Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ModemManager
abseil-cpp (20230802.0 -> 20230802.1)
alsa
c-ares (1.19.1 -> 1.20.1)
calligra
cni
cni-plugins
desktop-file-utils (0.26 -> 0.27)
fuse3 (3.16.1 -> 3.16.2)
gpg2 (2.4.0 -> 2.4.3)
libcue (2.2.1 -> 2.3.0)
libnvme
libva (2.19.0 -> 2.20.0)
libva-gl (2.19.0 -> 2.20.0)
libxmlb (0.3.13 -> 0.3.14)
nvme-cli
orca (45.0 -> 45.1)
patterns-gnome
patterns-microos
plasma-branding-MicroOS (20230519 -> 20231008)
publicsuffix (20230826 -> 20230930)
python-apipkg (3.0.1 -> 3.0.2)
qpdf (11.6.1 -> 11.6.2)
rootlesskit
xkeyboard-config (2.39 -> 2.40)
=== Details ===
==== ModemManager ====
Subpackages: ModemManager-bash-completion libmm-glib0
- Add explicit /usr/bin/dbus-daemon BuildRequires: Needed for
tests.
==== abseil-cpp ====
Version update (20230802.0 -> 20230802.1)
- update to 20230802.1:
* Add StdcppWaiter to the end of the list of waiter
implementations
==== alsa ====
Subpackages: libasound2 libatopology2
- Fix symbol version:
0005-seq-Fix-typos-in-symbol-version-definitions.patch
==== c-ares ====
Version update (1.19.1 -> 1.20.1)
- Update to version 1.20.1
* Remove bin/acountry from built tools as nerd.dk is gone
* Default per-query timeout has been reduced to 2s with a 3x retry count
* rand: add support for getrandom()
Bug fixes:
* TCP back to back queries were broken
* Ensure queries for ares_getaddrinfo() are not requeued during
destruction
* ares_getaddrinfo() should not retry other address classes if
one address class has already been returned
* Avoid production ill-formed result when qualifying a name
with the root domain
* Fix missing prefix for CMake generated libcares.pc
* DNS server ports can now be read from system configuration
instead of defaulting to port 53, aka openBSD resolv.conf format
* Replace usages of sprintf with snprintf
==== calligra ====
- Replace freetype-devel BuildRequires with freetype2: this is
actually what is needed, but as fontconfig happened to pull it in
already, things happened to work. Freetype 1 is not needed here.
==== cni ====
- Bump BuildRequired golang version to >= 1.21, fixes bsc#1216006
==== cni-plugins ====
- Bump BuildRequired golang version to >= 1.21, fixes bsc#1216006
==== desktop-file-utils ====
Version update (0.26 -> 0.27)
- Update to version 0.27:
* common
+ Remove Autotools support.
+ Minor updates to project documentation.
+ Add pledge(2) support to remaining utilities
+ Add --version support to utilities.
* desktop-file-validate
+ Support desktop spec version 1.5.
+ Add LXQt to categories.
+ Use DDE category for Deepin desktop.
+ Add Endless to list of desktop IDs.
+ Fix field code escaping in messages.
* desktop-entry-mode.el
+ Highlight action groups when ID includes hyphens.
- Drop patches (upstreamed):
* 0001-validate-support-SingleMainWindow-key-from-1.5.patch
* 0002-validate-Support-version-1.5.patch
- Refresh desktop-file-utils-suse-keys.patch
==== fuse3 ====
Version update (3.16.1 -> 3.16.2)
Subpackages: libfuse3-3
- Update to release 3.16.2
* Various minor bugfixes and improvements.
==== gpg2 ====
Version update (2.4.0 -> 2.4.3)
Subpackages: dirmngr
- Install the internal executables in the /usr/libexec dir instead
of /usr/lib64. These files are keyboxd, scdaemon, gpg-auth
gpg-check-pattern, gpg-pair-tool, gpg-preset-passphrase,
gpg-protect-tool, gpg-wks-client, dirmngr_ldap and tpm2daemon.
- Provide the systemd-user files since they have been removed
upstream since version 2.4.1. [bsc#1201564]
* Add gpg2-systemd-user.tar.xz
==== libcue ====
Version update (2.2.1 -> 2.3.0)
- Update to release 2.3.0
* EOF check [CVE-2023-43641]
- Drop 0001-Check-that-the-array-index-isn-t-negative.-This-fixe.patch
- Add 0001-Check-that-the-array-index-isn-t-negative.-This-fixe.patch
[CVE-2023-43641]
==== libnvme ====
Subpackages: libnvme-mi1 libnvme1
- Use glob for python3-libnvme file listening. Workaround pycache_only
problems for SLE/Leap builds.
- Drop usused libuuid dependency
==== libva ====
Version update (2.19.0 -> 2.20.0)
Subpackages: libva-drm2 libva-x11-2 libva2
- Update to version 2.20.0:
* av1: Revise offsets comments for av1 encode
* drm:
- Limit the array size to avoid out of range
- Remove no longer used helpers
* jpeg: add support for crop and partial decode
* trace:
- Add trace for vaExportSurfaceHandle
- Unlock mutex before return
- Fix minor issue about printf data type and value range
* va/backend:
- Annotate vafool as deprecated
- Document the vaGetDriver* APIs
* va/x11/va_fglrx: Remove some dead code
* va/x11/va_nvctrl: Remove some dead code
* va:
- Add new VADecodeErrorType to indicate the reset happended in
the driver
- Add vendor string on va_TraceInitialize
- Added Q416 fourcc (three-plane 16-bit YUV 4:4:4)
- Drop no longer applicable vaGetDriverNames check
- Fix:don't leak driver names, when override is set
- Fix:set driver number to be zero if vaGetDriverNames failed
- Optimize code of getting driver name for all protocols/os
(wayland,x11,drm,win32,android)
- Remove legacy code paths
- Remove unreachable "DRIVER BUG"
* win32:
- Only print win32 driver messages in DEBUG builds
- Remove duplicate adapter_luid entry
* x11/dri2: limit the array handling to avoid out of range access
* x11:
- Allow disabling DRI3 via LIBVA_DRI3_DISABLE env var
- Implement vaGetDriverNames
- Remove legacy code paths
- Refresh propagate-dpy.patch with quilt.
==== libva-gl ====
Version update (2.19.0 -> 2.20.0)
- Update to version 2.20.0:
* av1: Revise offsets comments for av1 encode
* drm:
- Limit the array size to avoid out of range
- Remove no longer used helpers
* jpeg: add support for crop and partial decode
* trace:
- Add trace for vaExportSurfaceHandle
- Unlock mutex before return
- Fix minor issue about printf data type and value range
* va/backend:
- Annotate vafool as deprecated
- Document the vaGetDriver* APIs
* va/x11/va_fglrx: Remove some dead code
* va/x11/va_nvctrl: Remove some dead code
* va:
- Add new VADecodeErrorType to indicate the reset happended in
the driver
- Add vendor string on va_TraceInitialize
- Added Q416 fourcc (three-plane 16-bit YUV 4:4:4)
- Drop no longer applicable vaGetDriverNames check
- Fix:don't leak driver names, when override is set
- Fix:set driver number to be zero if vaGetDriverNames failed
- Optimize code of getting driver name for all protocols/os
(wayland,x11,drm,win32,android)
- Remove legacy code paths
- Remove unreachable "DRIVER BUG"
* win32:
- Only print win32 driver messages in DEBUG builds
- Remove duplicate adapter_luid entry
* x11/dri2: limit the array handling to avoid out of range access
* x11:
- Allow disabling DRI3 via LIBVA_DRI3_DISABLE env var
- Implement vaGetDriverNames
- Remove legacy code paths
- Refresh propagate-dpy.patch with quilt.
==== libxmlb ====
Version update (0.3.13 -> 0.3.14)
- baselibs.conf: don't build libxmlb2-32bit; baselibs.conf was
added for the x86-64-v3 flavor; the -32bit was an unintended side
effect.
- Update to 0.3.14
* Fix comparing indexed text with integer values
- Enable libstemmer-devel BuildRequires and pass stemmer=true to
meson setup, libstemmer now available in Tumbleweed.
- Use ldconfig_scriptlets macro for post(un) handling.
==== nvme-cli ====
Subpackages: nvme-cli-bash-completion
- Use fixed timestamps for documentation allowing reproducable builds
- Announce nvmeof-boot-support support via Provides
- Filter rpmlint warnings for systemd-service-without-service_ macros
- Add missing service files for NBFT feature
* add 0001-fabrics-autoconnect-add-service-unit-for-connecting-.patch
* add 0002-fabrics-add-udev-rule-to-avoid-renaming-nbft-interfa.patch
==== orca ====
Version update (45.0 -> 45.1)
- Update to version 45.1:
+ Web:
- Fix regression in bookmark support.
- Fix bug causing Orca to present some custom widgets as an
image.
+ General:
- Fix bug causing Orca to ignore objects that are valid because
they had been defunct/invalid before.
- Fix bug causing rewind and fast-forward in SayAll to fail.
- Fix chattiness issue in mate-panel.
- Only examine descriptions by default in isSameObject for Gtk
apps for performance reasons.
- Use AXObject.is_dead instead of the script utility for
performance reasons.
- Revert "Don't let brlapi crash us". This change was a
workaround put in place to give distros enough time to get
the fixed brltty, but it had a slight performance impact if
braille was enabled but not being used.
- Stop using deprecated Gtk API in the accessible actions menu.
+ Updated translations.
==== patterns-gnome ====
Subpackages: patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-sw_management_gnome
- Disable (temp?) gnome-notes while we wait for upstream to fix the
now 6 months old bug with it crashing in its search-provider. See
https://gitlab.gnome.org/GNOME/gnome-notes/-/issues/196 and
https://bugzilla.opensuse.org/show_bug.cgi?id=1210322
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Only require systemd-boot on architectures where it exists
(%{ix86} x86_64 aarch64).
- Exclude kernel-default-base on s390(x), it doesn't exist there
==== plasma-branding-MicroOS ====
Version update (20230519 -> 20231008)
- Added, for contextual menus in dolphin with the ark flatpak
* ark-addtoservicemenu.desktop
* ark-servicemenu.desktop
- 20231008
==== publicsuffix ====
Version update (20230826 -> 20230930)
- Update to version 20230930:
* util: gTLD data autopull updates for 2023-09-30T15:11:25 UTC
* Update .fr list, move some subspaces to PRIVATE section listing of smallregistry.net
* Remove k12.de.us
* Add wix.run
==== python-apipkg ====
Version update (3.0.1 -> 3.0.2)
- update to 3.0.2:
* Fix import path to make it vendoring-friendly
* remove py reference from tests
- switch to gh tarball to get tests again
==== qpdf ====
Version update (11.6.1 -> 11.6.2)
- version update to 11.6.2:
* Bug fix: when piping stream data, don't call finish on failure
if the failure was caused by a previous call to finish.
==== rootlesskit ====
- Bump go version to 1.21 (bsc#1215611)
==== xkeyboard-config ====
Version update (2.39 -> 2.40)
- Update to version 2.40
* mostly updated translation
* a few bugfixes
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ModemManager
abseil-cpp (20230802.0 -> 20230802.1)
alsa
c-ares (1.19.1 -> 1.20.1)
calligra
cni
cni-plugins
desktop-file-utils (0.26 -> 0.27)
fuse3 (3.16.1 -> 3.16.2)
gpg2 (2.4.0 -> 2.4.3)
libcue (2.2.1 -> 2.3.0)
libnvme
libva (2.19.0 -> 2.20.0)
libva-gl (2.19.0 -> 2.20.0)
libxmlb (0.3.13 -> 0.3.14)
nvme-cli
orca (45.0 -> 45.1)
patterns-gnome
patterns-microos
plasma-branding-MicroOS (20230519 -> 20231008)
publicsuffix (20230826 -> 20230930)
python-apipkg (3.0.1 -> 3.0.2)
qpdf (11.6.1 -> 11.6.2)
rootlesskit
xkeyboard-config (2.39 -> 2.40)
yast2-trans (84.87.20230930.5f9e01162a -> 84.87.20231004.bd479b5f2d)
=== Details ===
==== ModemManager ====
Subpackages: ModemManager-bash-completion ModemManager-lang libmm-glib0
- Add explicit /usr/bin/dbus-daemon BuildRequires: Needed for
tests.
==== abseil-cpp ====
Version update (20230802.0 -> 20230802.1)
- update to 20230802.1:
* Add StdcppWaiter to the end of the list of waiter
implementations
==== alsa ====
Subpackages: libasound2 libatopology2
- Fix symbol version:
0005-seq-Fix-typos-in-symbol-version-definitions.patch
==== c-ares ====
Version update (1.19.1 -> 1.20.1)
- Update to version 1.20.1
* Remove bin/acountry from built tools as nerd.dk is gone
* Default per-query timeout has been reduced to 2s with a 3x retry count
* rand: add support for getrandom()
Bug fixes:
* TCP back to back queries were broken
* Ensure queries for ares_getaddrinfo() are not requeued during
destruction
* ares_getaddrinfo() should not retry other address classes if
one address class has already been returned
* Avoid production ill-formed result when qualifying a name
with the root domain
* Fix missing prefix for CMake generated libcares.pc
* DNS server ports can now be read from system configuration
instead of defaulting to port 53, aka openBSD resolv.conf format
* Replace usages of sprintf with snprintf
==== calligra ====
- Replace freetype-devel BuildRequires with freetype2: this is
actually what is needed, but as fontconfig happened to pull it in
already, things happened to work. Freetype 1 is not needed here.
==== cni ====
- Bump BuildRequired golang version to >= 1.21, fixes bsc#1216006
==== cni-plugins ====
- Bump BuildRequired golang version to >= 1.21, fixes bsc#1216006
==== desktop-file-utils ====
Version update (0.26 -> 0.27)
- Update to version 0.27:
* common
+ Remove Autotools support.
+ Minor updates to project documentation.
+ Add pledge(2) support to remaining utilities
+ Add --version support to utilities.
* desktop-file-validate
+ Support desktop spec version 1.5.
+ Add LXQt to categories.
+ Use DDE category for Deepin desktop.
+ Add Endless to list of desktop IDs.
+ Fix field code escaping in messages.
* desktop-entry-mode.el
+ Highlight action groups when ID includes hyphens.
- Drop patches (upstreamed):
* 0001-validate-support-SingleMainWindow-key-from-1.5.patch
* 0002-validate-Support-version-1.5.patch
- Refresh desktop-file-utils-suse-keys.patch
==== fuse3 ====
Version update (3.16.1 -> 3.16.2)
Subpackages: libfuse3-3
- Update to release 3.16.2
* Various minor bugfixes and improvements.
==== gpg2 ====
Version update (2.4.0 -> 2.4.3)
Subpackages: dirmngr gpg2-lang
- Install the internal executables in the /usr/libexec dir instead
of /usr/lib64. These files are keyboxd, scdaemon, gpg-auth
gpg-check-pattern, gpg-pair-tool, gpg-preset-passphrase,
gpg-protect-tool, gpg-wks-client, dirmngr_ldap and tpm2daemon.
- Provide the systemd-user files since they have been removed
upstream since version 2.4.1. [bsc#1201564]
* Add gpg2-systemd-user.tar.xz
==== libcue ====
Version update (2.2.1 -> 2.3.0)
- Update to release 2.3.0
* EOF check [CVE-2023-43641]
- Drop 0001-Check-that-the-array-index-isn-t-negative.-This-fixe.patch
- Add 0001-Check-that-the-array-index-isn-t-negative.-This-fixe.patch
[CVE-2023-43641]
==== libnvme ====
Subpackages: libnvme-mi1 libnvme1
- Use glob for python3-libnvme file listening. Workaround pycache_only
problems for SLE/Leap builds.
- Drop usused libuuid dependency
==== libva ====
Version update (2.19.0 -> 2.20.0)
Subpackages: libva-drm2 libva-x11-2 libva2
- Update to version 2.20.0:
* av1: Revise offsets comments for av1 encode
* drm:
- Limit the array size to avoid out of range
- Remove no longer used helpers
* jpeg: add support for crop and partial decode
* trace:
- Add trace for vaExportSurfaceHandle
- Unlock mutex before return
- Fix minor issue about printf data type and value range
* va/backend:
- Annotate vafool as deprecated
- Document the vaGetDriver* APIs
* va/x11/va_fglrx: Remove some dead code
* va/x11/va_nvctrl: Remove some dead code
* va:
- Add new VADecodeErrorType to indicate the reset happended in
the driver
- Add vendor string on va_TraceInitialize
- Added Q416 fourcc (three-plane 16-bit YUV 4:4:4)
- Drop no longer applicable vaGetDriverNames check
- Fix:don't leak driver names, when override is set
- Fix:set driver number to be zero if vaGetDriverNames failed
- Optimize code of getting driver name for all protocols/os
(wayland,x11,drm,win32,android)
- Remove legacy code paths
- Remove unreachable "DRIVER BUG"
* win32:
- Only print win32 driver messages in DEBUG builds
- Remove duplicate adapter_luid entry
* x11/dri2: limit the array handling to avoid out of range access
* x11:
- Allow disabling DRI3 via LIBVA_DRI3_DISABLE env var
- Implement vaGetDriverNames
- Remove legacy code paths
- Refresh propagate-dpy.patch with quilt.
==== libva-gl ====
Version update (2.19.0 -> 2.20.0)
- Update to version 2.20.0:
* av1: Revise offsets comments for av1 encode
* drm:
- Limit the array size to avoid out of range
- Remove no longer used helpers
* jpeg: add support for crop and partial decode
* trace:
- Add trace for vaExportSurfaceHandle
- Unlock mutex before return
- Fix minor issue about printf data type and value range
* va/backend:
- Annotate vafool as deprecated
- Document the vaGetDriver* APIs
* va/x11/va_fglrx: Remove some dead code
* va/x11/va_nvctrl: Remove some dead code
* va:
- Add new VADecodeErrorType to indicate the reset happended in
the driver
- Add vendor string on va_TraceInitialize
- Added Q416 fourcc (three-plane 16-bit YUV 4:4:4)
- Drop no longer applicable vaGetDriverNames check
- Fix:don't leak driver names, when override is set
- Fix:set driver number to be zero if vaGetDriverNames failed
- Optimize code of getting driver name for all protocols/os
(wayland,x11,drm,win32,android)
- Remove legacy code paths
- Remove unreachable "DRIVER BUG"
* win32:
- Only print win32 driver messages in DEBUG builds
- Remove duplicate adapter_luid entry
* x11/dri2: limit the array handling to avoid out of range access
* x11:
- Allow disabling DRI3 via LIBVA_DRI3_DISABLE env var
- Implement vaGetDriverNames
- Remove legacy code paths
- Refresh propagate-dpy.patch with quilt.
==== libxmlb ====
Version update (0.3.13 -> 0.3.14)
- baselibs.conf: don't build libxmlb2-32bit; baselibs.conf was
added for the x86-64-v3 flavor; the -32bit was an unintended side
effect.
- Update to 0.3.14
* Fix comparing indexed text with integer values
- Enable libstemmer-devel BuildRequires and pass stemmer=true to
meson setup, libstemmer now available in Tumbleweed.
- Use ldconfig_scriptlets macro for post(un) handling.
==== nvme-cli ====
Subpackages: nvme-cli-bash-completion
- Use fixed timestamps for documentation allowing reproducable builds
- Announce nvmeof-boot-support support via Provides
- Filter rpmlint warnings for systemd-service-without-service_ macros
- Add missing service files for NBFT feature
* add 0001-fabrics-autoconnect-add-service-unit-for-connecting-.patch
* add 0002-fabrics-add-udev-rule-to-avoid-renaming-nbft-interfa.patch
==== orca ====
Version update (45.0 -> 45.1)
Subpackages: orca-lang
- Update to version 45.1:
+ Web:
- Fix regression in bookmark support.
- Fix bug causing Orca to present some custom widgets as an
image.
+ General:
- Fix bug causing Orca to ignore objects that are valid because
they had been defunct/invalid before.
- Fix bug causing rewind and fast-forward in SayAll to fail.
- Fix chattiness issue in mate-panel.
- Only examine descriptions by default in isSameObject for Gtk
apps for performance reasons.
- Use AXObject.is_dead instead of the script utility for
performance reasons.
- Revert "Don't let brlapi crash us". This change was a
workaround put in place to give distros enough time to get
the fixed brltty, but it had a slight performance impact if
braille was enabled but not being used.
- Stop using deprecated Gtk API in the accessible actions menu.
+ Updated translations.
==== patterns-gnome ====
Subpackages: patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_basis_opt patterns-gnome-sw_management_gnome
- Disable (temp?) gnome-notes while we wait for upstream to fix the
now 6 months old bug with it crashing in its search-provider. See
https://gitlab.gnome.org/GNOME/gnome-notes/-/issues/196 and
https://bugzilla.opensuse.org/show_bug.cgi?id=1210322
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Only require systemd-boot on architectures where it exists
(%{ix86} x86_64 aarch64).
- Exclude kernel-default-base on s390(x), it doesn't exist there
==== plasma-branding-MicroOS ====
Version update (20230519 -> 20231008)
- Added, for contextual menus in dolphin with the ark flatpak
* ark-addtoservicemenu.desktop
* ark-servicemenu.desktop
- 20231008
==== publicsuffix ====
Version update (20230826 -> 20230930)
- Update to version 20230930:
* util: gTLD data autopull updates for 2023-09-30T15:11:25 UTC
* Update .fr list, move some subspaces to PRIVATE section listing of smallregistry.net
* Remove k12.de.us
* Add wix.run
==== python-apipkg ====
Version update (3.0.1 -> 3.0.2)
- update to 3.0.2:
* Fix import path to make it vendoring-friendly
* remove py reference from tests
- switch to gh tarball to get tests again
==== qpdf ====
Version update (11.6.1 -> 11.6.2)
- version update to 11.6.2:
* Bug fix: when piping stream data, don't call finish on failure
if the failure was caused by a previous call to finish.
==== rootlesskit ====
- Bump go version to 1.21 (bsc#1215611)
==== xkeyboard-config ====
Version update (2.39 -> 2.40)
Subpackages: xkeyboard-config-lang
- Update to version 2.40
* mostly updated translation
* a few bugfixes
==== yast2-trans ====
Version update (84.87.20230930.5f9e01162a -> 84.87.20231004.bd479b5f2d)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20231004.bd479b5f2d:
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (Portuguese (Brazil))
* Translated using Weblate (German)
* Translated using Weblate (German)
* Translated using Weblate (German)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Catalan)
* Translated using Weblate (Catalan)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
hplip (3.23.5 -> 3.23.8)
libvpx (1.13.0 -> 1.13.1)
patterns-microos
sof-firmware (2.2.6 -> 2023.09)
zxing-cpp (2.0.0 -> 2.1.0)
=== Details ===
==== hplip ====
Version update (3.23.5 -> 3.23.8)
Subpackages: hplip-hpijs hplip-udev-rules
- Update to hplip 3.23.8
- Support for new printers:
* HP Color LaserJet Pro MFP 4301fdne
* HP Color LaserJet Pro MFP 4301fdwe
* HP Color LaserJet Pro MFP 4301cdwe
* HP Color LaserJet Pro MFP 4301cfdne
* HP Color LaserJet Pro MFP 4301cfdwe
* HP Color LaserJet Pro MFP 4302dwe
* HP Color LaserJet Pro MFP 4302fdne
* HP Color LaserJet Pro MFP 4302fdwe
* HP Color LaserJet Pro MFP 4302cdwe
* HP Color LaserJet Pro MFP 4302fdn
* HP Color LaserJet Pro MFP 4302fdw
* HP Color LaserJet Pro MFP 4303dw
* HP Color LaserJet Pro MFP 4303fdn
* HP Color LaserJet Pro MFP 4303fdw
* HP Color LaserJet Pro MFP 4303cdw
* HP Color LaserJet Pro MFP 4303cfdn
* HP Color LaserJet Pro MFP 4303cfdw
* HP Color LaserJet Pro 4201dne
* HP Color LaserJet Pro 4201dwe
* HP Color LaserJet Pro 4201cdne
* HP Color LaserJet Pro 4201cdwe
* HP Color LaserJet Pro 4202dne
* HP Color LaserJet Pro 4202dwe
* HP Color LaserJet Pro 4202dn
* HP Color LaserJet Pro 4202dw
* HP Color LaserJet Pro 4203dn
* HP Color LaserJet Pro 4203dw
* HP Color LaserJet Pro 4203cdn
* HP Color LaserJet Pro 4203cdw
* HP DeskJet 2800 All-in-One Printer series
* HP DeskJet 2800e All-in-One Printer series
* HP DeskJet Ink Advantage 2800 All-in-One Printer series
* HP DeskJet 4200 All-in-One Printer series
* HP DeskJet 4200e All-in-One Printer series
* HP DeskJet Ink Advantage 4200 All-in-One Printer series
* HP DeskJet Ink Advantage Ultra 4900 All-in-One Printer series
==== libvpx ====
Version update (1.13.0 -> 1.13.1)
- Update to version 1.13.1:
+ Bug fixes: Fix to a crash related to VP9 encoding.
https://crbug.com/1486441 (CVE-2023-5217)
- Drop CVE-2023-5217.patch: Fixed upstream.
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add RPMs for systemd-boot to DVD
- Only pull in health-checker if grub2 is installed, in other cases
it won't really work: With sd-boot, the default btrfs subvol is not
used, so rollbacks have no effect.
==== sof-firmware ====
Version update (2.2.6 -> 2023.09)
- Update to version 2023.09 (jsc#PED-6123,jsc#PED-6114,jsc#PED-6104,
jsc#PED-6067,jsc#PED-6045,jsc#PED-6036):
it's a combined tarball with different version to support multiple
platforms including Metor Lake
- Use cp instead of rsync for installation:
install-use-cp.patch
==== zxing-cpp ====
Version update (2.0.0 -> 2.1.0)
- Update to 2.1.0:
* Considerable performance improvements in linear symbol detection (up to 2x speedup in select use cases of ReadBarcodes)
* QRCode: major improvement in detection of high version symbols (see e.g. here)
* DMDetector: reduce runtime overhead of c++-20 builds
* Refactor Python wrapper so the sdist includes the core library code
* wasm wrapper: add function to reader to scan multiple barcode
* Added a C wrapper
* Python: improve error reporting
* DMDetector: fix potential dead-lock
* DMDecoder: support 144x144 symbols in legacy and compliant variants
- Remove the %check section since we are not building the tests.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream
ImageMagick (7.1.1.18 -> 7.1.1.19)
Mesa (23.2.0 -> 23.2.1)
Mesa-drivers (23.2.0 -> 23.2.1)
NetworkManager (1.44.0 -> 1.44.2)
bluez
bolt (0.9.5 -> 0.9.6)
chrony
crypto-policies
dLeyna
e2fsprogs
fde-tools
filesystem
gdm
geoclue2 (2.7.0 -> 2.7.1)
glibc
gnome-control-center (45.0 -> 45.0+34)
groff
groff-full
grub2
hplip (3.23.5 -> 3.23.8)
ibus
icewm (3.4.0 -> 3.4.3)
kernel-source (6.5.4 -> 6.5.6)
ldb (2.7.2 -> 2.8.0)
libX11 (1.8.6 -> 1.8.7)
libXpm (3.5.16 -> 3.5.17)
libXrandr (1.5.3 -> 1.5.4)
libev
libnvme
libqt5-qtbase (5.15.10+kde129 -> 5.15.11+kde134)
libqt5-qtdeclarative (5.15.10+kde26 -> 5.15.11+kde30)
libqt5-qtgraphicaleffects (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtimageformats (5.15.10+kde9 -> 5.15.11+kde12)
libqt5-qtlocation (5.15.10+kde4 -> 5.15.11+kde4)
libqt5-qtmultimedia (5.15.10+kde3 -> 5.15.11+kde2)
libqt5-qtquickcontrols (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtquickcontrols2 (5.15.10+kde6 -> 5.15.11+kde5)
libqt5-qtsensors (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtspeech (5.15.10+kde1 -> 5.15.11+kde1)
libqt5-qtsvg (5.15.10+kde8 -> 5.15.11+kde6)
libqt5-qttools (5.15.10+kde3 -> 5.15.11+kde3)
libqt5-qttranslations (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtvirtualkeyboard (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtwayland (5.15.10+kde51 -> 5.15.11+kde59)
libqt5-qtwebchannel (5.15.10+kde3 -> 5.15.11+kde3)
libqt5-qtwebview (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtx11extras (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtxmlpatterns (5.15.10+kde0 -> 5.15.11+kde0)
libselinux
libsemanage
libsepol
libvpx (1.13.0 -> 1.13.1)
llvm17 (17.0.1 -> 17.0.2)
makedumpfile
mpg123 (1.32.2 -> 1.32.3)
netcfg
nvme-cli
parted
patterns-microos
perl
podman (4.7.0 -> 4.7.1)
policycoreutils
polkit-default-privs (1550+20230920.74aeded -> 1550+20231006.28f05f1)
python-SQLAlchemy (2.0.19 -> 2.0.21)
python-cryptography (41.0.3 -> 41.0.4)
python-dnspython
python-greenlet (3.0.0~rc3 -> 3.0.0)
python-psutil
python-urllib3 (2.0.4 -> 2.0.6)
rubygem-nokogiri
rubygem-ruby-dbus (0.23.0.beta2 -> 0.23.1)
samba (4.18.6+git.320.cfda27bacb -> 4.19.0+git.306.19d2e214c58)
selinux-policy
sg3_utils (1.48~20221101+1.142dace -> 1.48+1.889c3e3)
shadow (4.14.0 -> 4.14.1)
shim
slirp4netns (1.2.1 -> 1.2.2)
sof-firmware (2.2.6 -> 2023.09)
srt (1.5.2 -> 1.5.3)
systemd
talloc (2.4.0 -> 2.4.1)
tdb (1.4.8 -> 1.4.9)
tevent (0.14.1 -> 0.15.0)
u-boot-rpiarm64 (2023.07 -> 2023.10)
vte
xdg-desktop-portal
xscreensaver (6.06 -> 6.07)
xterm (384 -> 385)
zxing-cpp (2.0.0 -> 2.1.0)
=== Details ===
==== AppStream ====
Subpackages: libAppStreamQt2 libappstream4
- Enable vala support when building in SLE-15 SP6
- Fix condition in files section for the case where vala support
is disabled, where some files are being generated but were not
included
==== ImageMagick ====
Version update (7.1.1.18 -> 7.1.1.19)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.19
* https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
* fixes CVE-2023-5341 [bsc#1215939]
==== Mesa ====
Version update (23.2.0 -> 23.2.1)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Update to Mesa 23.2.1
* Mesa 23.2.1 is a new development release. People who are
concerned with stability and reliability should stick with a
previous release or wait for Mesa 23.2.2.
* Mesa 23.2.1 is an unusual first stable release due to the
accidentl tagging of 23.2.0 durring the rc cycle.
* Mesa 23.2.1 implements the OpenGL 4.6 API, but the version
reported by glGetString(GL_VERSION) or
glGetIntegerv(GL_MAJOR_VERSION) /
glGetIntegerv(GL_MINOR_VERSION) depends on the particular
driver being used. Some drivers don't support all the features
required in OpenGL 4.6. OpenGL 4.6 is **only** available if
requested at context creation. Compatibility contexts may
report a lower version depending on each driver.
* Mesa 23.2.1 implements the Vulkan 1.3 API, but the version
reported by the apiVersion property of the
VkPhysicalDeviceProperties struct depends on the particular
driver being used.
* More details in:
- -> https://gitlab.freedesktop.org/mesa/mesa/-/blob/23.2/docs/relnotes/23.2.1.r…
==== Mesa-drivers ====
Version update (23.2.0 -> 23.2.1)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Update to Mesa 23.2.1
* Mesa 23.2.1 is a new development release. People who are
concerned with stability and reliability should stick with a
previous release or wait for Mesa 23.2.2.
* Mesa 23.2.1 is an unusual first stable release due to the
accidentl tagging of 23.2.0 durring the rc cycle.
* Mesa 23.2.1 implements the OpenGL 4.6 API, but the version
reported by glGetString(GL_VERSION) or
glGetIntegerv(GL_MAJOR_VERSION) /
glGetIntegerv(GL_MINOR_VERSION) depends on the particular
driver being used. Some drivers don't support all the features
required in OpenGL 4.6. OpenGL 4.6 is **only** available if
requested at context creation. Compatibility contexts may
report a lower version depending on each driver.
* Mesa 23.2.1 implements the Vulkan 1.3 API, but the version
reported by the apiVersion property of the
VkPhysicalDeviceProperties struct depends on the particular
driver being used.
* More details in:
- -> https://gitlab.freedesktop.org/mesa/mesa/-/blob/23.2/docs/relnotes/23.2.1.r…
==== NetworkManager ====
Version update (1.44.0 -> 1.44.2)
Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Update to version 1.44.2:
+ Better log IPv4 Address Conflict Detection (ACD) conflicts
+ Remove the upper limit of 65535 for PIDs read from the PID file
+ Allow missing default gateway with oFono
+ Honor the CLICOLOR_FORCE environment variable
+ Fix generating connection with IPv6 method disabled vs ignored
+ Fix possible segmentation fault when doing a checkpoint
rollback
+ Documentation improvements
- Switch to source services, use explicit released tag.
==== bluez ====
Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3
- Moved btmgmt to main rpm of bluez. (jsc#PED-6216)
==== bolt ====
Version update (0.9.5 -> 0.9.6)
- update to 0.9.5:
* Compiler warnings and log messages for the domain not found were fixed.
==== chrony ====
Subpackages: chrony-pool-openSUSE
- Use make quickcheck instead of make check to avoid >1h build
times and failures due to timeouts. This was the default before
3.2 but it changed to make tests more reliable. Here a seed is
already set to get deterministic execution.
==== crypto-policies ====
Subpackages: crypto-policies-scripts
- Remove dependency on /usr/bin/python3, making scripts to depends on
the real python3 binary, not the link. bsc#1212476
==== dLeyna ====
- Remove executable bit from download_sync_controller.py. Fix
rpmlint warning.
==== e2fsprogs ====
Subpackages: libcom_err2 libext2fs2
- Update specfile to make sure regenerate_initrd_post macro is defined
==== fde-tools ====
- Add fde-tools-remove-redundant-2nd-pw-creation.patch to remove
the creation of the secondary password in 'add-secondary-key'
==== filesystem ====
- Add /run/lock (boo#1212926)
- Remove /var/spool/mail (boo#1179574)
- Remove obsolete home dir check. The filesystem package is not
meant to contain home directories of random system users anymore
- Create ghost symlinks also in pretrans, needed to get /var/run as
link right away
==== gdm ====
Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Explicitly buildrequire /usr/bin/dbus-run-session: the
dbus package is being restructured to be usable with dbus-broker
and so far we just relied on implicit dependencies bringing this
in. Meson checks for it, so it is correct to BR it though.
==== geoclue2 ====
Version update (2.7.0 -> 2.7.1)
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0
- Update to version 2.7.1:
+ Add 'age' field to MLS locate queries
+ Location updates now always have an accuracy value
+ Improvements to NMEA parsing:
- Parse NMEA timestamps with sub-second accuracy
- Add default accuracy to NMEA RMC locations
- Ignore locations from GGA and RMC sentences if the GNSS fix
is not valid
+ Prioritize GNSS sources with a recent fix over other sources,
preventing location jumps
+ Install D-Bus policy in /usr/share, not /etc
+ Upgrade GLib / Gio dependency to version 2.68.0
+ Correct gi annotations in GClueSimple
+ Various small fixes
- Use ldconfig_scriptlets macro for post(un) handling.
==== glibc ====
Subpackages: glibc-extra glibc-locale glibc-locale-base nscd
- setxid-propagate-glibc-tunables.patch: Propagate GLIBC_TUNABLES in
setxid binaries
- tunables-string-parsing.patch: tunables: Terminate if end of input is
reached (CVE-2023-4911, bsc#1215501)
==== gnome-control-center ====
Version update (45.0 -> 45.0+34)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces
- Update to version 45.0+34:
+ network: fix editing connections without a device (boo#1215651)
+ mouse: Fix linked style of primary mouse button in RTL
+ privacy: Fix crash in the firmware security page
+ data:
- Fix label string
- Add missing wireguard-peer.ui to POTFILES.in
- Mark translatable strings yes
+ info-overview: Add more types of processor support
+ Updated translations.
- Switch to git checkout from stable branch, use explicit commit.
==== groff ====
- Define ext_man="%{?ext_man}%{!?ext_man:.gz}" shell variable in
the install directive, and replace "%{?ext_man}" with
"${ext_man:-}" to fix groff-gf.7.gz file ending up uncompressed
(despite the name) due to the use of %{?ext_man} in the mv/ln
TARGET parameter used for the preparation of Alternatives. Also
define a simple shell contruct which identifies whether the
manpage file is compressed. If not, it unsets the $ext_man
variable, then ajdusting the mv/ln calls. That's all necessary
because even though ext_man macro is defined, it doesn't mean the
file has the extension (which dependes whether the build script
compresses it).
==== groff-full ====
Subpackages: gxditview
- Define ext_man="%{?ext_man}%{!?ext_man:.gz}" shell variable in
the install directive, and replace "%{?ext_man}" with
"${ext_man:-}" to fix groff-gf.7.gz file ending up uncompressed
(despite the name) due to the use of %{?ext_man} in the mv/ln
TARGET parameter used for the preparation of Alternatives. Also
define a simple shell contruct which identifies whether the
manpage file is compressed. If not, it unsets the $ext_man
variable, then ajdusting the mv/ln calls. That's all necessary
because even though ext_man macro is defined, it doesn't mean the
file has the extension (which dependes whether the build script
compresses it).
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Add patch to fix reading files from btrfs with "implicit" holes:
* 0001-fs-btrfs-Zero-file-data-not-backed-by-extents.patch
- Update the TPM 2.0 patches to support more RSA and ECC algorithms
* 0002-tpm2-Add-TPM-Software-Stack-TSS.patch
* 0003-protectors-Add-TPM2-Key-Protector.patch
* 0005-util-grub-protect-Add-new-tool.patch
- Remove build require for gcc-32bit, target platform didn't rely on libgcc
function shipped with compiler but rather using functions supplied in grub
directly.
- Add BuildIgnore to break cycle with the branding package
==== hplip ====
Version update (3.23.5 -> 3.23.8)
Subpackages: hplip-hpijs hplip-udev-rules
- Update to hplip 3.23.8
- Support for new printers:
* HP Color LaserJet Pro MFP 4301fdne
* HP Color LaserJet Pro MFP 4301fdwe
* HP Color LaserJet Pro MFP 4301cdwe
* HP Color LaserJet Pro MFP 4301cfdne
* HP Color LaserJet Pro MFP 4301cfdwe
* HP Color LaserJet Pro MFP 4302dwe
* HP Color LaserJet Pro MFP 4302fdne
* HP Color LaserJet Pro MFP 4302fdwe
* HP Color LaserJet Pro MFP 4302cdwe
* HP Color LaserJet Pro MFP 4302fdn
* HP Color LaserJet Pro MFP 4302fdw
* HP Color LaserJet Pro MFP 4303dw
* HP Color LaserJet Pro MFP 4303fdn
* HP Color LaserJet Pro MFP 4303fdw
* HP Color LaserJet Pro MFP 4303cdw
* HP Color LaserJet Pro MFP 4303cfdn
* HP Color LaserJet Pro MFP 4303cfdw
* HP Color LaserJet Pro 4201dne
* HP Color LaserJet Pro 4201dwe
* HP Color LaserJet Pro 4201cdne
* HP Color LaserJet Pro 4201cdwe
* HP Color LaserJet Pro 4202dne
* HP Color LaserJet Pro 4202dwe
* HP Color LaserJet Pro 4202dn
* HP Color LaserJet Pro 4202dw
* HP Color LaserJet Pro 4203dn
* HP Color LaserJet Pro 4203dw
* HP Color LaserJet Pro 4203cdn
* HP Color LaserJet Pro 4203cdw
* HP DeskJet 2800 All-in-One Printer series
* HP DeskJet 2800e All-in-One Printer series
* HP DeskJet Ink Advantage 2800 All-in-One Printer series
* HP DeskJet 4200 All-in-One Printer series
* HP DeskJet 4200e All-in-One Printer series
* HP DeskJet Ink Advantage 4200 All-in-One Printer series
* HP DeskJet Ink Advantage Ultra 4900 All-in-One Printer series
==== ibus ====
Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0
- macros.ibus:
* set %ibus_table_index_post() to %nil. it'll trigger ibus-table-createdb
to create_indexes() for the existing db. but according to upstream,
create_indexes() is now a dummy function, and it didn't bring
any performance improvements before. and on rpmlint side,
it will modify the final filelist.
==== icewm ====
Version update (3.4.0 -> 3.4.3)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.4.3:
* New preference "TaskBarShowWindowTitles" for icon-only task buttons.
* New winoption "doNotManage" to workaround bugs in picom for plank.
* When a battery has no data about full charge, use the capacity.
* When cascading windows, include the border size in the displacement.
* Let icewmbg interpret command-line file arguments relative to $PWD.
* Add a -f,--fork option to icewmbg to detach it from the terminal.
* Fix the Window List Menu for #144.
* Fix restoring from fullscreen with F11 in chromium for #141.
* Support tabs in the Window List Menu.
* Control the terminal in icewm-menu-fdo by option or environment.
* Let icewm-menu-fdo use a list of default terminals to choose from.
- Drop unknown config options:
* --enable-guievents
* --enable-antialiasing
* --enable-gradients
* --enable-shaped-decorations
==== kernel-source ====
Version update (6.5.4 -> 6.5.6)
- Linux 6.5.6 (bsc#1012628).
- NFS: Fix error handling for O_DIRECT write scheduling
(bsc#1012628).
- NFS: Fix O_DIRECT locking issues (bsc#1012628).
- NFS: More O_DIRECT accounting fixes for error paths
(bsc#1012628).
- NFS: Use the correct commit info in nfs_join_page_group()
(bsc#1012628).
- NFS: More fixes for nfs_direct_write_reschedule_io()
(bsc#1012628).
- NFS/pNFS: Report EINVAL errors from connect() to the server
(bsc#1012628).
- SUNRPC: Mark the cred for revalidation if the server rejects it
(bsc#1012628).
- NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
(bsc#1012628).
- NFSv4.1: fix pnfs MDS=DS session trunking (bsc#1012628).
- media: v4l: Use correct dependency for camera sensor drivers
(bsc#1012628).
- media: via: Use correct dependency for camera sensor drivers
(bsc#1012628).
- gfs2: Fix another freeze/thaw hang (bsc#1012628).
- netfs: Only call folio_start_fscache() one time for each folio
(bsc#1012628).
- btrfs: improve error message after failure to add delayed dir
index item (bsc#1012628).
- btrfs: remove BUG() after failure to insert delayed dir index
item (bsc#1012628).
- ext4: replace the traditional ternary conditional operator
with with max()/min() (bsc#1012628).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range()
(bsc#1012628).
- ext4: do not let fstrim block system suspend (bsc#1012628).
- netfilter: nft_set_rbtree: use read spinlock to avoid datapath
contention (bsc#1012628).
- netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync()
in catchall GC (bsc#1012628).
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction
allocation fails (bsc#1012628).
- netfilter: nft_set_hash: try later when GC hits EAGAIN on
iteration (bsc#1012628).
- netfilter: nf_tables: fix memleak when more than 255 elements
expired (bsc#1012628).
- netfilter: nf_tables: disallow rule removal from chain binding
(bsc#1012628).
- ASoC: meson: spdifin: start hw on dai probe (bsc#1012628).
- netfilter: nf_tables: disallow element removal on anonymous sets
(bsc#1012628).
- bpf: Avoid deadlock when using queue and stack maps from NMI
(bsc#1012628).
- bpf: Avoid dummy bpf_offload_netdev in __bpf_prog_dev_bound_init
(bsc#1012628).
- ALSA: docs: Fix a typo of midi2_ump_probe option for
snd-usb-audio (bsc#1012628).
- ALSA: seq: Avoid delivery of events for disabled UMP groups
(bsc#1012628).
- ASoC: rt5640: Revert "Fix sleep in atomic context"
(bsc#1012628).
- ASoC: rt5640: Fix sleep in atomic context (bsc#1012628).
- ASoC: rt5640: fix typos (bsc#1012628).
- ASoC: rt5640: Do not disable/enable IRQ twice on suspend/resume
(bsc#1012628).
- ASoC: rt5640: Enable the IRQ on resume after configuring
jack-detect (bsc#1012628).
- ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
(bsc#1012628).
- bpf: Fix a erroneous check after snprintf() (bsc#1012628).
- selftests/bpf: fix unpriv_disabled check in test_verifier
(bsc#1012628).
- ALSA: hda/realtek: Splitting the UX3402 into two separate models
(bsc#1012628).
- netfilter: conntrack: fix extension size table (bsc#1012628).
- netfilter: nf_tables: Fix entries val in rule reset audit log
(bsc#1012628).
- Compiler Attributes: counted_by: Adjust name and identifier
expansion (bsc#1012628).
- uapi: stddef.h: Fix header guard location (bsc#1012628).
- uapi: stddef.h: Fix __DECLARE_FLEX_ARRAY for C++ (bsc#1012628).
- memblock tests: Fix compilation errors (bsc#1012628).
- ASoC: SOF: ipc4-topology: fix wrong sizeof argument
(bsc#1012628).
- net: microchip: sparx5: Fix memory leak for
vcap_api_rule_add_keyvalue_test() (bsc#1012628).
- net: microchip: sparx5: Fix memory leak for
vcap_api_rule_add_actionvalue_test() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leak in
vcap_api_encode_rule_test() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leaks in
test_vcap_xn_rule_creator() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leaks in
vcap_api_kunit (bsc#1012628).
- selftests: tls: swap the TX and RX sockets in some tests
(bsc#1012628).
- net/core: Fix ETH_P_1588 flow dissector (bsc#1012628).
- ALSA: seq: ump: Fix -Wformat-truncation warning (bsc#1012628).
- ASoC: hdaudio.c: Add missing check for devm_kstrdup
(bsc#1012628).
- ASoC: imx-audmix: Fix return error with devm_clk_get()
(bsc#1012628).
... changelog too long, skipping 859 lines ...
- commit f926df3
==== ldb ====
Version update (2.7.2 -> 2.8.0)
Subpackages: libldb2 python3-ldb
- Update to 2.8.0
* CVE-2023-0614 Not-secret but access controlled LDAP attributes can be discovered (bug 15270)
* pyldb: Raise an exception if ldb_dn_get_parent() fails
* Implement ldap_whoami in pyldb and add the RFC4532 LDB_EXTENDED_WHOAMI_OID definition
* Documentation and spelling fixes
* Add ldb_val -> bool,uint64,int64 parsing functions
* Split out ldb_val_as_dn() helper function
* add LDB_CHANGETYPE_MODRDN support to ldb_ldif_to_pyobject()
* add LDB_CHANGETYPE_DELETE support to ldb_ldif_to_pyobject()
* let ldb_ldif_parse_modrdn() handle names without 'rdn_name=' prefix
* Don't create error string if there is no error
* Avoid allocation and memcpy() for every wildcard match candidate
* Make ldb_msg_remove_attr O(n)
* pyldb: Throw error on invalid controls
* pyldb: remove py2 ifdefs
* Call tevent_set_max_debug_level(TEVENT_DEBUG_TRACE)
==== libX11 ====
Version update (1.8.6 -> 1.8.7)
Subpackages: libX11-6 libX11-data libX11-xcb1
- update to 1.8.7
This release contains fixes for the issues reported in security
advisory here:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
* fixes CVE-2023-43785 libX11: out-of-bounds memory access in
_XkbReadKeySyms() (boo#1215683)
* fixes CVE-2023-43786 libX11: stack exhaustion from infinite recursion
in PutSubImage() (boo#1215684)
* fixes CVE-2023-43787 libX11: integer overflow in XCreateImage()
leading to a heap overflow (boo#1215685)
along with:
* Fail XOpenDisplay() if server-provided default visual is invalid (!233)
* Bring XKB docs in line with actual implementation (!231, !228)
* Xutil.h: declare XEmptyRegion() and XEqualRegion() as Bool (!225)
* Assorted updates to en_US.UTF-8 compose keys (!213, !214, !215, !216,
!217, !219, !220, !222, !223, !226, !227, !229)
==== libXpm ====
Version update (3.5.16 -> 3.5.17)
- Update to 3.5.17
* This release contains fixes for the libXpm issues reported in
security advisory here:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
* fixes CVE-2023-43788 libXpm: out of bounds read in
XpmCreateXpmImageFromBuffer() (boo#1215686)
* fixes CVE-2023-43789 libXpm: out of bounds read on XPM with
corrupted colormap (boo#1215687)
==== libXrandr ====
Version update (1.5.3 -> 1.5.4)
- Update to version 1.5.4
This release fixes a bug where an invalid pointer (a pointer to the
middle of a buffer returned from malloc() instead of to the beginning
of the buffer) could be passed to free() when cleaning up after an
out-of-bounds output is found in the response from the X server to
XRRGetMonitors().
==== libev ====
- run signify only on Factory
==== libnvme ====
Subpackages: libnvme-mi1 libnvme1
- Enable tests during build
- Set git version tag
- Drop unused make dependency
- Drop unencessary minimum version depedency on meson.
- Re-enable libdbus feature. Upstream defaults changed.
==== libqt5-qtbase ====
Version update (5.15.10+kde129 -> 5.15.11+kde134)
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Enable the experimental native painting feature to improve
remote desktop performances (boo#1214915)
exporting QT_XCB_NATIVE_PAINTING is required to use the feature.
- Update to version 5.15.11+kde134, rebased upstream:
* Revert "Windows QPA: Add support to UiaRaiseNotificationEvent()"
* FileChooser portal: Make sure filter.name is not empty
* QPersistentModelIndex: fix UB (op< on unrelated pointers)
* Avoid crash when keysymToQtKey(keysym, Qt::ControlModifier) is called
* a11y atspi: translate coords for GetOffsetAtPoint the right way
* a11y atspi: Take dialog into account as top-level window
* a11y atspi: Fix incorrect use of x instead of y position
* macOS: Handle asynchronous deminiaturizing of windows
* QTranslator: generalize a UNIX-only path
* iOS, input panel: be more careful before enabling QIOSKeyboardListener
* Android: Fix flickering on window resize and show keyboard
* Android A11Y: Check for active surface before calling into native code
* xcb: Delete touch points without target windows
* Blacklist 1 tests in tst_QDBusConnection on ubuntu-20.04
* Fix CMake builds without ANDROID_SDK
* Blacklist 2 tests in tst_Http2 on ubuntu-20.04
* Blacklist 1 tests in tst_QSqlQuery on macos
* Defer creating the special shaders in the texture blitter
* tst_QSslSocket::serverCipherPreferencies - fix for OpenSSL v3
* QTemporaryFile: document rename() differences from QFile
* Doc: 3rd party: Fix reference to FreeType LICENSE.txt
* Update bundled libjpeg-turbo to version 2.1.4
* tst_QSsSocket: fix verifyClientCertificate with OpenSSL 3
* tst_QSslSocket: regenerate certificate used for setLocalCertificateChain
* tst_QSslSocket::protocolServerSide - make it work with OpenSSL v3
* tst_QSslSocket::oldErrorsOnSocketReuse - make it work with OpenSSL v3
* Update zconf.h prefixes to match zlib v1.2.12 update
* xcb: fix D&D in same xembed client
* xcb: use global coordinates for position of D&D for xembed client
* Doc: Update QMetaType::metaObject() descriptions
* BLACKLIST: tst_QGlyphRun::mixedScripts for Ubuntu 22.04
* BLACKLIST tst_qfont for Ubuntu 22.04
* BLACKLIST tst_QMenuBar::check_menuPosition for Ubuntu 22.04
* tst_QDtls::verifyClientCertficiate - update certs for OpenSSL v3
* QSslCertificate::toText(): add a file to compare against
* Fix the spelling of the word "combination"
* tst_QSslCertificate::pkcs12 - skip the test if OpenSSL version >= 3
* Android A11Y: Fix TalkBack scrolling behavior
* Android A11Y: Notify android about scroll events
* QCocoaDrag: don't add pasteboard items with non-absolute URLs
* QDirPrivate: pass input QList by cref
* tst_qbytearray: remove qCompress_data for QT_NO_COMPRESS
* QDeviceDiscoveryUDev: use NSDMI
* QAuthenticator: Fix crash when using NTLM / Negotiate
* Provide a native interface instance in minimal platform plugin
* Android: document the supported clipboard mimetypes
* Windows: Account for not finding child windows when calling ChildWindowFromPointEx
* iOS: Send touch events asynchronously to avoid deadlocking UIKit event loop
* Disable bitcode for iOS
* macOS: Ignore deprecation for ReleaseIconRef
* BLACKLIST tst_QApplication::sendEventsOnProcessEvents for Ubuntu 22.04
* Convert Latin1 to UTF-16 before passing to ICU API
* Doc: Remove repetition of word in text
* eglfs: Fix screen cloning when atomic is enabled
* Fix printing of dpr>1 images on Windows
* QHttp: Fix handling of redirect loaded from cache
* Doc: Fix return type of QLEInteger/QBEInteger post-in/decrement ops
* qmake: Fix installation of separate debug info for plugins
* iOS: ensure we close inputpanel after clearing focusobject
* Convert Latin1 to UTF-16 before passing to ICU API
* qputenv: defend against non-NUL-terminated QByteArray values
* QFontSubset: remove unused glyphName() overload
* Statically assert that the __mips_dsp code is only active on 32-bit
* QGtk3Theme: Ensure gtk uses the same windowing system as Qt
* tst_QFocusFrame: fix -Wparantheses
* Sync Vulkan device features between QVulkanWindow and QRhi
* SQLite: Update SQLite to v3.39.2
* Update freetype to 2.12.1
* corelib: Fix typos in documentation
* QAtomicInteger docs: mention bool and char8_t as 8-bit types
* qgraphicsitem_cast: replace 0 with nullptr
* Doc: Hide weak overload template magic from documentation
* Revert "QDateTime: fix adjusted datetime handling"
* Fix select handles disappears issues
* tst_QSslKey: prepare for the migration to OpenSSL v3
* tst_qnetworkreply: replace server.pem/key pair
* Disable unit testing setting up QTcpServer on special Apple interfaces
* qmake/msbuild: Turn off "use full paths in diagnostics" by default
* qmake/msbuild: Support all /DEBUG:xxx linker options
* qmake/msbuild: Support all /LTCG:xxx options
* Android A11Y: Add content change type to content change event
* Enabler for fractional scaling of text in Qt Quick
* macOS: Override logical DPI to 72
* Add QDom internalSubset implementation
* Fix tst_AndroidAssets, broken by recent changes on assets load speed
* Android: Improve loading speed of individual assets
* Darwin: Replace deprecated symbol kIOMasterPortDefault with equivalent
* macOS: Remove code for handling logical DPI changes
* Fix an incorrect invocation of llvm-readobj
* macOS: Ignore deprecation for kOnSystemDisk icon domain
* Copy only files that belongs to QML module
* Android: fix wrong position of cursor handle and editpopup menu in split screen
* Doc: Document QML_IMPORTS_PATH and QMLPATHS
* Add the missing RCC_DIR to '.qrc' paths when generating deployment settings
* Android: Fix the offset of the EditPopupMenu
... changelog too long, skipping 28 lines ...
* Don't use a deprecated function if built/linked with OpenSSL v3
==== libqt5-qtdeclarative ====
Version update (5.15.10+kde26 -> 5.15.11+kde30)
- Update to version 5.15.11+kde30, rebased upstream:
* Flickable: prevent fixup() from being called while dragging
* Adjust baselineOffset correctly when fontSizeMode == HorizontalFit
* QQmlVMEMetaObjectEndpoint: ensure property cache before accessing it
* Text: Re-layout the text when a alignment is set and the height grows
* Blacklist 1 tests in tst_qquickflickable on macos
* Fix fractional scaling of text in Qt Quick
* qqmlprivate.h: make static constexpr members c++11 compliant
* V4: Account for the guard pages when allocating stack space
* Blacklist 1 tests in tst_QQuickLoader on ubuntu-20.04
* Flickable: let changing contentItem pos also affect the drag starting pos
* Blacklist 1 tests in tst_QParallelAnimationGroupJob on macos
* StackLayout: Do not set size of children to (-1, -1)
* V4: Mark InternalClass parents when running GC
* A11Y: Send Scrolling Events when Flickable moves
* doc: Add missing PointerHandler.CanTakeOverFromItems enum value
* Qml: Don't crash on nested group properties with aliases
* QV4::CompiledData: fix GCC 12 -Werror=uninitialized errors
* QQuickText/Edit: fix C++20 -Wdeprecated-enum-enum-conversion warnings
* Android: Fix crash on tap handler with a S-Pen
* masm: fix -Wdeprecated-enum-enum-conversion
* Add listing of the components and scripts that belongs to the qml module
* QML: Port QV4::CompiledData::RegExp to new special integer bitfield
* QML: Port QV4::CompiledData::JSClassMember to new special integer bitfield
* QML: Port QV4::CompiledData::Object to new special integer bitfield
* QML: Port icutils::Node to new special integer bitfield
* QML: Port QV4::CompiledData::Lookup to new special integer bitfield
* QML: Port QV4::CompiledData::Binding to new special integer bitfield
* QML: Port QV4::CompiledData::Property to new special integer bitfield
* QML: Port QV4::CompiledData::Alias to new special integer bitfield
* QML: Port QV4::CompiledData::ParameterType to new special integer bitfield
* QML: Port QV4::CompiledData::Location to new special integer bitfield
* Fix Qt build with Python being in path with spaces
* Quick test lib: Account for DPR when grabbing sub-image
* qqw: Invalidate and reinitialize the scenegraph correctly
* Fix rendernode example wrt stacking
* Stop using the same buffer for vertex and index data
* Fix race condition on QQmlEnginePrivate::qml_debugging_enabled
* qqmlimport.cpp: remove unused qreadwritelock.h
* QQmlDebug: reliably print the debugger warning
* QQmlListCompositor: suppress GCC 12 -Warray-bounds warnings
* Doc: QQuickTextInput: Mark all readonly properties as such
* MouseArea: don't override preventStealing on mouse release
* MultiPointTouchArea: remap touchpoint positions when filtering
- Commits dropped by the rebase:
* Revert "Fix missing glyphs when using NativeRendering"
* Fix missing glyphs when using NativeRendering
- Update to version 5.15.10+kde31:
* QML: Make notify list thread safe
* QtQml: Clean up QQmlData ctor
* QRecyclePool: fix potential UB
* QQmlJs::MemoryPool: fix potential UB (pointer overflow)
* JIT: Add missing {STORE|LOAD}_ACC() to CreateCallContext
- Drop patches, now upstream:
* 0001-JIT-Add-missing-STORE-LOAD-_ACC-to-CreateCallContext.patch
==== libqt5-qtgraphicaleffects ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtimageformats ====
Version update (5.15.10+kde9 -> 5.15.11+kde12)
- Update to version 5.15.11+kde12, rebased upstream:
* Add finding from oss-fuzz to tst_qicns
- Update to version 5.15.10+kde18:
* Update bundled libtiff to version 4.6.0
* Update bundled libtiff to version 4.5.1
* Update bundled libtiff to version 4.5.0
* Fix bundled libtiff compilation lzw warning and reading failure
* Update bundled libtiff to version 4.4.0
* Update bundled libwebp to version 1.3.2
* Update bundled libwebp to version 1.3.1
* Update bundled libwebp to version 1.3.0
* Update bundled libwebp to version 1.2.4
==== libqt5-qtlocation ====
Version update (5.15.10+kde4 -> 5.15.11+kde4)
- Update to version 5.15.11+kde4, rebased upstream:
* Revert "Make location-labs-plugin depend on features.opengl"
* Add check to getSatInfoFromNmea to avoid undefined behavior
* Fix undefined behavior in qlocationutils_readGsa()
* Use std::remove_if + QVector::erase to remove child pipes
* PositionSource: do not query lastKnownPosition if the source is inactive
* Android: fix crash on exit when QGeoAreaMonitorPolling is used
- Add patch to fix build of the Qt.labs.location QML plugin:
* 0001-Fix-build-of-Qt.labs.location-QML-plugin.patch
- Update to version 5.15.10+kde5:
* Update mapbox-gl-native
==== libqt5-qtmultimedia ====
Version update (5.15.10+kde3 -> 5.15.11+kde2)
- Update to version 5.15.11+kde2, rebased upstream:
* QAudioHelpers: fix C++20 -Werror,-Wdeprecated-enum-float-conversion
* Android: Align emit sequence
* QNX: fix KHR image handling
* Fix compile error on videonode plugin
==== libqt5-qtquickcontrols ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* Blacklist Tests_StackLayout::test_addAndRemoveItems
* Blacklist Windows on Tests_StackLayout::test_addAndRemoveItems
* Blacklist 1 tests in qtquickcontrols on macos
* Blacklist 1 tests in qtquickcontrols on ubuntu-20.04
==== libqt5-qtquickcontrols2 ====
Version update (5.15.10+kde6 -> 5.15.11+kde5)
Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5
- Update to version 5.15.11+kde5, rebased upstream:
* Take over touch grab after initial delayed mouse press from Flickable
* Doc: Fix link to Scrollbar size property
==== libqt5-qtsensors ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5Sensors5 libQt5Sensors5-imports
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtspeech ====
Version update (5.15.10+kde1 -> 5.15.11+kde1)
Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd
- Update to version 5.15.11+kde1, rebased upstream:
* No code changes
==== libqt5-qtsvg ====
Version update (5.15.10+kde8 -> 5.15.11+kde6)
- Update to version 5.15.11+kde6, rebased upstream:
* No code changes
==== libqt5-qttools ====
Version update (5.15.10+kde3 -> 5.15.11+kde3)
Subpackages: libqt5-qdbus libqt5-qtpaths
- Update to version 5.15.11+kde3, rebased upstream:
* qtattributionsscanner: Support multiple license files
* macdeployqt: Ignore repeated references to binary when parsing otool -L
* Build QtDesigner plugins in all configurations
* lupdate: Allow multiple specifiers after method signature
==== libqt5-qttranslations ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtvirtualkeyboard ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell
- Update to version 5.15.11+kde0, rebased upstream:
* Remove platform-dependent codes for XCB
==== libqt5-qtwayland ====
Version update (5.15.10+kde51 -> 5.15.11+kde59)
Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5
- Update to version 5.15.11+kde59, rebased upstream:
* Client: Avoid locking resizing in QWaylandShmBackingStore
* Client: Remove some surface commits
* tests: Fix tst_xdgshell::minMaxSize()
* Client: Commit the initial surface state explicitly
* Remove unused variables
* QtWaylandCompositor: includemocs
* QtWaylandClient: includemocs
* QtWaylandEglClientHwIntegrationPrivate: includemocs
* QtWaylandTextureSharing: includemocs
* QWaylandXdgShellIntegrationPlugin: includemocs
* QtWlShellIntegrationPrivate: includemocs
* Add missing QT_{BEGIN,END}_NAMESPACE
- Update to version 5.15.10+kde58:
* Client: Fix the mouse being stuck in pressed state after DnD
* client: Fix infinite recursion with text-input-v2
* Client: Fix buffer damage
* Replace scale with devicePixelRatio for non-integer scaling
* Convert cursor bitmap to supported format
* client: Fix crash on dnd updates after client facing drag ends
* Destroy frame queue before display
==== libqt5-qtwebchannel ====
Version update (5.15.10+kde3 -> 5.15.11+kde3)
Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports
- Update to version 5.15.11+kde3, rebased upstream:
* No code changes
==== libqt5-qtwebview ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5WebView5 libQt5WebView5-imports
- Update to version 5.15.11+kde0, rebased upstream:
* Android: Make is possible to change setAllowFileAccess()
==== libqt5-qtx11extras ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtxmlpatterns ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports
- Update to version 5.15.11+kde0, rebased upstream:
* Fix compilation with the recent qtbase
==== libselinux ====
Subpackages: libselinux1 selinux-tools
- Repair initrd libselinux check in selinux-ready
==== libsemanage ====
Subpackages: libsemanage-conf libsemanage2
- Remove build counter syncing for real
==== libsepol ====
- Enable LTO now (boo#1138813).
==== libvpx ====
Version update (1.13.0 -> 1.13.1)
- Update to version 1.13.1:
+ Bug fixes: Fix to a crash related to VP9 encoding.
https://crbug.com/1486441 (CVE-2023-5217)
- Drop CVE-2023-5217.patch: Fixed upstream.
==== llvm17 ====
Version update (17.0.1 -> 17.0.2)
- Update to version 17.0.2.
* This release contains bug-fixes for the LLVM 17.0.0 release.
This release is API and ABI compatible with 17.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
==== makedumpfile ====
- Add Support-struct-module_memory-on-Linux-6.4-and-.patch (jsc#PED-4593)
- Add ppc64-do-page-traversal-if-vmemmap_list-not-po.patch (bsc#1215364)
- Re-enable eppic on systems with old enough libeppic
==== mpg123 ====
Version update (1.32.2 -> 1.32.3)
Subpackages: libmpg123-0 mpg123-openal
- Update to version 1.32.3
* libmpg123, libsyn123: always ifdef LFS_LARGEFILE_64 (not
just if)
* libsyn123: re-introduce _32 wrappers in addition to
suffix-less ones (regression from 1.31, bug 363)
==== netcfg ====
- Remove ftpusers, none of our ftp servers uses that anymore
- Remove defaultdomain, NIS got dropped
- Remove hosts.equiv and hosts.lpd, the tools using them got
dropped long ago.
==== nvme-cli ====
Subpackages: nvme-cli-bash-completion
- Enable test during build
- Drop minimum version meson dependency
- Add asciidoc dependency
- Build documentation when requested
==== parted ====
Subpackages: libparted-fs-resize0 libparted2
- updated fatresize to version 0.2 which includes a man-page
removed patches:
- fatresize-fix-getting-dev-name.patch
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add RPMs for systemd-boot to DVD
- Only pull in health-checker if grub2 is installed, in other cases
it won't really work: With sd-boot, the default btrfs subvol is not
used, so rollbacks have no effect.
==== perl ====
Subpackages: perl-base
- Use 64-bit integers on all platforms
==== podman ====
Version update (4.7.0 -> 4.7.1)
- podman-docker: Provides docker to avoid conflicts
when using podman with docker-compose (bsc#1215926)
- Update to version 4.7.1:
* New version: v4.7.1
* Update RELEASE_NOTES.md for v4.7.1
* compat API: speed up network list
* inspect: ignore ENOENT during device lookup
* test/system: --env-file test fixes
* Revert "feat(env): support multiline in env-file"
* Revert "docs(env-file): improve document description"
* Revert "fix(env): parsing --env incorrect in cli"
* [CI:DOCS] update swagger version on docs.podman.io
* Fix locale issues with WSL version detection
* switch version to 4.7.1-dev
==== policycoreutils ====
Subpackages: policycoreutils-python-utils python3-policycoreutils
- Move dbus configuration file to /usr/share instead of /etc
- Add policycoreutils-rpmlintrc to suppress spurious rpmlint warnings
- Fix newrole debuginfo broken by mistaken 'noarch'
- Add GUI and DBUS subpackages
* Remove files now provided in upstream tarballs:
- Drop system-config-selinux.png
- Drop system-config-selinux.desktop
- Drop system-config-selinux.pam
- Drop system-config-selinux.console
- Drop selinux-polgengui.desktop
- Drop selinux-polgengui.console
- Refactor spec file
* Remove empty sandbox package definition
==== polkit-default-privs ====
Version update (1550+20230920.74aeded -> 1550+20231006.28f05f1)
- Update to version 1550+20231006.28f05f1:
* Whitelist policycoreutils-dbus actions (bsc#1213435)
==== python-SQLAlchemy ====
Version update (2.0.19 -> 2.0.21)
- Update to 2.0.21:
* Changes from 2.0.21:
https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.21
* Changes from 2.0.20:
https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.20
- Remove .gitignore files from source tree, removes all rpmlint
warnings.
==== python-cryptography ====
Version update (41.0.3 -> 41.0.4)
- update to 41.0.4:
* ~~~~~~~~~~~~~~~~~~~
* Updated Windows, macOS, and Linux wheels to be compiled with
OpenSSL 3.1.3.
* .. _v41-0-3:
==== python-dnspython ====
- Don't use curio.
==== python-greenlet ====
Version update (3.0.0~rc3 -> 3.0.0)
- Update to 3.0.0:
* No changes from 3.0rc3 aside from the version number.
- Ignore some slow and flaky tests
==== python-psutil ====
- Require /usr/bin/who only for suse_version > 1500: 15.X does not
provide it, but has it in coreutils.
- PEP517
- Clean up specfile from obsolete python2 stuff
==== python-urllib3 ====
Version update (2.0.4 -> 2.0.6)
- update to 2.0.6 (bsc#1215968, CVE-2023-43804):
* Added the Cookie header to the list of headers to strip from
requests when redirecting to a different host. As before, different
headers can be set via Retry.remove_headers_on_redirect
- 2.0.5:
* Allowed pyOpenSSL third-party module without any deprecation
warning. #3126
* Fixed default blocksize of HTTPConnection classes to match
high-level classes. Previously was 8KiB, now 16KiB. #3066
==== rubygem-nokogiri ====
- Buildrequire openssl gem to fix building with Ruby 3.0
==== rubygem-ruby-dbus ====
Version update (0.23.0.beta2 -> 0.23.1)
- 0.23.1
API:
* Add DBus::Object.dbus_reader_attr_accessor to declare a common use case
with a single call (gh#mvidner/ruby-dbus#140).
* BusConnection#request_name defaults to the simple use case: single owner
without queuing, failing fast; documented the complex use cases.
==== samba ====
Version update (4.18.6+git.320.cfda27bacb -> 4.19.0+git.306.19d2e214c58)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- Update to 4.19.0
* File doesn't show when user doesn't have permission if
aio_pthread is loaded; (bso#15453).
* ctdb_killtcp fails to work with --enable-pcap and libpcap â¥
1.9.1; (bso#15451).
* Logging to stdout/stderr with DEBUG_SYSLOG_FORMAT_ALWAYS can
log to syslog; (bso#15460).
* âsamba-tool domain level raiseâ fails unless given a URL;
(bso#15458).
* reply_sesssetup_and_X() can dereference uninitialized tmp
pointer; (bso#15420).
* missing return in reply_exit_done(); (bso#15430).
* TREE_CONNECT without SETUP causes smbd to use uninitialized
pointer; (bso#15432).
* Avoid infinite loop in initial user sync with Azure AD
Connect when synchronising a large Samba AD domain;
(bso#15401).
* Samba replication logs show (null) DN; (bso#15407).
* 2-3min delays at reconnect with
smb2_validate_sequence_number: bad message_id 2; (bso#15346).
* DCERPC_PKT_CO_CANCEL and DCERPC_PKT_ORPHANED can't be parsed;
(bso#15446).
* CID 1539212 causes real issue when output contains only
newlines; (bso#15438).
* KDC encodes INT64 claims incorrectly; (bso#15452).
* mdssvc: Do an early talloc_free() in _mdssvc_open();
(bso#15449).
* Windows client join fails if a second container CN=System
exists somewhere; (bso#9959).
* regression DFS not working with widelinks = true;
(bso#15435).
* Heimdal fails to build on 32-bit FreeBSD; (bso#15443).
* samba-tool ntacl get segfault if aio_pthread appended;
(bso#15441).
==== selinux-policy ====
Subpackages: selinux-policy-targeted
- Use /var/adm/update-scripts in macros.selinux-policy. The rpm state
directory doesn't exist on SUSE systems (bsc#1213593)
- Modified update.sh to require first parameter "full" to also
update container-selinux. For maintenance updates you usually
don't want it to be updated
==== sg3_utils ====
Version update (1.48~20221101+1.142dace -> 1.48+1.889c3e3)
Subpackages: libsgutils2-1_48-2
- udev rules: allow kernel command line overrides with
"udev.scsi_id_serial_src=LTVS" and "udev.scsi_symlink_src=LTVS"
Try these boot parameters if your system fails to detect SCSI
devices after update to sg3_utils 1.48.
- dracut.conf: add 00-scsi-sg3_config.rules (jsc#PED-6226)
- spec file:
* fix build dependencies for regenerate_initrd_posttrans
(bsc#1215772)
* add missing rules file
- Update to version 1.48
* udev rules: new, configurable scheme for creating symlinks for SCSI devices
(jsc#PED-6226)
See description of ".SCSI_ID_SERIAL_SRC" /usr/lib/udev/55-scsi-sg3_id.rules
and .SCSI_SYMLINK_SRC in /usr/lib/udev/58-scsi_symlink.rules
* decoding utilities: add -j/--json[=JO] and --js-file=JFN options
* sg_sat_datetime: new tool to access date/time on ATA devices using a SAT layer
* sg_z_act_query: new tool for sending zone activate/query commands
* sg_rem_rest_elem: new tool for removing or restoring elements
* sg_write_attr: support for SPC "Write Attirbute" command (for tapes)
* sg_ses: swap meaning of -H and -HH, add json support, use e.g.
"0:2" for range indicator
* sg_rtpg: fix response truncation
* sg_decode_sense: add --nodecode option
* sg_logs: fix --list and -lll options
* sg_modes: improve handling of ZBC disks
* sg_inq: add version descriptors from SPC6r08, add --quiet option
* sg_vpd: add --sinq_inraw=RFN option
* sg_turs: add --timeout= and --ascq= options
* sg_requests: add --timeout= option
* sg_sat_read_gplog: add --smart and --ppt options
* sgp_dd and sgm_dd: add --progress option
* sg_dd: add support for accessing NVMe devices via passthrough
* Bug fixes and minor fixes
- _service: simplify version processing, as we have a clean upstream version again
==== shadow ====
Version update (4.14.0 -> 4.14.1)
Subpackages: libsubid4 login_defs
- Update to 4.14.1:
Build system: Merge libshadow and libmisc into a single libshadow.
This fixes problems in the linker, which were reported at least
in Gentoo. #791
- Add Alejandro Colomar (new stable branch maintainer) to shadow.keyring
==== shim ====
- Don't require grub so shim can still be used with systemd-boot
- Update shim-install to fix boot failure of ext4 root file system
on RAID10 (bsc#1205855)
226c94ca5cfca Use hint in looking for root if possible
- Adopt the macros from fde-tpm-helper-macros to update the
signature in the sealed key after a bootloader upgrade
==== slirp4netns ====
Version update (1.2.1 -> 1.2.2)
- version update to 1.2.2
* Enabled reproducible builds (#324, #325, #326)
==== sof-firmware ====
Version update (2.2.6 -> 2023.09)
- Update to version 2023.09 (jsc#PED-6123,jsc#PED-6114,jsc#PED-6104,
jsc#PED-6067,jsc#PED-6045,jsc#PED-6036):
it's a combined tarball with different version to support multiple
platforms including Metor Lake
- Use cp instead of rsync for installation:
install-use-cp.patch
==== srt ====
Version update (1.5.2 -> 1.5.3)
- version update to 1.5.3
* New Features
- PR #2714: Added maximum BW limit for retransmissions. See SRTO_MAXREXMITBW.
* Important Bug Fixes
- PR #2632: Use overlapped WSASendTo to avoid UDP sending losses.
- PR #2766: Fixed spurious group read-ready epoll events.
- PR #2772: Fixed RCV buffer initialization in Rendezvous. â ï¸
- PR #2757: Fix memory leak on queuing connection initialization packets.
- PR #2745: Fix hang up on not enough space in the RCV buffer.
- PR #2740: Fix possible tsbpd() deadlock with processCtrlShutdown().
- PR #2692: Rejection not undertaken in rendezvous after KMX failure.
- PR #2774: Fix rendezvous connection mode when processing resulted in ACCEPT it was still sending rejection.
- PR #2778: Drop unencrypted packets in AES-GCM mode.
* Build
- PR #2779, #2780: Fix the build for targets without IP_ADD_SOURCE_MEMBERSHIP.
- PR #2784: Added missing public header files in Windows binary installer.
* Unit Tests
- PR #2681: Added custom main with transparent parameters.
* Documentation
- PR #2765: Updated the explicit information for binding to IPv6 wildcard.
- PR #2785: Fixed API doc: SRT_INVALID_SOCK
* https://github.com/Haivision/srt/releases/tag/v1.5.3
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc udev
- rpmlintrc: allow systemd-network and systemd-container sub-packages to ship
shared libs. These are actually NSS plugins and are not really subject to
shlib policy.
- Drop 5000-core-manager-run-generators-directly-when-we-are-in-.patch
Since dracut-059+suse.447.g9d1fc722, this workaround is not needed anymore.
==== talloc ====
Version update (2.4.0 -> 2.4.1)
Subpackages: libtalloc2 python3-talloc
- Update to 2.4.1
* Remove remaining, but broken python2 support
* Spelling fixes
* Remove unneeded va_copy()
==== tdb ====
Version update (1.4.8 -> 1.4.9)
Subpackages: libtdb1 python3-tdb
- Update to 1.4.9
* Remove remaining, but broken python2 support
* Spelling fixes
* python: Safely clear structure members
==== tevent ====
Version update (0.14.1 -> 0.15.0)
Subpackages: libtevent0 python3-tevent
- Update to version 0.15.0
* remove py2 ifdefs
* python: Safely clear structure members
* the tevent_thread_call_depth API is updated
in order to allow better tracing.
* add tevent_set_max_debug_level() only and don't
pass TEVENT_DEBUG_TRACE to tevent_debug() callbacks by default.
* Spelling fixes
* Make use of epoll_create1() for epoll backend
* Optimize overhead in the epoll backend
==== u-boot-rpiarm64 ====
Version update (2023.07 -> 2023.10)
Subpackages: u-boot-rpiarm64-doc
- Fix update_git.sh
- Patch queue updated from https://github.com/openSUSE/u-boot.git tumbleweed-2023.10
* Patches added:
0017-rpi-fix-boot-on-RPi4-after-commit-c.patch - boo#1216036
- Add microchipmpfsicicle flavor
- Update to 2023.10:
* Full changelog available at:
https://source.denx.de/u-boot/u-boot/-/compare/v2023.07...v2023.10
==== vte ====
- Add f1a547f1dfebd8860021b6b727fa5d5717e9f143.patch: widget:
VteTerminalSpawnAsyncCallback's error is nullable. Fixes:
https://gitlab.gnome.org/GNOME/vte/-/issues/2647
==== xdg-desktop-portal ====
- Support building with meson 0.61.x used by SLE, where .pc files
in dataonly packages are installed to %_libdir unlike in
meson >= 0.62.0 where the default was changed to %_datadir.
==== xscreensaver ====
Version update (6.06 -> 6.07)
Subpackages: xscreensaver-data xscreensaver-lang
- update to 6.07:
* New hacks, droste, skulloop, papercube and cubocteversion
* xscreensaver-settings was sometimes turning off the DPMS
checkbox
* Log pid of caller of deactivate command, to give a hint about
who is preventing the screen from blanking
* Updates to sphereeversion.
* Added some new map sources to mapscroller.
* Various other minor bug fixes.
- leave a nice notice for a very angry upstream developer in
xscreensaver-disable-upgrade-nagging-message.patch
- drop xscreensaver-bsc1204744.patch, included upstream
==== xterm ====
Version update (384 -> 385)
Subpackages: xterm-bin xterm-resize
- update to 385:
* fixes for ReGIS (report by Ben Wong).
+ correct conversion from HLS to RGB
+ improve font-caching performance.
* update tables in wcwidth.c based on Unicode 15.1.0
* improve fastScroll resource:
+ suppress screen-refreshes for carriage-returns
+ add -jf option to simplify use of this resource.
+ add a control sequence for enabling/disabling the resource.
+ enable this feature by default
* extend title-stack feature to allow an additional parameter to
directly access the stack, like the XTPUSHCOLORS and XTPOPCOLORS
feature.
* correct size and position of box shown for double-cell character
which happens to be missing from the bitmap font (report by Peter
Fabinski).
* improved configure script:
+ add pattern for uClibc-ng to CF_XOPEN_SOURCE (report/patch by
Waldemar Brodkorb).
+ add configure options --with-utmp-path and --with-wtmp-path to
override configure script's check for utmp/wtmp pathnames
which are shown in the manual (Debian #1042767).
+ CF_XOPEN_SOURCE provides for defining _DEFAULT_SOURCE for
MinGW32 and MinGW64.
+ sed expression used to report gcc version now works with MinGW
* ensure that line-attributes are reset after drawing missing
character (report by Christian Weisgerber).
* update config.guess, config.sub
- rebased all patches
==== zxing-cpp ====
Version update (2.0.0 -> 2.1.0)
- Update to 2.1.0:
* Considerable performance improvements in linear symbol detection (up to 2x speedup in select use cases of ReadBarcodes)
* QRCode: major improvement in detection of high version symbols (see e.g. here)
* DMDetector: reduce runtime overhead of c++-20 builds
* Refactor Python wrapper so the sdist includes the core library code
* wasm wrapper: add function to reader to scan multiple barcode
* Added a C wrapper
* Python: improve error reporting
* DMDetector: fix potential dead-lock
* DMDecoder: support 144x144 symbols in legacy and compliant variants
- Remove the %check section since we are not building the tests.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
NetworkManager (1.44.0 -> 1.44.2)
SDL2
bolt (0.9.5 -> 0.9.6)
crypto-policies
dLeyna
gnome-control-center (45.0 -> 45.0+34)
groff
groff-full
ibus
ibus_gtk4
kernel-source (6.5.4 -> 6.5.6)
libqt5-qtbase (5.15.10+kde129 -> 5.15.11+kde134)
libqt5-qtdeclarative (5.15.10+kde26 -> 5.15.11+kde30)
libqt5-qtgraphicaleffects (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtimageformats (5.15.10+kde9 -> 5.15.11+kde12)
libqt5-qtlocation (5.15.10+kde4 -> 5.15.11+kde4)
libqt5-qtmultimedia (5.15.10+kde3 -> 5.15.11+kde2)
libqt5-qtquickcontrols (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtquickcontrols2 (5.15.10+kde6 -> 5.15.11+kde5)
libqt5-qtsensors (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtspeech (5.15.10+kde1 -> 5.15.11+kde1)
libqt5-qtsvg (5.15.10+kde8 -> 5.15.11+kde6)
libqt5-qttools (5.15.10+kde3 -> 5.15.11+kde3)
libqt5-qttranslations (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtvirtualkeyboard (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtwayland (5.15.10+kde51 -> 5.15.11+kde59)
libqt5-qtwebchannel (5.15.10+kde3 -> 5.15.11+kde3)
libqt5-qtwebview (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtx11extras (5.15.10+kde0 -> 5.15.11+kde0)
libqt5-qtxmlpatterns (5.15.10+kde0 -> 5.15.11+kde0)
libreoffice (7.6.1.2 -> 7.6.2.1)
libsepol
llvm17 (17.0.1 -> 17.0.2)
makedumpfile
perl
podman (4.7.0 -> 4.7.1)
policycoreutils
polkit-default-privs (1550+20230920.74aeded -> 1550+20231006.28f05f1)
slirp4netns (1.2.1 -> 1.2.2)
vte
=== Details ===
==== NetworkManager ====
Version update (1.44.0 -> 1.44.2)
Subpackages: NetworkManager-bluetooth NetworkManager-lang NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Update to version 1.44.2:
+ Better log IPv4 Address Conflict Detection (ACD) conflicts
+ Remove the upper limit of 65535 for PIDs read from the PID file
+ Allow missing default gateway with oFono
+ Honor the CLICOLOR_FORCE environment variable
+ Fix generating connection with IPv6 method disabled vs ignored
+ Fix possible segmentation fault when doing a checkpoint
rollback
+ Documentation improvements
- Switch to source services, use explicit released tag.
==== SDL2 ====
- Enable direct PipeWire support
==== bolt ====
Version update (0.9.5 -> 0.9.6)
- update to 0.9.5:
* Compiler warnings and log messages for the domain not found were fixed.
==== crypto-policies ====
Subpackages: crypto-policies-scripts
- Remove dependency on /usr/bin/python3, making scripts to depends on
the real python3 binary, not the link. bsc#1212476
==== dLeyna ====
- Remove executable bit from download_sync_controller.py. Fix
rpmlint warning.
==== gnome-control-center ====
Version update (45.0 -> 45.0+34)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces
- Update to version 45.0+34:
+ network: fix editing connections without a device (boo#1215651)
+ mouse: Fix linked style of primary mouse button in RTL
+ privacy: Fix crash in the firmware security page
+ data:
- Fix label string
- Add missing wireguard-peer.ui to POTFILES.in
- Mark translatable strings yes
+ info-overview: Add more types of processor support
+ Updated translations.
- Switch to git checkout from stable branch, use explicit commit.
==== groff ====
- Define ext_man="%{?ext_man}%{!?ext_man:.gz}" shell variable in
the install directive, and replace "%{?ext_man}" with
"${ext_man:-}" to fix groff-gf.7.gz file ending up uncompressed
(despite the name) due to the use of %{?ext_man} in the mv/ln
TARGET parameter used for the preparation of Alternatives. Also
define a simple shell contruct which identifies whether the
manpage file is compressed. If not, it unsets the $ext_man
variable, then ajdusting the mv/ln calls. That's all necessary
because even though ext_man macro is defined, it doesn't mean the
file has the extension (which dependes whether the build script
compresses it).
==== groff-full ====
Subpackages: gxditview
- Define ext_man="%{?ext_man}%{!?ext_man:.gz}" shell variable in
the install directive, and replace "%{?ext_man}" with
"${ext_man:-}" to fix groff-gf.7.gz file ending up uncompressed
(despite the name) due to the use of %{?ext_man} in the mv/ln
TARGET parameter used for the preparation of Alternatives. Also
define a simple shell contruct which identifies whether the
manpage file is compressed. If not, it unsets the $ext_man
variable, then ajdusting the mv/ln calls. That's all necessary
because even though ext_man macro is defined, it doesn't mean the
file has the extension (which dependes whether the build script
compresses it).
==== ibus ====
Subpackages: ibus-dict-emoji ibus-gtk ibus-gtk3 ibus-lang libibus-1_0-5 typelib-1_0-IBus-1_0
- macros.ibus:
* set %ibus_table_index_post() to %nil. it'll trigger ibus-table-createdb
to create_indexes() for the existing db. but according to upstream,
create_indexes() is now a dummy function, and it didn't bring
any performance improvements before. and on rpmlint side,
it will modify the final filelist.
==== ibus_gtk4 ====
- macros.ibus:
* set %ibus_table_index_post() to %nil. it'll trigger ibus-table-createdb
to create_indexes() for the existing db. but according to upstream,
create_indexes() is now a dummy function, and it didn't bring
any performance improvements before. and on rpmlint side,
it will modify the final filelist.
==== kernel-source ====
Version update (6.5.4 -> 6.5.6)
- Linux 6.5.6 (bsc#1012628).
- NFS: Fix error handling for O_DIRECT write scheduling
(bsc#1012628).
- NFS: Fix O_DIRECT locking issues (bsc#1012628).
- NFS: More O_DIRECT accounting fixes for error paths
(bsc#1012628).
- NFS: Use the correct commit info in nfs_join_page_group()
(bsc#1012628).
- NFS: More fixes for nfs_direct_write_reschedule_io()
(bsc#1012628).
- NFS/pNFS: Report EINVAL errors from connect() to the server
(bsc#1012628).
- SUNRPC: Mark the cred for revalidation if the server rejects it
(bsc#1012628).
- NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
(bsc#1012628).
- NFSv4.1: fix pnfs MDS=DS session trunking (bsc#1012628).
- media: v4l: Use correct dependency for camera sensor drivers
(bsc#1012628).
- media: via: Use correct dependency for camera sensor drivers
(bsc#1012628).
- gfs2: Fix another freeze/thaw hang (bsc#1012628).
- netfs: Only call folio_start_fscache() one time for each folio
(bsc#1012628).
- btrfs: improve error message after failure to add delayed dir
index item (bsc#1012628).
- btrfs: remove BUG() after failure to insert delayed dir index
item (bsc#1012628).
- ext4: replace the traditional ternary conditional operator
with with max()/min() (bsc#1012628).
- ext4: move setting of trimmed bit into ext4_try_to_trim_range()
(bsc#1012628).
- ext4: do not let fstrim block system suspend (bsc#1012628).
- netfilter: nft_set_rbtree: use read spinlock to avoid datapath
contention (bsc#1012628).
- netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync()
in catchall GC (bsc#1012628).
- netfilter: nft_set_pipapo: stop GC iteration if GC transaction
allocation fails (bsc#1012628).
- netfilter: nft_set_hash: try later when GC hits EAGAIN on
iteration (bsc#1012628).
- netfilter: nf_tables: fix memleak when more than 255 elements
expired (bsc#1012628).
- netfilter: nf_tables: disallow rule removal from chain binding
(bsc#1012628).
- ASoC: meson: spdifin: start hw on dai probe (bsc#1012628).
- netfilter: nf_tables: disallow element removal on anonymous sets
(bsc#1012628).
- bpf: Avoid deadlock when using queue and stack maps from NMI
(bsc#1012628).
- bpf: Avoid dummy bpf_offload_netdev in __bpf_prog_dev_bound_init
(bsc#1012628).
- ALSA: docs: Fix a typo of midi2_ump_probe option for
snd-usb-audio (bsc#1012628).
- ALSA: seq: Avoid delivery of events for disabled UMP groups
(bsc#1012628).
- ASoC: rt5640: Revert "Fix sleep in atomic context"
(bsc#1012628).
- ASoC: rt5640: Fix sleep in atomic context (bsc#1012628).
- ASoC: rt5640: fix typos (bsc#1012628).
- ASoC: rt5640: Do not disable/enable IRQ twice on suspend/resume
(bsc#1012628).
- ASoC: rt5640: Enable the IRQ on resume after configuring
jack-detect (bsc#1012628).
- ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
(bsc#1012628).
- bpf: Fix a erroneous check after snprintf() (bsc#1012628).
- selftests/bpf: fix unpriv_disabled check in test_verifier
(bsc#1012628).
- ALSA: hda/realtek: Splitting the UX3402 into two separate models
(bsc#1012628).
- netfilter: conntrack: fix extension size table (bsc#1012628).
- netfilter: nf_tables: Fix entries val in rule reset audit log
(bsc#1012628).
- Compiler Attributes: counted_by: Adjust name and identifier
expansion (bsc#1012628).
- uapi: stddef.h: Fix header guard location (bsc#1012628).
- uapi: stddef.h: Fix __DECLARE_FLEX_ARRAY for C++ (bsc#1012628).
- memblock tests: Fix compilation errors (bsc#1012628).
- ASoC: SOF: ipc4-topology: fix wrong sizeof argument
(bsc#1012628).
- net: microchip: sparx5: Fix memory leak for
vcap_api_rule_add_keyvalue_test() (bsc#1012628).
- net: microchip: sparx5: Fix memory leak for
vcap_api_rule_add_actionvalue_test() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leak in
vcap_api_encode_rule_test() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leaks in
test_vcap_xn_rule_creator() (bsc#1012628).
- net: microchip: sparx5: Fix possible memory leaks in
vcap_api_kunit (bsc#1012628).
- selftests: tls: swap the TX and RX sockets in some tests
(bsc#1012628).
- net/core: Fix ETH_P_1588 flow dissector (bsc#1012628).
- ALSA: seq: ump: Fix -Wformat-truncation warning (bsc#1012628).
- ASoC: hdaudio.c: Add missing check for devm_kstrdup
(bsc#1012628).
- ASoC: imx-audmix: Fix return error with devm_clk_get()
(bsc#1012628).
... changelog too long, skipping 859 lines ...
- commit f926df3
==== libqt5-qtbase ====
Version update (5.15.10+kde129 -> 5.15.11+kde134)
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Enable the experimental native painting feature to improve
remote desktop performances (boo#1214915)
exporting QT_XCB_NATIVE_PAINTING is required to use the feature.
- Update to version 5.15.11+kde134, rebased upstream:
* Revert "Windows QPA: Add support to UiaRaiseNotificationEvent()"
* FileChooser portal: Make sure filter.name is not empty
* QPersistentModelIndex: fix UB (op< on unrelated pointers)
* Avoid crash when keysymToQtKey(keysym, Qt::ControlModifier) is called
* a11y atspi: translate coords for GetOffsetAtPoint the right way
* a11y atspi: Take dialog into account as top-level window
* a11y atspi: Fix incorrect use of x instead of y position
* macOS: Handle asynchronous deminiaturizing of windows
* QTranslator: generalize a UNIX-only path
* iOS, input panel: be more careful before enabling QIOSKeyboardListener
* Android: Fix flickering on window resize and show keyboard
* Android A11Y: Check for active surface before calling into native code
* xcb: Delete touch points without target windows
* Blacklist 1 tests in tst_QDBusConnection on ubuntu-20.04
* Fix CMake builds without ANDROID_SDK
* Blacklist 2 tests in tst_Http2 on ubuntu-20.04
* Blacklist 1 tests in tst_QSqlQuery on macos
* Defer creating the special shaders in the texture blitter
* tst_QSslSocket::serverCipherPreferencies - fix for OpenSSL v3
* QTemporaryFile: document rename() differences from QFile
* Doc: 3rd party: Fix reference to FreeType LICENSE.txt
* Update bundled libjpeg-turbo to version 2.1.4
* tst_QSsSocket: fix verifyClientCertificate with OpenSSL 3
* tst_QSslSocket: regenerate certificate used for setLocalCertificateChain
* tst_QSslSocket::protocolServerSide - make it work with OpenSSL v3
* tst_QSslSocket::oldErrorsOnSocketReuse - make it work with OpenSSL v3
* Update zconf.h prefixes to match zlib v1.2.12 update
* xcb: fix D&D in same xembed client
* xcb: use global coordinates for position of D&D for xembed client
* Doc: Update QMetaType::metaObject() descriptions
* BLACKLIST: tst_QGlyphRun::mixedScripts for Ubuntu 22.04
* BLACKLIST tst_qfont for Ubuntu 22.04
* BLACKLIST tst_QMenuBar::check_menuPosition for Ubuntu 22.04
* tst_QDtls::verifyClientCertficiate - update certs for OpenSSL v3
* QSslCertificate::toText(): add a file to compare against
* Fix the spelling of the word "combination"
* tst_QSslCertificate::pkcs12 - skip the test if OpenSSL version >= 3
* Android A11Y: Fix TalkBack scrolling behavior
* Android A11Y: Notify android about scroll events
* QCocoaDrag: don't add pasteboard items with non-absolute URLs
* QDirPrivate: pass input QList by cref
* tst_qbytearray: remove qCompress_data for QT_NO_COMPRESS
* QDeviceDiscoveryUDev: use NSDMI
* QAuthenticator: Fix crash when using NTLM / Negotiate
* Provide a native interface instance in minimal platform plugin
* Android: document the supported clipboard mimetypes
* Windows: Account for not finding child windows when calling ChildWindowFromPointEx
* iOS: Send touch events asynchronously to avoid deadlocking UIKit event loop
* Disable bitcode for iOS
* macOS: Ignore deprecation for ReleaseIconRef
* BLACKLIST tst_QApplication::sendEventsOnProcessEvents for Ubuntu 22.04
* Convert Latin1 to UTF-16 before passing to ICU API
* Doc: Remove repetition of word in text
* eglfs: Fix screen cloning when atomic is enabled
* Fix printing of dpr>1 images on Windows
* QHttp: Fix handling of redirect loaded from cache
* Doc: Fix return type of QLEInteger/QBEInteger post-in/decrement ops
* qmake: Fix installation of separate debug info for plugins
* iOS: ensure we close inputpanel after clearing focusobject
* Convert Latin1 to UTF-16 before passing to ICU API
* qputenv: defend against non-NUL-terminated QByteArray values
* QFontSubset: remove unused glyphName() overload
* Statically assert that the __mips_dsp code is only active on 32-bit
* QGtk3Theme: Ensure gtk uses the same windowing system as Qt
* tst_QFocusFrame: fix -Wparantheses
* Sync Vulkan device features between QVulkanWindow and QRhi
* SQLite: Update SQLite to v3.39.2
* Update freetype to 2.12.1
* corelib: Fix typos in documentation
* QAtomicInteger docs: mention bool and char8_t as 8-bit types
* qgraphicsitem_cast: replace 0 with nullptr
* Doc: Hide weak overload template magic from documentation
* Revert "QDateTime: fix adjusted datetime handling"
* Fix select handles disappears issues
* tst_QSslKey: prepare for the migration to OpenSSL v3
* tst_qnetworkreply: replace server.pem/key pair
* Disable unit testing setting up QTcpServer on special Apple interfaces
* qmake/msbuild: Turn off "use full paths in diagnostics" by default
* qmake/msbuild: Support all /DEBUG:xxx linker options
* qmake/msbuild: Support all /LTCG:xxx options
* Android A11Y: Add content change type to content change event
* Enabler for fractional scaling of text in Qt Quick
* macOS: Override logical DPI to 72
* Add QDom internalSubset implementation
* Fix tst_AndroidAssets, broken by recent changes on assets load speed
* Android: Improve loading speed of individual assets
* Darwin: Replace deprecated symbol kIOMasterPortDefault with equivalent
* macOS: Remove code for handling logical DPI changes
* Fix an incorrect invocation of llvm-readobj
* macOS: Ignore deprecation for kOnSystemDisk icon domain
* Copy only files that belongs to QML module
* Android: fix wrong position of cursor handle and editpopup menu in split screen
* Doc: Document QML_IMPORTS_PATH and QMLPATHS
* Add the missing RCC_DIR to '.qrc' paths when generating deployment settings
* Android: Fix the offset of the EditPopupMenu
... changelog too long, skipping 28 lines ...
* Don't use a deprecated function if built/linked with OpenSSL v3
==== libqt5-qtdeclarative ====
Version update (5.15.10+kde26 -> 5.15.11+kde30)
- Update to version 5.15.11+kde30, rebased upstream:
* Flickable: prevent fixup() from being called while dragging
* Adjust baselineOffset correctly when fontSizeMode == HorizontalFit
* QQmlVMEMetaObjectEndpoint: ensure property cache before accessing it
* Text: Re-layout the text when a alignment is set and the height grows
* Blacklist 1 tests in tst_qquickflickable on macos
* Fix fractional scaling of text in Qt Quick
* qqmlprivate.h: make static constexpr members c++11 compliant
* V4: Account for the guard pages when allocating stack space
* Blacklist 1 tests in tst_QQuickLoader on ubuntu-20.04
* Flickable: let changing contentItem pos also affect the drag starting pos
* Blacklist 1 tests in tst_QParallelAnimationGroupJob on macos
* StackLayout: Do not set size of children to (-1, -1)
* V4: Mark InternalClass parents when running GC
* A11Y: Send Scrolling Events when Flickable moves
* doc: Add missing PointerHandler.CanTakeOverFromItems enum value
* Qml: Don't crash on nested group properties with aliases
* QV4::CompiledData: fix GCC 12 -Werror=uninitialized errors
* QQuickText/Edit: fix C++20 -Wdeprecated-enum-enum-conversion warnings
* Android: Fix crash on tap handler with a S-Pen
* masm: fix -Wdeprecated-enum-enum-conversion
* Add listing of the components and scripts that belongs to the qml module
* QML: Port QV4::CompiledData::RegExp to new special integer bitfield
* QML: Port QV4::CompiledData::JSClassMember to new special integer bitfield
* QML: Port QV4::CompiledData::Object to new special integer bitfield
* QML: Port icutils::Node to new special integer bitfield
* QML: Port QV4::CompiledData::Lookup to new special integer bitfield
* QML: Port QV4::CompiledData::Binding to new special integer bitfield
* QML: Port QV4::CompiledData::Property to new special integer bitfield
* QML: Port QV4::CompiledData::Alias to new special integer bitfield
* QML: Port QV4::CompiledData::ParameterType to new special integer bitfield
* QML: Port QV4::CompiledData::Location to new special integer bitfield
* Fix Qt build with Python being in path with spaces
* Quick test lib: Account for DPR when grabbing sub-image
* qqw: Invalidate and reinitialize the scenegraph correctly
* Fix rendernode example wrt stacking
* Stop using the same buffer for vertex and index data
* Fix race condition on QQmlEnginePrivate::qml_debugging_enabled
* qqmlimport.cpp: remove unused qreadwritelock.h
* QQmlDebug: reliably print the debugger warning
* QQmlListCompositor: suppress GCC 12 -Warray-bounds warnings
* Doc: QQuickTextInput: Mark all readonly properties as such
* MouseArea: don't override preventStealing on mouse release
* MultiPointTouchArea: remap touchpoint positions when filtering
- Commits dropped by the rebase:
* Revert "Fix missing glyphs when using NativeRendering"
* Fix missing glyphs when using NativeRendering
- Update to version 5.15.10+kde31:
* QML: Make notify list thread safe
* QtQml: Clean up QQmlData ctor
* QRecyclePool: fix potential UB
* QQmlJs::MemoryPool: fix potential UB (pointer overflow)
* JIT: Add missing {STORE|LOAD}_ACC() to CreateCallContext
- Drop patches, now upstream:
* 0001-JIT-Add-missing-STORE-LOAD-_ACC-to-CreateCallContext.patch
==== libqt5-qtgraphicaleffects ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtimageformats ====
Version update (5.15.10+kde9 -> 5.15.11+kde12)
- Update to version 5.15.11+kde12, rebased upstream:
* Add finding from oss-fuzz to tst_qicns
- Update to version 5.15.10+kde18:
* Update bundled libtiff to version 4.6.0
* Update bundled libtiff to version 4.5.1
* Update bundled libtiff to version 4.5.0
* Fix bundled libtiff compilation lzw warning and reading failure
* Update bundled libtiff to version 4.4.0
* Update bundled libwebp to version 1.3.2
* Update bundled libwebp to version 1.3.1
* Update bundled libwebp to version 1.3.0
* Update bundled libwebp to version 1.2.4
==== libqt5-qtlocation ====
Version update (5.15.10+kde4 -> 5.15.11+kde4)
- Update to version 5.15.11+kde4, rebased upstream:
* Revert "Make location-labs-plugin depend on features.opengl"
* Add check to getSatInfoFromNmea to avoid undefined behavior
* Fix undefined behavior in qlocationutils_readGsa()
* Use std::remove_if + QVector::erase to remove child pipes
* PositionSource: do not query lastKnownPosition if the source is inactive
* Android: fix crash on exit when QGeoAreaMonitorPolling is used
- Add patch to fix build of the Qt.labs.location QML plugin:
* 0001-Fix-build-of-Qt.labs.location-QML-plugin.patch
- Update to version 5.15.10+kde5:
* Update mapbox-gl-native
==== libqt5-qtmultimedia ====
Version update (5.15.10+kde3 -> 5.15.11+kde2)
- Update to version 5.15.11+kde2, rebased upstream:
* QAudioHelpers: fix C++20 -Werror,-Wdeprecated-enum-float-conversion
* Android: Align emit sequence
* QNX: fix KHR image handling
* Fix compile error on videonode plugin
==== libqt5-qtquickcontrols ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* Blacklist Tests_StackLayout::test_addAndRemoveItems
* Blacklist Windows on Tests_StackLayout::test_addAndRemoveItems
* Blacklist 1 tests in qtquickcontrols on macos
* Blacklist 1 tests in qtquickcontrols on ubuntu-20.04
==== libqt5-qtquickcontrols2 ====
Version update (5.15.10+kde6 -> 5.15.11+kde5)
Subpackages: libQt5QuickControls2-5 libQt5QuickTemplates2-5
- Update to version 5.15.11+kde5, rebased upstream:
* Take over touch grab after initial delayed mouse press from Flickable
* Doc: Fix link to Scrollbar size property
==== libqt5-qtsensors ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5Sensors5 libQt5Sensors5-imports
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtspeech ====
Version update (5.15.10+kde1 -> 5.15.11+kde1)
Subpackages: libQt5TextToSpeech5 libqt5-qtspeech-plugin-speechd
- Update to version 5.15.11+kde1, rebased upstream:
* No code changes
==== libqt5-qtsvg ====
Version update (5.15.10+kde8 -> 5.15.11+kde6)
- Update to version 5.15.11+kde6, rebased upstream:
* No code changes
==== libqt5-qttools ====
Version update (5.15.10+kde3 -> 5.15.11+kde3)
Subpackages: libqt5-qdbus libqt5-qtpaths
- Update to version 5.15.11+kde3, rebased upstream:
* qtattributionsscanner: Support multiple license files
* macdeployqt: Ignore repeated references to binary when parsing otool -L
* Build QtDesigner plugins in all configurations
* lupdate: Allow multiple specifiers after method signature
==== libqt5-qttranslations ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtvirtualkeyboard ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5HunspellInputMethod5 libQt5VirtualKeyboard5 libqt5-qtvirtualkeyboard-hunspell
- Update to version 5.15.11+kde0, rebased upstream:
* Remove platform-dependent codes for XCB
==== libqt5-qtwayland ====
Version update (5.15.10+kde51 -> 5.15.11+kde59)
Subpackages: libQt5WaylandClient5 libQt5WaylandCompositor5
- Update to version 5.15.11+kde59, rebased upstream:
* Client: Avoid locking resizing in QWaylandShmBackingStore
* Client: Remove some surface commits
* tests: Fix tst_xdgshell::minMaxSize()
* Client: Commit the initial surface state explicitly
* Remove unused variables
* QtWaylandCompositor: includemocs
* QtWaylandClient: includemocs
* QtWaylandEglClientHwIntegrationPrivate: includemocs
* QtWaylandTextureSharing: includemocs
* QWaylandXdgShellIntegrationPlugin: includemocs
* QtWlShellIntegrationPrivate: includemocs
* Add missing QT_{BEGIN,END}_NAMESPACE
- Update to version 5.15.10+kde58:
* Client: Fix the mouse being stuck in pressed state after DnD
* client: Fix infinite recursion with text-input-v2
* Client: Fix buffer damage
* Replace scale with devicePixelRatio for non-integer scaling
* Convert cursor bitmap to supported format
* client: Fix crash on dnd updates after client facing drag ends
* Destroy frame queue before display
==== libqt5-qtwebchannel ====
Version update (5.15.10+kde3 -> 5.15.11+kde3)
Subpackages: libQt5WebChannel5 libQt5WebChannel5-imports
- Update to version 5.15.11+kde3, rebased upstream:
* No code changes
==== libqt5-qtwebview ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5WebView5 libQt5WebView5-imports
- Update to version 5.15.11+kde0, rebased upstream:
* Android: Make is possible to change setAllowFileAccess()
==== libqt5-qtx11extras ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
- Update to version 5.15.11+kde0, rebased upstream:
* No code changes
==== libqt5-qtxmlpatterns ====
Version update (5.15.10+kde0 -> 5.15.11+kde0)
Subpackages: libQt5XmlPatterns5 libqt5-qtxmlpatterns-imports
- Update to version 5.15.11+kde0, rebased upstream:
* Fix compilation with the recent qtbase
==== libreoffice ====
Version update (7.6.1.2 -> 7.6.2.1)
Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 7.6.2.1:
https://wiki.documentfoundation.org/Releases/7.6.2/RC1
==== libsepol ====
- Enable LTO now (boo#1138813).
==== llvm17 ====
Version update (17.0.1 -> 17.0.2)
- Update to version 17.0.2.
* This release contains bug-fixes for the LLVM 17.0.0 release.
This release is API and ABI compatible with 17.0.0.
- Rebase llvm-do-not-install-static-libraries.patch.
==== makedumpfile ====
- Add Support-struct-module_memory-on-Linux-6.4-and-.patch (jsc#PED-4593)
- Add ppc64-do-page-traversal-if-vmemmap_list-not-po.patch (bsc#1215364)
- Re-enable eppic on systems with old enough libeppic
==== perl ====
Subpackages: perl-base
- Use 64-bit integers on all platforms
==== podman ====
Version update (4.7.0 -> 4.7.1)
- podman-docker: Provides docker to avoid conflicts
when using podman with docker-compose (bsc#1215926)
- Update to version 4.7.1:
* New version: v4.7.1
* Update RELEASE_NOTES.md for v4.7.1
* compat API: speed up network list
* inspect: ignore ENOENT during device lookup
* test/system: --env-file test fixes
* Revert "feat(env): support multiline in env-file"
* Revert "docs(env-file): improve document description"
* Revert "fix(env): parsing --env incorrect in cli"
* [CI:DOCS] update swagger version on docs.podman.io
* Fix locale issues with WSL version detection
* switch version to 4.7.1-dev
==== policycoreutils ====
Subpackages: policycoreutils-lang policycoreutils-python-utils python3-policycoreutils
- Move dbus configuration file to /usr/share instead of /etc
- Add policycoreutils-rpmlintrc to suppress spurious rpmlint warnings
- Fix newrole debuginfo broken by mistaken 'noarch'
- Add GUI and DBUS subpackages
* Remove files now provided in upstream tarballs:
- Drop system-config-selinux.png
- Drop system-config-selinux.desktop
- Drop system-config-selinux.pam
- Drop system-config-selinux.console
- Drop selinux-polgengui.desktop
- Drop selinux-polgengui.console
- Refactor spec file
* Remove empty sandbox package definition
==== polkit-default-privs ====
Version update (1550+20230920.74aeded -> 1550+20231006.28f05f1)
- Update to version 1550+20231006.28f05f1:
* Whitelist policycoreutils-dbus actions (bsc#1213435)
==== slirp4netns ====
Version update (1.2.1 -> 1.2.2)
- version update to 1.2.2
* Enabled reproducible builds (#324, #325, #326)
==== vte ====
Subpackages: libvte-2_91-0 vte-lang
- Add f1a547f1dfebd8860021b6b727fa5d5717e9f143.patch: widget:
VteTerminalSpawnAsyncCallback's error is nullable. Fixes:
https://gitlab.gnome.org/GNOME/vte/-/issues/2647
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.18 -> 7.1.1.19)
bluez
filesystem
grub2
libXrandr (1.5.3 -> 1.5.4)
parted
python-cryptography (41.0.3 -> 41.0.4)
python-dnspython
python-urllib3 (2.0.4 -> 2.0.6)
sg3_utils (1.48~20221101+1.142dace -> 1.48+1.889c3e3)
shadow (4.14.0 -> 4.14.1)
systemd
=== Details ===
==== ImageMagick ====
Version update (7.1.1.18 -> 7.1.1.19)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.19
* https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
* fixes CVE-2023-5341 [bsc#1215939]
==== bluez ====
Subpackages: bluez-auto-enable-devices bluez-cups libbluetooth3
- Moved btmgmt to main rpm of bluez. (jsc#PED-6216)
==== filesystem ====
- Add /run/lock (boo#1212926)
- Remove /var/spool/mail (boo#1179574)
- Remove obsolete home dir check. The filesystem package is not
meant to contain home directories of random system users anymore
- Create ghost symlinks also in pretrans, needed to get /var/run as
link right away
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Add patch to fix reading files from btrfs with "implicit" holes:
* 0001-fs-btrfs-Zero-file-data-not-backed-by-extents.patch
- Update the TPM 2.0 patches to support more RSA and ECC algorithms
* 0002-tpm2-Add-TPM-Software-Stack-TSS.patch
* 0003-protectors-Add-TPM2-Key-Protector.patch
* 0005-util-grub-protect-Add-new-tool.patch
- Remove build require for gcc-32bit, target platform didn't rely on libgcc
function shipped with compiler but rather using functions supplied in grub
directly.
- Add BuildIgnore to break cycle with the branding package
==== libXrandr ====
Version update (1.5.3 -> 1.5.4)
- Update to version 1.5.4
This release fixes a bug where an invalid pointer (a pointer to the
middle of a buffer returned from malloc() instead of to the beginning
of the buffer) could be passed to free() when cleaning up after an
out-of-bounds output is found in the response from the X server to
XRRGetMonitors().
==== parted ====
Subpackages: libparted-fs-resize0 libparted2 parted-lang
- updated fatresize to version 0.2 which includes a man-page
removed patches:
- fatresize-fix-getting-dev-name.patch
==== python-cryptography ====
Version update (41.0.3 -> 41.0.4)
- update to 41.0.4:
* ~~~~~~~~~~~~~~~~~~~
* Updated Windows, macOS, and Linux wheels to be compiled with
OpenSSL 3.1.3.
* .. _v41-0-3:
==== python-dnspython ====
- Don't use curio.
==== python-urllib3 ====
Version update (2.0.4 -> 2.0.6)
- update to 2.0.6 (bsc#1215968, CVE-2023-43804):
* Added the Cookie header to the list of headers to strip from
requests when redirecting to a different host. As before, different
headers can be set via Retry.remove_headers_on_redirect
- 2.0.5:
* Allowed pyOpenSSL third-party module without any deprecation
warning. #3126
* Fixed default blocksize of HTTPConnection classes to match
high-level classes. Previously was 8KiB, now 16KiB. #3066
==== sg3_utils ====
Version update (1.48~20221101+1.142dace -> 1.48+1.889c3e3)
Subpackages: libsgutils2-1_48-2
- udev rules: allow kernel command line overrides with
"udev.scsi_id_serial_src=LTVS" and "udev.scsi_symlink_src=LTVS"
Try these boot parameters if your system fails to detect SCSI
devices after update to sg3_utils 1.48.
- dracut.conf: add 00-scsi-sg3_config.rules (jsc#PED-6226)
- spec file:
* fix build dependencies for regenerate_initrd_posttrans
(bsc#1215772)
* add missing rules file
- Update to version 1.48
* udev rules: new, configurable scheme for creating symlinks for SCSI devices
(jsc#PED-6226)
See description of ".SCSI_ID_SERIAL_SRC" /usr/lib/udev/55-scsi-sg3_id.rules
and .SCSI_SYMLINK_SRC in /usr/lib/udev/58-scsi_symlink.rules
* decoding utilities: add -j/--json[=JO] and --js-file=JFN options
* sg_sat_datetime: new tool to access date/time on ATA devices using a SAT layer
* sg_z_act_query: new tool for sending zone activate/query commands
* sg_rem_rest_elem: new tool for removing or restoring elements
* sg_write_attr: support for SPC "Write Attirbute" command (for tapes)
* sg_ses: swap meaning of -H and -HH, add json support, use e.g.
"0:2" for range indicator
* sg_rtpg: fix response truncation
* sg_decode_sense: add --nodecode option
* sg_logs: fix --list and -lll options
* sg_modes: improve handling of ZBC disks
* sg_inq: add version descriptors from SPC6r08, add --quiet option
* sg_vpd: add --sinq_inraw=RFN option
* sg_turs: add --timeout= and --ascq= options
* sg_requests: add --timeout= option
* sg_sat_read_gplog: add --smart and --ppt options
* sgp_dd and sgm_dd: add --progress option
* sg_dd: add support for accessing NVMe devices via passthrough
* Bug fixes and minor fixes
- _service: simplify version processing, as we have a clean upstream version again
==== shadow ====
Version update (4.14.0 -> 4.14.1)
Subpackages: libsubid4 login_defs
- Update to 4.14.1:
Build system: Merge libshadow and libmisc into a single libshadow.
This fixes problems in the linker, which were reported at least
in Gentoo. #791
- Add Alejandro Colomar (new stable branch maintainer) to shadow.keyring
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc systemd-lang udev
- rpmlintrc: allow systemd-network and systemd-container sub-packages to ship
shared libs. These are actually NSS plugins and are not really subject to
shlib policy.
- Drop 5000-core-manager-run-generators-directly-when-we-are-in-.patch
Since dracut-059+suse.447.g9d1fc722, this workaround is not needed anymore.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream
Mesa (23.2.0 -> 23.2.1)
Mesa-drivers (23.2.0 -> 23.2.1)
chrony
e2fsprogs
fde-tools
gdm
geoclue2 (2.7.0 -> 2.7.1)
glibc
icewm (3.4.0 -> 3.4.3)
javapackages-tools
ldb (2.7.2 -> 2.8.0)
libX11 (1.8.6 -> 1.8.7)
libXpm (3.5.16 -> 3.5.17)
libev
libnvme
libselinux
libsemanage
mpg123 (1.32.2 -> 1.32.3)
netcfg
nvme-cli
python-SQLAlchemy (2.0.19 -> 2.0.21)
python-greenlet (3.0.0~rc3 -> 3.0.0)
python-psutil
rubygem-nokogiri
rubygem-ruby-dbus (0.23.0.beta2 -> 0.23.1)
samba (4.18.6+git.320.cfda27bacb -> 4.19.0+git.306.19d2e214c58)
selinux-policy
srt (1.5.2 -> 1.5.3)
talloc (2.4.0 -> 2.4.1)
tdb (1.4.8 -> 1.4.9)
tevent (0.14.1 -> 0.15.0)
xdg-desktop-portal
xscreensaver (6.06 -> 6.07)
xterm (384 -> 385)
=== Details ===
==== AppStream ====
Subpackages: AppStream-lang libAppStreamQt2 libappstream4
- Enable vala support when building in SLE-15 SP6
- Fix condition in files section for the case where vala support
is disabled, where some files are being generated but were not
included
==== Mesa ====
Version update (23.2.0 -> 23.2.1)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Update to Mesa 23.2.1
* Mesa 23.2.1 is a new development release. People who are
concerned with stability and reliability should stick with a
previous release or wait for Mesa 23.2.2.
* Mesa 23.2.1 is an unusual first stable release due to the
accidentl tagging of 23.2.0 durring the rc cycle.
* Mesa 23.2.1 implements the OpenGL 4.6 API, but the version
reported by glGetString(GL_VERSION) or
glGetIntegerv(GL_MAJOR_VERSION) /
glGetIntegerv(GL_MINOR_VERSION) depends on the particular
driver being used. Some drivers don't support all the features
required in OpenGL 4.6. OpenGL 4.6 is **only** available if
requested at context creation. Compatibility contexts may
report a lower version depending on each driver.
* Mesa 23.2.1 implements the Vulkan 1.3 API, but the version
reported by the apiVersion property of the
VkPhysicalDeviceProperties struct depends on the particular
driver being used.
* More details in:
- -> https://gitlab.freedesktop.org/mesa/mesa/-/blob/23.2/docs/relnotes/23.2.1.r…
==== Mesa-drivers ====
Version update (23.2.0 -> 23.2.1)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Update to Mesa 23.2.1
* Mesa 23.2.1 is a new development release. People who are
concerned with stability and reliability should stick with a
previous release or wait for Mesa 23.2.2.
* Mesa 23.2.1 is an unusual first stable release due to the
accidentl tagging of 23.2.0 durring the rc cycle.
* Mesa 23.2.1 implements the OpenGL 4.6 API, but the version
reported by glGetString(GL_VERSION) or
glGetIntegerv(GL_MAJOR_VERSION) /
glGetIntegerv(GL_MINOR_VERSION) depends on the particular
driver being used. Some drivers don't support all the features
required in OpenGL 4.6. OpenGL 4.6 is **only** available if
requested at context creation. Compatibility contexts may
report a lower version depending on each driver.
* Mesa 23.2.1 implements the Vulkan 1.3 API, but the version
reported by the apiVersion property of the
VkPhysicalDeviceProperties struct depends on the particular
driver being used.
* More details in:
- -> https://gitlab.freedesktop.org/mesa/mesa/-/blob/23.2/docs/relnotes/23.2.1.r…
==== chrony ====
Subpackages: chrony-pool-openSUSE
- Use make quickcheck instead of make check to avoid >1h build
times and failures due to timeouts. This was the default before
3.2 but it changed to make tests more reliable. Here a seed is
already set to get deterministic execution.
==== e2fsprogs ====
Subpackages: libcom_err2 libext2fs2
- Update specfile to make sure regenerate_initrd_post macro is defined
==== fde-tools ====
- Add fde-tools-remove-redundant-2nd-pw-creation.patch to remove
the creation of the secondary password in 'add-secondary-key'
==== gdm ====
Subpackages: gdm-lang gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Explicitly buildrequire /usr/bin/dbus-run-session: the
dbus package is being restructured to be usable with dbus-broker
and so far we just relied on implicit dependencies bringing this
in. Meson checks for it, so it is correct to BR it though.
==== geoclue2 ====
Version update (2.7.0 -> 2.7.1)
Subpackages: system-user-srvGeoClue typelib-1_0-Geoclue-2_0
- Update to version 2.7.1:
+ Add 'age' field to MLS locate queries
+ Location updates now always have an accuracy value
+ Improvements to NMEA parsing:
- Parse NMEA timestamps with sub-second accuracy
- Add default accuracy to NMEA RMC locations
- Ignore locations from GGA and RMC sentences if the GNSS fix
is not valid
+ Prioritize GNSS sources with a recent fix over other sources,
preventing location jumps
+ Install D-Bus policy in /usr/share, not /etc
+ Upgrade GLib / Gio dependency to version 2.68.0
+ Correct gi annotations in GClueSimple
+ Various small fixes
- Use ldconfig_scriptlets macro for post(un) handling.
==== glibc ====
Subpackages: glibc-extra glibc-lang glibc-locale glibc-locale-base nscd
- setxid-propagate-glibc-tunables.patch: Propagate GLIBC_TUNABLES in
setxid binaries
- tunables-string-parsing.patch: tunables: Terminate if end of input is
reached (CVE-2023-4911, bsc#1215501)
==== icewm ====
Version update (3.4.0 -> 3.4.3)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to version 3.4.3:
* New preference "TaskBarShowWindowTitles" for icon-only task buttons.
* New winoption "doNotManage" to workaround bugs in picom for plank.
* When a battery has no data about full charge, use the capacity.
* When cascading windows, include the border size in the displacement.
* Let icewmbg interpret command-line file arguments relative to $PWD.
* Add a -f,--fork option to icewmbg to detach it from the terminal.
* Fix the Window List Menu for #144.
* Fix restoring from fullscreen with F11 in chromium for #141.
* Support tabs in the Window List Menu.
* Control the terminal in icewm-menu-fdo by option or environment.
* Let icewm-menu-fdo use a list of default terminals to choose from.
- Drop unknown config options:
* --enable-guievents
* --enable-antialiasing
* --enable-gradients
* --enable-shaped-decorations
==== javapackages-tools ====
Subpackages: javapackages-filesystem
- Added patches:
* 0005-Interpolate-properties-also-in-the-current-artifact.patch
+ interpolate variables also in current artifactId, groupId and
version
* 0006-Test-variable-expansion-in-artifactId.patch
+ test previous changes
* 0007-Test-that-we-don-t-bomb-on-relativePath.patch
+ test gracious handling of empty <relativePath/> in parent
reference of a pom file
==== ldb ====
Version update (2.7.2 -> 2.8.0)
Subpackages: libldb2 python3-ldb
- Update to 2.8.0
* CVE-2023-0614 Not-secret but access controlled LDAP attributes can be discovered (bug 15270)
* pyldb: Raise an exception if ldb_dn_get_parent() fails
* Implement ldap_whoami in pyldb and add the RFC4532 LDB_EXTENDED_WHOAMI_OID definition
* Documentation and spelling fixes
* Add ldb_val -> bool,uint64,int64 parsing functions
* Split out ldb_val_as_dn() helper function
* add LDB_CHANGETYPE_MODRDN support to ldb_ldif_to_pyobject()
* add LDB_CHANGETYPE_DELETE support to ldb_ldif_to_pyobject()
* let ldb_ldif_parse_modrdn() handle names without 'rdn_name=' prefix
* Don't create error string if there is no error
* Avoid allocation and memcpy() for every wildcard match candidate
* Make ldb_msg_remove_attr O(n)
* pyldb: Throw error on invalid controls
* pyldb: remove py2 ifdefs
* Call tevent_set_max_debug_level(TEVENT_DEBUG_TRACE)
==== libX11 ====
Version update (1.8.6 -> 1.8.7)
Subpackages: libX11-6 libX11-data libX11-xcb1
- update to 1.8.7
This release contains fixes for the issues reported in security
advisory here:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
* fixes CVE-2023-43785 libX11: out-of-bounds memory access in
_XkbReadKeySyms() (boo#1215683)
* fixes CVE-2023-43786 libX11: stack exhaustion from infinite recursion
in PutSubImage() (boo#1215684)
* fixes CVE-2023-43787 libX11: integer overflow in XCreateImage()
leading to a heap overflow (boo#1215685)
along with:
* Fail XOpenDisplay() if server-provided default visual is invalid (!233)
* Bring XKB docs in line with actual implementation (!231, !228)
* Xutil.h: declare XEmptyRegion() and XEqualRegion() as Bool (!225)
* Assorted updates to en_US.UTF-8 compose keys (!213, !214, !215, !216,
!217, !219, !220, !222, !223, !226, !227, !229)
==== libXpm ====
Version update (3.5.16 -> 3.5.17)
- Update to 3.5.17
* This release contains fixes for the libXpm issues reported in
security advisory here:
https://lists.x.org/archives/xorg-announce/2023-October/003424.html
* fixes CVE-2023-43788 libXpm: out of bounds read in
XpmCreateXpmImageFromBuffer() (boo#1215686)
* fixes CVE-2023-43789 libXpm: out of bounds read on XPM with
corrupted colormap (boo#1215687)
==== libev ====
- run signify only on Factory
==== libnvme ====
Subpackages: libnvme-mi1 libnvme1
- Enable tests during build
- Set git version tag
- Drop unused make dependency
- Drop unencessary minimum version depedency on meson.
- Re-enable libdbus feature. Upstream defaults changed.
==== libselinux ====
Subpackages: libselinux1 selinux-tools
- Repair initrd libselinux check in selinux-ready
==== libsemanage ====
Subpackages: libsemanage-conf libsemanage2
- Remove build counter syncing for real
==== mpg123 ====
Version update (1.32.2 -> 1.32.3)
Subpackages: libmpg123-0 mpg123-openal
- Update to version 1.32.3
* libmpg123, libsyn123: always ifdef LFS_LARGEFILE_64 (not
just if)
* libsyn123: re-introduce _32 wrappers in addition to
suffix-less ones (regression from 1.31, bug 363)
==== netcfg ====
- Remove ftpusers, none of our ftp servers uses that anymore
- Remove defaultdomain, NIS got dropped
- Remove hosts.equiv and hosts.lpd, the tools using them got
dropped long ago.
==== nvme-cli ====
Subpackages: nvme-cli-bash-completion
- Enable test during build
- Drop minimum version meson dependency
- Add asciidoc dependency
- Build documentation when requested
==== python-SQLAlchemy ====
Version update (2.0.19 -> 2.0.21)
- Update to 2.0.21:
* Changes from 2.0.21:
https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.21
* Changes from 2.0.20:
https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.20
- Remove .gitignore files from source tree, removes all rpmlint
warnings.
==== python-greenlet ====
Version update (3.0.0~rc3 -> 3.0.0)
- Update to 3.0.0:
* No changes from 3.0rc3 aside from the version number.
- Ignore some slow and flaky tests
==== python-psutil ====
- Require /usr/bin/who only for suse_version > 1500: 15.X does not
provide it, but has it in coreutils.
- PEP517
- Clean up specfile from obsolete python2 stuff
==== rubygem-nokogiri ====
- Buildrequire openssl gem to fix building with Ruby 3.0
==== rubygem-ruby-dbus ====
Version update (0.23.0.beta2 -> 0.23.1)
- 0.23.1
API:
* Add DBus::Object.dbus_reader_attr_accessor to declare a common use case
with a single call (gh#mvidner/ruby-dbus#140).
* BusConnection#request_name defaults to the simple use case: single owner
without queuing, failing fast; documented the complex use cases.
==== samba ====
Version update (4.18.6+git.320.cfda27bacb -> 4.19.0+git.306.19d2e214c58)
Subpackages: libsamba-policy0-python3 samba-ad-dc-libs samba-client samba-client-libs samba-libs samba-libs-python3 samba-python3
- Update to 4.19.0
* File doesn't show when user doesn't have permission if
aio_pthread is loaded; (bso#15453).
* ctdb_killtcp fails to work with --enable-pcap and libpcap â¥
1.9.1; (bso#15451).
* Logging to stdout/stderr with DEBUG_SYSLOG_FORMAT_ALWAYS can
log to syslog; (bso#15460).
* âsamba-tool domain level raiseâ fails unless given a URL;
(bso#15458).
* reply_sesssetup_and_X() can dereference uninitialized tmp
pointer; (bso#15420).
* missing return in reply_exit_done(); (bso#15430).
* TREE_CONNECT without SETUP causes smbd to use uninitialized
pointer; (bso#15432).
* Avoid infinite loop in initial user sync with Azure AD
Connect when synchronising a large Samba AD domain;
(bso#15401).
* Samba replication logs show (null) DN; (bso#15407).
* 2-3min delays at reconnect with
smb2_validate_sequence_number: bad message_id 2; (bso#15346).
* DCERPC_PKT_CO_CANCEL and DCERPC_PKT_ORPHANED can't be parsed;
(bso#15446).
* CID 1539212 causes real issue when output contains only
newlines; (bso#15438).
* KDC encodes INT64 claims incorrectly; (bso#15452).
* mdssvc: Do an early talloc_free() in _mdssvc_open();
(bso#15449).
* Windows client join fails if a second container CN=System
exists somewhere; (bso#9959).
* regression DFS not working with widelinks = true;
(bso#15435).
* Heimdal fails to build on 32-bit FreeBSD; (bso#15443).
* samba-tool ntacl get segfault if aio_pthread appended;
(bso#15441).
==== selinux-policy ====
Subpackages: selinux-policy-targeted
- Use /var/adm/update-scripts in macros.selinux-policy. The rpm state
directory doesn't exist on SUSE systems (bsc#1213593)
- Modified update.sh to require first parameter "full" to also
update container-selinux. For maintenance updates you usually
don't want it to be updated
==== srt ====
Version update (1.5.2 -> 1.5.3)
- version update to 1.5.3
* New Features
- PR #2714: Added maximum BW limit for retransmissions. See SRTO_MAXREXMITBW.
* Important Bug Fixes
- PR #2632: Use overlapped WSASendTo to avoid UDP sending losses.
- PR #2766: Fixed spurious group read-ready epoll events.
- PR #2772: Fixed RCV buffer initialization in Rendezvous. â ï¸
- PR #2757: Fix memory leak on queuing connection initialization packets.
- PR #2745: Fix hang up on not enough space in the RCV buffer.
- PR #2740: Fix possible tsbpd() deadlock with processCtrlShutdown().
- PR #2692: Rejection not undertaken in rendezvous after KMX failure.
- PR #2774: Fix rendezvous connection mode when processing resulted in ACCEPT it was still sending rejection.
- PR #2778: Drop unencrypted packets in AES-GCM mode.
* Build
- PR #2779, #2780: Fix the build for targets without IP_ADD_SOURCE_MEMBERSHIP.
- PR #2784: Added missing public header files in Windows binary installer.
* Unit Tests
- PR #2681: Added custom main with transparent parameters.
* Documentation
- PR #2765: Updated the explicit information for binding to IPv6 wildcard.
- PR #2785: Fixed API doc: SRT_INVALID_SOCK
* https://github.com/Haivision/srt/releases/tag/v1.5.3
==== talloc ====
Version update (2.4.0 -> 2.4.1)
Subpackages: libtalloc2 python3-talloc
- Update to 2.4.1
* Remove remaining, but broken python2 support
* Spelling fixes
* Remove unneeded va_copy()
==== tdb ====
Version update (1.4.8 -> 1.4.9)
Subpackages: libtdb1 python3-tdb
- Update to 1.4.9
* Remove remaining, but broken python2 support
* Spelling fixes
* python: Safely clear structure members
==== tevent ====
Version update (0.14.1 -> 0.15.0)
Subpackages: libtevent0 python3-tevent
- Update to version 0.15.0
* remove py2 ifdefs
* python: Safely clear structure members
* the tevent_thread_call_depth API is updated
in order to allow better tracing.
* add tevent_set_max_debug_level() only and don't
pass TEVENT_DEBUG_TRACE to tevent_debug() callbacks by default.
* Spelling fixes
* Make use of epoll_create1() for epoll backend
* Optimize overhead in the epoll backend
==== xdg-desktop-portal ====
Subpackages: xdg-desktop-portal-lang
- Support building with meson 0.61.x used by SLE, where .pc files
in dataonly packages are installed to %_libdir unlike in
meson >= 0.62.0 where the default was changed to %_datadir.
==== xscreensaver ====
Version update (6.06 -> 6.07)
Subpackages: xscreensaver-data xscreensaver-lang
- update to 6.07:
* New hacks, droste, skulloop, papercube and cubocteversion
* xscreensaver-settings was sometimes turning off the DPMS
checkbox
* Log pid of caller of deactivate command, to give a hint about
who is preventing the screen from blanking
* Updates to sphereeversion.
* Added some new map sources to mapscroller.
* Various other minor bug fixes.
- leave a nice notice for a very angry upstream developer in
xscreensaver-disable-upgrade-nagging-message.patch
- drop xscreensaver-bsc1204744.patch, included upstream
==== xterm ====
Version update (384 -> 385)
Subpackages: xterm-bin xterm-resize
- update to 385:
* fixes for ReGIS (report by Ben Wong).
+ correct conversion from HLS to RGB
+ improve font-caching performance.
* update tables in wcwidth.c based on Unicode 15.1.0
* improve fastScroll resource:
+ suppress screen-refreshes for carriage-returns
+ add -jf option to simplify use of this resource.
+ add a control sequence for enabling/disabling the resource.
+ enable this feature by default
* extend title-stack feature to allow an additional parameter to
directly access the stack, like the XTPUSHCOLORS and XTPOPCOLORS
feature.
* correct size and position of box shown for double-cell character
which happens to be missing from the bitmap font (report by Peter
Fabinski).
* improved configure script:
+ add pattern for uClibc-ng to CF_XOPEN_SOURCE (report/patch by
Waldemar Brodkorb).
+ add configure options --with-utmp-path and --with-wtmp-path to
override configure script's check for utmp/wtmp pathnames
which are shown in the manual (Debian #1042767).
+ CF_XOPEN_SOURCE provides for defining _DEFAULT_SOURCE for
MinGW32 and MinGW64.
+ sed expression used to report gcc version now works with MinGW
* ensure that line-attributes are reset after drawing missing
character (report by Christian Weisgerber).
* update config.guess, config.sub
- rebased all patches
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (23.1.8 -> 23.2.0)
Mesa-drivers (23.1.8 -> 23.2.0)
SDL2 (2.28.3 -> 2.28.4)
catatonit (0.1.7 -> 0.2.0)
container-selinux (2.215.0 -> 2.222.0)
crypto-policies (20230614.5f3458e -> 20230920.570ea89)
dLeyna (0.8.2 -> 0.8.3)
glib2
grub2
gtk4 (4.12.2 -> 4.12.3)
kbd (2.6.2 -> 2.6.3)
keylime (7.5.0 -> 7.6.0)
libblockdev (3.0.2 -> 3.0.3)
libdecor (0.1.1 -> 0.2.0)
libsigc++2 (2.12.0 -> 2.12.1)
libwebp
mozjs115 (115.2.1 -> 115.3.1)
qalculate (4.8.0 -> 4.8.1)
qpdf (11.6.0 -> 11.6.1)
qt6-base (6.5.2 -> 6.5.3)
qt6-declarative (6.5.2 -> 6.5.3)
qt6-imageformats (6.5.2 -> 6.5.3)
qt6-translations (6.5.2 -> 6.5.3)
qt6-wayland (6.5.2 -> 6.5.3)
screen (4.9.0 -> 4.9.1)
shadow
systemd (254.3 -> 254.5)
tracker-miners (3.6.0 -> 3.6.1)
webkit2gtk3 (2.42.0 -> 2.42.1)
webkit2gtk4 (2.42.0 -> 2.42.1)
xdg-dbus-proxy (0.1.4 -> 0.1.5)
yast2-trans (84.87.20230922.91d997adab -> 84.87.20230930.5f9e01162a)
=== Details ===
==== Mesa ====
Version update (23.1.8 -> 23.2.0)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Update to Mesa 23.2.0-rc4
- -> https://lists.freedesktop.org/archives/mesa-announce/2023-September/000731.…
- supersedes U_llvmpipe-only-include-old-Transform-includes-when-ne.patch
- disabled u_fix-build-on-ppc64le.patch (no longer needed?)
- adjusted n_drirc-disable-rgb10-for-chromium-on-amd.patch
==== Mesa-drivers ====
Version update (23.1.8 -> 23.2.0)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Update to Mesa 23.2.0-rc4
- -> https://lists.freedesktop.org/archives/mesa-announce/2023-September/000731.…
- supersedes U_llvmpipe-only-include-old-Transform-includes-when-ne.patch
- disabled u_fix-build-on-ppc64le.patch (no longer needed?)
- adjusted n_drirc-disable-rgb10-for-chromium-on-amd.patch
==== SDL2 ====
Version update (2.28.3 -> 2.28.4)
- Update to release 2.28.4
* Enable clipping for zero sized rectangles in the SDL renderer
* Notify X11 clipboard managers when the clipboard changes
* Fixed sensor timestamps for third-party PS5 controllers
* Added detection for Logitech and Simagic racing wheels
==== catatonit ====
Version update (0.1.7 -> 0.2.0)
- Update to catatonit v0.2.0.
* Change license to GPL-2.0-or-later.
- Remove upstreamed patches:
- 99bb9048f.patch
==== container-selinux ====
Version update (2.215.0 -> 2.222.0)
- Update to version 2.222:
* Allow containers to read/write inherited dri devices
- Update to version 2.221:
* Allow containers to shutdown sockets inherited from container
runtimes
* Allow spc_t to use execmod libraries on container file systems
* Add boolean to allow containers to read all cert files
* More MLS Policy allow rules
* Allow container runtimes using pasta bind icmp_socket to port_t
* Fix spc_t transitions from container_runtime_domain
==== crypto-policies ====
Version update (20230614.5f3458e -> 20230920.570ea89)
Subpackages: crypto-policies-scripts
- nss: Skip the NSS policy check if the mozilla-nss-tools package
is not installed. This avoids adding more dependencies in ring0.
* Add crypto-policies-nss.patch [bsc#1211301]
- Update to version 20230920.570ea89:
* fips-mode-setup: more thorough --disable, still unsupported
* FIPS:OSPP: tighten beyond reason for OSPP 4.3
* krb5: sort enctypes mac-first, cipher-second, prioritize SHA-2 ones
* openssl: implement relaxing EMS in FIPS (NO-ENFORCE-EMS)
* gnutls: prepare for tls-session-hash option coming
* nss: prepare for TLS-REQUIRE-EMS option coming
* NO-ENFORCE-EMS: add subpolicy
* FIPS: set __ems = ENFORCE
* cryptopolicies: add enums and __ems tri-state
* docs: replace `FIPS 140-2` with just `FIPS 140`
* .gitlab-ci: remove forcing OPENSSH_MIN_RSA_SIZE
* cryptopolicies: add comments on dunder options
* nss: retire NSS_OLD and replace with NSS_LAX 3.80 check
* BSI: start a BSI TR 02102 policy [jsc#PED-4933]
* Rebase patches:
- crypto-policies-policygenerators.patch
- crypto-policies-revert-rh-allow-sha1-signatures.patch
- crypto-policies-FIPS.patch
- Conditionally recommend the crypto-policies-scripts package
when python is not installed in the system [bsc#1215201]
==== dLeyna ====
Version update (0.8.2 -> 0.8.3)
- Update to version 0.8.3:
+ Build: Fix compatibility with Meson 1.2
+ Renderer: Fix locale initialization
+ Server:
- Fix locate initialization
- Fix uninitialized variable warning
- Properly handle optional actions
- Fix browse not working properly
- Drop 61d24fdc.patch: Fixed upstream.
- Change compression of tarball in service and spec to zst from xz.
==== glib2 ====
Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0
- Fix NetworkManager crashing repeatedly with glib 2.78.0;
(bsc#1215709); Add patch 0005-gthreadedresolver-Fix-race.patch
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- Only build with fde-tpm-helper-rpm-macros for the architectures
supporting the newer UEFI and TPM 2.0.
* Also correct the location of %fde_tpm_update_requires
- Fix a boot delay regression in PowerPC PXE boot (bsc#1201300)
* 0001-ieee1275-ofdisk-retry-on-open-and-read-failure.patch
- Add the new BuildRequires for EFI builds for the better FDE
support: fde-tpm-helper-rpm-macros
+ Also add the the macros to %post and %posttrans
- Correct the type of allocated EFI pages for ARM64 kernel (bsc#1215151)
* arm64-Use-proper-memory-type-for-kernel-allocation.patch
==== gtk4 ====
Version update (4.12.2 -> 4.12.3)
Subpackages: gtk4-lang gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.12.3:
+ GtkWindow: Don't assume titlebars are GtkHeaderBar
+ GtkTreeView: Fix a crash in gtk_tree_view_is_blank_at_pos
+ printing: Fix some issues with the portal implementation
+ GSK:
- Some optimizations in the GL renderer
- Fix memory leaks in the Broadway renderer
+ demos: Fix a crash in gtk4-demo
+ Updated translations.
==== kbd ====
Version update (2.6.2 -> 2.6.3)
Subpackages: kbd-legacy
- Update to version 2.6.3:
- libkfont:
* Don't look for fonts in the current directory.
- showkey:
* Add parameter to allow to change timeout.
- po:
* Update po files.
==== keylime ====
Version update (7.5.0 -> 7.6.0)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python311-keylime
- Update to version v7.6.0:
* Monthly release (7.6.0)
* test-requirements: remove types-atomicwrites
* Fixed an inappropriate test expression to remove a logical short circuit
* remove prov_db_filename from config
* Fix for key parse error in tpm2_objects
* Fix mapping.json path in the comments
* ima: Emit a warning when a file signature could not be parsed
* Initial PR to add support for IDevID and IAK
* Implement automatic agent API version bump
* tests: avoid fail when epel-release is installed
- M2Crypto is not used anymore.
- Clean up SPEC file.
==== libblockdev ====
Version update (3.0.2 -> 3.0.3)
Subpackages: libbd_btrfs3 libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3
- Update to version 3.0.3:
* Always use "--fs ignore" with lvresize
* nvme:
- Use interim buffer for nvme_get_log_sanitize()
- Generate HostID when missing
* tests:
- Specificy required versions when importing GLib and BlockDev
introspection
- Minor NVMe HostNQN fixes
- Replace deprecated unittest assert calls
* fs:
- Fix leaking directories with temporary mounts
- Fix memory leak
* crypto: Correctly convert passphrases from Python to C
==== libdecor ====
Version update (0.1.1 -> 0.2.0)
Subpackages: libdecor-0-0
- Update to version 0.2.0:
* Various bug and leak fixes.
* New gtk plugin.
- Update URL and source to new home.
- Add pkgconfig(gtk-3.0) BuildRequires, new dependency.
- Use ldconfig_scriptlets macro for post(un) handling.
==== libsigc++2 ====
Version update (2.12.0 -> 2.12.1)
- Update to version 2.12.1:
+ Documentation:
- slot, signal: Describe the slot<void(int)> syntax more
- connection: Improve the class documentation
- Improve Visual Studio build documentation
- Remove AUTHORS and add general information to README.md
+ Build:
- Meson:
. Don't copy files with configure_file()
. Fix the evaluation of is_git_build on Windows
- Visual Studio: Support static builds
- Use ldconfig_scriptlets macro for post(un) handling.
- Update URL to new home.
==== libwebp ====
Subpackages: libsharpyuv0 libwebp7 libwebpdemux2 libwebpmux3
- Add 0001-Fix-invalid-incremental-decoding-check.patch
A fuzzing finding fixed in the SLE/Leap updates
==== mozjs115 ====
Version update (115.2.1 -> 115.3.1)
- Update to version 115.3.1:
+ Security fix: CVE-2023-5217: Heap buffer overflow in libvpx.
- Changes from version 115.3.0:
+ Various security fixes and other quality improvements.
+ CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
+ CVE-2023-5169: Out-of-bounds write in PathOps
+ CVE-2023-5171: Use-after-free in Ion Compiler
+ CVE-2023-5174: Double-free in process spawning on Windows
+ CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox
ESR 115.3, and Thunderbird 115.3
==== qalculate ====
Version update (4.8.0 -> 4.8.1)
Subpackages: libqalculate22 qalculate-data
- version update to 4.8.1
* Fix besselj() and bessely()
* Fix display of matrices and vectors with complex number form other than
rectangular (default)
* Fix conflict between decibel units (e.g. "0dB") and duodecimal 0d⦠syntax
(now requires at least two digits)
* Fixes for title options in plot() function
* Add additional buttons and button menus to general keypad (Qt)
* Add option to show all functions, units, and variables in tool button
menus (Qt)
* Add recently used objects to functions, units, and variables menus (Qt)
* Add option to bypass dialog for functions in menu (Qt)
* Add option, in context menu, to display text for tool buttons (Qt)
* Open functions, units, and variables tool button menus using long-press
or right-click (in addition to arrow button), and add keyboard shortcuts (Qt)
* Use keypad tool button menu as context menu and show keypad type in
title bar of keypad (Qt)
* Auto-update number bases above programming keypad when entering simple
integers, even if calculate-as-you-type is deactivated (GTK)
==== qpdf ====
Version update (11.6.0 -> 11.6.1)
- version update to 11.6.1
* Bug fixes:
- Fix a logic error introduced in 11.6.0 in the fix to copyForeignObject.
The bug could result in some pages not being copied.
==== qt6-base ====
Version update (6.5.2 -> 6.5.3)
Subpackages: libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6Sql6 libQt6Test6 libQt6Widgets6 qt6-network-tls qt6-platformtheme-gtk3
- Update to 6.5.3
* https://www.qt.io/blog/qt-6.5.3-released
- Drop patch, merged upstream:
* CVE-2023-38197-qtbase-6.5.diff
- Enable the experimental native painting feature to improve
remote desktop performances (boo#1214915)
exporting QT_XCB_NATIVE_PAINTING is required to use the feature.
==== qt6-declarative ====
Version update (6.5.2 -> 6.5.3)
Subpackages: libQt6LabsAnimation6 libQt6LabsFolderListModel6 libQt6LabsQmlModels6 libQt6LabsSettings6 libQt6LabsSharedImage6 libQt6LabsWavefrontMesh6 libQt6Qml6 libQt6QmlCore6 libQt6QmlLocalStorage6 libQt6QmlModels6 libQt6QmlWorkerScript6 libQt6QmlXmlListModel6 libQt6Quick6 libQt6QuickControls2-6 libQt6QuickControls2Impl6 libQt6QuickDialogs2-6 libQt6QuickDialogs2QuickImpl6 libQt6QuickDialogs2Utils6 libQt6QuickEffects6 libQt6QuickLayouts6 libQt6QuickParticles6 libQt6QuickShapes6 libQt6QuickTemplates2-6 libQt6QuickTest6 qt6-declarative-imports
- Update to 6.5.3
* https://www.qt.io/blog/qt-6.5.3-released
==== qt6-imageformats ====
Version update (6.5.2 -> 6.5.3)
- Update to 6.5.3
* https://www.qt.io/blog/qt-6.5.3-released
==== qt6-translations ====
Version update (6.5.2 -> 6.5.3)
- Update to 6.5.3
* https://www.qt.io/blog/qt-6.5.3-released
==== qt6-wayland ====
Version update (6.5.2 -> 6.5.3)
Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6
- Update to 6.5.3
* https://www.qt.io/blog/qt-6.5.3-released
==== screen ====
Version update (4.9.0 -> 4.9.1)
- update to 4.9.1 (bsc#1210272, CVE-2023-24626):
* Support stop/parity bits on serial port
* Add needed system headers in checks and return values
for implicit function declarations
* Avoid zombies after shell exit
* Missed signal sending permission check on failed
query messages (CVE-2023-24626)
* manpage fixes
* source code fixes during cleanup
* UTF-8 encoding can emit invalid UTF-8 sequences
* for out of range unicode values
==== shadow ====
Subpackages: libsubid4 login_defs
- Add shadow-4.14.0-selinux-labels.patch:
Set proper SELinux labels for new homedirs.
See gh/shadow-maint/shadow#812.
==== systemd ====
Version update (254.3 -> 254.5)
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc systemd-lang udev
- Import commit 9674bb256205e6c643feadbcccfd1ee8feeee684 (merge of v254.5)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/6ed5b11298005e07509832881a0c5ff…
- Make sure to call %sysusers_create only when transfiletrigger is disabled.
- systemd.spec: switch to %ldconfig_scriptlets
- systemd.spec: add `%tmpfiles_create systemd-resolve`
It's only needed by SLE distros since systemd packages rely on
transtriggerfiles in Factory.
- Import commit 6ed5b11298005e07509832881a0c5ff1a80bf225 (merge of v254.4)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/b6b4e5a8a82d1f13f265a4ef170f2d1…
==== tracker-miners ====
Version update (3.6.0 -> 3.6.1)
Subpackages: tracker-miner-files tracker-miners-lang
- Update to version 3.6.1:
+ Avoid the special thread in tracker-extract-3, and extend the
seccomp jail to the full process.
+ Updated translations.
- Add a tracker_basever define, and set it to 3.6. We have a hard
Requires on what tracker version is needed and it is currently
set at the same or newer version, change this to tracker_basever
(tracker-miners have never been at a higher patch version
before).
==== webkit2gtk3 ====
Version update (2.42.0 -> 2.42.1)
Subpackages: WebKitGTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.42.1:
+ Fix enable-html5-database setting to properly enable/disable
IndexedDB API.
+ Fix the build with GBM disabled.
+ Fix several crashes and rendering issues.
- switch to pkgconfig(icu-i18n) instead of libicu-devel, to allow
switching to a different libicu*-devel (jsc#PED-6193)
==== webkit2gtk4 ====
Version update (2.42.0 -> 2.42.1)
Subpackages: WebKitGTK-6.0-lang libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.42.1:
+ Fix enable-html5-database setting to properly enable/disable
IndexedDB API.
+ Fix the build with GBM disabled.
+ Fix several crashes and rendering issues.
- switch to pkgconfig(icu-i18n) instead of libicu-devel, to allow
switching to a different libicu*-devel (jsc#PED-6193)
==== xdg-dbus-proxy ====
Version update (0.1.4 -> 0.1.5)
- Update to version 0.1.5:
+ Fix handling of object paths > 255 bytes
+ Print better errors when message parsing fails
+ Optionally install tests for "as-installed" testing
==== yast2-trans ====
Version update (84.87.20230922.91d997adab -> 84.87.20230930.5f9e01162a)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20230930.5f9e01162a:
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Italian)
* Translated using Weblate (Spanish)
* Translated using Weblate (Spanish)
* Translated using Weblate (Spanish)
* Translated using Weblate (Spanish)
* New POT for text domain 'storage'.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Mesa (23.1.8 -> 23.2.0)
Mesa-drivers (23.1.8 -> 23.2.0)
catatonit (0.1.7 -> 0.2.0)
dLeyna (0.8.2 -> 0.8.3)
gtk4 (4.12.2 -> 4.12.3)
keylime (7.5.0 -> 7.6.0)
libsigc++2 (2.12.0 -> 2.12.1)
mozjs115 (115.2.1 -> 115.3.1)
qalculate (4.8.0 -> 4.8.1)
qpdf (11.6.0 -> 11.6.1)
tracker-miners (3.6.0 -> 3.6.1)
webkit2gtk3 (2.42.0 -> 2.42.1)
webkit2gtk4 (2.42.0 -> 2.42.1)
xdg-dbus-proxy (0.1.4 -> 0.1.5)
=== Details ===
==== Mesa ====
Version update (23.1.8 -> 23.2.0)
Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1
- Update to Mesa 23.2.0-rc4
- -> https://lists.freedesktop.org/archives/mesa-announce/2023-September/000731.…
- supersedes U_llvmpipe-only-include-old-Transform-includes-when-ne.patch
- disabled u_fix-build-on-ppc64le.patch (no longer needed?)
- adjusted n_drirc-disable-rgb10-for-chromium-on-amd.patch
==== Mesa-drivers ====
Version update (23.1.8 -> 23.2.0)
Subpackages: Mesa-dri Mesa-gallium Mesa-libva
- Update to Mesa 23.2.0-rc4
- -> https://lists.freedesktop.org/archives/mesa-announce/2023-September/000731.…
- supersedes U_llvmpipe-only-include-old-Transform-includes-when-ne.patch
- disabled u_fix-build-on-ppc64le.patch (no longer needed?)
- adjusted n_drirc-disable-rgb10-for-chromium-on-amd.patch
==== catatonit ====
Version update (0.1.7 -> 0.2.0)
- Update to catatonit v0.2.0.
* Change license to GPL-2.0-or-later.
- Remove upstreamed patches:
- 99bb9048f.patch
==== dLeyna ====
Version update (0.8.2 -> 0.8.3)
- Update to version 0.8.3:
+ Build: Fix compatibility with Meson 1.2
+ Renderer: Fix locale initialization
+ Server:
- Fix locate initialization
- Fix uninitialized variable warning
- Properly handle optional actions
- Fix browse not working properly
- Drop 61d24fdc.patch: Fixed upstream.
- Change compression of tarball in service and spec to zst from xz.
==== gtk4 ====
Version update (4.12.2 -> 4.12.3)
Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0
- Update to version 4.12.3:
+ GtkWindow: Don't assume titlebars are GtkHeaderBar
+ GtkTreeView: Fix a crash in gtk_tree_view_is_blank_at_pos
+ printing: Fix some issues with the portal implementation
+ GSK:
- Some optimizations in the GL renderer
- Fix memory leaks in the Broadway renderer
+ demos: Fix a crash in gtk4-demo
+ Updated translations.
==== keylime ====
Version update (7.5.0 -> 7.6.0)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python311-keylime
- Update to version v7.6.0:
* Monthly release (7.6.0)
* test-requirements: remove types-atomicwrites
* Fixed an inappropriate test expression to remove a logical short circuit
* remove prov_db_filename from config
* Fix for key parse error in tpm2_objects
* Fix mapping.json path in the comments
* ima: Emit a warning when a file signature could not be parsed
* Initial PR to add support for IDevID and IAK
* Implement automatic agent API version bump
* tests: avoid fail when epel-release is installed
- M2Crypto is not used anymore.
- Clean up SPEC file.
==== libsigc++2 ====
Version update (2.12.0 -> 2.12.1)
- Update to version 2.12.1:
+ Documentation:
- slot, signal: Describe the slot<void(int)> syntax more
- connection: Improve the class documentation
- Improve Visual Studio build documentation
- Remove AUTHORS and add general information to README.md
+ Build:
- Meson:
. Don't copy files with configure_file()
. Fix the evaluation of is_git_build on Windows
- Visual Studio: Support static builds
- Use ldconfig_scriptlets macro for post(un) handling.
- Update URL to new home.
==== mozjs115 ====
Version update (115.2.1 -> 115.3.1)
- Update to version 115.3.1:
+ Security fix: CVE-2023-5217: Heap buffer overflow in libvpx.
- Changes from version 115.3.0:
+ Various security fixes and other quality improvements.
+ CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
+ CVE-2023-5169: Out-of-bounds write in PathOps
+ CVE-2023-5171: Use-after-free in Ion Compiler
+ CVE-2023-5174: Double-free in process spawning on Windows
+ CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox
ESR 115.3, and Thunderbird 115.3
==== qalculate ====
Version update (4.8.0 -> 4.8.1)
Subpackages: libqalculate22 qalculate-data
- version update to 4.8.1
* Fix besselj() and bessely()
* Fix display of matrices and vectors with complex number form other than
rectangular (default)
* Fix conflict between decibel units (e.g. "0dB") and duodecimal 0d⦠syntax
(now requires at least two digits)
* Fixes for title options in plot() function
* Add additional buttons and button menus to general keypad (Qt)
* Add option to show all functions, units, and variables in tool button
menus (Qt)
* Add recently used objects to functions, units, and variables menus (Qt)
* Add option to bypass dialog for functions in menu (Qt)
* Add option, in context menu, to display text for tool buttons (Qt)
* Open functions, units, and variables tool button menus using long-press
or right-click (in addition to arrow button), and add keyboard shortcuts (Qt)
* Use keypad tool button menu as context menu and show keypad type in
title bar of keypad (Qt)
* Auto-update number bases above programming keypad when entering simple
integers, even if calculate-as-you-type is deactivated (GTK)
==== qpdf ====
Version update (11.6.0 -> 11.6.1)
- version update to 11.6.1
* Bug fixes:
- Fix a logic error introduced in 11.6.0 in the fix to copyForeignObject.
The bug could result in some pages not being copied.
==== tracker-miners ====
Version update (3.6.0 -> 3.6.1)
Subpackages: tracker-miner-files
- Update to version 3.6.1:
+ Avoid the special thread in tracker-extract-3, and extend the
seccomp jail to the full process.
+ Updated translations.
- Add a tracker_basever define, and set it to 3.6. We have a hard
Requires on what tracker version is needed and it is currently
set at the same or newer version, change this to tracker_basever
(tracker-miners have never been at a higher patch version
before).
==== webkit2gtk3 ====
Version update (2.42.0 -> 2.42.1)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.42.1:
+ Fix enable-html5-database setting to properly enable/disable
IndexedDB API.
+ Fix the build with GBM disabled.
+ Fix several crashes and rendering issues.
- switch to pkgconfig(icu-i18n) instead of libicu-devel, to allow
switching to a different libicu*-devel (jsc#PED-6193)
==== webkit2gtk4 ====
Version update (2.42.0 -> 2.42.1)
Subpackages: libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.42.1:
+ Fix enable-html5-database setting to properly enable/disable
IndexedDB API.
+ Fix the build with GBM disabled.
+ Fix several crashes and rendering issues.
- switch to pkgconfig(icu-i18n) instead of libicu-devel, to allow
switching to a different libicu*-devel (jsc#PED-6193)
==== xdg-dbus-proxy ====
Version update (0.1.4 -> 0.1.5)
- Update to version 0.1.5:
+ Fix handling of object paths > 255 bytes
+ Print better errors when message parsing fails
+ Optionally install tests for "as-installed" testing
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.17 -> 7.1.1.18)
conmon
container-selinux (2.215.0 -> 2.222.0)
crypto-policies (20230614.5f3458e -> 20230920.570ea89)
glib2
grub2
kbd (2.6.2 -> 2.6.3)
libblockdev (3.0.2 -> 3.0.3)
libdecor (0.1.1 -> 0.2.0)
libnvme (1.4 -> 1.6)
libwebp
nvme-cli (2.4 -> 2.6)
pam-config (2.8 -> 2.9)
podman (4.6.2 -> 4.7.0)
poppler
poppler-qt5
screen (4.9.0 -> 4.9.1)
shadow
suse-module-tools (16.0.35 -> 16.0.36)
systemd (254.3 -> 254.5)
xdg-desktop-portal-kde
xdg-utils (1.1.3+20230831 -> 1.2.0~beta1+20230929)
=== Details ===
==== ImageMagick ====
Version update (7.1.1.17 -> 7.1.1.18)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.18
* upstream changelog:
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md
==== conmon ====
- go 1.19 EOL, swith to go >= 1.20
* [bsc#1215806]
==== container-selinux ====
Version update (2.215.0 -> 2.222.0)
- Update to version 2.222:
* Allow containers to read/write inherited dri devices
- Update to version 2.221:
* Allow containers to shutdown sockets inherited from container
runtimes
* Allow spc_t to use execmod libraries on container file systems
* Add boolean to allow containers to read all cert files
* More MLS Policy allow rules
* Allow container runtimes using pasta bind icmp_socket to port_t
* Fix spc_t transitions from container_runtime_domain
==== crypto-policies ====
Version update (20230614.5f3458e -> 20230920.570ea89)
Subpackages: crypto-policies-scripts
- nss: Skip the NSS policy check if the mozilla-nss-tools package
is not installed. This avoids adding more dependencies in ring0.
* Add crypto-policies-nss.patch [bsc#1211301]
- Update to version 20230920.570ea89:
* fips-mode-setup: more thorough --disable, still unsupported
* FIPS:OSPP: tighten beyond reason for OSPP 4.3
* krb5: sort enctypes mac-first, cipher-second, prioritize SHA-2 ones
* openssl: implement relaxing EMS in FIPS (NO-ENFORCE-EMS)
* gnutls: prepare for tls-session-hash option coming
* nss: prepare for TLS-REQUIRE-EMS option coming
* NO-ENFORCE-EMS: add subpolicy
* FIPS: set __ems = ENFORCE
* cryptopolicies: add enums and __ems tri-state
* docs: replace `FIPS 140-2` with just `FIPS 140`
* .gitlab-ci: remove forcing OPENSSH_MIN_RSA_SIZE
* cryptopolicies: add comments on dunder options
* nss: retire NSS_OLD and replace with NSS_LAX 3.80 check
* BSI: start a BSI TR 02102 policy [jsc#PED-4933]
* Rebase patches:
- crypto-policies-policygenerators.patch
- crypto-policies-revert-rh-allow-sha1-signatures.patch
- crypto-policies-FIPS.patch
- Conditionally recommend the crypto-policies-scripts package
when python is not installed in the system [bsc#1215201]
==== glib2 ====
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Fix NetworkManager crashing repeatedly with glib 2.78.0;
(bsc#1215709); Add patch 0005-gthreadedresolver-Fix-race.patch
==== grub2 ====
Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin
- Only build with fde-tpm-helper-rpm-macros for the architectures
supporting the newer UEFI and TPM 2.0.
* Also correct the location of %fde_tpm_update_requires
- Fix a boot delay regression in PowerPC PXE boot (bsc#1201300)
* 0001-ieee1275-ofdisk-retry-on-open-and-read-failure.patch
- Add the new BuildRequires for EFI builds for the better FDE
support: fde-tpm-helper-rpm-macros
+ Also add the the macros to %post and %posttrans
- Correct the type of allocated EFI pages for ARM64 kernel (bsc#1215151)
* arm64-Use-proper-memory-type-for-kernel-allocation.patch
==== kbd ====
Version update (2.6.2 -> 2.6.3)
Subpackages: kbd-legacy
- Update to version 2.6.3:
- libkfont:
* Don't look for fonts in the current directory.
- showkey:
* Add parameter to allow to change timeout.
- po:
* Update po files.
==== libblockdev ====
Version update (3.0.2 -> 3.0.3)
Subpackages: libbd_btrfs3 libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3
- Update to version 3.0.3:
* Always use "--fs ignore" with lvresize
* nvme:
- Use interim buffer for nvme_get_log_sanitize()
- Generate HostID when missing
* tests:
- Specificy required versions when importing GLib and BlockDev
introspection
- Minor NVMe HostNQN fixes
- Replace deprecated unittest assert calls
* fs:
- Fix leaking directories with temporary mounts
- Fix memory leak
* crypto: Correctly convert passphrases from Python to C
==== libdecor ====
Version update (0.1.1 -> 0.2.0)
Subpackages: libdecor-0-0
- Update to version 0.2.0:
* Various bug and leak fixes.
* New gtk plugin.
- Update URL and source to new home.
- Add pkgconfig(gtk-3.0) BuildRequires, new dependency.
- Use ldconfig_scriptlets macro for post(un) handling.
==== libnvme ====
Version update (1.4 -> 1.6)
Subpackages: libnvme-mi1 libnvme1
- Update to version 1.6:
* docs: Fix Read-the-Docs configuration (deprecated config param)
* mi-mctp: Fix free() in error path of mi_open_mctp
* types: Use NVME_SET for status type mask to get status value
* types: Define FLBAS MASK and SHIFT to use NVME_GET
* types: Support Phy Rx Eye Opening Measurement Log
* log: Add nvme root global variable to set for default output
* types: Add support for the OAQD ID controller field
* test: use non deprecated API
* test: add tests for Get/Set Features functions
* ioctl: implement nvme_set_features_lba_range()
* ioctl: pass NSID in Get/Set Features commands that use it
* ioctl: fix swapped parameters in nvme_set_features_host_id()
* ioctl: export nvme_{g,s}et_features_iocs_profile()
* ioctl: pass ENDGID in nvme_get_features_endurance_event_cfg()
* ioctl: don't set SAVE bit on unsaveable features
* ioctl: avoid sending uninitialized timestamp
* ioctl: pass data for Get/Set Features commands
* ioctl: set correct bits in Set Features commands
* ioctl: correct feature IDs in Get/Set Features commands
* tree: Add 2 new public functions to lookup existing controllers
* ioctl: Add debugging feature to show command outputs
* Fix incorrect article 'an' as 'a' to use for a description
* linux: Added functions to enable faster telemetry data retrieval. Moved telemetry data area support detection into separate function. Added possibility to modify data transfer chunk size. Enable telemetry extraction up to specified data area. Removed some printf() and perror().
* test: account for discovery log page entry stripping
* fabrics: unconditionally strip discovery entry strings
* fabrics: only look for spaces in strchomp()
* tree: Use early return instead of else statements
* test: fix lookup test case
* test: make all function static
* test: add tests for new tcp controller matching algorithm
* tree: Improve TCP controller matching algorithm
* util: Add functions to parse the system's interfaces
* types: Add support for EGFEAT, Domain Identifier, TEGCAP and UEGCAP
* mi: remove nsid from nvme_mi_admin_identify_secondary_ctrl_list()
* test: add tests for nvme_ctrl_get_src_addr()
* tree: Add nvme_ctrl_get_src_addr() to get the controller's src_addr
* util: Split _nvme_ipaddrs_eq() from nvme_ipaddrs_eq()
* test: add tests for Identify functions
* ioctl: use available Identify helper functions
* test: pass a large enough buffer to nvme_identify_ns_descs()
* ioctl: remove nsid from nvme_identify_secondary_ctrl_list()
* meson: Don't hard-code path to "internal/config.h"
* fabrics: Do not pass disable_sqflow if not supported
* fabrics: Read the supported options lazy
* test: add discovery log page tests
* test: add infra for mocking passthru ioctls
* tree: fix segfault in nvme_scan_subsystem()
* src/nvme/tree.c: make __nvme_scan_subsystem() returning bool
* doc: fix minor mistake in README.md about dependencies
* nvme-tree: avoid warning in 'list-subsys'
* tree: Add getter for subsystem iopolicy
* fabrics: Consider also all hosts settings for context match
* tree: Scan all subsystems
* doc: Fixing compile instruction in README
* mi: allow non-4-byte-aligned responses
* mi-mctp: use a linear response buffer
* mi: implement length and offset alignment checks in admin_xfer()
* tree: Don't open nvme devices until it's absolutely required
* tree: missing closedir() causes fd leak for "/sys/bus/pci/slots"
* mi: don't return from mi_mctp_submit with a tag held
* util: Provide empty nvme_ipaddrs_eq for static builds
* fabrics: Relax match on well known disc ctrl lookup
* tree: Ignore NULL address pointer for phy slot lookup
* fabrics: Filter discovery ctrls out during application context check
* util: Add ignored error code
* json: Use memory block allocated by realloc() instead printbuf
* util: Use HAVE_NETDB instead of HAVE_LIBNSS
* tree: Add PCI physical slot number for controller
* tree: Use nvme_ipaddrs_eq() to compare IP addresses
* fabrics: Add EADDRNOTAVAIL error mapping
* fabrics: filter out subsystems with non-matching application string
* libnvme: add 'application' setting to nvme_root
* libnvme: add 'application' setting to the subsystem
* test: Add more code coverage for nvme_ipaddrs_eq()
* util: rename ipaddrs_eq() to nvme_ipaddrs_eq() and make public.
* util: Add ipaddrs_eq() to check whether two IP addresses are equal
* test: Add unit test for ctrl lookups
* ioctl: fix RAE bit on last Get Log Page command
* fabrics: check genctr after getting discovery entries
* fabrics: handle /dev/nvme-fabrics read failure
* fabrics: fix potential invalid memory access in __nvmf_supported_option()
* Python: Fix crash during garbage collection
* python/swig: Check swig version to determine whether -py3 is needed
* python/swig: Wrap swig-sensitive struct inside #ifwdef SWIG
* mi: Add nvme_mi_ctrl_id to retrieve controller ID
* Python: Suppress swig warnings about unnamed struct
* examples: fix incorrect controller status in MI info output
* ioctl: Explicitly initialize all members of struct nvme_ns_mgmt_args
* Python: make NBFT data more pythonic
* ioctl: io management send, receive args fix
* python: Update test data
* NBFT: Remove documentation from nbft.c since it's also in nbft.h
* Python: Add NBFT support
* nbft: Doc typo - Use nvme_nbft_free() instead of nbft_free()
* nbft: Parse the {HOSTID,HOSTNQN}_CONFIGURED flags
* nbft: Fix nbft_ssns_flags endianness test
* nbft: Add a simple unit test
* doc: Update README
... changelog too long, skipping 12 lines ...
* tree: Fix argument check in nvme_bytes_to_lba
==== libwebp ====
Subpackages: libsharpyuv0 libwebp7 libwebpdemux2 libwebpmux3
- Add 0001-Fix-invalid-incremental-decoding-check.patch
A fuzzing finding fixed in the SLE/Leap updates
==== nvme-cli ====
Version update (2.4 -> 2.6)
Subpackages: nvme-cli-bash-completion
- Update to version 2.6:
* nvme: allocate payload buffer in create-ns command
* nvme-print-stdout: Add CAP.CPS and CAP.NSSS human readable outputs
* nvme: Add output-format default option instead of argconfig json option
* nvme: fw-download offset only describes FW offset, not file offset
* unit: add locale number test
* util: handle utf-8 thousend separators correctly
* nvme: Change to use NVME_ARGS verbose default option from OPT_ARGS
* fabrics: Fix NVMF_ARGS macro to use parameter n correctly
* nvme: Add verbose default option to show command debug output
* util: Fix to set argconfig output format json option correctly
* util: Split argconfig output format json function to set and get
* nvme: Spport Phy Rx Eye Opening Measurement Log
* nvme: Introduce nvme_realloc function
* nvme: Fix for fdpa reserved field printing
* completion: add 'version' and 'help' to list
* udev-rule: apply round-robin iopolicy on i/o subsystems alone
* nvme: Add support for the OAQD ID controller field
* plugins/solidigm: use static log macro to calc bitmask
* plugins/ocp: Rename FW activation history command
* nvme: auto free nvme_dev resource
* nvme: allocate aligned payloads for all nvme commands
* nvme: introduce alloc helper with alignment support
* util: add cleanup function for generic memory allocations
* nvme: append huge to nvme_{alloc|free} function
* nvme: fw_download use nvme_alloc only
* fabrics: Removing duplicate code and moving to libnvme
* nvme-print: omit size of protection information
* tree: Modify label name close_fd to close_dev
* fabrics: For TCP/RDMA, compare IP addresses with nvme_ipaddrs_eq()
* fabrics: lookup_discovery_ctrl() must look under host and not root
* nvme: Do not map status to errno codes
* completions: Add bash completion for DSSD Power state feature(FID: C7h)
* Documentation: Add document for DSSD Power state feature(FID: C7h)
* plugins/ocp: Add DSSD Power state feature(FID: C7h)
* avoid casting pointer arguments to argconfig functions
* nvme-print: Add support for EGFEAT, Domain Identifier, TEGCAP and UEGCAP
* nvme-print: Fix endurance_log whitespace changes
* nvme: Fix retrieval of telemetry log up to specified data area.
* nvme: Update list secondary command
* wdc: Add support for SN861 drive
* util: Set errno to 0 before strtol/stroul call
* nvme: Revert passthru and submit_io to print status to stderr from stdout
* plugins/zns: Fix offset in report zones
* nvme-rpmb: Fix nvme_show_id_ctrl_rpmbs() definition error
* fabrics: Use corresponding hostid when hostnqn is generated
* json: fix seg. fault converting NULL to JSON string
* nvme-cli: fix extended metadata size calculation
* nvme-print: Show subsystem iopolicy
* nvme-print-stdout: Do not show non reachable ns in namespace topology
* nvme-print: Fix show-topolocy for ctrls
* doc: Fix typo in documentation
* nvme-print-stdout: fix storage tag size label
* nvme-print-stdout: List only ctrls which are part of ns
* nvme-print-stdout: Support subsys reachable from several hosts
* ccan: Add htable, strset and dependencies
* ccan: Remove unused documentation
* nvme-print: Split max power flags
* nvme-print: fix counter while looping through uuid_list
* fabrics: only look for matching ctrl on same host
* README: Correct hugetlbfs spelling error
* util: Delete unused CFG_BOOL argconfig type as duplicated with CFG_FLAG
* util: Set LC_ALL=C as default if -H option is not used
* nvme: Add support for create-ns command endg-id option parameter
* nvme-print: fix argument order for show functions
* plugins/solidigm: Added Marketing Name Log support for Solidigm.
* nvme-print: Remove left overs from refactoring
* nvme-print: Move num argument parsing into callbacks
* nvme-print: Fix typo in callback definition
* scripts: Make release script project neutral
* scripts: Update update-docs.sh scripts
* scripts: Execute the scripts from toplevel directory
* scripts: Move helper scripts to a central place
* docs: Update file modes
* doc: Add information on --context
* nvmf-autoconnect: Annotate the context to autoconnect
* fabrics: Add support for volatile configuration
* plugins/solidigm: Formated log page directory table consistently with "nvme list" format.
* plugins/solidigm: Added Identify controller VU extensions parsing.
* nvme-print-json: Print PCI pysical slot number for controller
* nvme-print-stdout: Print PCI physical slot number for controller
* libnvme.wrap: Bump to 42ac453
* plugins/nbft: Use common code to parse print flags
* fabrics: Do not print device on connect per default
* fabrics: Revert 'fabrics: prevent 'nvme connect' to well-known discovery NQN'
* nvme-print: fix wrong list-subsys output when ns are attached to different ctrls
* plugins/micron: Correct NULL pointer checking error
* plugins/innogrit: Add vendor command get-eventlog and get-cdump
* nvme: Use correct data buffer size
* nvme: Fix quoted string split across lines to use quoted newline
* plugins/zns: Fix zns.c linux kernel check patch errors and warnings
* plugins/ymtc: Fix ymtc-nvme.c linux kernel check patch warning
* plugins/ymtc: Fix ymtc-nvme.c space indentation to tab indentation
* plugins/virtium: Fix virtium-nvme.c linux kernel check patch errors and warnings
* plugins/transcend: Fix transcend-nvme.c linux kernel check patch errors and warnings
* plugins/solidigm: Fix linux kernel check patch errors and warnings
* plugins/shannon: Fix shannon-nvme.c linux kernel check patch errors and warnings
* plugins/seagate: Fix seagate-nvme.c linux kernel check patch warnings
* plugins/scaleflux: Fix sfx-nvme.c linux kernel check patch errors and warnings
... changelog too long, skipping 111 lines ...
- Fix install path for nvme-regress script
==== pam-config ====
Version update (2.8 -> 2.9)
- Update to version 2.9
- Add support for kanidm
==== podman ====
Version update (4.6.2 -> 4.7.0)
- Build against latest stable Go version (bsc#1215807)
- Update to version 4.7.0:
* Bump to v4.7.0
* [CI:DOCS] v4.7.0 RELEASE_NOTES update
* rpm: remove gvproxy subpackage
* packit: tag @containers/packit-build team on copr build
failures
* specgen, rootless: fix mount of cgroup without a netns
* pass --syslog to the cleanup process
* fix --authfile auto-update test
* version: switch back from -rc1 to -dev
* New pre-release: v4.7.0-rc1
* [CI:DOCS] Update release notes for v4.7.0-rc1
* Cirrus: Update operating branch
* Move podman build opts to common file
* Add ability for machine rm -f for WSL
* Plumbing to run machine tests with hyperv
* CI: trace setup and runner scripts
* Bump to Buildah v1.32.0
* [CI:DOCS] bump release notes on main with the latest release
* fix(deps): update module github.com/opencontainers/image-spec
to v1.1.0-rc5
* Add --filter pod= autocompletion
* e2e: ExitCleanly(): manual test fixes
* e2e: continuing ExitCleanly(): just the replacements
* Fix some spelling and formatting
* Add support for Ulimit in quadlet
* Run codespell on code
* wire in new buildah build options
* make golangci-lint happy
* add !remote tag to pkg/specgen/generate
* pkg/specgen: do not depend on libimage for remote
* bump buildah to latest
* [CI:DOCS] restart.md: migrate to container unit
* fix(deps): update module k8s.io/kubernetes to v1.28.2
* Add support for PidsLimit in quadlet
* Add DNS fields to Container and Network unit groups
* [CI:DOCS] update API docs version list
* Try to fix broken CI (gvisor-something)
* e2e: more ExitCleanly(): manual test fixes
* e2e: more ExitCleanly(): dumb string replacements
* e2e: create_test: use ExitCleanly()
* e2e: diff_test: use ExitCleanly()
* The `podman init` command cannot modify containers.
* bump c/common to latest main
* Podmansh: use podmansh_timeout
* e2e: more ExitCleanly(): low-hanging fruit
* vendor: update checkpointctl to v1.1.0
* kube: add DaemonSet support for generate
* vendor of containers/(common, storage, image)
* libpod: move oom_score_adj clamp to init
* e2e: commit_test: use ExitCleanly()
* e2e: container_clone_test.go: use ExitCleanly()
* e2e: use ExitCleanly() in cleanup_test.go
* Ensure HC events fire after logs are written
* [CI:DOCS] podman-systemd.unit: fix equivalents
* Add support for kube TerminationGracePeriodSeconds
* Update podman-kube-play.1.md.in
* Split up alt binaries to speed up build
* Switch installer task to EC2
* pod: fix duplicate volumes from containers.conf
* tests: add test for pod cgroups
* libpod: create the cgroup pod before containers
* cmd, specgen: allow cgroup resources without --infra
* specgen: allow --share-parent with --infra=false
* libpod: allow cgroup path without infra container
* libpod: check if cgroup exists before creating it
* libpod: refactor platformMakePod signature
* libpod: destroy pod cgroup on pod stop
* utils: export MoveUnderCgroup
* libpod: refactor code to new function
* e2e: use ExitCleanly() in checkpoint tests
* [CI:DOCS]Remove use of --latest|-l from tutorial
* CI test runner: upgrade tests rely on system tests
* run --rmi: "cannot remove" is a warning, not an error
* StopContainer: display signal num when name unknown
* URGENT: fix broken CI
* Add support for kube securityContext\.procMount
* podman: don't restart after kill
* Tmpfs should not be mounted noexec
* sys tests: run_podman: check for unwanted warnings/errors
* chore(deps): update dependency setuptools to ~=68.2.0
* e2e: use ExitCleanly() in attach & build tests
* Some distros do not default to docker.io for shortname searches
* security: accept empty capabilities list
* systests: random_free_port: fix EADDRINUSE flake
* fix(deps): update module github.com/cyphar/filepath-securejoin
to v0.2.4
* Restrict fcos_test to amd64, arm64
* fix(deps): update github.com/containers/libhvee digest to
56fb235
* fix(deps): update module github.com/docker/docker to
v24.0.6+incompatible
* fix(deps): update module golang.org/x/tools to v0.13.0
* Ignore spurious container-removal errors
* fix(deps): update module golang.org/x/net to v0.15.0
* systests: manifest zstd test: lots of tiny cleanups
* vendor: update github.com/opencontainers/runc to main
* [skip-ci] Update actions/checkout action to v4
... changelog too long, skipping 474 lines ...
* play.go: remove volumes on down -f
==== poppler ====
Subpackages: libpoppler-cpp0 libpoppler-glib8 libpoppler131 poppler-tools
- build with gpgmepp for signing documents (bsc#1215632)
==== poppler-qt5 ====
- build with gpgmepp for signing documents (bsc#1215632)
==== screen ====
Version update (4.9.0 -> 4.9.1)
- update to 4.9.1 (bsc#1210272, CVE-2023-24626):
* Support stop/parity bits on serial port
* Add needed system headers in checks and return values
for implicit function declarations
* Avoid zombies after shell exit
* Missed signal sending permission check on failed
query messages (CVE-2023-24626)
* manpage fixes
* source code fixes during cleanup
* UTF-8 encoding can emit invalid UTF-8 sequences
* for out of range unicode values
==== shadow ====
Subpackages: libsubid4 login_defs
- Add shadow-4.14.0-selinux-labels.patch:
Set proper SELinux labels for new homedirs.
See gh/shadow-maint/shadow#812.
==== suse-module-tools ====
Version update (16.0.35 -> 16.0.36)
Subpackages: suse-module-tools-scriptlets
- Update to version 16.0.36
* blacklist RNDIS modules (bsc#1205767, jsc#PED-5731)
* modprobe.d: Blacklist cls_tcindex module (bsc#1210335, CVE-2023-1829)
==== systemd ====
Version update (254.3 -> 254.5)
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc udev
- Import commit 9674bb256205e6c643feadbcccfd1ee8feeee684 (merge of v254.5)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/6ed5b11298005e07509832881a0c5ff…
- Make sure to call %sysusers_create only when transfiletrigger is disabled.
- systemd.spec: switch to %ldconfig_scriptlets
- systemd.spec: add `%tmpfiles_create systemd-resolve`
It's only needed by SLE distros since systemd packages rely on
transtriggerfiles in Factory.
- Import commit 6ed5b11298005e07509832881a0c5ff1a80bf225 (merge of v254.4)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/b6b4e5a8a82d1f13f265a4ef170f2d1…
==== xdg-desktop-portal-kde ====
- Add: 0001-kde_portals.patch (kde#474746)
* Add a fallback to the GTK portal for settings. This makes sure
that GTK apps always get valid fonts and related settings.
==== xdg-utils ====
Version update (1.1.3+20230831 -> 1.2.0~beta1+20230929)
- Update to version 1.2.0-beta1+20230929:
* Set Version to 1.2.0-beta1
* Update Changes and Release Notes
* fix(xdg-open): handle spaces in .desktop file path
* Quote Browser variable to avod unintentional code execution
* Add missing result gathering
* Enhance LXQt Desktop Enviromment support
* xdg-terminal: don't run 'kreadconfig' if KDE_SESSION_VERSION is >= 5
- Drop the following fix, now actually included upstream
* xdg-terminal-don-t-run-kreadconfig-if-KDE_SESSION_VE.patch
- The following entries may have been missed in previous changelog
versions
* all: shellcheck fixes; make xdg-mime DASH-compatible
* xdg-email: do not run BROWSER if xdg-open failed
* Ensure POSIX-compliant shell scripting to support DASH
* all: spelling fixes
* Fix set_url_scheme_handler_gnome3 to not associate text/html handler
* xdg-screensaver: fix the freedesktop screensaver
* xdg-screensaver: implement support for "gnome3" DE
* xdg-screensaver: better error detection for freedesktop 'status' command
* xdg-desktop-menu: Drop obsolete GNOME support
* xdg-open: support WSL (FDO#108975)
* xdg-su: support deepin
* xdg-mime: If mimeapps.list is a symlink, retain the symlink (#7)
* xdg-open: fix search_desktop_file's logic
* xdg-open: handle local hostname in `file:` URLs
* xdg-desk-menu: Check if defaults file exists during installation
* xdg-su: Remove quotes for lxqt-sudo cmd arg
* xdg-open: handle opening files when DE=flatpak
1
0