm ====
Version update (373 -> 375)
Subpackages: xterm-bin xterm-resize
- update to 375:
* improve error-recovery when setting a bitmap font for the VT100
window, e.g., in case OSC 50 failed, restoring the most recent
valid font so that a subsequent OSC 50 reports this correctly
* exclude MC_XDG_OPEN from environment variables trimmed on
startup
* check for null pointer in isSelect()
- includes changes from 374:
* change default for sixelScrolling resource to better match
VT330/VT340 DECSDM setting
* fix some gcc and coverity warnings.
* improve memory usage for OSC 52
* fix regression in xterm-373 change adding resources
xftTrackMemUsage to xftMaxGlyphMemory, which did not first
cache the server's resource-settings
* fix regression in xterm-373 change for status-line vs
alternate screen
* modify configure checks for egrep/fgrep aliases to work around
warning messages from GNU grep 3.8 boo#1203092
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
MozillaFirefox (106.0.3 -> 106.0.5)
kernel-firmware (20221017 -> 20221031)
kernel-source (6.0.6 -> 6.0.7)
xmlsec1 (1.2.34 -> 1.2.36)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- build against llvm15/clang15 on sle15-sp5/Leap 15.5
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- build against llvm15/clang15 on sle15-sp5/Leap 15.5
==== MozillaFirefox ====
Version update (106.0.3 -> 106.0.5)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 106.0.5:
* Addresses a crash experienced by users with Intel Gemini Lake
CPUs (bmo#1702019)
- Mozilla Firefox 106.0.4:
* Fixed an issue with DRM Video playback (bmo#1797292)
* Fixed broken layout of datetime input when switching
types (bmo#1797139)
==== kernel-firmware ====
Version update (20221017 -> 20221031)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20221031 (git commit 8bb75626e9dd):
* linux-firmware: Add firmware for Cirrus CS35L41 on new ASUS Laptop
* iwlwifi: add new PNVM binaries from core74-44 release
* iwlwifi: add new FWs from core69-81 release
* qcom: update venus firmware files for VPU-2.0
* qcom: remove split SC7280 venus firmware images
* qcom: update venus firmware file for v5.4
* qcom: replace split SC7180 venus firmware images with symlink
* rtw89: 8852b: update fw to v0.27.32.1
* rtlwifi: update firmware for rtl8192eu to v35.7
* rtlwifi: Add firmware v4.0 for RTL8188FU
* i915: Add HuC 7.10.3 for DG2
* linux-firmware: Add firmware for Cirrus CS35L41 on ASUS Laptops
* linux-firmware: Add firmware for Cirrus CS35L41 on Lenovo Laptops
* linux-firmware: Add firmware for Cirrus CS35L41 on HP Laptops
- Drop the CS35L41 firmware tarball that has been merged
- Drop obsoleted cirrus-WHENCE-update.patch
==== kernel-source ====
Version update (6.0.6 -> 6.0.7)
- Update config files.
- commit bd8c959
- Linux 6.0.7 (bsc#1012628).
- platform/x86/amd: pmc: remove CONFIG_DEBUG_FS checks
(bsc#1012628).
- can: j1939: transport: j1939_session_skb_drop_old():
spin_unlock_irqrestore() before kfree_skb() (bsc#1012628).
- can: kvaser_usb: Fix possible completions during init_completion
(bsc#1012628).
- can: rcar_canfd: rcar_canfd_handle_global_receive(): fix IRQ
storm on global FIFO receive (bsc#1012628).
- can: rcar_canfd: fix channel specific IRQ handling for RZ/G2L
(bsc#1012628).
- ALSA: Use del_timer_sync() before freeing timer (bsc#1012628).
- ALSA: usb-audio: Add quirks for M-Audio Fast Track C400/600
(bsc#1012628).
- ALSA: control: add snd_ctl_rename() (bsc#1012628).
- ALSA: hda/realtek: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: emu10k1: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: ac97: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: usb-audio: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: ca0106: Use snd_ctl_rename() to rename a control
(bsc#1012628).
- ALSA: au88x0: use explicitly signed char (bsc#1012628).
- ALSA: rme9652: use explicitly signed char (bsc#1012628).
- USB: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM
(bsc#1012628).
- usb: gadget: uvc: limit isoc_sg to super speed gadgets
(bsc#1012628).
- Revert "usb: gadget: uvc: limit isoc_sg to super speed gadgets"
(bsc#1012628).
- usb: gadget: uvc: fix dropped frame after missed isoc
(bsc#1012628).
- usb: gadget: uvc: fix sg handling in error case (bsc#1012628).
- usb: gadget: uvc: fix sg handling during video encode
(bsc#1012628).
- usb: gadget: aspeed: Fix probe regression (bsc#1012628).
- usb: dwc3: gadget: Stop processing more requests on IMI
(bsc#1012628).
- usb: dwc3: gadget: Don't set IMI for no_interrupt (bsc#1012628).
- usb: dwc3: gadget: Force sending delayed status during soft
disconnect (bsc#1012628).
- usb: dwc3: gadget: Don't delay End Transfer on delayed_status
(bsc#1012628).
- usb: typec: ucsi: Check the connection on resume (bsc#1012628).
- usb: typec: ucsi: acpi: Implement resume callback (bsc#1012628).
- usb: dwc3: st: Rely on child's compatible instead of name
(bsc#1012628).
- usb: dwc3: Don't switch OTG -> peripheral if extcon is present
(bsc#1012628).
- usb: bdc: change state when port disconnected (bsc#1012628).
- usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being
a V0.96 controller (bsc#1012628).
- mtd: rawnand: tegra: Fix PM disable depth imbalance in probe
(bsc#1012628).
- mtd: spi-nor: core: Ignore -ENOTSUPP in spi_nor_init()
(bsc#1012628).
- mtd: parsers: bcm47xxpart: Fix halfblock reads (bsc#1012628).
- mtd: rawnand: marvell: Use correct logic for nand-keep-config
(bsc#1012628).
- squashfs: fix read regression introduced in readahead code
(bsc#1012628).
- squashfs: fix extending readahead beyond end of file
(bsc#1012628).
- squashfs: fix buffer release race condition in readahead code
(bsc#1012628).
- xhci: Add quirk to reset host back to default state at shutdown
(bsc#1012628).
- xhci-pci: Set runtime PM as default policy on all xHC 1.2 or
later devices (bsc#1012628).
- xhci: Remove device endpoints from bandwidth list when freeing
the device (bsc#1012628).
- tools: iio: iio_utils: fix digit calculation (bsc#1012628).
- iio: light: tsl2583: Fix module unloading (bsc#1012628).
- iio: temperature: ltc2983: allocate iio channels once
(bsc#1012628).
- iio: adxl372: Fix unsafe buffer attributes (bsc#1012628).
- iio: adxl367: Fix unsafe buffer attributes (bsc#1012628).
- fbdev: stifb: Fall back to cfb_fillrect() on 32-bit HCRX cards
(bsc#1012628).
- fbdev: smscufx: Fix several use-after-free bugs (bsc#1012628).
- cpufreq: intel_pstate: Read all MSRs on the target CPU
(bsc#1012628).
- cpufreq: intel_pstate: hybrid: Use known scaling factor for
P-cores (bsc#1012628).
- fs/binfmt_elf: Fix memory leak in load_elf_binary()
(bsc#1012628).
- exec: Copy oldsighand->action under spin-lock (bsc#1012628).
- mac802154: Fix LQI recording (bsc#1012628).
- scsi: qla2xxx: Use transport-defined speed mask for
supported_speeds (bsc#1012628).
- drm/i915: Extend Wa_1607297627 to Alderlake-P (bsc#1012628).
- drm/amdgpu: Remove ATC L2 access for MMHUB 2.1.x (bsc#1012628).
- drm/amdgpu: disallow gfxoff until GC IP blocks complete s2idle
resume (bsc#1012628).
... changelog too long, skipping 302 lines ...
- commit 94ab6c8
==== xmlsec1 ====
Version update (1.2.34 -> 1.2.36)
Subpackages: libxmlsec1-1 libxmlsec1-nss1 libxmlsec1-openssl1
- Update to 1.2.36:
* Retired the XMLSec mailing list "xmlsec(a)aleksey.com" and the
XMLSec Online Signature Verifier.
- Update to 1.2.35:
* Migration to OpenSSL 3.0 API (based on PR by @snargit). Note
that OpenSSL engines are disabled by default when XMLSec
library is compiled against OpenSSL 3.0. To re-enable OpenSSL
engines, use "--enable-openssl3-engines" configure flag (there
will be a lot of deprecation warnings).
* The OpenSSL before 1.1.0 and LibreSSL before 2.7.0 are now
deprecated and will be removed in the future versions of
XMLSec Library.
* Refactored all the integer casts to ensure cast-safety. Fixed
all warnings and enabled "-Werror" and "-pedantic" flags on
CI builds.
* Added configure flag to use size_t for xmlSecSize (currently
disabled by default for backward compatibility).
* Moved all CI builds to GitHub actions.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
augeas (1.12.0 -> 1.13.0)
firewalld (1.2.0 -> 1.2.1)
python-cryptography (38.0.1 -> 38.0.3)
python310
python310-core
sg3_utils (1.47+5.d13bc56 -> 1.48~20221101.6d3bd26)
sudo
suse-module-tools (16.0.23 -> 16.0.26)
=== Details ===
==== augeas ====
Version update (1.12.0 -> 1.13.0)
Subpackages: augeas-lenses libaugeas0 libfa1
- Update to 1.13.0
* Fixes bsc#1204554
* Added augeas-1.13.0-replace_security_context_t-patch to fix a
syntax error.
* Rebased gcc9-disable-broken-test.patch
* Dropped the following patches since they are now upstreamed:
- augeas-new_options_for_chrony.patch
- augeas-allow_printable_ASCII.patch
- remove-unportable-tests.patch
* General changes/additions
- Add Dockerfile (Nicolas Gif) (Issue #650)
- augtool: Improved readline integration to handle quoting
issues (Pino Toscano)
- typechecker: Allow including '/' in keys and labels. Thanks
to felixdoerre for pointing out that this restriction was
unnecessary. See issue #668 for the discussion.
- Add function modified() to select nodes which are marked as
dirty (George Hansper) (Issue #691)
- Add CLI command 'preview' and API 'aug_preview' to preview
file contents (George Hansper) (#690)
- Add "else" operator to augeas path-filter expressions
(priority selector) (George Hansper) (#692)
- Add new axis 'seq' to allow /path/seq::*[expr] to match and
create numeric nodes, as idempotent alternative to
/path/*[expr] (George Hansper) (#706)
* Lens changes/additions
- Authinfo2: new lens to parse Authinfo2 format (Nicolas Gif)
(Issue #649)
- Chrony: add new options (Miroslav Lichvar) (Issue #698)
- Cmdline: New lens to parse /proc/cmdline (Thomas WeiÃschuh)
- Crypttab: support UUID in device and / in opt (Raphaël
Pinson) (#713)
- Fail2ban: new lens to parse Fail2ban format (Nicolas Gif)
(Issue #651)
- Grub: support '+' in kernel command line option names (Pino
Toscano) (Issue #647)
- Krb5: handle [plugins] subsection (Pino Toscano) (Issue #663)
- Limits: support colons in the domain pattern of the limits
lens (Xavier Mol) (Issue #645)
- Logrotate: add hourly schedule (Jason A. Smith) (Issue #655)
- Mke2fs: parse more common entries between [defaults] and the
tags in [fs_types], fix the type of few entries, handle the
[options] stanza (Pino Toscano) (Issue #642)
- support quoted values (Pino Toscano) (Issue #661)
- NetworkManager: allow # in values (mfilka) (#723)
- Opendkim: update to match current conffile format (Issue #644)
- Postfix_Master: Allow unix-dgram as type (Issue #635)
- Postfix_transport: Allow underscore (Anton Baranov) (Issue #678)
- Postgresql: Allow hyphen '-' in values that don't require quotes
(Marcin BarczyÅski) (Issues #700 #701)
- Properties: Allow "/" in property names (felixdoerre) (Issue #680)
- Redis: add incl path /etc/redis.conf (Raphaël Pinson) (#726)
- support "replicaof" (Raphaël Pinson) (#727)
- fix support for "sentinel" (Raphaël Pinson) (#728)
- Resolv: Support new options (Trevor Vaughan) (Issues #707 #708)
- Rsyslog: support multiple actions in filters and selectors (Issue
[#653])
- Shellvars: exclude more tcsh profile scripts (Pino Toscano) (Issue
[#627])
- Simplevars: add ocsinventory-agent.cfg (Pat Riehecky) (Issue #637)
- Sudoers: support new @include/@includedir directives (Pino
Toscano) (Issue #693)
- Sudoers: Allow AD groups (luchihoratiu) (Issue #696)
- Support negative integers (Ando David Roots) (#724)
- Ssh: add Match keyword support (granquet) (Issue #695)
- Sshd: support quotes in Match conditions (Issue #739)
- Systemd: fix parsing of envvars with spaces (Pino Toscano) (#659)
- Add incl paths according to 'systemd.network(5)' (chruetli) (#683)
- Tinc: new lens for Tinc VPN configuration files (Thomas WeiÃschuh)
(#718)
- Toml: support arrays (norec) in inline tables (Raphaël Pinson)
(#703)
- Tmpfiles: improvements to the types specification (Pino Toscano)
(Issue #694)
==== firewalld ====
Version update (1.2.0 -> 1.2.1)
Subpackages: firewalld-bash-completion firewalld-lang python3-firewall
- Update to 1.2.1:
* fix(modules): don't error if /proc/modules is missing (a1f091d)
* fix(readme): format optional <ver> (03e61f2)
* docs: add protocols to rich and zones (191cea4)
* docs(policy): add priority attribute to rule (616ed7c)
* fix(runtimeToPermanent): errors for interfaces not in zone (6b5a70b)
* fix(failsafe): log exception on fatal failure (af1b8f0)
* fix(ipset): defer native ipset creation if nftables (ae0ded4)
* fix(nftables): drop invalid packets before zone dispatch (dc972ae)
* fix(iptables): drop invalid packets before zone dispatch (83a4608)
* fix(policies): Splitting interfaces with wildcards (3806e79)
* fix(ipset): exception on overlap checking empty set (bfe827f)
* fix(bash): fix ipset commands autocompletion (742669b)
* docs(README): fix typo (e40b100)
* fix(treewide): misc typos (d121f0c)
* fix: firewalld.conf: trim trailing whitespace (21809ed)
==== python-cryptography ====
Version update (38.0.1 -> 38.0.3)
- update to 38.0.3:
- Updated Windows, macOS, and Linux wheels to be compiled
with OpenSSL 3.0.7, which resolves CVE-2022-3602 and
CVE-2022-3786.
==== python310 ====
Subpackages: python310-curses python310-dbm
- Add CVE-2022-42919-loc-priv-mulitproc-forksrv.patch to avoid
CVE-2022-42919 (bsc#1204886) avoiding Linux specific local
privilege escalation via the multiprocessing forkserver start
method.
==== python310-core ====
Subpackages: libpython3_10-1_0 python310-base
- Add CVE-2022-42919-loc-priv-mulitproc-forksrv.patch to avoid
CVE-2022-42919 (bsc#1204886) avoiding Linux specific local
privilege escalation via the multiprocessing forkserver start
method.
==== sg3_utils ====
Version update (1.47+5.d13bc56 -> 1.48~20221101.6d3bd26)
- Update to new upstream version 1.48~20221101.6d3bd26:
(pre-release sg3_utils-1.48 [20221101] [svn: r978])
* sg_read_block_limits: fix granularity value, add --mloi option; sg_lib: add sg_ll_read_block_limits_v2(); sg_logs: json work
* sg_stream_ctl: --get fix better; sg_rem_rest_elem: cleanup
* sg_stream_ctl: fix --get indexing; fix some './configure --enable-debug' issues
* sg_inq+sg_vpd: JSON updates
* rescan-scsi-bus: speed large multipath scans
* rescan-scsi-bus.sh speed testonline()
* rescan-scsi-bus.sh: add option --no-lip-scan
* rescan-scsi-bus: sgdevice26: do not traverse sg class if scsi_device isnot added
* rescan-scsi-bus.sh: fix handling of '-I <secs>' option
* Prepare for removing /proc/scsi from the Linux kernel
* sg_inq+sg_vpd: merge VPD page processing
* sg_get_elem_status: change '--maxlen=' option default to 1056 (was 32), other cleanups
* sg_rep_zones: add experimental --json[=JO] option and generation
* sg_logs: add --exclude and --undefined options
* zoned disk man page improvements
* sg_rep_zones: add --statistics option
* sg_read_buffer: add --eh_code= and --no_output options
* sg_format: allow disk formats on ZBC (zoned) disks
* sg_rep_zones: add --brief option and --find ZT option
* sg_rep_density: new utility for decoding the response of Report density support command [ssc (tape)]
* Zoned block device characteristics VPD page support
==== sudo ====
Subpackages: sudo-plugin-python
- Added sudo-CVE-2022-43995.patch
* CVE-2022-43995
* bsc#1204986
* Fixed a potential heap-based buffer over-read when entering a password
of seven characters or fewer and using the crypt() password backend.
==== suse-module-tools ====
Version update (16.0.23 -> 16.0.26)
* Revert "Split kernel scriptlets into separate sub-package"
(that change broke some package builds on OBS)
- Update to version 16.0.25:
* 80-hotplug-cpu-mem.rules: restrict cpu rule to x86_64 (bsc#1204423)
- Update to version 16.0.24:
* Split kernel scriptlets into separate sub-package
"suse-module-tools-scriptlets" on Tumbleweed
(gh#openSUSE/suse-module-tools#64)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
baloo5-widgets (22.08.2 -> 22.08.3)
bash
dolphin (22.08.2 -> 22.08.3)
ffmpegthumbs (22.08.2 -> 22.08.3)
ibus-table (1.16.12 -> 1.16.13)
ibus-table-chinese (1.8.9 -> 1.8.11)
kaccounts-integration (22.08.2 -> 22.08.3)
kaccounts-providers (22.08.2 -> 22.08.3)
kate (22.08.2 -> 22.08.3)
kde-print-manager (22.08.2 -> 22.08.3)
kdegraphics-thumbnailers (22.08.2 -> 22.08.3)
kdenetwork-filesharing (22.08.2 -> 22.08.3)
kdialog (22.08.2 -> 22.08.3)
khelpcenter5 (22.08.2 -> 22.08.3)
kio-extras5 (22.08.2 -> 22.08.3)
konsole (22.08.2 -> 22.08.3)
kwalletmanager5 (22.08.2 -> 22.08.3)
libdrm (2.4.113 -> 2.4.114)
libkdcraw (22.08.2 -> 22.08.3)
libkexiv2 (22.08.2 -> 22.08.3)
libmfx (22.4.4 -> 22.6.1)
libqt5-qtbase (5.15.6+kde177 -> 5.15.7+kde167)
libqt5-qtdeclarative (5.15.6+kde20 -> 5.15.7+kde18)
libqt5-qtgraphicaleffects (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtimageformats (5.15.6+kde4 -> 5.15.7+kde5)
libqt5-qtlocation (5.15.6+kde3 -> 5.15.7+kde3)
libqt5-qtmultimedia (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qtquickcontrols (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtquickcontrols2 (5.15.6+kde5 -> 5.15.7+kde6)
libqt5-qtsensors (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtspeech (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qtsvg (5.15.6+kde9 -> 5.15.7+kde9)
libqt5-qttools (5.15.6+kde1 -> 5.15.7+kde1)
libqt5-qttranslations (5.15.6+kde2 -> 5.15.7+kde0)
libqt5-qtvirtualkeyboard (5.15.6+kde1 -> 5.15.7+kde0)
libqt5-qtwayland (5.15.6+kde49 -> 5.15.7+kde49)
libqt5-qtwebchannel (5.15.6+kde3 -> 5.15.7+kde3)
libqt5-qtwebview (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtx11extras (5.15.6+kde0 -> 5.15.7+kde0)
libqt5-qtxmlpatterns (5.15.6+kde0 -> 5.15.7+kde0)
mobipocket (22.08.2 -> 22.08.3)
python-charset-normalizer (2.1.1 -> 3.0.0)
qca-qt5 (2.3.4 -> 2.3.5)
shadow
signon-kwallet-extension (22.08.2 -> 22.08.3)
sqlite3 (3.39.3 -> 3.39.4)
=== Details ===
==== baloo5-widgets ====
Version update (22.08.2 -> 22.08.3)
Subpackages: baloo5-widgets-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== bash ====
Subpackages: bash-doc bash-lang bash-sh
- Set DEFAULT_LOADABLE_BUILTINS_PATH to get BASH_LOADABLES_PATH
correct (boo#1204567)
==== dolphin ====
Version update (22.08.2 -> 22.08.3)
Subpackages: dolphin-part dolphin-part-lang libdolphinvcs5
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== ffmpegthumbs ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== ibus-table ====
Version update (1.16.12 -> 1.16.13)
update: 1.16.12 -> 1.16.13
- Get program name of focused window also when ibus cannot get it
- Use focus id if available (it is available for ibus >= 1.5.27)
- Use IBus.PreeditFocusMode.COMMIT and make sure the input is cleared and the UI updated when the focus changes
- Do not reset input purpose on focus out
- Do not commit by index when OSK is visible
==== ibus-table-chinese ====
Version update (1.8.9 -> 1.8.11)
Subpackages: ibus-table-chinese-array ibus-table-chinese-cangjie ibus-table-chinese-cantonese ibus-table-chinese-easy ibus-table-chinese-erbi ibus-table-chinese-jyutping ibus-table-chinese-quick ibus-table-chinese-scj ibus-table-chinese-stroke5 ibus-table-chinese-wu ibus-table-chinese-wubi-haifeng ibus-table-chinese-wubi-jidian ibus-table-chinese-yong
update: 1.8.9 -> 1.8.11
- Improve punctuation support in cangjie5.txt, cangjie3.txt, cangjie-big.txt, quick5.txt, quick3.txt, quick-classic.txt
- Improve punctuation support in jyutping.txt, cantonese.txt, cantonhk.txt, cantonyale.txt
- Improve âimprove_jyutping.pyâ to allow comments in the table
- Update of jyutping.txt for Unicode 15.0.0 final release
==== kaccounts-integration ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kaccounts-integration-lang libkaccounts2
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kaccounts-providers ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kaccounts-providers-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kate ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kate-lang kate-plugins
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kde-print-manager ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kde-print-manager-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdegraphics-thumbnailers ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdenetwork-filesharing ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kdenetwork-filesharing-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kdialog ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kdialog-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== khelpcenter5 ====
Version update (22.08.2 -> 22.08.3)
Subpackages: khelpcenter5-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kio-extras5 ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kio-extras5-lang libkioarchive5
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== konsole ====
Version update (22.08.2 -> 22.08.3)
Subpackages: konsole-part konsole-part-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== kwalletmanager5 ====
Version update (22.08.2 -> 22.08.3)
Subpackages: kwalletmanager5-lang
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== libdrm ====
Version update (2.4.113 -> 2.4.114)
Subpackages: libdrm2 libdrm_amdgpu1 libdrm_intel1 libdrm_nouveau2 libdrm_radeon1
- Update to 2.4.114
* amdgpu.ids: use consistent formatting for RID
* amdgpu.ids: sort the file
* amdgpu.ids: update to the latest marketing name
* amdgpu_ids: add MI marketing names
* amdgpu: Add a default marketing name if none is found
* meson: fast-fail on unsupported OSes
* include/drm/drm_fourcc.h: Update from Linux v6.0-rc7
* include/drm/i915_drm.h: Update from Linux v6.0-rc7
* tests/util: add imx-lcdif driver
* intel: move declarations to top in drm_intel_gem_bo_unreference()
* build: automatically disable Intel if pciaccess is not found
* xf86drm: handle DRM_FORMAT_BIG_ENDIAN in drmGetFormatName()
* amdgpu: silence uninitialized variable warning
* xf86drmMode: add helpers for dumb buffers
* modetest: drop unused offset field in struct bo
* modetest: use sized integers in struct bo
* modetest: use dumb buffer helpers
==== libkdcraw ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== libkexiv2 ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== libmfx ====
Version update (22.4.4 -> 22.6.1)
- Update to version 22.6.1
* latest bugfix release
- No code changes
- Update to version 22.4.4 was part of Intel oneVPL GPU Runtime
2022Q2 Release 22.4.4
==== libqt5-qtbase ====
Version update (5.15.6+kde177 -> 5.15.7+kde167)
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Update to version 5.15.7+kde167, rebased upstream:
* offer an opt out of automatic xdg-desktop-portal use
* Send string to Atspi DBus interface on name/description changed
* Send string to Atspi DBus interface on value changed for comboboxes
* iOS: Use generic simulator device for building apps via xcodebuild
* xcode: Allow automatic provisioning updates when calling xcodebuild
* Revert "[Android] Remove signal and slot mechanism to listen states in editor's"
* Android: fix error when signing bundles
* Doc: Fix notes in QObject
* Allow dragging of a floating dockwidget on macOS with a custom titlebar
* Http/2 - handle PADDED flag correctly
* QTlsBackend (OpenSSL) : detect incompatible versions
* Reduce the width of a hfw-widget if scrollbar would be flipping
* QCocoaWindow: Make window key if the app's modal window is hidden
* Doc: clarify case sensitivity in QCompleter
* Doc: Note that qmake's CONFIG values are case-sensitive
* Clear up QWindow::isActive() documentation
* QWinRtFunctions::await() - introduce early exit condition
* rhi: metal: Use the layer as the single source of truth
* Include <QHash> explicitly
* Update PCRE2 to 10.38
* Add testing of QPdfWriter output to QPainter lancelot test
* Update the COPYRIGHT.txt file
* QTranslator: Fix loading of meta catalogs from absolute .qm path
* tst_qtranslator: Simplify extraction of test data
* Cocoa: Don't call makeKeyAndOrderFront for native app-modal dialogs
* Fix querying font aliases that share name with other fonts
* Update bundled libjpeg-turbo to version 2.1.1
* macOS: Compute NSWindow background color without checking styleMask
* SQLite: Update SQLite to v3.36.0
* Android: Fix path of qmake_qmake_immediate.qrc in single_abi with qmake
* qmake: Print error when iOS simulator device could not be found
* Fix loading of OpenSSL on macOS versions that ship its own OpenSSL
* QWidgetWindow: Stabilize test on Xcb
* Blacklist flaky test
* Fix license information for libjpeg-turbo
* Don't unload libraries on Darwin-based operating systems
* QThreadPool: Fix restarting of expired threads
* Make test pass on machines with many cores
* Blacklist tst_QSocks5SocketEngine::simpleConnectToIMAP() because of flakiness
* Blacklist tst_qgl:closeAndThenShow() because of flakiness
* Update Android default SDK from 29 to 30
* Make clear why QTestLog::addB?XFail() don't add to counters
* Fix .qm file name calculation in lrelease.prf
* qmake/xcode: Do not create OBJECTS_DIR
* QSslCertificate(OpenSSL plugin): fix memory leaks in extension 'parser'
* OpenSSL: Let people opt-in to use TLS 1.3 PSK callback
* tst_http2: Fix flaky authentication test
* Cocoa: Make sure we can display multiple sheets for the same NSWindow
* Fix QTextCodec::canEncode() for ICU codec
* wasm: fix network data URI scheme
* Doc: add more notes about full screen windows on macOS
* macOS: Don't rely on invalidateCursorRectsForView when mouse is over view
* Doc: add note that hiding a window doesn't close a full screen space
* qlocale_win: Fix non-standalone month names
* androiddeployqt: Check if apk is already aligned
* Fix corner case in QTimeZonePrivate::dataForLocalTime()
* Improve lancelot test of dashed line painting
* qmake: Add support for C17/C18
* qmake/vcxproj: Read C language standard from QMAKE_CFLAGS
* qmake/vcxproj generator: Handle C standard compiler flags
* qmake: Make it possible to set CONFIG += c11 with MSVC 19.28
* qmake: Recognize MSVC 16.x as VS 2019 in the VS project generator
* Doc: Replace the example for QFileInfo::setFile
* QMetaEnum: avoid quadratic behavior in valueToKeys()
* QGraphicsProxyWidget: forward Window(De)Activate events
* QDashStroker: cap the number of repetitions of the pattern
* Fix bug with NoFontMerging when font does not support script
* Android: Fix unnecessary clipboard data access
* macOS: Don't wipe NSWindowStyleMaskFullSizeContentView if set manually
* Fix broken build when LTTng tracing is enabled
* Attempt to unwedge tst_QThread::wait3_slowDestructor()
* macOS: close popups on mousedown within the window frame
* Use a scope-guard to take care of process deletion in a test
* QVarLengthArray: add missing default-ctor documentation
- Commits dropped by the rebase:
* Fix compile of tst_qimage in Qt5
- Update to version 5.15.6+kde178:
* ANGLE: Fix compilation on GCC 11
==== libqt5-qtdeclarative ====
Version update (5.15.6+kde20 -> 5.15.7+kde18)
- Update to version 5.15.7+kde18, rebased upstream:
* Revert "Fix ListView.isCurrentItem when used with DelegateModel"
* Stop using QHash::unite() in storage model manual test
* SaveableUnitPointer::saveToDisk restores flags incorrectly at cleanup
* Document that clearComponentCache() does not clear existing objects
* Doc: Replace return `0` with nullptr
* Doc: Fix QtQuick::Keys::forwardTo generic list type
* Doc: QQmlContext: make it more readable
* Fix ListView.isCurrentItem when used with DelegateModel
* Fix documentation on JavaScript imports
* doc: Remove bogus PinchHandler.minimumTouchPoints prop; improve actual
* tst_grabImage: Fix the cases were visually comparing invisible items
* Reinitialize shader data structure when effect changes
* Doc: mention that clipping can affect performance and link to page
* Ensure init of m_current_projection_matrix in single-clipped-item scene
* Canvas: Add a means to override the DPR used via an environment variable
* Fix regression in ListView/Flickable event delivery
* qquicktextinput: Clear pre-edit text after input method reset
- Rebase qtdeclarative-5.15.0-FixMaxXMaxYExtent.patch
==== libqt5-qtgraphicaleffects ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtimageformats ====
Version update (5.15.6+kde4 -> 5.15.7+kde5)
- Update to version 5.15.7+kde5, rebased upstream:
* Reject tiled tiffs with corrupt tile size early
* Update bundled libwebp to version 1.2.1
==== libqt5-qtlocation ====
Version update (5.15.6+kde3 -> 5.15.7+kde3)
- Update to version 5.15.7+kde3, rebased upstream:
* No code changes
==== libqt5-qtmultimedia ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
- Update to version 5.15.7+kde1, rebased upstream:
* PulseAudio: Call pa_stream_flush() with PulseDaemonLocker lock held
* Fix incorrectly generated CMake files for the QNX audio plugin
==== libqt5-qtquickcontrols ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtquickcontrols2 ====
Version update (5.15.6+kde5 -> 5.15.7+kde6)
Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5
- Update to version 5.15.7+kde6, rebased upstream:
* implement a11y pressing of qquickabstractbutton
* Blacklist some flaky tst_qquickpopup functions on openSUSE
* Fix memory leak in Qt Quick Controls icon
==== libqt5-qtsensors ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5Sensors5 libQt5Sensors5-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtspeech ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd
- Update to version 5.15.7+kde1, rebased upstream:
* Android: Protect against a null Locale object when calling getLocale
==== libqt5-qtsvg ====
Version update (5.15.6+kde9 -> 5.15.7+kde9)
- Update to version 5.15.7+kde9, rebased upstream:
* No code changes
==== libqt5-qttools ====
Version update (5.15.6+kde1 -> 5.15.7+kde1)
Subpackages: libqt5-qdbus libqt5-qtpaths
- Update to version 5.15.7+kde1, rebased upstream:
* qdoc: Fix warnings about generatelist arguments
* qdoc: Fix Section::reduce() omitting sections with obsolete members
* macdeployqt: detect debug libs by using â_debugâ suffix
* Fix extensions without leading period having first character dropped
* Doc: Remove mention of custom filters, part 2
==== libqt5-qttranslations ====
Version update (5.15.6+kde2 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* Update simplified chinese translation
* update dutch translations
* Update Catalan translations for Qt 5.15.2
==== libqt5-qtvirtualkeyboard ====
Version update (5.15.6+kde1 -> 5.15.7+kde0)
Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtwayland ====
Version update (5.15.6+kde49 -> 5.15.7+kde49)
Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5
- Update to version 5.15.7+kde49, rebased upstream:
* Hold surface read lock throughout QWaylandEglWindow::updateSurface
* Keep reference to buffer until it has been replaced
* Implement wp_viewporter support for video buffer formats
* Ignore viewporter buffer size when buffer is null
==== libqt5-qtwebchannel ====
Version update (5.15.6+kde3 -> 5.15.7+kde3)
Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports
- Update to version 5.15.7+kde3, rebased upstream:
* No code changes
==== libqt5-qtwebview ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5WebView5 libQt5WebView5-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtx11extras ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== libqt5-qtxmlpatterns ====
Version update (5.15.6+kde0 -> 5.15.7+kde0)
Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports
- Update to version 5.15.7+kde0, rebased upstream:
* No code changes
==== mobipocket ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== python-charset-normalizer ====
Version update (2.1.1 -> 3.0.0)
- Update to 3.0.0
Added
* Extend the capability of explain=True when cp_isolation contains at most two entries (min one), will log in details of the Mess-detector results
Support for alternative language frequency set in charset_normalizer.assets.FREQUENCIES
Add parameter language_threshold in from_bytes, from_path and from_fp to adjust the minimum expected coherence ratio
normalizer --version now specify if current version provide extra speedup (meaning mypyc compilation whl)
* Changed
Build with static metadata using 'build' frontend
Make the language detection stricter
Optional: Module md.py can be compiled using Mypyc to provide an extra speedup up to 4x faster than v2.1
* Fixed
CLI with opt --normalize fail when using full path for files
TooManyAccentuatedPlugin induce false positive on the mess detection when too few alpha character have been fed to it
Sphinx warnings when generating the documentation
* Removed
Coherence detector no longer return 'Simple English' instead return 'English'
Coherence detector no longer return 'Classical Chinese' instead return 'Chinese'
Breaking: Method first() and best() from CharsetMatch
UTF-7 will no longer appear as "detected" without a recognized SIG/mark (is unreliable/conflict with ASCII)
Breaking: Class aliases CharsetDetector, CharsetDoctor, CharsetNormalizerMatch and CharsetNormalizerMatches
Breaking: Top-level function normalize
Breaking: Properties chaos_secondary_pass, coherence_non_latin and w_counter from CharsetMatch
Support for the backport unicodedata2
==== qca-qt5 ====
Version update (2.3.4 -> 2.3.5)
Subpackages: libqca-qt5-2 qca-qt5-plugins
- BR ca-certificates-mozilla for the testsuite
- Have the devel package require the library
- Drop qca-2.3.0-fixDSA.patch, that was fixed in 2014 already by
just disabling DSA
- Add upstream change:
* 0001-hashunittest-run-sha384longtest-only-for-providers-t.patch
- Update to 2.3.5
* find dependencies of Qca when the cmake package is used by a
project
* Handle openssl without case5 support
* Update rootcerts.pem
* SafeSocketNotifier: fix socket FD type and remove signal
argument
- Drop patch, merged upstream:
* 0001-Make-filewatchunittest-much-quicker.patch
==== shadow ====
Subpackages: libsubid4 login_defs
- bsc#1204811: Fix chage date format string regression
* Add shadow-chage-format.patch
==== signon-kwallet-extension ====
Version update (22.08.2 -> 22.08.3)
- Update to 22.08.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/22.08.3/
==== sqlite3 ====
Version update (3.39.3 -> 3.39.4)
Subpackages: libsqlite3-0 sqlite3-tcl
- update to 3.39.4:
* Fix a long-standing problem in the btree balancer that might,
in rare cases, cause database corruption if the application
uses an application-defined page cache
* Enhance SQLITE_DBCONFIG_DEFENSIVE so that it disallows
CREATE TRIGGER statements if one or more of the statements in
the body of the trigger write into shadow tables
* Fix a possible integer overflow in the size computation for a
memory allocation in FTS3.
* Fix a misuse of the sqlite3_set_auxdata() interface in the ICU
Extension
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa
Mesa-drivers
MozillaFirefox (106.0.2 -> 106.0.3)
autoyast2 (4.5.6 -> 4.5.8)
btrfsprogs (5.19.1 -> 6.0)
dbus-1-glib
fwupd
keylime (6.5.2 -> 6.5.3)
libnvme (1.1 -> 1.2)
nvme-cli (2.1.2 -> 2.2.1)
openssl (1.1.1q -> 1.1.1s)
openssl-1_1 (1.1.1q -> 1.1.1s)
openssl-3 (3.0.5 -> 3.0.7)
patterns-microos
pipewire
polkit-default-privs (1550+20221018.7616c25 -> 1550+20221102.9f111fa)
qemu
sudo
xorg-x11-server
xwayland (22.1.4 -> 22.1.5)
=== Details ===
==== Mesa ====
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- u_nouveau-corrupted-colors-boo1203949.patch
* fixes corrupted colors in videos on nouveau with Kepler in
Firefox (boo#1203949, issue#7416)
- moved drirc.d config snippets from Mesa to Mea-dri package;
radv driver specific conf was missing completely (boo#1204866)
==== Mesa-drivers ====
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- u_nouveau-corrupted-colors-boo1203949.patch
* fixes corrupted colors in videos on nouveau with Kepler in
Firefox (boo#1203949, issue#7416)
- moved drirc.d config snippets from Mesa to Mea-dri package;
radv driver specific conf was missing completely (boo#1204866)
==== MozillaFirefox ====
Version update (106.0.2 -> 106.0.3)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 106.0.3
* Fixes for other platforms
==== autoyast2 ====
Version update (4.5.6 -> 4.5.8)
- Log the profile/rules/classes file SHA1 sum so we can later
verify that a particular file was or was not used by YaST
(related to bsc#1204175)
- 4.5.8
- Allow empty values in ask/default, ask/selection/label and
ask/selection/value elements (bsc#1204448).
- 4.5.7
==== btrfsprogs ====
Version update (5.19.1 -> 6.0)
Subpackages: btrfsprogs-udev-rules libbtrfs0
- update to 6.0
* fi usage: in tabular output, print total size and slack size
* mkfs:
* option -O now accepts values from -R to unify the interface (-R will
continue to work)
* zone reset and discard is done in parallel on all devices
* removed option --leafsize, deprecated long time ago
* corrupt-block: recalculate checksum when changing generation
* fixes:
* convert: fix reserved range detection and overlaps
* mkfs: fix creating files with reserved inode numbers with --rootdir
* receive: escape filenames in command attributes
* fix extent buffer leaks after transaction abort
* experimental:
* mkfs: support for block-group-tree (kernel 6.1)
* fsverity in send (protocol v3, WIP)
* btrfstune -b converts to block-group-tree
* other:
* cleanups, refactoring
* new and updated tests
* update documentation
==== dbus-1-glib ====
- Try to guard against incomplete update stacks (boo#1202241):
+ Add split-provides to libdbus-1-glib and bash-completion
sub-package.
+ Add explicit conflict to bash-completion subpackage against
dbus-1-glib < 0.112 (when the package split happened)
+ Ensure dbus-1-glib-tool gets the correct library version
installed.
==== fwupd ====
Subpackages: fwupd-bash-completion fwupd-lang libfwupd2 typelib-1_0-Fwupd-2_0
- For pushing fwupd-1.8.6 to 15-SP5 (fwupd-1.7.3), sync change log:
(jsc#PED-1232)
- fwupd-bsc1193921-nvme-ignore-non-PCI-NVMe-devices.patch
be merged to fwupd-1.7.3
==== keylime ====
Version update (6.5.2 -> 6.5.3)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime
- Update to version v6.5.3:
* crypto: Provide input as bytes to encrypt
* Revert "Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)"
* Update runtime_ima.rst
==== libnvme ====
Version update (1.1 -> 1.2)
- Update to version 1.2:
* Add more details for return code of MI admin cmds
* Parse dhchap_host_key on controller level
* Update json config schema for missing dhchap host key
* fabrics: Add new TP8010 definitions
* fabrics: Add nvmf_get_discovery_wargs()
* fabrics: Duplicate strings when merging configs
* fabrics: Filter out empty strings in add_argument()
* fabrics: Use fallthrough statement
* ioctl: Set log page offset for nvme_get_log_telemetry_host
* json-schema: add dhchap_key details to host section
* json: Enforce correctly formatted JSON config files
* json: Verify JSON config file starts with an array
* mi: Add Get Log Page helpers
* mi: Add Identify function for secondary controller list
* mi: Add Identify helper for ns-descs and primary-ctrl-caps
* mi: Add firmware download and commit commands
* mi: Add identify helper for nsid-capable Controller List
* mi: Add identify helpers for namespace lists
* mi: Add identify helpers for namespaces
* mi: Allow Admin-message sized More Processing Required responses
* mi: Distinguish MI status from NVMe (CDW3) status
* mi: Fix C++ compiler errors
* mi: Implement Format NVM command
* mi: Implement Get & Set Features Admin commands
* mi: Implement NS attach command and helpers
* mi: Implement Namespace Management command and create/delete helpers
* mi: Implement Sanitize command
* mi: Init ctrl_id within xfer
* mi: Introduce a helper for response status, unify values with ioctls
* mi: Set log page offset for nvme_get_log_telemetry_host
* mi: add nvme_mi_status_to_string()
* mi: fix a memory leak in nvme_mi_open_mctp()
* mi: fix get_log_page chunked offset check
* nvme-tree: avoid segfault if auth keys are unavailable
* python: Use nvmf_get_discovery_wargs()
* tree: rename controller 'dhchap_key' to 'dhchap_ctrl_key'
* types: Move enum nvme_data_tfr to types
* util: Add LINE_MAX define
* util: Add get feature length 2 API to support direction parameter
* util: Add simple UUID type
* util: Do not expose fallthrough defines
- Make man page build conditiional. Install man page location has been
fixed upstream.
- Mark the Python directory own by the libnvme3-python package
- Use fixed manpage build date (boo#1047218)
==== nvme-cli ====
Version update (2.1.2 -> 2.2.1)
Subpackages: nvme-cli-bash-completion
- Update to version 2.2.1:
* Added parsing for Solidigm telemetry observable data.
* add item ddr_ecc_err_cnt in smart-log-add
* build: Drop dependency on libuuid
* build: Fix endian check for cross build
* build: Remove unused uuid.wrap file
* build: Remove unusned uuid.h include
* completions: Add show-topology tab completion
* fabrics: Honor JSON config file in connect-all command
* fabrics: Trigger auto connect if config.json exists
* fabrics: fix 'persistent' handling during connect-all with JSON file
* fabrics: nvme config --modify depends on -n and -t argument
* fabrics: re-read the discovery log page when a discovery controller reconnected
* json: Support uint64 types serialization for older json-c versions
* nvme, plugins: fix __u64 -> unsigned long long assumptions
* nvme-print: Add missing values in id-ctrl for JSON output
* nvme-print: Handle NULL hostid in JSON output
* nvme-print: Output 128bit values as uint128 type instead of double
* nvme-print: Print fguid as a UUID
* nvme-print: Use uint128 JSON function for media_units_written
* nvme-print: decode MI status values
* nvme-print: decode status types
* nvme-print: fix wrong json key
* nvme: Add helper function to parse 16-bit comma separated list
* nvme: Add nvme_cmd wrapper for get_features
* nvme: Add show-topology command
* nvme: Add wrapper for Format NVM
* nvme: Add wrapper for Sanitize NVM
* nvme: Add wrappers for Get Log page helpers
* nvme: Add wrappers for Identify controller lists
* nvme: Add wrappers for NS attach/detach
* nvme: Add wrappers for NS management functions
* nvme: Add wrappers for basic NS identify
* nvme: Add wrappers for firmware commands
* nvme: Fix set feature command to get feature identifier 0Dh length as zero
* nvme: Introduce a union in struct nvme_dev for different transport types
* nvme: Introduce nvme_cli_ wrappers, wrap identify and identify_ctrl
* nvme: Make static nvme_dev private to open_dev(), use locals elsewhere
* nvme: Masks SSTAT in sanize-log output
* nvme: Remove static nvme_dev, allocate on open instead
* nvme: Use correct print format specifier for sizeof arguments
* nvme: Use local struct nvme_dev for show_registers & map_registers
* nvme: check if cfg.metadata is NULL before passing it to strlen()
* nvme: use helpers for checking status types
* plugins/innogrit: Include timer.h
* plugins/innogrit: add smart items for smart-log-add
* plugins/micron-nvme: Use correct print format specifier for sizeof arguments
* plugins/ocp: Include timer.h
* plugins/ocp: Output 128bit values as uint128 type instead of double
* plugins/ocp: pass struct nvme_dev to internal functions
* plugins/seagate: Add support for OCP
* plugins/toshiba: pass struct nvme_dev rather than fd + name
* plugins/virtium: Output 128bit values as uint128 type instead of double
* plugins/wdc: Add support for SN660 drive
* plugins/wdc: Add type case for feature id
* plugins/wdc: Output 128bit values as uint128 type instead of double
* plugins/wdc: pass a struct nvme_dev around rather than a fd
* plugins/wdc: pass struct nvme_dev rather than using global nvme_dev
* plugins/ytmc: pass struct nvme_dev rather than fd + name
* plugins: Use PRIu64 format specifier for 64bit types
* print: Add Controller Ready Timeout Exceeded HW error code
* solidgm: fix initialization warning
* solidigm: Added parsing for telemetry customer screenable data
* solidigm: Fix printf format for size_t variable
* solidigm: Updated Telemetry parsing code to MIT license.
* subprojects/libnvme: update for MI admin command coverage
* tests: Update license to GPL-2.0-or-later
* tree: Add NVMe-MI support
* tree: Add dev_fd() helper
* tree: Change nvme_dev from global to static
* tree: Combine NVMe file descriptor into struct nvme_dev
* tree: Move global device info to a single struct
* tree: fail on non-negative return values from parse_and_open
* udev: Add HOST_IFACE to udev rule
* util/json.h: Add json_object_get_uint64 fallback implementation
* util/json: Add 128 bit JSON helpers
* util/types: Add 128 bit conversion helpers
* util: Fix le128_to_cpu on big-endian
* util: Fix le128_to_cpu on little-endian
* util: Move common type conversion helpers into util section
* utils/json: Add json_object_new_uint64 for json-c < 0.14
* utils: Fix uint128_t usage
* wdc: OCP Log page updates and fixes
* zns.c: report zones should be started after retrieved zone
- Handle suse-missing-rclink lint warnings by providing the symlinks
- Drop rpmlintrc as it is not needed anymore
==== openssl ====
Version update (1.1.1q -> 1.1.1s)
- updated to 1.1.s release
==== openssl-1_1 ====
Version update (1.1.1q -> 1.1.1s)
Subpackages: libopenssl1_1
- Updated openssl.keyring with key A21FAB74B0088AA361152586B8EF1A6BA9DA2D5C
- Update to 1.1.1s:
* Fixed a regression introduced in 1.1.1r version not refreshing the
certificate data to be signed before signing the certificate.
- Update to 1.1.1r:
* Fixed the linux-mips64 Configure target which was missing the
SIXTY_FOUR_BIT bn_ops flag. This was causing heap corruption on that
platform.
* Fixed a strict aliasing problem in bn_nist. Clang-14 optimisation was
causing incorrect results in some cases as a result.
* Fixed SSL_pending() and SSL_has_pending() with DTLS which were failing to
report correct results in some cases
* Fixed a regression introduced in 1.1.1o for re-signing certificates with
different key sizes
* Added the loongarch64 target
* Fixed a DRBG seed propagation thread safety issue
* Fixed a memory leak in tls13_generate_secret
* Fixed reported performance degradation on aarch64. Restored the
implementation prior to commit 2621751 ("aes/asm/aesv8-armx.pl: avoid
32-bit lane assignment in CTR mode") for 64bit targets only, since it is
reportedly 2-17% slower and the silicon errata only affects 32bit targets.
The new algorithm is still used for 32 bit targets.
* Added a missing header for memcmp that caused compilation failure on some
platforms
==== openssl-3 ====
Version update (3.0.5 -> 3.0.7)
- Temporary disable tests test_ssl_new and test_sslapi because they are
failing in openSUSE_Tumbleweed
- Update to 3.0.7: [bsc#1204714, CVE-2022-3602,CVE-2022-3786]
* Fixed two buffer overflows in punycode decoding functions.
A buffer overrun can be triggered in X.509 certificate verification,
specifically in name constraint checking. Note that this occurs after
certificate chain signature verification and requires either a CA to
have signed the malicious certificate or for the application to continue
certificate verification despite failure to construct a path to a trusted
issuer.
In a TLS client, this can be triggered by connecting to a malicious
server. In a TLS server, this can be triggered if the server requests
client authentication and a malicious client connects.
An attacker can craft a malicious email address to overflow
an arbitrary number of bytes containing the `.` character (decimal 46)
on the stack. This buffer overflow could result in a crash (causing a
denial of service).
([CVE-2022-3786])
An attacker can craft a malicious email address to overflow four
attacker-controlled bytes on the stack. This buffer overflow could
result in a crash (causing a denial of service) or potentially remote code
execution depending on stack layout for any given platform/compiler.
([CVE-2022-3602])
* Removed all references to invalid OSSL_PKEY_PARAM_RSA names for CRT
parameters in OpenSSL code.
Applications should not use the names OSSL_PKEY_PARAM_RSA_FACTOR,
OSSL_PKEY_PARAM_RSA_EXPONENT and OSSL_PKEY_PARAM_RSA_COEFFICIENT.
Use the numbered names such as OSSL_PKEY_PARAM_RSA_FACTOR1 instead.
Using these invalid names may cause algorithms to use slower methods
that ignore the CRT parameters.
* Fixed a regression introduced in 3.0.6 version raising errors on some stack
operations.
* Fixed a regression introduced in 3.0.6 version not refreshing the certificate
data to be signed before signing the certificate.
* Added RIPEMD160 to the default provider.
* Ensured that the key share group sent or accepted for the key exchange
is allowed for the protocol version.
- Update to 3.0.6: [bsc#1204226, CVE-2022-3358]
* OpenSSL supports creating a custom cipher via the legacy
EVP_CIPHER_meth_new() function and associated function calls. This function
was deprecated in OpenSSL 3.0 and application authors are instead encouraged
to use the new provider mechanism in order to implement custom ciphers.
* OpenSSL versions 3.0.0 to 3.0.5 incorrectly handle legacy custom ciphers
passed to the EVP_EncryptInit_ex2(), EVP_DecryptInit_ex2() and
EVP_CipherInit_ex2() functions (as well as other similarly named encryption
and decryption initialisation functions). Instead of using the custom cipher
directly it incorrectly tries to fetch an equivalent cipher from the
available providers. An equivalent cipher is found based on the NID passed
to EVP_CIPHER_meth_new(). This NID is supposed to represent the unique NID
for a given cipher. However it is possible for an application to incorrectly
pass NID_undef as this value in the call to EVP_CIPHER_meth_new(). When
NID_undef is used in this way the OpenSSL encryption/decryption
initialisation function will match the NULL cipher as being equivalent and
will fetch this from the available providers. This will succeed if the
default provider has been loaded (or if a third party provider has been
loaded that offers this cipher). Using the NULL cipher means that the
plaintext is emitted as the ciphertext.
* Applications are only affected by this issue if they call
EVP_CIPHER_meth_new() using NID_undef and subsequently use it in a call to
an encryption/decryption initialisation function. Applications that only use
SSL/TLS are not impacted by this issue. ([CVE-2022-3358])
* Fix LLVM vs Apple LLVM version numbering confusion that caused build
failures on MacOS 10.11
* Fixed the linux-mips64 Configure target which was missing the SIXTY_FOUR_BIT
bn_ops flag. This was causing heap corruption on that platform.
* Fix handling of a ticket key callback that returns 0 in TLSv1.3 to not send
a ticket
* Correctly handle a retransmitted ClientHello in DTLS
* Fixed detection of ktls support in cross-compile environment on Linux
* Fixed some regressions and test failures when running the 3.0.0 FIPS
provider against 3.0.x
* Fixed SSL_pending() and SSL_has_pending() with DTLS which were failing to
report correct results in some cases
* Fix UWP builds by defining VirtualLock
* For known safe primes use the minimum key length according to RFC 7919.
Longer private key sizes unnecessarily raise the cycles needed to compute
the shared secret without any increase of the real security. This fixes a
regression from 1.1.1 where these shorter keys were generated for the known
safe primes.
* Added the loongarch64 target
* Fixed EC ASM flag passing. Flags for ASM implementations of EC curves were
only passed to the FIPS provider and not to the default or legacy provider.
* Fixed reported performance degradation on aarch64. Restored the
implementation prior to commit 2621751 ("aes/asm/aesv8-armx.pl: avoid 32-bit
lane assignment in CTR mode") for 64bit targets only, since it is reportedly
2-17% slower and the silicon errata only affects 32bit targets. The new
algorithm is still used for 32 bit targets.
* Added a missing header for memcmp that caused compilation failure on some
platforms
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- cups-pk-helper shouldn't be linked to PackageKit, as "pk" stands
for PolicyKit in this case (boo#1204949)
==== pipewire ====
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Fix regression with Dell WD15 Dock and others (bsc#1204719):
0002-spa-support-the-speakers-output-only-case-in-report_.patch
==== polkit-default-privs ====
Version update (1550+20221018.7616c25 -> 1550+20221102.9f111fa)
- Update to version 1550+20221102.9f111fa:
* allow local logged in users to change NetworkManager configuration,
keyboard layout and locale settings without entering a password (in the
easy profile).
==== qemu ====
- qtests test are not realiable when run inside OBS builders, so
let's disable that part of the testsuite for now. There is work
ongoing to run it somewhere else (on dedicated hosts) to avoid
loosing coverage. (bsc#1204566)
- Improve dependency handling (e.g., what's recommended vs. what's
required.
- Add a subpackage (qemu-headless) that brings in all the packages
that are needed for creating VMs with tools like virt-install
or VirtManager, run either locally or from a remote host.
(bsc#1202166)
- Build fails due to exceeding 10 GB disk limit (10430 MB):
raise disk space contraint to 12 GB
==== sudo ====
Subpackages: sudo-plugin-python
- Modified sudo-sudoers.patch
* [bsc#1203978 jsc#PED-260]
* Remove uncommented "Defaults targetpw" portion of /etc/sudo-sudoers file.
* Sudo now asks for the password of the user calling sudo instead of the
target (i.e. root) user.
==== xorg-x11-server ====
Subpackages: xorg-x11-server-Xvfb xorg-x11-server-extra
- removed N_Disable-HW-Cursor-for-cirrus-and-mgag200-kernel-modules.patch
* meanwhile cirrus and mgag200 Kernel drivers have been rewritten
multiple times and no longer have (broken) hardware cursor
- u_xf86-Accept-devices-with-the-kernels-ofdrm-driver.patch
* Add workaround to support ofdrm
==== xwayland ====
Version update (22.1.4 -> 22.1.5)
- Update to version 22.1.5
* This is a follow-up release to address a couple of regressions
which found their way into the recent xwayland-22.1.4 release,
namely:
+ Double scroll wheel events with some Wayland compositors
https://gitlab.freedesktop.org/xorg/xserver/-/issues/1392
+ Key keeps repeating when a window is closed while a key is pressed
https://gitlab.freedesktop.org/xorg/xserver/-/issues/1395
- supersedes U_Do-not-ignore-leave-events.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
highway (1.0.1 -> 1.0.2)
kernel-source (6.0.5 -> 6.0.6)
kexec-tools
libxml2
lvm2
lvm2-device-mapper (1.02.185 -> 2.03.16_1.02.185)
mpg123 (1.31.0 -> 1.31.1)
ntfs-3g_ntfsprogs (2022.5.17 -> 2022.10.3)
protobuf (21.6 -> 21.9)
python-Twisted (22.4.0 -> 22.10.0)
python-pymongo (4.2.0 -> 4.3.2)
tar
=== Details ===
==== highway ====
Version update (1.0.1 -> 1.0.2)
- Update to release 1.0.2
* Add ExclusiveNeither, FindKnownFirstTrue, Ne128
* Add 16-bit SumOfLanes/ReorderWidenMulAccumulate/ReorderDemote2To
* Faster sort for low-entropy input, improved pivot selection
* Support static dispatch to SVE2_128 and SVE_256
- Leap just needs a modern gcc, no need for clang
- Fix build on openSUSE Leap by using clang
==== kernel-source ====
Version update (6.0.5 -> 6.0.6)
- char: pcmcia: cm4040_cs: Fix use-after-free in reader_fops
(bsc#1204922 CVE-2022-44033).
- commit aaed0f2
- ring-buffer: Check for NULL cpu_buffer in
ring_buffer_wake_waiters() (bsc#1204705).
- commit 57f1f7d
- Refresh patches.suse/drm-amdgpu-Fix-for-BO-move-issue.patch.
Update upstream status.
- commit 30b9c27
- char: pcmcia: scr24x_cs: Fix use-after-free in scr24x_fops
(bsc#1204901 CVE-2022-44034).
- char: pcmcia: cm4000_cs: Fix use-after-free in cm4000_fops
(bsc#1204894 CVE-2022-44032).
- commit 7d0ff8d
- Refresh
patches.suse/ACPI-resource-do-IRQ-override-on-LENOVO-IdeaPad.patch.
- Refresh
patches.suse/ALSA-hda-realtek-Add-another-HP-ZBook-G9-model-quirk.patch.
- Refresh
patches.suse/ALSA-hda-realtek-Add-quirk-for-ASUS-Zenbook-using-CS.patch.
Update upstream status.
- commit eaa1897
- Linux 6.0.6 (bsc#1012628).
- mm: /proc/pid/smaps_rollup: fix no vma's null-deref
(bsc#1012628).
- ACPI: video: Force backlight native for more TongFang devices
(bsc#1012628).
- ext4: fix potential out of bound read in ext4_fc_replay_scan()
(bsc#1012628).
- ext4: factor out ext4_fc_get_tl() (bsc#1012628).
- ext4: introduce EXT4_FC_TAG_BASE_LEN helper (bsc#1012628).
- io_uring: don't gate task_work run on TIF_NOTIFY_SIGNAL
(bsc#1012628).
- wifi: mt76: mt7921e: fix random fw download fail (bsc#1012628).
- iommu/vt-d: Clean up si_domain in the init_dmars() error path
(bsc#1012628).
- iommu/vt-d: Allow NVS regions in arch_rmrr_sanity_check()
(bsc#1012628).
- rv/dot2c: Make automaton definition static (bsc#1012628).
- drbd: only clone bio if we have a backing device (bsc#1012628).
- net: phy: dp83822: disable MDI crossover status change interrupt
(bsc#1012628).
- net: sched: fix race condition in qdisc_graft() (bsc#1012628).
- net: hns: fix possible memory leak in hnae_ae_register()
(bsc#1012628).
- wwan_hwsim: fix possible memory leak in wwan_hwsim_dev_new()
(bsc#1012628).
- sfc: include vport_id in filter spec hash and equal()
(bsc#1012628).
- io_uring/msg_ring: Fix NULL pointer dereference in
io_msg_send_fd() (bsc#1012628).
- net: Fix return value of qdisc ingress handling on success
(bsc#1012628).
- net: sched: sfb: fix null pointer access issue when sfb_init()
fails (bsc#1012628).
- net: sched: delete duplicate cleanup of backlog and qlen
(bsc#1012628).
- net: sched: cake: fix null pointer access issue when cake_init()
fails (bsc#1012628).
- nvmet: fix workqueue MEM_RECLAIM flushing dependency
(bsc#1012628).
- nvme-hwmon: kmalloc the NVME SMART log buffer (bsc#1012628).
- nvme-hwmon: consistently ignore errors from nvme_hwmon_init
(bsc#1012628).
- netfilter: nf_tables: relax NFTA_SET_ELEM_KEY_END set flags
requirements (bsc#1012628).
- netfilter: rpfilter/fib: Set ->flowic_uid correctly for user
namespaces (bsc#1012628).
- netfilter: rpfilter/fib: Populate flowic_l3mdev field
(bsc#1012628).
- ionic: catch NULL pointer issue on reconfig (bsc#1012628).
- net: hsr: avoid possible NULL deref in skb_clone()
(bsc#1012628).
- bnxt_en: fix memory leak in bnxt_nvm_test() (bsc#1012628).
- drm/amd/display: Increase frame size limit for
display_mode_vba_util_32.o (bsc#1012628).
- dm: remove unnecessary assignment statement in alloc_dev()
(bsc#1012628).
- cifs: Fix memory leak when build ntlmssp negotiate blob failed
(bsc#1012628).
- cifs: Fix xid leak in cifs_ses_add_channel() (bsc#1012628).
- cifs: Fix xid leak in cifs_flock() (bsc#1012628).
- cifs: Fix xid leak in cifs_copy_file_range() (bsc#1012628).
- cifs: Fix xid leak in cifs_create() (bsc#1012628).
- ip6mr: fix UAF issue in ip6mr_sk_done() when addrconf_init_net()
failed (bsc#1012628).
- udp: Update reuse->has_conns under reuseport_lock (bsc#1012628).
- scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1012628).
- net: ethernet: mtk_eth_wed: add missing of_node_put()
(bsc#1012628).
- net: ethernet: mtk_eth_wed: add missing put_device() in
mtk_wed_add_hw() (bsc#1012628).
- net: ethernet: mtk_eth_soc: fix possible memory leak in
mtk_probe() (bsc#1012628).
- io_uring/rw: remove leftover debug statement (bsc#1012628).
- blk-mq: fix null pointer dereference in
blk_mq_clear_rq_mapping() (bsc#1012628).
- erofs: shouldn't churn the mapping page for duplicated copies
(bsc#1012628).
... changelog too long, skipping 80 lines ...
- commit ba5b066
==== kexec-tools ====
- add kexec-tools-riscv64.patch
==== libxml2 ====
Subpackages: libxml2-2 libxml2-tools
- Add W3C conformance tests to the testsuite (bsc#1204585):
* Added file xmlts20080827.tar.gz
==== lvm2 ====
Subpackages: liblvm2cmd2_03
- dracut-initqueue timeouts with 5.3.18-150300.59.63 kernel on ppc64le (bsc#1199074)
- in lvm2.spec, change device_mapper_version from 1.02.185 to %{lvm2_version}_1.02.185
==== lvm2-device-mapper ====
Version update (1.02.185 -> 2.03.16_1.02.185)
Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03
- dracut-initqueue timeouts with 5.3.18-150300.59.63 kernel on ppc64le (bsc#1199074)
- in lvm2.spec, change device_mapper_version from 1.02.185 to %{lvm2_version}_1.02.185
==== mpg123 ====
Version update (1.31.0 -> 1.31.1)
Subpackages: libmpg123-0 mpg123-openal
- Update to version 1.31.1
* Fix largefile aliases for the case of a largefile-insensitive
build that still does define _FILE_OFFSET_BITS from the
outside (sys/feature_tests.h on Illumos).
==== ntfs-3g_ntfsprogs ====
Version update (2022.5.17 -> 2022.10.3)
Subpackages: libntfs-3g89 ntfs-3g ntfsprogs
- update to 2022.10.3 (bsc#1204734 CVE-2022-40284):
* Rejected zero-sized runs.
* Avoided merging runlists with no runs.
==== protobuf ====
Version update (21.6 -> 21.9)
- update to 21.9:
* Ruby
* Replace libc strdup usage with internal impl to restore musl compat (#10818)
* Auto capitalize enums name in Ruby (#10454) (#10763)
* Other
* Fix for grpc.tools #17995 & protobuf #7474 (handle UTF-8 paths in argumentfile) (#10721)
* C++
* 21.x No longer define no_threadlocal on OpenBSD (#10743)
* Java
* Mark default instance as immutable first to avoid race during static initialization of default instances (#10771)
* Refactoring java full runtime to reuse sub-message builders and prepare to
migrate parsing logic from parse constructor to builder.
* Move proto wireformat parsing functionality from the private "parsing
constructor" to the Builder class.
* Change the Lite runtime to prefer merging from the wireformat into mutable
messages rather than building up a new immutable object before merging. This
way results in fewer allocations and copy operations.
* Make message-type extensions merge from wire-format instead of building up
instances and merging afterwards. This has much better performance.
* Fix TextFormat parser to build up recurring (but supposedly not repeated)
sub-messages directly from text rather than building a new sub-message and
merging the fully formed message into the existing field.
==== python-Twisted ====
Version update (22.4.0 -> 22.10.0)
Subpackages: python310-Twisted python310-Twisted-tls
- Update to 22.10.0:
* Features
+ twisted.internet.defer.maybeDeferred will now schedule a coroutine
result as asynchronous operation and return a Deferred that fires with
the result of the coroutine.
+ Twisted now works with Cryptography versions 37 and above, and as a
result, its minimum TLS protocol version has been upgraded to TLSv1.2.
+ The systemd: endpoint parser now supports "named" file descriptors. This
is a more reliable mechanism for choosing among several inherited
descriptors.
* Bugfixes
+ twisted.internet.base.DelayedCall.__repr__ will no longer raise
AttributeError if the DelayedCall was created before debug mode was
enabled. As a side-effect, twisted.internet.base.DelayedCall.creator is
now defined as None in cases where previously it was undefined.
+ twisted.internet.iocpreactor.udp now properly re-queues its listener
when there is a failure condition on the read from the socket.
+ twisted.internet.defer.inlineCallbacks no longer causes confusing
StopIteration tracebacks to be added to the top of tracebacks
originating in triggered callbacks.
+ The typing of twisted.internet.task.react no longer constrains the
type of argv.
+ ContextVar.reset() now works correctly inside inlineCallbacks functions
and coroutines.
+ Implement twisted.python.failure._Code.co_positions for compatibility
with Python 3.11.
+ twisted.pair.tuntap._TUNSETIFF and ._TUNGETIFF values are now correct
parisc, powerpc and sparc architectures.
+ twisted.web.vhost.NameVirtualHost will no longerreturn a NoResource
error. (bsc#1204781, CVE-2022-39348)
* Deprecations and Removals
+ Python 3.6 is no longer supported.
+ Twisted 22.4.0 was the last version with support for Python 3.6.
+ twisted.protocols.dict, which was deprecated in 17.9, has been removed.
- Remove Python 3.6 Requires.
- Drop patch skip-namespacewithwhitespace.patch, no longer required.
- Refresh all patches.
==== python-pymongo ====
Version update (4.2.0 -> 4.3.2)
- Update to 4.3.2
Complete Changelog https://pymongo.readthedocs.io/en/4.3.2/changelog.html
==== tar ====
Subpackages: tar-lang tar-rmt
- Fix unexpected inconsistency when making directory, bsc#1203600
* tar-avoid-overflow-in-symlinks-tests.patch
* tar-fix-extract-unlink.patch
- Update race condition fix, bsc#1200657
* tar-fix-race-condition.patch
- Refresh bsc1200657.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
at-spi2-core
evince (43.0 -> 43.1)
gdm
gjs (1.74.0 -> 1.74.1)
glib2 (2.74.0 -> 2.74.1)
gnome-shell
gnome-software
gnome-terminal (3.46.2 -> 3.46.3)
kio
libavif
lsof (4.95.0 -> 4.96.4)
python-Deprecated
python-lark (1.1.2 -> 1.1.3)
python-pytz (2022.4 -> 2022.5)
python-requests
redis
vte (0.70.0 -> 0.70.1)
yast2-trans (84.87.20221023.365770fb5e -> 84.87.20221029.429a275094)
=== Details ===
==== at-spi2-core ====
Subpackages: at-spi2-core-lang libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0
- Ensure xprop is required when xwayland is installed.
==== evince ====
Version update (43.0 -> 43.1)
Subpackages: evince-lang evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 43.1:
+ build: Disable nautilus extension by default.
+ comics:
- Avoid critical when pixbuf can't be rendered.
- Better debug on archive error.
- Fix crash that can happen if archive is damaged.
- Still try to open broken comics.
+ shell: Fix use-after-free on a modified document.
+ Fix incorrect link in README.md.
+ Use https URL for libarchive.org in README.md.
+ Updated translations.
==== gdm ====
Subpackages: gdm-lang gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Update gdm-sysconfig-settings.patch: Fix gdm doesn't start
if /etc/sysconfig/displaymanager is missing (bsc#1204578).
==== gjs ====
Version update (1.74.0 -> 1.74.1)
Subpackages: libgjs0 typelib-1_0-GjsPrivate-1_0
- Update to version 1.74.1:
+ Closed bugs and merge requests:
- Problem calling promisified D-Bus wrappers with callback.
- docs:
. Fix link in issue template.
. Document Gio.FileEnumerator iteration.
. Fix Markdown formatting in README.MSVC.md.
==== glib2 ====
Version update (2.74.0 -> 2.74.1)
Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0
- Add ca905744.patch: Revert "Handling collision between standard
i/o file descriptors and newly created ones". The user-visible
problem this solves is gnome-keyring-daemon eating 100% CPU.
- Update to version 2.74.1:
+ Update Unicode data to version 15
+ Fix various build failures in different situations
+ Fix over-eager deprecated property warnings for construct
properties
+ Fix a crash calling `g_param_value_is_valid()` on a
`GParamSpecParam`
+ Fix floating `GVariant` leaks with GObject properties
+ Add inline optimised version of `g_str_equal()`
+ Fix `GVariant` type depths checks on text format variants
+ Fix regression with int64 and double hashing functions on
big-endian architectures
+ Build the API documentation only when building GLib as a shared
library
+ Ignore weird `/etc/localtime` configurations generated by
toolbx
+ Avoid `EINTR` races when closing FDs in `g_spawn_*()`
+ Bugs fixed: glgo#GNOME/GLib#16, glgo#GNOME/GLib#333,
glgo#GNOME/GLib#2735, glgo#GNOME/GLib#2740,
glgo#GNOME/GLib#2742, glgo#GNOME/GLib#2748,
glgo#GNOME/GLib#2758, glgo#GNOME/GLib#2759,
glgo#GNOME/GLib#2766, glgo#GNOME/GLib#2767,
glgo#GNOME/GLib#2770, glgo#GNOME/GLib#2774,
glgo#GNOME/GLib#2775, glgo#GNOME/GLib#2782,
glgo#GNOME/GLib#2787, glgo#GNOME/GLib#2788,
glgo#GNOME/GLib!2852, glgo#GNOME/GLib!2857,
glgo#GNOME/GLib!2864, glgo#GNOME/GLib!2866,
glgo#GNOME/GLib!2880, glgo#GNOME/GLib!2885,
glgo#GNOME/GLib!2892, glgo#GNOME/GLib!2896,
glgo#GNOME/GLib!2899, glgo#GNOME/GLib!2901,
glgo#GNOME/GLib!2903, glgo#GNOME/GLib!2904,
glgo#GNOME/GLib!2905, glgo#GNOME/GLib!2907,
glgo#GNOME/GLib!2911, glgo#GNOME/GLib!2913,
glgo#GNOME/GLib!2915, glgo#GNOME/GLib!2916,
glgo#GNOME/GLib!2920, glgo#GNOME/GLib!2922,
glgo#GNOME/GLib!2924, glgo#GNOME/GLib!2928,
glgo#GNOME/GLib!2931, glgo#GNOME/GLib!2933,
glgo#GNOME/GLib!2938, glgo#GNOME/GLib!2939,
glgo#GNOME/GLib!2946, glgo#GNOME/GLib!2948,
glgo#GNOME/GLib!2949, glgo#GNOME/GLib!2958,
glgo#GNOME/GLib!2960, glgo#GNOME/GLib!2973,
glgo#GNOME/GLib!2975, glgo#GNOME/GLib!2982,
glgo#GNOME/GLib!2983, glgo#GNOME/GLib!2988,
glgo#GNOME/GLib!2989, glgo#GNOME/GLib!2995,
glgo#GNOME/GLib!2996, glgo#GNOME/GLib!2998,
glgo#GNOME/GLib!3010.
+ Updated translations.
- Rebase patches with quilt.
- Drop f0dd96c28751f15d0703b384bfc7c314af01caa8.diff: Fixed
upstream.
==== gnome-shell ====
Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang
- Add gnome-shell-disable-offline-update-dialog.patch :
Disable offline update suggestion before shutdown/reboot
in SLE and openSUSE Leap (bsc#944832).
==== gnome-software ====
Subpackages: gnome-software-lang gnome-software-plugin-packagekit
- Add gnome-software-disable-offline-update.patch: Disable offline
update in SLE and openSUSE Leap(bsc#944832).
==== gnome-terminal ====
Version update (3.46.2 -> 3.46.3)
Subpackages: gnome-shell-search-provider-gnome-terminal gnome-terminal-lang nautilus-extension-terminal
- Update to version 3.46.3:
* client: More env vars to filter.
* desktop: Use Preferences icon.
* icons: Add separate icons for Preferences.
* l10n: Remove mjw from LINGUAS.
* metainfo: Remove XML namespaces.
* prefs:
- Use different wm class.
- Use new icon.
* profile: Use correct schema source for the profiles list
schema.
* Updated translations.
==== kio ====
Subpackages: kio-core kio-lang
- Add kio-mr1008-fix-webdav.diff
* Fixes WebDAV upload (kde#460717)
* https://invent.kde.org/frameworks/kio/-/merge_requests/1008
==== libavif ====
- Remove unused BuildRequires on nasm
- Remove indirect/incorrect Buildrequires on zlib
- add direct glib Buildrequires
==== lsof ====
Version update (4.95.0 -> 4.96.4)
- update to 4.96.4
* fix hash functions used for finding local tcp/udp IPCs
* Show copyright notice in --version output.
* Avoid some easy collissions for udp/udp6 sockets when hashing
* Changing the number of ipcbuckets to 4096
* obtain correct information of memory-mapped file.
- drop remove-hostname.patch now upstream
==== python-Deprecated ====
- Provid canonicalized lowercase name
- Don't catchall files section
==== python-lark ====
Version update (1.1.2 -> 1.1.3)
- Update to v1.1.3
Various fixes and refactors
* Add user to cache filename; better handle cache load/save failures by @klauer in #1179
* refactor: add 'usedforsecurity=False' arg to hashlib.md5 usage by @cquick01 in #1190
* Create lark/grammars/init.py by @chanicpanic in #1171
* Adjust imports for Python 3.11 by @The-Compiler in #1140
* Fix for issue #1173 by @erezsh in #1198
* Add match stmt support to python.lark by @joseph-e-k in #1123
* Added match stmt support to python.lark by @MegaIng in #1016
* Linting to fix minor issues by @Erotemic in #1128
* Simplify lexer: Use Match.lastgroup instead of lastindex by @erezsh in #1129
* Fix confusing import in examples by @JonasLoos in #1138
* Move iter_subtrees_topdown into standalone by @camgunz in #1137
* Fix 1146: use the class's get instead of the instance's get by @MegaIng in #1147
* fix: remove Python 2 legacy packaging code by @henryiii in #1148
* Fix for PR #1149 by @erezsh in #1150
* Old link for sppf is no longer valid. Point to web archive instead. by @patrickhuber in #1159
* Fix ForestToPyDotVisitor by @chanicpanic in #1167
* Close file-like objects to address ResourceWarning. by @shawnbrown in #1183
* Minor adjustments to PR #1179 by @erezsh in #1189
* Adjustments for PR #1152 by @erezsh in #1191
* Remove trailing whitespace by @bcr in #1196
==== python-pytz ====
Version update (2022.4 -> 2022.5)
- Update to 2022.5
* IANA 2022e
Squashed 'tz/' changes from 0fc8f915a..16bd7a384
c4eb3fcf2 Release 2022e
842ad565d Add Jordan URL from Brian Inglis
3aa74b7f7 Jordan to switch from +02/+03 with DST to plain +03
59aa97e8e Syria to switch from +02/+03 with DST to plain +03
f29068291 Prefer UT for whole-hour UT transitions
7f860c0fe Circa-1922 Mexico fixes
ff2e2a09a Treat 1931 changes in Mexico as DST
==== python-requests ====
- allow using newest version of charset-normalizer (3.0+)
* requests-allow-charset-normalizer-3.patch
==== redis ====
- Fix CVE-2022-3647, crash in sigsegvHandler debug function
(CVE-2022-3647, bsc#1204633)
* cve-2022-3647.patch
==== vte ====
Version update (0.70.0 -> 0.70.1)
Subpackages: libvte-2_91-0 vte-lang
- Update to version 0.70.1:
+ app:
- Disconnect signal handlers on dispose.
- Filter unwanted environment variables.
+ build:
- Add define for darwin.
- Fix netbsd define.
+ widget:
- Don't consume right clicks on gtk4.
- Implement clipboard for gtk4.
* Updated translations.
==== yast2-trans ====
Version update (84.87.20221023.365770fb5e -> 84.87.20221029.429a275094)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20221029.429a275094:
* Translated using Weblate (Macedonian)
* New POT for text domain 'packager'.
* New POT for text domain 'firstboot'.
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* Translated using Weblate (Macedonian)
* New POT for text domain 'registration'.
* New POT for text domain 'base'.
* New POT for text domain 'add-on'.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
python-numpy (1.21.6 -> 1.23.4)
rgb (1.0.6 -> 1.1.0)
rubygem-nokogiri (1.13.8 -> 1.13.9)
sessreg (1.1.2 -> 1.1.3)
strace (5.19 -> 6.0)
timezone (2022e -> 2022f)
timezone-java (2022e -> 2022f)
=== Details ===
==== python-numpy ====
Version update (1.21.6 -> 1.23.4)
- Update to 1.23.4
* NumPy 1.23.4 is a maintenance release that fixes bugs
discovered after the 1.23.3 release and keeps the build
infrastructure current. The main improvements are fixes for
some annotation corner cases, a fix for a long time
nested_iters memory leak, and a fix of complex vector dot for
very large arrays. The Python versions supported for this
release are 3.8-3.11.
- Revert some spec-cleaner "Verschlimmbesserungen"
- Remove old unused directives for Python <=3.6 from specfile
- specfile:
* remove patch numpy-fix-cpu_asimdfhm.patch, included upstream
* update line numbers for other patches
* require c++ compiler
- update to version 1.23.3:
* #22136: BLD: Add Python 3.11 wheels to aarch64 build
* #22148: MAINT: Update setup.py for Python 3.11.
* #22155: CI: Test NumPy build against old versions of GCC(6, 7, 8)
* #22156: MAINT: support IBM i system
* #22195: BUG: Fix circleci build
* #22214: BUG: Expose heapsort algorithms in a shared header
* #22215: BUG: Support using libunwind for backtrack
* #22216: MAINT: fix an incorrect pointer type usage in f2py
* #22220: BUG: change overloads to play nice with pyright.
* #22221: TST,BUG: Use fork context to fix MacOS savez test
* #22222: TYP,BUG: Reduce argument validation in C-based
__class_getitem__
* #22223: TST: ensure np.equal.reduce raises a TypeError
* #22224: BUG: Fix the implementation of numpy.array_api.vecdot
* #22230: BUG: Better report integer division overflow (backport)
- changes from version 1.23.2:
* #22030: ENH: Add __array_ufunc__ typing support to the nin=1
ufuncs
* #22031: MAINT, TYP: Fix np.angle dtype-overloads
* #22032: MAINT: Do not let _GenericAlias wrap the underlying
classes'...
* #22033: TYP,MAINT: Allow einsum subscripts to be passed via
integer...
* #22034: MAINT,TYP: Add object-overloads for the np.generic rich
comparisons
* #22035: MAINT,TYP: Allow the squeeze and transpose method to...
* #22036: BUG: Fix subarray to object cast ownership details
* #22037: BUG: Use Popen to silently invoke f77 -v
* #22038: BUG: Avoid errors on NULL during deepcopy
* #22039: DOC: Add versionchanged for converter callable behavior.
* #22057: MAINT: Quiet the anaconda uploads.
* #22078: ENH: reorder includes for testing on top of system
installations...
* #22106: TST: fix test_linear_interpolation_formula_symmetric
* #22107: BUG: Fix skip condition for
test_loss_of_precision[complex256]
* #22115: BLD: Build python3.11.0rc1 wheels.
- changes from version 1.23.1:
* #21866: BUG: Fix discovered MachAr (still used within valgrind)
* #21867: BUG: Handle NaNs correctly for float16 during sorting
* #21868: BUG: Use keepdims during normalization in np.average
and...
* #21869: DOC: mention changes to max_rows behaviour in np.loadtxt
* #21870: BUG: Reject non integer array-likes with size 1 in delete
* #21949: BLD: Make can_link_svml return False for 32bit builds on
x86_64
* #21951: BUG: Reorder extern "C" to only apply to function
declarations...
* #21952: BUG: Fix KeyError in crackfortran operator support
- changes from version 1.23.0:
* long changelog
https://github.com/numpy/numpy/blob/main/doc/changelog/1.23.0-changelog.rst
- changes from version 1.22.4:
* #21191: TYP, BUG: Fix np.lib.stride_tricks re-exported under
the...
* #21192: TST: Bump mypy from 0.931 to 0.940
* #21243: MAINT: Explicitly re-export the types in numpy._typing
* #21245: MAINT: Specify sphinx, numpydoc versions for CI doc builds
* #21275: BUG: Fix typos
* #21277: ENH, BLD: Fix math feature detection for wasm
* #21350: MAINT: Fix failing simd and cygwin tests.
* #21438: MAINT: Fix failing Python 3.8 32-bit Windows test.
* #21444: BUG: add linux guard per #21386
* #21445: BUG: Allow legacy dtypes to cast to datetime again
* #21446: BUG: Make mmap handling safer in frombuffer
* #21447: BUG: Stop using PyBytesObject.ob_shash deprecated in
Python 3.11.
* #21448: ENH: Introduce numpy.core.setup_common.NPY_CXX_FLAGS
* #21472: BUG: Ensure compile errors are raised correclty
* #21473: BUG: Fix segmentation fault
* #21474: MAINT: Update doc requirements
* #21475: MAINT: Mark npy_memchr with no_sanitize("alignment") on
clang
* #21512: DOC: Proposal - make the doc landing page cards more
similar...
* #21525: MAINT: Update Cython version to 0.29.30.
* #21536: BUG: Fix GCC error during build configuration
* #21541: REL: Prepare for the NumPy 1.22.4 release.
* #21547: MAINT: Skip tests that fail on PyPy.
- changes from version 1.22.3:
* #21048: MAINT: Use "3.10" instead of "3.10-dev" on travis.
* #21106: TYP,MAINT: Explicitly allow sequences of array-likes in
np.concatenate
* #21137: BLD,DOC: skip broken ipython 8.1.0
... changelog too long, skipping 70 lines ...
https://github.com/numpy/numpy/blob/main/doc/changelog/1.22.0-changelog.rst
==== rgb ====
Version update (1.0.6 -> 1.1.0)
- Update to version 1.1.0
* This release adds a new configure option --with-rgb-db-library to allow
builders more control over which dbm or ndbm compatible library is used
if --with-rgb-db-type is set to one of the non-default database options
instead of the default of "text". The --with-rgb-db-library option can
allow use of libraries that are not normally searched for (gdbm_compat)
or to bypass libraries we do normally search for (like Berkeley db).
==== rubygem-nokogiri ====
Version update (1.13.8 -> 1.13.9)
updated to version 1.13.9
see installed CHANGES.md
==== sessreg ====
Version update (1.1.2 -> 1.1.3)
- Update to version 1.1.3
* Fix spelling/wording issues
* gitlab CI: add a basic build test
* gitlab CI: stop requiring Signed-off-by in commits
* Fix -Wstringop-truncation warnings in safe_strncpy()
==== strace ====
Version update (5.19 -> 6.0)
- Update to strace 6.0
* Enhanced decoding of PTP_* ioctl commands.
* Updated decoding of setns syscall.
* Updated lists of BPF_*, BTRFS_*, FAN_*, ETH_P_*, KVM_*, NDTPA_*,
NT_*, PERF_*, and TLS_INFO_* constants.
* Updated lists of ioctl commands from Linux 6.0.
==== timezone ====
Version update (2022e -> 2022f)
- timezone update 2022f:
* Mexico will no longer observe DST except near the US border
* Chihuahua moves to year-round -06 on 2022-10-30
* Fiji no longer observes DST
* Move links to 'backward'
* In vanguard form, GMT is now a Zone and Etc/GMT a link
* zic now supports links to links, and vanguard form uses this
* Simplify four Ontario zones
* Fix a Y2438 bug when reading TZif data
* Enable 64-bit time_t on 32-bit glibc platforms
* Omit large-file support when no longer needed
* In C code, use some C23 features if available
* Remove no-longer-needed workaround for Qt bug 53071
==== timezone-java ====
Version update (2022e -> 2022f)
- timezone update 2022f:
* Mexico will no longer observe DST except near the US border
* Chihuahua moves to year-round -06 on 2022-10-30
* Fiji no longer observes DST
* Move links to 'backward'
* In vanguard form, GMT is now a Zone and Etc/GMT a link
* zic now supports links to links, and vanguard form uses this
* Simplify four Ontario zones
* Fix a Y2438 bug when reading TZif data
* Enable 64-bit time_t on 32-bit glibc platforms
* Omit large-file support when no longer needed
* In C code, use some C23 features if available
* Remove no-longer-needed workaround for Qt bug 53071
1
0