Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
at-spi2-core (2.48.2 -> 2.48.3)
btrfsprogs (6.1.3 -> 6.3)
e2fsprogs (1.46.5 -> 1.47.0)
evolution-data-server (3.48.1 -> 3.48.2)
gnome-control-center (44.1 -> 44.2)
gnome-software (44.1 -> 44.2)
grub2
libreoffice
libstorage-ng (4.5.110 -> 4.5.112)
nautilus (44.1 -> 44.2)
orca (44.0 -> 44.1)
pipewire
python-SQLAlchemy (2.0.12 -> 2.0.15)
python-pip (22.3.1 -> 23.1.2)
python-redis (4.5.4 -> 4.5.5)
python-responses
python-setuptools (67.6.1 -> 67.7.2)
python310 (3.10.10 -> 3.10.11)
python310-core (3.10.10 -> 3.10.11)
qemu (7.1.0 -> 8.0.0)
ucode-intel (20230512 -> 20230516a)
wireplumber
=== Details ===
==== at-spi2-core ====
Version update (2.48.2 -> 2.48.3)
Subpackages: at-spi2-core-lang libatk-1_0-0 libatk-bridge-2_0-0 libatspi0 typelib-1_0-Atk-1_0 typelib-1_0-Atspi-2_0
- Update to version 2.48.3:
+ Fix the build when dbus-broker is not set to be used by
default.
+ Fix a couple of use after frees when finalizing devices.
+ atk-adaptor: Fix handling of sockets in impl_GetChildren.
==== btrfsprogs ====
Version update (6.1.3 -> 6.3)
Subpackages: btrfsprogs-bash-completion btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1
- qgroup show: fix formatting of limit values in json output (bsc#1206960,
bsc#1209136)
- Added patch: btrfs-progs-qgroup-show-fix-formatting-of-limit-valu.patch
- update to 6.3
* mkfs: option -R deprecated, options unified in -O (-R still works)
* mkfs: fix potential race with udev leading to EBUSY due to repeatedly
opened file descriptors
* block-group-tree is out of experimental mode
* available as 'mkfs.btrfs -O block-group-tree'
* btrfstune can do in-place conversion to/from (use with care)
* balance: fix recognizing old and new syntax
* subvol snapshot: specific error if a failure is caused by an active swapfile
* tree-stats: rephrase warning when run on a mounted filesystem
* completion: 'filesystem du' also completes files
* check: fix docs, help text and warning that --force + --repair works on a
mounted filesystem
* build: fix static build when static libudev is available
* documentation:
* more updates from wiki, developer docs, changelogs
* reformatting
* updates and fixes
* other:
* test updates and fixes
* CI cleanups and old files removed
* integration with Github actions
- Use pre-generated documentation from tarball, fixes build on SLE targets
where sphinx might not be available
- update to 6.2.2
* fix build on old x86 architectures with builtin crypto
* device stats: fix printing wrong values in tabular output
* qgroup show: fix qgroup id formatting in json output
* restore: fix restoring xattrs on directories
* restore: don't modify metadata in dry-run mode
* balance: fix some cases wrongly parsed as old syntax
* balance: warn when deprecated syntax is used
* seeding: fall back to old way if sysfs device fsid is not available
* convert: handle orphan file ext4 feature
* other:
* sync ioctl definitions
* enable github CI
* update documentation
- update to 6.2.1
* fix build with crypto libraries
* CI images updated, build tests extended
- update to 6.2:
* receive: fix a corruption when decompressing zstd extents
* subvol sync: print total number and deletion progress
* accelerated hash algorithm implementations in fallback mode on x86_64
* fi mkswapfile: new option --uuid
* new global option --log=level to set the verbosity level directly
* other:
* experimental: update checksum conversion (not usable yet)
* build actually requires -std=gnu11
* refactor help option formatting, auto wrap long lines
==== e2fsprogs ====
Version update (1.46.5 -> 1.47.0)
Subpackages: libcom_err2 libext2fs2
- Update to 1.47.0:
* Add support for the orphan_file feature, which speeds up workloads
that are deleting or truncating a large number files in parallel.
This compat feature was first supported in the v5.15 Linux kernel.
* The mke2fs program (via the mke2fs.conf file) now enables the
metadata_csum_seed and orphan_file features by default.
The metadata_csum_seed feature is an incompat feature which is
first supported in the Linux kernel starting in the 4.4 kernel.
* Mke2fs now supports the extended option "assume_storage_prezeroed"
which causes mke2fs to skip zeroing the journal and inode tables
and to mark the inode tables as zeroed.
* Add support to tune2fs and e2label to set the label and UUID for
a mounted file system using a ioctl, which is more reliable than
modifying the superblock via writing to the block device.
The kernel support for setting the label landed in v5.17, while
the support for adding the UUID landed in v6.0. If the ioctls
are not supported, tune2fs and e2label will fall back old
strategy of directly modifying the superblock.
* Allow tune2fs to disable the casefold feature after scanning all
of the directories do not have the Casefold flag set.
==== evolution-data-server ====
Version update (3.48.1 -> 3.48.2)
Subpackages: evolution-data-server-lang libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4
- Update to version 3.48.2:
+ Bug Fixed:
- Camel: Set proper S/MIME signature verification status.
- IMAP: Cannot remove labels added in Thunderbird.
- WebDAV: Fails to discover iCloud address book.
- Wrong S/MIME certificate selection for encrypted email.
==== gnome-control-center ====
Version update (44.1 -> 44.2)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces
- Update to version 44.2:
+ Various small accessibility fixes.
+ Fixes in Gtk template usage that causes crashes on some
systems.
+ Appearance: Clear dconf when resetting to defaults.
+ Mouse: Hide entire "Touchpad" row when touchpad cannot be
disabled.
+ Network: Fix racy radio buttons in connection editor.
+ Users: Remove autologin row tooltip when unlocked.
+ Updated translations.
==== gnome-software ====
Version update (44.1 -> 44.2)
Subpackages: gnome-software-lang gnome-software-plugin-packagekit
- Update to version 44.2:
+ Fix subsequent checking for updates if the first check after
login fails.
+ Fix checking for updates when automatic updates are disabled.
+ Fix rare stall when many background jobs are running.
+ Donât download rpm-ostree updates when only checking if updates
are available.
+ Fix bug with listing flatpak addons when multiple flathub
remotes are enabled.
+ Fix duplicated sources in app details page when using an
appstream URL.
+ Reduce background resource consumption when idle.
+ Updated translations.
==== grub2 ====
Subpackages: grub2-i386-pc grub2-snapper-plugin grub2-systemd-sleep-plugin grub2-x86_64-efi
- add 0001-fs-ext2-Ignore-checksum-seed-incompat-feature.patch,
0001-fs-ext2-Ignore-the-large_dir-incompat-feature.patch:
* support more featureful extX filesystems (backport from
upstream git)
==== libreoffice ====
Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Fix bsc#1204040 - LO-L3: PPTX: shadow effect for table offset too far to the right
* bsc1204040.patch
- Fix bsc#1198666 - LO-L3: Need to be able to set the default tab size for each text object
* bsc1198666.patch
==== libstorage-ng ====
Version update (4.5.110 -> 4.5.112)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.112
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.111
==== nautilus ====
Version update (44.1 -> 44.2)
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 nautilus-lang
- Update to version 44.2:
+ Fix crashes with expandable folders and on Other Locations.
+ Avoid inconsistent search states.
+ Prevent lingering tracker cursors.
+ Fix rubberband range behavior on list view.
+ Updated translations.
- Drop 0e5b4c34.patch and 6e37d15f.patch: Fixed upstream.
==== orca ====
Version update (44.0 -> 44.1)
Subpackages: orca-lang
- Update to version 44.1:
+ Web:
- Support aria-disabled on application, tab, group, and
focusable separator/splitter
- Fix bug in identification of inline iframes
+ General:
- Improve performance by checking for duplicate object events
- Filter duplicate events when checking for double presses of
the orca modifier
+ Updated translations.
==== pipewire ====
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Have pipewire-spa-plugins-0_2 suggest pipewire-libjack-%{apiver_str}:
this package requires libjack.so.0, so we best use our own
implementation.
- Add patch from upstream to fix JACK buffersize updates:
* 0001-jack-update-bufsize-and-samplerate-when-skipping-not.patch
- Create a pipewire-jack package that provides jack-daemon (and
conflicts with any other) and requires the pipewire-libjack
library.
Move the ld configuration from pipewire-libjack, so that only
pipewire-jack forces PipeWire to be the default JACK.
==== python-SQLAlchemy ====
Version update (2.0.12 -> 2.0.15)
- Switch documentation to be within the main package.
- Update to 2.0.15
[#] orm
* As more projects are using new-style â2.0â ORM querying, itâs
becoming apparent that the conditional nature of âautoflushâ,
being based on whether or not the given statement refers to ORM
entities, is becoming more of a key behavior. Up until now, the
âORMâ flag for a statement has been loosely based around
whether or not the statement returns rows that correspond to
ORM entities or columns; the original purpose of the âORMâ flag
was to enable ORM-entity fetching rules which apply
post-processing to Core result sets as well as ORM loader
strategies to the statement. For statements that donât build on
rows that contain ORM entities, the âORMâ flag was considered
to be mostly unnecessary.
* It still may be the case that âautoflushâ would be better
taking effect for all usage of Session.execute() and related
methods, even for purely Core SQL constructs. However, this
still could impact legacy cases where this is not expected and
may be more of a 2.1 thing. For now however, the rules for the
âORM-flagâ have been opened up so that a statement that
includes ORM entities or attributes anywhere within, including
in the WHERE / ORDER BY / GROUP BY clause alone, within scalar
subqueries, etc. will enable this flag. This will cause
âautoflushâ to occur for such statements and also be visible
via the ORMExecuteState.is_orm_statement event-level attribute.
References: #9805
[#] postgresql
* Repaired the base Uuid datatype for the PostgreSQL dialect to
make full use of the PG-specific UUID dialect-specific datatype
when ânative_uuidâ is selected, so that PG driver behaviors are
included. This issue became apparent due to the
insertmanyvalues improvement made as part of #9618, where in a
similar manner as that of #9739, the asyncpg driver is very
sensitive to datatype casts being present or not, and the
PostgreSQL driver-specific native UUID datatype must be invoked
when this generic type is used so that these casts take place.
References: #9808
- Release 2.0.13
[#] orm
* Modified the JoinedLoader implementation to use a simpler
approach in one particular area where it previously used a
cached structure that would be shared among threads. The
rationale is to avoid a potential race condition which is
suspected of being the cause of a particular crash thatâs been
reported multiple times. The cached structure in question is
still ultimately âcachedâ via the compiled SQL cache, so a
performance degradation is not anticipated.
References: #9777
* Fixed regression where use of update() or delete() within a CTE
construct, then used in a select(), would raise a CompileError
as a result of ORM related rules for performing ORM-level
update/delete statements.
References: #9767
* Fixed issue in new ORM Annotated Declarative where using a
ForeignKey (or other column-level constraint) inside of
mapped_column() which is then copied out to models via pep-593
Annotated would apply duplicates of each constraint to the
Column as produced in the target Table, leading to incorrect
CREATE TABLE DDL as well as migration directives under Alembic.
References: #9766
* Fixed issue where using additional relationship criteria with
the joinedload() loader option, where the additional criteria
itself contained correlated subqueries that referred to the
joined entities and therefore also required âadaptionâ to
aliased entities, would be excluded from this adaption,
producing the wrong ON clause for the joinedload.
References: #9779
[#] sql
* Generalized the MSSQL try_cast() function into the sqlalchemy.
import namespace so that it may be implemented by third party
dialects as well. Within SQLAlchemy, the try_cast() function
remains a SQL Server-only construct that will raise
CompileError if used with backends that donât support it.
* try_cast() implements a CAST where un-castable conversions are
returned as NULL, instead of raising an error. Theoretically,
the construct could be implemented by third party dialects for
Google BigQuery, DuckDB, and Snowflake, and possibly others.
Pull request courtesy Nick Crews.
References: #9752
* Fixed issue in values() construct where an internal compilation
error would occur if the construct were used inside of a scalar
subquery.
References: #9772
[#] postgresql
* Fixed apparently very old issue where the ENUM.create_type
parameter, when set to its non-default of False, would not be
propagated when the Column which itâs a part of were copied, as
is common when using ORM Declarative mixins. References: #9773
[#] tests
* Fixed test that relied on the sys.getsizeof() function to not
run on pypy, where this function appears to have different
behavior than it does on cpython. References: #9789
- PEP517
- Add missing runtime requirement
- update to 2.0.13:
* https://docs.sqlalchemy.org/en/20/changelog/changelog_20.html#change-2.0.13
==== python-pip ====
Version update (22.3.1 -> 23.1.2)
- Update to 23.1.2
- Upgrade setuptools to 67.7.2
- 23.1.1:
- Revert #11487, as it causes issues with virtualenvs created by the
Windows Store distribution of Python. (#11987)
- Revert pkg_resources (via setuptools) back to 65.6.3
- Update documentation to reflect the new behavior of using the
cache of locally built wheels in hash-checking mode. (#11967)
- 23.1:
- Remove support for the deprecated --install-options. (#11358)
- --no-binary does not imply setup.py install anymore. Instead a
wheel will be built locally and installed. (#11451)
- --no-binary does not disable the cache of locally built wheels
anymore. It only means "don't download wheels". (#11453)
- Deprecate --build-option and --global-option. Users are invited to
switch to --config-settings. (#11859)
- Using --config-settings with projects that don't have a
pyproject.toml now prints a deprecation warning. In the future the
presence of config settings will automatically enable the default
build backend for legacy projects and pass the setttings to it.
(#11915)
- Remove setup.py install fallback when building a wheel failed for
projects without pyproject.toml. (#8368)
- When the wheel package is not installed, pip now uses the default
build backend instead of setup.py install and setup.py develop for
project without pyproject.toml. (#8559)
- Specify egg-link location in assertion message when it does not
match installed location to provide better error message for
debugging. (#10476)
- Present conflict information during installation after each choice
that is rejected (pass -vv to pip install to show it) (#10937)
- Display dependency chain on each Collecting/Processing log line.
(#11169)
- Support a per-requirement --config-settings option in requirements
files. (#11325)
- The --config-settings/-C option now supports using the same key
multiple times. When the same key is specified multiple times, all
values are passed to the build backend as a list, as opposed to
the previous behavior, where pip would only pass the last value if
the same key was used multiple times. (#11681)
- Add -C as a short version of the --config-settings option.
(#11786)
- Reduce the number of resolver rounds, since backjumping makes the
resolver more efficient in finding solutions. This also makes
pathological cases fail quicker. (#11908)
- Warn if --hash is used on a line without requirement in a
requirements file. (#11935)
- Stop propagating CLI --config-settings to the build dependencies.
They already did not propagate to requirements provided in
requirement files. To pass the same config settings to several
requirements, users should provide the requirements as CLI
arguments. (#11941)
- Support wheel cache when using --require-hashes. (#5037)
- Add --keyring-provider flag. See the Authentication page in the
documentation for more info. (#8719)
- In the case of virtual environments, configuration files are now
also included from the base installation. (#9752)
- Fix grammar by changing "A new release of pip available:" to "A
new release of pip is available:" in the notice used for
indicating that. (#11529)
- Normalize paths before checking if installed scripts are on PATH.
(#11719)
- Correct the way to decide if keyring is available. (#11774)
- More consistent resolution backtracking by removing legacy hack
related to setuptools resolution (#11837)
- Include AUTHORS.txt in pip's wheels. (#11882)
- The uninstall and install --force-reinstall commands no longer
call normalize_path() repeatedly on the same paths. Instead, these
results are cached for the duration of an uninstall operation,
resulting in improved performance, particularly on Windows.
(#11889)
- Fix and improve the parsing of hashes embedded in URL fragments.
(#11936)
- When package A depends on package B provided as a direct URL
dependency including a hash embedded in the link, the
- -require-hashes option did not warn when user supplied hashes
were missing for package B. (#11938)
- Correctly report requested_extras in the installation report when
extras are specified for a local directory installation. (#11946)
- When installing an archive from a direct URL or local file,
populate download_info.info.hashes in the installation report, in
addition to the legacy download_info.info.hash key. (#11948)
- 23.0.1:
- Change the hashes in the installation report to be a mapping. Emit
the archive_info.hashes dictionary in direct_url.json. (#11312)
- Implement logic to read the EXTERNALLY-MANAGED file as specified
in PEP 668. This allows a downstream Python distributor to prevent
users from using pip to modify the externally managed environment.
(#11381)
- Enable the use of keyring found on PATH. This allows keyring
installed using pipx to be used by pip. (#11589)
- The inspect and installation report formats are now declared
stable, and their version has been bumped from 0 to 1. (#11757)
- Wheel cache behavior is restored to match previous versions,
allowing the cache to find existing entries. (#11527)
- Use the "venv" scheme if available to obtain prefixed lib paths.
(#11598)
- Deprecated a historical ambiguity in how egg fragments in
URL-style requirements are formatted and handled. egg fragments
... changelog too long, skipping 9 lines ...
cause exceptions in pip install (#11704)
==== python-redis ====
Version update (4.5.4 -> 4.5.5)
- update to 4.5.5:
* Add support for CLIENT NO-TOUCH
* Add support for CLUSTER MYSHARDID
* Add "address_remap" feature to RedisCluster
* Add WITHSCORES argument to ZREVRANK command
* Improve error output for master discovery
* Fix XADD: allow non negative maxlen
* Fix create single connection client from url
* Optionally disable disconnects in read_response
* Fix SLOWLOG GET return value
* Fix potential race condition during disconnection
* Return response in case of KeyError
* Fix incorrect usage of once flag in async Sentinel
* Fix memory leak caused by hiredis in asyncio case
* Really do not use asyncio's timeout lib before 3.11.2
==== python-responses ====
- Drop patch 636-urllib3-2-compat.patch:
* moto needs to stay with urllib3 < 2 due to boto.
==== python-setuptools ====
Version update (67.6.1 -> 67.7.2)
- Testing must be single-spec as well.
- Update to 67.7.2:
* #3902: Fixed wrong URLs used in warnings and logs.
* #3898: Fixes setuptools.dist:invalid_unless_false when value is false
donât raise error
* #3849: Overhaul warning system for better visibility.
* #3884: Add a stacklevel parameter to warnings.warn() to provide more
information to the user.
- Add patch use-tarfile-extraction_filter.patch:
* Set an extraction_filter to avoid a warning.
- add sle15_python_module_pythons (jsc#PED-68)
==== python310 ====
Version update (3.10.10 -> 3.10.11)
Subpackages: python310-curses python310-dbm
- Why in the world we download from HTTP?
- Add CVE-2007-4559-filter-tarfile_extractall.patch to fix
CVE-2007-4559 (bsc#1203750) by adding the filter for
tarfile.extractall (PEP 706).
- Update to 3.10.11:
- Core and Builtins
- gh-102416: Do not memoize incorrectly automatically
generated loop rules in the parser. Patch by Pablo Galindo.
- gh-102356: Fix a bug that caused a crash when deallocating
deeply nested filter objects. Patch by Marta Gómez MacÃas.
- gh-102397: Fix segfault from race condition in signal
handling during garbage collection. Patch by Kumar Aditya.
- gh-102126: Fix deadlock at shutdown when clearing thread
states if any finalizer tries to acquire the runtime head
lock. Patch by Kumar Aditya.
- gh-102027: Fix SSE2 and SSE3 detection in _blake2 internal
module. Patch by Max Bachmann.
- gh-101967: Fix possible segfault in
positional_only_passed_as_keyword function, when new list
created.
- gh-101765: Fix SystemError / segmentation fault in iter
__reduce__ when internal access of builtins.__dict__ keys
mutates the iter object.
- Library
- gh-102947: Improve traceback when dataclasses.fields() is
called on a non-dataclass. Patch by Alex Waygood
- gh-101979: Fix a bug where parentheses in the metavar
argument to argparse.ArgumentParser.add_argument() were
dropped. Patch by Yeojin Kim.
- gh-102179: Fix os.dup2() error message for negative fds.
- gh-101961: For the binary mode, fileinput.hookcompressed()
doesnât set the encoding value even if the value is
None. Patch by Gihwan Kim.
- gh-101936: The default value of fp becomes io.BytesIO
if HTTPError is initialized without a designated fp
parameter. Patch by Long Vo.
- gh-101566: In zipfile, apply fix for extractall on the
underlying zipfile after being wrapped in Path.
- gh-101997: Upgrade pip wheel bundled with ensurepip (pip
23.0.1)
- gh-101892: Callable iterators no longer raise SystemError
when the callable object exhausts the iterator but forgets
to either return a sentinel value or raise StopIteration.
- gh-97786: Fix potential undefined behaviour in corner cases
of floating-point-to-time conversions.
- gh-101517: Fixed bug where bdb looks up the source line
with linecache with a lineno=None, which causes it to fail
with an unhandled exception.
- gh-101673: Fix a pdb bug where ll clears the changes to
local variables.
- gh-96931: Fix incorrect results from
ssl.SSLSocket.shared_ciphers()
- gh-88233: Correctly preserve âextraâ fields in zipfile
regardless of their ordering relative to a zip64 âextra.â
- gh-95495: When built against OpenSSL 3.0, the ssl module
had a bug where it reported unauthenticated EOFs (i.e.
without close_notify) as a clean TLS-level EOF. It now
raises SSLEOFError, matching the behavior in previous
versions of OpenSSL. The options attribute on SSLContext
also no longer includes OP_IGNORE_UNEXPECTED_EOF by
default. This option may be set to specify the previous
OpenSSL 3.0 behavior.
- gh-94440: Fix a concurrent.futures.process bug where
ProcessPoolExecutor shutdown could hang after a future has
been quickly submitted and canceled.
- Documentation
- gh-103112: Add docstring to http.client.HTTPResponse.read()
to fix pydoc output.
- gh-85417: Update cmath documentation to clarify behaviour
on branch cuts.
- gh-97725: Fix asyncio.Task.print_stack() description for
file=None. Patch by Oleg Iarygin.
- Tests
- gh-102980: Improve test coverage on pdb.
- gh-102537: Adjust the error handling strategy in
test_zoneinfo.TzPathTest.python_tzpath_context. Patch by
Paul Ganssle.
- gh-101377: Improved test_locale_calendar_formatweekday of
calendar.
- Build
- gh-102711: Fix -Wstrict-prototypes compiler warnings.
- Removed upstreamed:
- invalid-json.patch
==== python310-core ====
Version update (3.10.10 -> 3.10.11)
Subpackages: libpython3_10-1_0 python310-base
- Why in the world we download from HTTP?
- Add CVE-2007-4559-filter-tarfile_extractall.patch to fix
CVE-2007-4559 (bsc#1203750) by adding the filter for
tarfile.extractall (PEP 706).
- Update to 3.10.11:
- Core and Builtins
- gh-102416: Do not memoize incorrectly automatically
generated loop rules in the parser. Patch by Pablo Galindo.
- gh-102356: Fix a bug that caused a crash when deallocating
deeply nested filter objects. Patch by Marta Gómez MacÃas.
- gh-102397: Fix segfault from race condition in signal
handling during garbage collection. Patch by Kumar Aditya.
- gh-102126: Fix deadlock at shutdown when clearing thread
states if any finalizer tries to acquire the runtime head
lock. Patch by Kumar Aditya.
- gh-102027: Fix SSE2 and SSE3 detection in _blake2 internal
module. Patch by Max Bachmann.
- gh-101967: Fix possible segfault in
positional_only_passed_as_keyword function, when new list
created.
- gh-101765: Fix SystemError / segmentation fault in iter
__reduce__ when internal access of builtins.__dict__ keys
mutates the iter object.
- Library
- gh-102947: Improve traceback when dataclasses.fields() is
called on a non-dataclass. Patch by Alex Waygood
- gh-101979: Fix a bug where parentheses in the metavar
argument to argparse.ArgumentParser.add_argument() were
dropped. Patch by Yeojin Kim.
- gh-102179: Fix os.dup2() error message for negative fds.
- gh-101961: For the binary mode, fileinput.hookcompressed()
doesnât set the encoding value even if the value is
None. Patch by Gihwan Kim.
- gh-101936: The default value of fp becomes io.BytesIO
if HTTPError is initialized without a designated fp
parameter. Patch by Long Vo.
- gh-101566: In zipfile, apply fix for extractall on the
underlying zipfile after being wrapped in Path.
- gh-101997: Upgrade pip wheel bundled with ensurepip (pip
23.0.1)
- gh-101892: Callable iterators no longer raise SystemError
when the callable object exhausts the iterator but forgets
to either return a sentinel value or raise StopIteration.
- gh-97786: Fix potential undefined behaviour in corner cases
of floating-point-to-time conversions.
- gh-101517: Fixed bug where bdb looks up the source line
with linecache with a lineno=None, which causes it to fail
with an unhandled exception.
- gh-101673: Fix a pdb bug where ll clears the changes to
local variables.
- gh-96931: Fix incorrect results from
ssl.SSLSocket.shared_ciphers()
- gh-88233: Correctly preserve âextraâ fields in zipfile
regardless of their ordering relative to a zip64 âextra.â
- gh-95495: When built against OpenSSL 3.0, the ssl module
had a bug where it reported unauthenticated EOFs (i.e.
without close_notify) as a clean TLS-level EOF. It now
raises SSLEOFError, matching the behavior in previous
versions of OpenSSL. The options attribute on SSLContext
also no longer includes OP_IGNORE_UNEXPECTED_EOF by
default. This option may be set to specify the previous
OpenSSL 3.0 behavior.
- gh-94440: Fix a concurrent.futures.process bug where
ProcessPoolExecutor shutdown could hang after a future has
been quickly submitted and canceled.
- Documentation
- gh-103112: Add docstring to http.client.HTTPResponse.read()
to fix pydoc output.
- gh-85417: Update cmath documentation to clarify behaviour
on branch cuts.
- gh-97725: Fix asyncio.Task.print_stack() description for
file=None. Patch by Oleg Iarygin.
- Tests
- gh-102980: Improve test coverage on pdb.
- gh-102537: Adjust the error handling strategy in
test_zoneinfo.TzPathTest.python_tzpath_context. Patch by
Paul Ganssle.
- gh-101377: Improved test_locale_calendar_formatweekday of
calendar.
- Build
- gh-102711: Fix -Wstrict-prototypes compiler warnings.
- Removed upstreamed:
- invalid-json.patch
==== qemu ====
Version update (7.1.0 -> 8.0.0)
- Patch added:
[openSUSE][RPM] Fix deps for virtiofsd and improve spec files
- Update the _constraints file:
* the qemu-testsuite package does not exist any longer, but some
of the tests are done in the qemu package (so "transfer" some of
the constraints to that one)
- some of the builds are failing with OOM, happening while the RPM
is actually put together, at the end of the process. Try to give
them more RAM
- Patch added:
[openSUSE][RPM] spec: require virtiofsd, now that it is a sep package (#27)
- Update to version 8.0.0 (https://wiki.qemu.org/ChangeLog/8.0)
* Removed features: https://qemu-project.gitlab.io/qemu/about/removed-features.html
* Deprecated features: https://qemu-project.gitlab.io/qemu/about/deprecated.html
* Some notable changes:
- ARM:
- New emulated CPU types:
- Cortex-A55 CPU
- Cortex-R52 CPU
- x86
- Add support for Xen guests under KVM with Linux v5.12+
- New CPU model "SapphireRapids"
- VFIO
- Experimental migration support has been updated to the v2 VFIO migration protocol
- virtio
- virtio-mem now fully supports combining preallocation with migration
- vDPA
- Support live migration of vhost-vdpa net devices without CVQ, with no need of x-svq
- virtiofs
- The old C virtiofsd has been removed, use the new Rust implementation instead.
* Patches added:
[openSUSE][RPM] Try to avoid recommending too many packages (bsc#1205680)
[openSUSE][RPM] Move documentation to a subpackage and fix qemu-headless (bsc#1209629)
roms: add back edk2-basetools target
async: Suppress GCC13 false positive in aio_bh_poll()
[openSUSE][OBS] Limit the workflow runs to the factory branch (#25)
[openSUSE][RPM] Spec file adjustments for 8.0.0
==== ucode-intel ====
Version update (20230512 -> 20230516a)
- update to 20230512:
* Microcode 20230512 update does not
contain any security updates
* New Platforms
* | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products
* |:---------------|:---------|:------------|:---------|:---------|:---------
* | ADL-N | A0 | 06-be-00/01 | | 00000010 | Core i3-N305/N300, N50/N97/N100/N200, Atom
x7211E/x7213E/x7425E
* | AZB | A0 | 06-9a-04/40 | | 00000004 | Intel(R) Atom(R) C1100
* | AZB | R0 | 06-9a-04/40 | | 00000004 | Intel(R) Atom(R) C1100
* Updated Platforms
* | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products
* |:---------------|:---------|:------------|:---------|:---------|:---------
* | ADL Â Â Â Â Â Â | L0 Â Â Â | 06-9a-03/80 | 00000429 | 0000042a | Core Gen12
* | ADL Â Â Â Â Â Â | L0 Â Â Â | 06-9a-04/80 | 00000429 | 0000042a | Core Gen12
* | AML-Y22 Â Â Â Â | H0 Â Â Â | 06-8e-09/10 | Â Â Â Â Â | 000000f2 | Core Gen8 Mobile
* | AML-Y42 Â Â Â Â | V0 Â Â Â | 06-8e-0c/94 | 000000f4 | 000000f6 | Core Gen10 Mobile
* | CFL-H Â Â Â Â Â | R0 Â Â Â | 06-9e-0d/22 | 000000f4 | 000000f8 | Core Gen9 Mobile
* | CFL-H/S Â Â Â Â | P0 Â Â Â | 06-9e-0c/22 | 000000f0 | 000000f2 | Core Gen9
* | CFL-H/S/E3 Â Â | U0 Â Â Â | 06-9e-0a/22 | 000000f0 | 000000f2 | Core Gen8 Desktop, Mobile, Xeon E
* | CFL-S Â Â Â Â Â | B0 Â Â Â | 06-9e-0b/02 | 000000f0 | 000000f2 | Core Gen8
* | CFL-U43e    | D0    | 06-8e-0a/c0 | 000000f0 | 000000f2 | Core Gen8 Mobile
* | CLX-SP Â Â Â Â | B0 Â Â Â | 06-55-06/bf | 04003303 | 04003501 | Xeon Scalable Gen2
* | CLX-SP Â Â Â Â | B1 Â Â Â | 06-55-07/bf | 05003303 | 05003501 | Xeon Scalable Gen2
* | CML-H Â Â Â Â Â | R1 Â Â Â | 06-a5-02/20 | 000000f4 | 000000f6 | Core Gen10 Mobile
* | CML-S102 Â Â Â | Q0 Â Â Â | 06-a5-05/22 | 000000f4 | 000000f6 | Core Gen10
* | CML-S62 Â Â Â Â | G1 Â Â Â | 06-a5-03/22 | 000000f4 | 000000f6 | Core Gen10
* | CML-U62 V1 Â Â | A0 Â Â Â | 06-a6-00/80 | 000000f4 | 000000f6 | Core Gen10 Mobile
* | CML-U62 V2 Â Â | K1 Â Â Â | 06-a6-01/80 | 000000f4 | 000000f6 | Core Gen10 Mobile
* | CML-Y42 Â Â Â Â | V0 Â Â Â | 06-8e-0c/94 | 000000f4 | 000000f6 | Core Gen10 Mobile
* | CPX-SP Â Â Â Â | A1 Â Â Â | 06-55-0b/bf | 07002503 | 07002601 | Xeon Scalable Gen3
* | ICL-D Â Â Â Â Â | B0 Â Â Â | 06-6c-01/10 | 01000211 | 01000230 | Xeon D-17xx, D-27xx
* | ICL-U/Y Â Â Â Â | D1 Â Â Â | 06-7e-05/80 | 000000b8 | 000000ba | Core Gen10 Mobile
* | ICX-SP Â Â Â Â | D0 Â Â Â | 06-6a-06/87 | 0d000389 | 0d000390 | Xeon Scalable Gen3
* | KBL-G/H/S/E3 Â | B0 Â Â Â | 06-9e-09/2a | 000000f0 | 000000f2 | Core Gen7; Xeon E3 v6
* | KBL-U/Y Â Â Â Â | H0 Â Â Â | 06-8e-09/c0 | Â Â Â Â Â | 000000f2 | Core Gen7 Mobile
* | LKF Â Â Â Â Â Â | B2/B3 Â Â | 06-8a-01/10 | 00000032 | 00000033 | Core w/Hybrid Technology
* | RKL-S Â Â Â Â Â | B0 Â Â Â | 06-a7-01/02 | 00000057 | 00000058 | Core Gen11
* | RPL-H 6+8 Â Â Â | J0 Â Â Â | 06-ba-02/07 | 0000410e | 00004112 | Core Gen13
* | RPL-P 6+8 Â Â Â | J0 Â Â Â | 06-ba-02/07 | 0000410e | 00004112 | Core Gen13
* | RPL-S Â Â Â Â Â | S0 Â Â Â | 06-b7-01/32 | 00000112 | 00000113 | Core Gen13
* | RPL-U 2+8 Â Â Â | Q0 Â Â Â | 06-ba-03/07 | 0000410e | 00004112 | Core Gen13
* | SKX-D Â Â Â Â Â | H0 Â Â Â | 06-55-04/b7 | Â Â Â Â Â | 02006f05 | Xeon D-21xx
* | SKX-SP Â Â Â Â | B1 Â Â Â | 06-55-03/97 | 01000161 | 01000171 | Xeon Scalable
* | SKX-SP Â Â Â Â | H0/M0/U0 | 06-55-04/b7 | Â Â Â Â Â | 02006f05 | Xeon Scalable
* | SPR-HBM Â Â Â Â | B3 Â Â Â | 06-8f-08/10 | 2c000170 | 2c0001d1 | Xeon Max
* | SPR-SP Â Â Â Â | E0 Â Â Â | 06-8f-04/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | E2 Â Â Â | 06-8f-05/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | E3 Â Â Â | 06-8f-06/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | E4 Â Â Â | 06-8f-07/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | E5 Â Â Â | 06-8f-08/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | S2 Â Â Â | 06-8f-07/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | SPR-SP Â Â Â Â | S3 Â Â Â | 06-8f-08/87 | 2b000181 | 2b000461 | Xeon Scalable Gen4
* | TGL Â Â Â Â Â Â | B1 Â Â Â | 06-8c-01/80 | 000000a6 | 000000aa | Core Gen11 Mobile
* | TGL-H Â Â Â Â Â | R0 Â Â Â | 06-8d-01/c2 | 00000042 | 00000044 | Core Gen11 Mobile
* | TGL-R Â Â Â Â Â | C0 Â Â Â | 06-8c-02/c2 | 00000028 | 0000002a | Core Gen11 Mobile
* | WHL-U Â Â Â Â Â | V0 Â Â Â | 06-8e-0c/94 | 000000f4 | 000000f6 | Core Gen8 Mobile
* | WHL-U Â Â Â Â Â | W0 Â Â Â | 06-8e-0b/d0 | Â Â Â Â Â | 000000f2 | Core Gen8 Mobile
==== wireplumber ====
Subpackages: libwireplumber-0_4-0 wireplumber-audio wireplumber-lang
- Require wireplumber-audio if pipewire-jack is installed.
- Recommend pipewire-jack in wireplumber-audio.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
crypto-policies (20210917.c9d86d1 -> 20230420.3d08ae7)
diffutils (3.9 -> 3.10)
grep (3.10 -> 3.11)
gstreamer (1.22.2 -> 1.22.3)
gstreamer-plugins-bad (1.22.2 -> 1.22.3)
gstreamer-plugins-base (1.22.2 -> 1.22.3)
gstreamer-plugins-good (1.22.2 -> 1.22.3)
icewm (3.3.4 -> 3.3.5)
kernel-source (6.3.2 -> 6.3.4)
libgcrypt
libqt5-qtwebengine (5.15.13 -> 5.15.14)
lsof
mdadm
mutter
zstd
=== Details ===
==== crypto-policies ====
Version update (20210917.c9d86d1 -> 20230420.3d08ae7)
Subpackages: crypto-policies-scripts
- FIPS: Enable to set the kernel FIPS mode with fips-mode-setup
and fips-finish-install commands, add also the man pages. The
required FIPS modules are left to be installed by the user.
* Rebase crypto-policies-FIPS.patch
- Revert a breaking change that introduces the config option
rh-allow-sha1-signatures that is unkown to OpenSSL and fails
on startup. We will consider adding this option to openssl.
* https://gitlab.com/redhat-crypto/fedora-crypto-policies/-/commit/97fe4494
* Add crypto-policies-revert-rh-allow-sha1-signatures.patch
- Update the update-crypto-policies(8) man pages and README.SUSE
to mention the supported back-end policies. [bsc#1209998]
* Add crypto-policies-supported.patch
- Update to version 20230420.3d08ae7:
* openssl, alg_lists: add brainpool support
* openssl: set Groups explicitly
* codespell: ignore aNULL
* rpm-sequoia: allow 1024 bit DSA and SHA-1 per FeSCO decision 2960
* sequoia: add separate rpm-sequoia backend
* crypto-policies.7: state upfront that FUTURE is not so interoperable
* Makefile: update for asciidoc 10
* Skip not needed LibreswanGenerator and SequoiaGenerator:
- Add crypto-policies-policygenerators.patch
* Remove crypto-policies-test_supported_modules_only.patch
* Rebase crypto-policies-no-build-manpages.patch
- Update to version 20221214.a4c31a3:
* bind: expand the list of disableable algorithms
* libssh: Add support for openssh fido keys
* .gitlab-ci.yml: install krb5-devel for krb5-config
* sequoia: check using sequoia-policy-config-check
* sequoia: introduce new back-end
* Makefile: support overriding asciidoc executable name
* openssh: make none and auto explicit and different
* openssh: autodetect and allow forcing RequiredRSASize presence/name
* openssh: remove _pre_8_5_ssh
* pylintrc: update
* Revert "disable SHA-1 further for a Fedora 38 Rawhide "jump scare"..."
* disable SHA-1 further for a Fedora 38 Rawhide "jump scare"...
* Makefile: exclude built manpages from codespell
* add openssh HostbasedAcceptedAlgorithms
* openssh: add RSAMinSize option following min_rsa_size
* Revert ".gitlab-ci.yml: skip pylint (bz2069837)"
* docs: add customization recommendation
* tests/java: fix java.security.disableSystemPropertiesFile=true
* policies: add FEDORA38 and TEST-FEDORA39
* bind: control ED25519/ED448
* openssl: disable SHA-1 signatures in FUTURE/NO-SHA1
* .gitlab-ci.yml: skip pylint (bz2069837)
* openssh: add support for sntrup761x25519-sha512(a)openssh.com
* fips-mode-setup: fix one unrelated check to intended state
* fips-mode-setup, fips-finish-install: abandon /etc/system-fips
* Makefile: fix alt-policy test of LEGACY:AD-SUPPORT
* fips-mode-setup: catch more inconsistencies, clarify --check
* fips-mode-setup: improve handling FIPS plus subpolicies
* .gitlab-ci.yml: use rawhide so that we get gnutls 3.7.3
* gnutls: enable SHAKE, needed for Ed448
* gnutls: use allowlisting
* openssl: add newlines at the end of the output
* FIPS:OSPP: relax -ECDSA-SHA2-512, -FFDHE-*
* fips-mode-setup, fips-finish-install: call zipl more often
* Add crypto-policies-rpmlintrc file to avoid files-duplicate,
zero-length and non-conffile-in-etc warnings.
* Rebase patches:
- crypto-policies-FIPS.patch
- crypto-policies-no-build-manpages.patch
* Update README.SUSE
==== diffutils ====
Version update (3.9 -> 3.10)
Subpackages: diffutils-lang
- diffutils 3.10:
* cmp/diff can again work with file dates past Y2K38
* diff -D no longer fails to output #ifndef lines
==== grep ====
Version update (3.10 -> 3.11)
Subpackages: grep-lang
- update to 3.11:
* With -P, patterns like [\d] now work again. Fixing this
has caused grep to revert to the behavior of grep 3.8, in that
patterns like \w and ^H go back to using ASCII rather
than Unicode interpretations.
However, future versions of GNU grep and/or PCRE2 are
likely to fix this and change the behavior of \w and ^H
back to Unicode again, without breaking [\d] as 3.10 did.
==== gstreamer ====
Version update (1.22.2 -> 1.22.3)
Subpackages: gstreamer-lang libgstreamer-1_0-0 typelib-1_0-Gst-1_0
- Update to version 1.22.3:
+ Highlighted bugfixes:
- avdec: fix occasional video decoder deadlock on seeking with
FFmpeg 6.0.
- decodebin3: fix regression handling input streams without
CAPS or TIME segment such as e.g. udpsrc or `pushfilesrc.
- bluez: a2dpsink: fix Bluetooth SIG Certification test
failures.
- osxvideosink: fix deadlock upon closing output window.
- qtdemux: fix edit list handling regression and AV1 codec box
parsing.
- qtmux: fix extraction of CEA608 closed caption data from
S334-1A packets.
- rtspsrc: Fix handling of * control path.
- splitmux: timestamp handling improvements.
- v4l2videodec: Rework dynamic resolution change handling
(needed for IMX6 mainline codec).
- videoflip: fix regression with automatically rotating video
based on tags.
- d3d11: many d3d11videosink and d3d11compositor fixes.
- webrtc, rtp: numerous data race fixes and stability fixes.
- various bug fixes, memory leak fixes, and other stability and
reliability improvements.
+ gstreamer:
- tracing: Initialize tracing infrastructure even if the debug
system is not compiled in.
- parse-launch: fix missing unref of looked-up child element.
- gstutils: Add category and object to most logging messages.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-bad ====
Version update (1.22.2 -> 1.22.3)
Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0
- Update to version 1.22.3:
+ a2dpsink: Fails many tests in Bluetooth SIG Certification.
+ avdtputil: Use int instead of int range for fixed bitpool
values.
+ ccconverter:
- reintroduce frame count reset on cycle completion
- integer overflow & crashing
+ codectimestamper: remove PC file generation from plugin's own
meson.build.
+ cudamemory: Fix for semi planar YUV memory size decision.
+ d3d11compositor:
- Reconfigure resource only when output caps is changed.
- Skip zero alpha input.
+ d3d11convert: Fix for runtime property update.
+ d3d11memory: Don't clear wrapped texture memory.
+ d3d11videosink:
- Fix for ignored initial render rectangle.
- Fix race condition in window unprepare.
- Enhancement for initial window size decision.
- Don't clear prepared buffer on unlock_stop().
+ dashdemux: mpdclient: fix divide by 0 if segment has no
duration.
+ dtlstransport: Keep strong ref of dtls encoder/decoder.
+ GstPlay:
- Avoid getting property of playbin2 if subtitle_sid is null.
- Fix critical log when using playbin3.
+ h264decoder: Drop nonexisting picture silently without error.
+ dtmf: element classification improvements.
+ mfvideoenc: Allow only even resolution numbers.
+ sctpenc:
- Fix potential shutdown deadlock.
- Fix "srtp-key" check.
+ tests: disable dtls test if openssl is not present.
+ tsdemux: Set number of channels to 2 for dual mono Opus.
+ va: Various fixes for defects found with MSVC.
+ wasapi2: Allows process loopback capture on Windows 10.
+ webrtcdatachannel: Bind to parent webrtcbin using a weak
reference.
+ webrtcbin: Fix potential deadlock when closing before any data
was sent.
+ webrtc:
- Plug leaks of resolved ICE addresses.
- Do not tear down data channel before data is flushed.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-base ====
Version update (1.22.2 -> 1.22.3)
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0
- Update to version 1.22.3:
+ allocators: Fix fdmem unit test with recent GLib versions.
+ audiotestsrc: Initialize all samples in wave=ticks mode.
+ decodebin3:
- Handle input streams without CAPS or TIME segment such as
e.g. udpsrc or pushfilesrc.
- Fix regression handling streams without caps.
- Fix random hang when remove failing stream.
+ uridecodebin3: Ensure atomic urisourcebin state change.
+ glvideoflip: fix leaked caps.
+ glcontext_wgl: fix missing unref.
+ playsink: Fix volume leak.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-good ====
Version update (1.22.2 -> 1.22.3)
Subpackages: gstreamer-plugins-good-gtk gstreamer-plugins-good-lang
- Update to version 1.22.3:
+ adaptivedemux2: fix critical when using an unsupported URI.
+ dashdemux2: mpdclient: fix divide by 0 if segment has no
duration.
+ imagesequencesrc: Properly set default location.
+ multifile: error out if no filename was set.
+ osxvideosink: fix deadlock upon closing output window.
+ rtpmanager: rtpsession:
- Data race leading to critical warnings.
- Race conditions leading to critical warnings.
+ rtspsrc: Fix handling of * control path.
+ splitmuxsink: Catch invalid DTS to avoid running into problems
later.
+ splitmuxsrc: Make PTS contiguous by preference.
+ qtdemux: emit no-more-pads after pruning old pads.
+ Revert "qtdemux: fix conditions for end of segment in reverse
playback" to fix edit list regression.
+ qtdemux: Fix av1C parsing.
+ qtmux: Fix extraction of CEA608 data from S334-1A packets.
+ qtwindow: unref caps in destructor.
+ v4l2:
- device provider: Fix GMainLoop leak.
- videodec: Rework dynamic resolution change handling.
- videodec: Prefer acquired caps over anything downstream.
+ videoflip:
- Fix setting of method property at construction time.
- Videoflip 1.22.2 not rotating video when extracting frames.
- Rebase reduce-required-meson.patch.
==== icewm ====
Version update (3.3.4 -> 3.3.5)
Subpackages: icewm-config-upstream icewm-default icewm-lang
- Update to 3.3.5:
* Lookup icons in more context directories for issue ice-wm/icewm#132.
* An Escape key release event must match the key press event for #726.
* Report when icon could not be found for issue ice-wm/icewm#133.
* Use "firefox" instead of "mozilla" as Firefox icon for ice-wm/icewm#132.
* Rescale workspace buttons when taskbar is rather high.
* Temporarily hide the taskbar collapse button when collapsing or expanding.
* Compute the ultimate workspace button height, before creating them.
* Limit the resource string of an unresponsive client for issue #729.
* Check for TaskBarDoubleHeight when computing workspace button height.
* Also focus last window when hiding and Click-to-focus for issue #727.
* Let icesh exit with zero if the last action was a successful manager
action.
==== kernel-source ====
Version update (6.3.2 -> 6.3.4)
- xfs: fix livelock in delayed allocation at ENOSPC (brc#2208553
xfs-issue).
- commit 2c66b1f
- Linux 6.3.4 (bsc#1012628).
- drm/fbdev-generic: prohibit potential out-of-bounds access
(bsc#1012628).
- drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values (bsc#1012628).
- drm/nouveau/disp: More DP_RECEIVER_CAP_SIZE array fixes
(bsc#1012628).
- drm/mipi-dsi: Set the fwnode for mipi_dsi_device (bsc#1012628).
- ARM: 9296/1: HP Jornada 7XX: fix kernel-doc warnings
(bsc#1012628).
- net: skb_partial_csum_set() fix against transport header magic
value (bsc#1012628).
- net: mdio: mvusb: Fix an error handling path in
mvusb_mdio_probe() (bsc#1012628).
- perf/core: Fix perf_sample_data not properly initialized for
different swevents in perf_tp_event() (bsc#1012628).
- scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in
W-LUN suspend (bsc#1012628).
- tick/broadcast: Make broadcast device replacement work correctly
(bsc#1012628).
- linux/dim: Do nothing if no time delta between samples
(bsc#1012628).
- net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
(bsc#1012628).
- net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs()
(bsc#1012628).
- net: phy: bcm7xx: Correct read from expansion register
(bsc#1012628).
- netfilter: nf_tables: always release netdev hooks from notifier
(bsc#1012628).
- netfilter: conntrack: fix possible bug_on with enable_hooks=1
(bsc#1012628).
- bonding: fix send_peer_notif overflow (bsc#1012628).
- netlink: annotate accesses to nlk->cb_running (bsc#1012628).
- net: annotate sk->sk_err write from do_recvmmsg() (bsc#1012628).
- net: deal with most data-races in sk_wait_event() (bsc#1012628).
- net: add vlan_get_protocol_and_depth() helper (bsc#1012628).
- tcp: add annotations around sk->sk_shutdown accesses
(bsc#1012628).
- gve: Remove the code of clearing PBA bit (bsc#1012628).
- ipvlan:Fix out-of-bounds caused by unclear skb->cb
(bsc#1012628).
- net: mscc: ocelot: fix stat counter register values
(bsc#1012628).
- drm/sched: Check scheduler work queue before calling timeout
handling (bsc#1012628).
- net: datagram: fix data-races in datagram_poll() (bsc#1012628).
- af_unix: Fix a data race of sk->sk_receive_queue->qlen
(bsc#1012628).
- af_unix: Fix data races around sk->sk_shutdown (bsc#1012628).
- drm/i915/guc: Don't capture Gen8 regs on Xe devices
(bsc#1012628).
- drm/i915: Fix NULL ptr deref by checking new_crtc_state
(bsc#1012628).
- drm/i915/dp: prevent potential div-by-zero (bsc#1012628).
- drm/i915: taint kernel when force probing unsupported devices
(bsc#1012628).
- fbdev: arcfb: Fix error handling in arcfb_probe() (bsc#1012628).
- ext4: reflect error codes from ext4_multi_mount_protect()
to its callers (bsc#1012628).
- ext4: don't clear SB_RDONLY when remounting r/w until quota
is re-enabled (bsc#1012628).
- ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
(bsc#1012628).
- ext4: allow ext4_get_group_info() to fail (bsc#1012628).
- refscale: Move shutdown from wait_event() to wait_event_idle()
(bsc#1012628).
- selftests: cgroup: Add 'malloc' failures checks in
test_memcontrol (bsc#1012628).
- rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
(bsc#1012628).
- open: return EINVAL for O_DIRECTORY | O_CREAT (bsc#1012628).
- fs: hfsplus: remove WARN_ON() from
hfsplus_cat_{read,write}_inode() (bsc#1012628).
- drm/displayid: add displayid_get_header() and check bounds
better (bsc#1012628).
- drm/amd/display: populate subvp cmd info only for the top pipe
(bsc#1012628).
- drm/amd/display: Correct DML calculation to align HW formula
(bsc#1012628).
- drm/amd/display: enable DPG when disabling plane for phantom
pipe (bsc#1012628).
- platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750
data (bsc#1012628).
- drm/amd/display: Enable HostVM based on rIOMMU active
(bsc#1012628).
- drm/amd/display: Use DC_LOG_DC in the trasform pixel function
(bsc#1012628).
- regmap: cache: Return error in cache sync operations for
REGCACHE_NONE (bsc#1012628).
- remoteproc: imx_dsp_rproc: Add custom memory copy implementation
for i.MX DSP Cores (bsc#1012628).
- arm64: dts: qcom: msm8996: Add missing DWC3 quirks
(bsc#1012628).
- accel/habanalabs: postpone mem_mgr IDR destruction to
hpriv_release() (bsc#1012628).
- drm/amd/display: reallocate DET for dual displays with high
... changelog too long, skipping 952 lines ...
- commit 1237d35
==== libgcrypt ====
- FIPS: Merge the libgcrypt20-hmac package into the library and
remove the "module is complete" trigger file .fips [bsc#1185116]
* Remove libgcrypt-1.10.0-use-fipscheck.patch
==== libqt5-qtwebengine ====
Version update (5.15.13 -> 5.15.14)
- Update to version 5.15.14:
* Blacklist TouchInputTest::touchTap for sles 15.4
* Blacklist tst_QWebEnginePage::mouseMovementProperties for SLES-15
* Do not allow universal with debug builds
* Enable accessibility by default on Linux
* Fix blacklisting of mouseMovementProperties for sles 15.4
* Fix build with GCC 13
* Fix initialization of QWebEngineDownloadItem::totalBytes for Widgets
* Fix memory management in QPdfDocument functions
* Update Chromium:
* Fixes for building with GCC-13
* [Backport] CVE-2023-1215: Type Confusion in CSS
* [Backport] CVE-2023-1217: Stack buffer overflow in Crash reporting
* [Backport] CVE-2023-1219: Heap buffer overflow in Metrics
* [Backport] CVE-2023-1220: Heap buffer overflow in UMA
* [Backport] CVE-2023-1222: Heap buffer overflow in Web Audio API
* [Backport] CVE-2023-1529: Out of bounds memory access in WebHID
* [Backport] CVE-2023-1530: Use after free in PDF
* [Backport] CVE-2023-1531: Use after free in ANGLE
* [Backport] CVE-2023-1534: Out of bounds read in ANGLE
* [Backport] CVE-2023-1810: Heap buffer overflow in Visuals
* [Backport] CVE-2023-1811: Use after free in Frames
* [Backport] CVE-2023-2033: Type Confusion in V8
* [Backport] CVE-2023-2137: Heap buffer overflow in sqlite
* [Backport] CVE-2023-29469 / Security bug 1433328
* [Backport] Security bug 1337747
* [Backport] Security bug 1417585
* [Backport] Security bug 1418734
* [Backport] Security bug 1423360
* [Backport] Security bug 1427388
- Drop patch, merged upstream:
* 0001-Fixes-for-building-with-GCC-13.patch
==== lsof ====
- Repacked tarball to remove proprietary code in dialects/uw/uw7/sys/fs
==== mdadm ====
- Grow: fix possible memory leak (bsc#1208618)
0060-Grow-fix-possible-memory-leak.patch
- Grow: fix can't change bitmap type from none to clustered
(bsc#1208618)
0061-Grow-fix-can-t-change-bitmap-type-from-none-to-clustered.patch
- Use source code mdadm-4.2.tar.xz from kernel.org version for
checksum
- mdadm-4.2.tar.xz
==== mutter ====
Subpackages: mutter-lang
- Add mutter-do-not-unminimize-windows-with-initial-iconic.patch:
mutter used to unminimize windows with initial IconicState, which
is a workaround for some old wine games, it breaks apps like
xterm starts with -iconic, this patch revert it (bsc#1193190,
glgo#GNOME/mutter!3001).
==== zstd ====
Subpackages: libzstd1
- Revert the addition of build specific cmake files: breaks
gdal, apache-arrow and possibly others -- boo#1211566
* note that shipping cmake files is not intentional or supported
upstream at the moment: gh#facebook/zstd#3642
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.9 -> 7.1.1.10)
MozillaFirefox (113.0.1 -> 113.0.2)
freetype2
gnutls
highway
libqt5-qtbase (5.15.9+kde151 -> 5.15.9+kde154)
libreoffice (7.5.3.1 -> 7.5.3.2)
libstorage-ng (4.5.109 -> 4.5.110)
openSUSE-build-key
python-Twisted
shim-leap
xen (4.17.1_02 -> 4.17.1_04)
=== Details ===
==== ImageMagick ====
Version update (7.1.1.9 -> 7.1.1.10)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.10
* fixes CVE-2023-2157 [bsc#1211601]
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#711-10---2023…
==== MozillaFirefox ====
Version update (113.0.1 -> 113.0.2)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 113.0.2 (boo#1211696)
* Fixed: Fixed a bug which could cause Firefox to freeze on
some pages when loading them with the Developer Tools Web
Console open (bmo#1828026)
* Fixed: Fixed a bug which would cause the bookmarks and
history sidebars to not properly react to the browser window
being vertically resized (bmo#1831535)
==== freetype2 ====
- Do not limit ftdump conflict to < version-release, but only to
version. Ftdump is built in a second build flavor and as such the
release counters are not guaranteed to be in sync.
==== gnutls ====
- FIPS: Skip the fixed HMAC verification for nettle, hogweed and
gmp libraries. These calculated HMACs change for every build of
each of these packages, we only have to verify that for gnutls.
* Add gnutls-FIPS-HMAC-nettle-hogweed-gmp.patch [bsc#1211476]
- FIPS: Merge libgnutls30-hmac package into the library [bsc#1185116]
==== highway ====
- Update memory limiter from 900 to 1400/process.
==== libqt5-qtbase ====
Version update (5.15.9+kde151 -> 5.15.9+kde154)
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Update to version 5.15.9+kde154:
* Hsts: match header names case insensitively (CVE-2023-32762)
* Fix specific overflow in qtextlayout (CVE-2023-32763)
* QDnsLookup/Unix: make sure we don't overflow the buffer
==== libreoffice ====
Version update (7.5.3.1 -> 7.5.3.2)
Subpackages: libreoffice-base libreoffice-branding-upstream libreoffice-calc libreoffice-draw libreoffice-filters-optional libreoffice-gnome libreoffice-gtk3 libreoffice-icon-themes libreoffice-impress libreoffice-l10n-cs libreoffice-l10n-da libreoffice-l10n-de libreoffice-l10n-el libreoffice-l10n-en libreoffice-l10n-en_GB libreoffice-l10n-es libreoffice-l10n-fr libreoffice-l10n-hu libreoffice-l10n-it libreoffice-l10n-ja libreoffice-l10n-pl libreoffice-l10n-pt_BR libreoffice-l10n-ru libreoffice-l10n-zh_CN libreoffice-l10n-zh_TW libreoffice-mailmerge libreoffice-math libreoffice-pyuno libreoffice-qt5 libreoffice-writer libreofficekit
- Update to 7.5.3.2:
https://wiki.documentfoundation.org/Releases/7.5.3/RC2
- Refresh patches:
* 0002-Revert-Require-HarfBuzz-5.1.0.patch
* bsc1200085.patch
- Fix bsc#1200085 - LO-L3: FILEOPEN PPTX: extra paragraph after some 2-line text with link
* bsc1200085.patch
==== libstorage-ng ====
Version update (4.5.109 -> 4.5.110)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.110
==== openSUSE-build-key ====
- Added a new 4096 openSUSE container key
- build-container-202304-d684afec-64390cff.asc
- build-container-202304-d684afec-64390cff.pem
- Removed and obsoleted old 2048 build key of Tumbleweed
- gpg-pubkey-3dbdc284-53674dd4.asc
==== python-Twisted ====
Subpackages: python310-Twisted python310-Twisted-tls
- Switch documentation to be within the main package.
==== shim-leap ====
- Remove the sym-links in /usr/lib64/efi for the newer distro
versions since we don't use them anymore
==== xen ====
Version update (4.17.1_02 -> 4.17.1_04)
- bsc#1211433 - VUL-0: CVE-2022-42336: xen: Mishandling of guest
SSBD selection on AMD hardware (XSA-431)
64639e84-amd-fix-legacy-setting-of-SSBD-on-AMD-Family-17h.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
gcc13 (13.0.1+git7231 -> 13.1.1+git7364)
gdb
glib2 (2.76.2 -> 2.76.3)
=== Details ===
==== gcc13 ====
Version update (13.0.1+git7231 -> 13.1.1+git7364)
Subpackages: cpp13 libatomic1 libgcc_s1 libgfortran5 libgomp1 libobjc4 libquadmath0 libstdc++6 libstdc++6-locale libstdc++6-pp libubsan1
- Bump to dd36656ada05731c069ecd5b1878380294fb1f3e, git7364.
* Includes the RISC-V atomic changes
- Remove riscv-atomic.patch and riscv-pthread.patch now included
- Make libstdc++6-devel packages own their directories since they
can be installed standalone. [bsc#1211427]
- Bump to 910735c5d7ce7607384fc1eec4189e90c8ae5c84, git7256.
* Includes GCC 13.1 release and first bugfixes
- Update riscv-atomic.patch from the version committed upstream.
==== gdb ====
- disable werror as a workaround for deprecation warnings with
python 3.11 (bsc#1211052)
- Revert to singlespec multibuild.
==== glib2 ====
Version update (2.76.2 -> 2.76.3)
Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0
- Update to version 2.76.3:
+ Bugs fixed: glgo#GNOME/GLib#1264, glgo#GNOME/GLib!3402,
glgo#GNOME/GLib!3403, glgo#GNOME/GLib!3427,
glgo#GNOME/GLib!3428, glgo#GNOME/GLib!3434.
+ Updated translations.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
autoyast2 (4.6.1 -> 4.6.2)
container-selinux (2.211.0 -> 2.215.0)
curl (8.1.0 -> 8.1.1)
grantlee5
gstreamer-plugins-bad
gtk3 (3.24.37+70 -> 3.24.38)
iso-codes (4.13.0 -> 4.15.0)
kernel-firmware (20230427 -> 20230517)
kglobalaccel
libheif (1.16.1 -> 1.16.2)
libstorage-ng (4.5.106 -> 4.5.109)
libyajl
nautilus
plymouth
presage
spectacle
systemd
systemd-rpm-macros (20 -> 22)
tpm2.0-abrmd
vim (9.0.1538 -> 9.0.1572)
xfsprogs (6.2.0 -> 6.3.0)
=== Details ===
==== autoyast2 ====
Version update (4.6.1 -> 4.6.2)
- Properly install the selected products, do not lose them after
resetting the package manager internally (bsc#1202234)
- 4.6.2
==== container-selinux ====
Version update (2.211.0 -> 2.215.0)
- Update to version 2.215.0:
* Add some MLS rules to policy
* Allow container runtime to dyntransition to spc_t
* Tighten controls on confined users
* Add labels for /var/lib/shared
* Cleanup entrypoint definitions
* Allow container_device_plugin_t access to debugfs
* Allow containers which use devices to map them
==== curl ====
Version update (8.1.0 -> 8.1.1)
Subpackages: libcurl4
- Update to 8.1.1:
* Bugfixes:
- cf-socket: completely remove the disabled
USE_RECV_BEFORE_SEND_WORKAROUND
- checksrc: disallow spaces before labels
- curl_easy_getinfo: clarify on return data types
- docs: document that curl_url_cleanup(NULL) is a safe no-op
- hostip: move easy_lock.h include above curl_memory.h
- http2: double http request parser max line length
- http2: increase stream window size to 10 MB
- lib: rename struct 'http_req' to 'httpreq'
- ngtcp2: proper handling of uint64_t when adjusting send buffer
- sectransp.c: make the code c89 compatible
- select: avoid returning an error on EINTR from select() or poll()
- url: provide better error message when URLs fail to parse
- urlapi: allow numerical parts in the host name
==== grantlee5 ====
- Add patch to fix test failures on Leap 15:
* 0001-Add-a-call-to-registerComparators-in-testbuiltins.patch
==== gstreamer-plugins-bad ====
Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0
- use additional codecs on ALP
==== gtk3 ====
Version update (3.24.37+70 -> 3.24.38)
Subpackages: gtk3-data gtk3-immodule-amharic gtk3-immodule-inuktitut gtk3-immodule-thai gtk3-immodule-tigrigna gtk3-immodule-vietnamese gtk3-immodule-xim gtk3-lang gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0
- Update to version 3.24.38:
+ GtkFileChooser: Avoid warnings with GLib 2.76.
+ Theme: Set caret color in the dark theme.
+ Windows: Fix running under GLES.
+ Wayland:
- Notify on initial setting changes.
- Don't crash on 0 size cursors.
- Don't crash if xdg_activation_v1 is missing.
+ Debugging: Show more information in the inspector.
+ Updated translations.
==== iso-codes ====
Version update (4.13.0 -> 4.15.0)
Subpackages: iso-codes-lang
- update to 4.15.0:
+ Updated translation for ISO 3166-1, ISO 3166-3, ISO 639-2,
ISO 3166-1, ISO 3166-2, ISO 3166-3, ISO 639-2, ISO 639-3,
ISO 639-5, ISO 4217, and ISO 15924.
+ ISO 3166-2: Fix wrong Spanish translation.
==== kernel-firmware ====
Version update (20230427 -> 20230517)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20230517 (git commit 08b854f02066):
* rtlwifi: Add firmware v6.0 for RTL8192FU
* rtlwifi: Update firmware for RTL8188EU to v28.0
* cirrus: Add firmware and tuning files for HP G10 series laptops
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* WHENCE: Cleanup Realtek BT firmware provenance
* linux-firmware: update firmware for MT7922 WiFi device
* cnm: update chips&media wave521c firmware.
* cirrus: Add firmware and tuning files for Lenovo ThinkPad P1 Gen 6
* check_whence: error on directory listed as File
* check_whence: error on duplicate file entries
* WHENCE: comment out duplicate MediaTek firmware
* i915: Add GuC v70.6.6 for MTL
* amdgpu: update DCN 3.1.6 DMCUB firmware
* rtl_bt: Update RTL8852B BT USB firmware to 0xDBC6_B20F
* rtl_bt: Update RTL8761B BT USB firmware to 0xDFC6_D922
* rtl_bt: Update RTL8761B BT UART firmware to 0x9DC6_D922
- Update aliases from 6.4-rc3
==== kglobalaccel ====
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccel5-lang libKF5GlobalAccelPrivate5
- Fix systemd_user_preun/postun calls: all systemd_user macros take
service names as parameter.
==== libheif ====
Version update (1.16.1 -> 1.16.2)
Subpackages: gdk-pixbuf-loader-libheif libheif-rav1e libheif-svtenc libheif1
- update to 1.16.2:
* adds an option to heif-convert to set the PNG compression level
* fixes a few build issues with some compilers
* fixes the --encoder option in heif-enc
* fixes heif_item_get_properties_of_type and
heif_item_get_transformation_properties
==== libstorage-ng ====
Version update (4.5.106 -> 4.5.109)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#933
- provide functions to query category of partition id (bsc#1211107)
- added unit tests
- 4.5.109
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.108
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.107
==== libyajl ====
- update the upstream source URL
==== nautilus ====
Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 nautilus-lang
- Drop mount-archive.desktop. This was a feature based on
FATE#308344 and bgo#602147. However, the provided functionality
of mounting archives through gvfsd-archive has been broken for a
long time due to the Exec line pointing to a non-existent path
(/usr/lib/gvfs/gvfsd-archive, rather than /usr/libexec/...).
Besides, there is a similar functionality which allow users to
see the content of archives, without extracting them, through
File Roller that serves as a replacement.
==== plymouth ====
Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner
- Proporly list services as parameters to
%service_del_postun_without_restart: new versions mandate the
parameters to further down the line eliminate errors. For the
time being, the code does not care for the parameters.
==== presage ====
Subpackages: libpresage1 presage-data
- Update url for website and sources.
==== spectacle ====
Subpackages: spectacle-lang
- Fix systemd_user_post/preun/postun calls: all systemd_user macros
take service names as parameter.
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc systemd-lang udev
- Move more packaging fixups in the fixlet script.
- Provide (Lua-based) file triggers and adapt systemd.spec accordingly (boo#1133764)
More specifically, file triggers handle automatically installations or updates
of files for sysusers, tmpfiles, hwdb, journal catalog, udev rules, sysctl and
binfmt.
Therefore it makes a bunch of systemd rpm macros (such as %udev_hwdb_update,
%udev_rules_update, %journal_catalog_update, %tmpfiles_create,
%sysusers_create and so on) not needed anymore. However before considering
simplifying your spec files beware that these changes are not available in SLE
yet and will probably never reach the current releases (latest one being
SLE15-SP5 as of this writing).
Macros dealing with unit restart/enabling (such as %systemd_pre,
%service_add_pre, %service_del_postun, ...) are still needed though. However
reloading of systemd instances (and thus restarting of units) are delayed
until the very end of the package install/update transaction and is now done
only once.
Nevertheless to fully take advantage of file triggers, users have to activate
a specific zypper transaction backend which is still considered as
experimental, see bsc#1041742 for details.
- Provide a (slighlty) customized version of systemd-update-helper. Some of the
systemd rpm macros rely now on the helper and delegate their work to it. Hence
we don't need to rebuild all packages anymore when the content of the rpm
macros must be updated/fixed.
- Drop an old fix for the persistent net rules (only needed on SLE). Factory
(fortunately) dropped the persistent net rule generator long time ago.
==== systemd-rpm-macros ====
Version update (20 -> 22)
- Bump to version 22
- Make sure that (future) users of %sysctl_apply() and %binfmt_apply() will call
the macros with arguments.
- Test the presence of /run/systemd/system to check whether we're operating
during transactional updates. Hence the behavior is the same when operating in
a chroot or during transactional updates.
- Leave %sysctl_apply() and %binfmt_apply() empty (bsc#1211272)
Only the former has very few users currently and none of them has specific
code relying on the new sysctl values to be effective between the macros and
the file triggers.
- Bump to version 21
- Rely on 'systemd-update-helper' shell script to implement %service_* macros
The helper was introduced by upstream commit 6d825ab2d42d3219e49a1. The main
advantage is that we no more need to rebuild all packages to update the macro
definitions.
Internally the script relies on file triggers for 'daemon-reload' operations
and for restarting units (when needed).
- Update other macros to reflect the fact that systemd package provides file
triggers for sysusers, tmpfiles, hwdb, and journal catalog.
==== tpm2.0-abrmd ====
Subpackages: libtss2-tcti-tabrmd0 tpm2.0-abrmd-selinux
- Cover ALP via the %{suse_version} macro
==== vim ====
Version update (9.0.1538 -> 9.0.1572)
Subpackages: vim-data vim-data-common vim-small xxd
- Updated to version 9.0.1572, fixes the following problems
* Typst filetype is not recognized.
* reverse() on string doesn't work in compiled function.
* CI: sound dummy is disabled.
* Line not fully displayed if it doesn't fit in the screen.
* Display errors when making topline shorter and 'smoothscroll'
is set.
* Recent glibc marks sigset() as a deprecated.
* Text not scrolled when cursor moved with "g0" and "h".
* Some commands for opening a file don't use 'switchbuf'.
* Coveralls workflow on CI is commented out.
* CI: check in sound-dummy module may throw an error.
* USD filetype is not recognized.
* In cmdline window S-Tab does not select previous completion.
* Position of marker for 'smoothscroll' not computed correctly.
* CI: sound-dummy module is not installed.
* CI: using slightly outdated gcc version.
* Code for handling 'switchbuf' is repeated.
* setcharsearch() does not clear last searched char properly.
* Vim9: error for missing "return" after "throw".
* Test failures for unreachable code.
* Wrong error for unreachable code after :throw.
* Function argument types not always checked and using v:none may
cause an error.
* Win32: When 'encoding' is set $PATH has duplicate entries.
* Mixing package managers is not a good idea.
* GTK3: window manager resize hints are incomplete.
* Display moves up and down with 'incsearch' and 'smoothscroll'.
* Json lines files are not recognized.
* Motif: GUI scrollbar test fails in 24 lines terminal.
* Profiler calculation may be wrong on 32 bit builds.
* With 'smoothscroll' cursor may move below botline.
* Cannot use "this.member" in lambda in class method.
* Some tests are slow.
* RedrawingDisabled not used consistently.
* Error messages are not translated.
==== xfsprogs ====
Version update (6.2.0 -> 6.3.0)
- update to 6.3.0:
- xfs_repair: Don't leak buffer when discarding directories
- xfs_repair: estimate per-AG btree slack better
- xfs_db: fix broken logic in error path
- xfsprogs: nrext64 option is now in [inode] section of mkfs conf files
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
AppStream
NetworkManager
NetworkManager-openconnect (1.2.8 -> 1.2.10)
QGnomePlatform-qt5 (0.9.0 -> 0.9.1)
c-ares (1.19.0 -> 1.19.1)
containerd (1.6.20 -> 1.6.21)
docker (23.0.5_ce -> 23.0.6_ce)
fcitx5-gtk (5.0.22 -> 5.0.23)
gnome-session
libyuv (20220920+f9fda6e -> 20230517+a377993)
mutter
yast2-storage-ng (4.6.9 -> 4.6.10)
yast2-trans (84.87.20230513.307f8d2fb9 -> 84.87.20230516.e4ba802a)
=== Details ===
==== AppStream ====
Subpackages: AppStream-lang libAppStreamQt2 libappstream4
- refresh patch for new glib-2.76 from upstream
==== NetworkManager ====
Subpackages: NetworkManager-bluetooth NetworkManager-lang NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Add nm-runstatedir.patch: to correct rundir from /var/run to /run
for systemd FHS compatibility
==== NetworkManager-openconnect ====
Version update (1.2.8 -> 1.2.10)
Subpackages: NetworkManager-openconnect-gnome NetworkManager-openconnect-lang
- Update to version 1.2.10:
+ Improved cancellation handling.
+ Support SAML/SSO authentication for some VPN protocols.
+ Allow useragent override.
+ Support webkit2gtk-4.1.
+ Allow choosing certificates/keys from PKCS#11 tokens.
+ Allow custom interface name.
+ Allow UDP connectivity to be disabled.
+ Support multi-certificate authentication for AnyConnect.
+ Fix hangs with external browsers which spam stdout.
+ Updated translations.
- Drop dbus-location.patch: Fixed upstream.
- Add pkgconfig(webkit2gtk-4.1) BuildRequires: New dependency.
==== QGnomePlatform-qt5 ====
Version update (0.9.0 -> 0.9.1)
- Update to version 0.9.1:
+ Changes:
- Thinner border between window and decorations
- Added support for KColorScheme using Adwaita-like color
schemes
- Added integration for QtQuick Controls2 applications
- Added support for color-scheme in GSettings backend
- Implemented reasonable icon fallback - depends on Qt change
476542
- Qt6: implemented support for QPlatformTheme::MouseCursorSize
and QPlatformTheme::MouseCursorTheme
+ Fixes:
- Do not crash when GSettings shema is not found
- Respect QT_STYLE_OVERRIDE env variable
- Fixed titlebar dimming on Wayland
- Fixed regression in rendering titlebar on vanilla Qt
- Drop 0001-fix-qt-6.5-compilation.patch as it is included in
version 0.9.1
- Adjust fix-XSetTransientForHint.patch for version 0.9.1
- Split QGnomePlatform's new color schemes into a new package
called "QGnomePlatform-colorschemes"
==== c-ares ====
Version update (1.19.0 -> 1.19.1)
- Update to version 1.19.1
Security:
* CVE-2023-32067. High. 0-byte UDP payload causes Denial of Service
(bsc#1211604)
* CVE-2023-31147 Moderate. Insufficient randomness in generation
of DNS query IDs (bsc#1211605)
* CVE-2023-31130. Moderate. Buffer Underwrite in
ares_inet_net_pton() (bsc#1211606)
* CVE-2023-31124. Low. AutoTools does not set CARES_RANDOM_FILE
during cross compilation (bsc#1211607)
Bug fixes:
* Fix uninitialized memory warning in test
* ares_getaddrinfo() should allow a port of 0
* Fix memory leak in ares_send() on error
* Fix comment style in ares_data.h
* Fix typo in ares_init_options.3
* Sync ax_pthread.m4 with upstream
* Sync ax_cxx_compile_stdcxx_11.m4 with upstream to fix uclibc support
==== containerd ====
Version update (1.6.20 -> 1.6.21)
- Update to containerd v1.6.21 for Docker v23.0.6-ce. Upstream release notes:
<https://github.com/containerd/containerd/releases/tag/v1.6.21> bsc#1211578
- Require a minimum Go version explicitly rather than using golang(API).
Fixes the change for bsc#1210298.
[ This was only released in SLE. ]
- unversion to golang requires to always use the current default go.
(bsc#1210298)
==== docker ====
Version update (23.0.5_ce -> 23.0.6_ce)
Subpackages: docker-bash-completion
- Update to Docker 23.0.6-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/23.0/#2306>. bsc#1211578
- Rebase patches:
* cli-0001-docs-include-required-tools-in-source-tree.patch
- Re-unify packaging for SLE-12 and SLE-15.
- Add patch to fix build on SLE-12 by switching back to libbtrfs-devel headers
(the uapi headers in SLE-12 are too old).
+ 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
- Re-numbered patches:
- 0003-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
+ 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch`
==== fcitx5-gtk ====
Version update (5.0.22 -> 5.0.23)
- Update to 5.0.23
* hotfix to fix a potential crash under wayland
==== gnome-session ====
Subpackages: gnome-session-core gnome-session-default-session gnome-session-lang gnome-session-wayland
- Drop pkgconfig(dbus-glib-1) BuildRequires: Only needed when
building with consolekit support, and we do not do that anymore.
- Replace dbus-1-x11 with explicit /usr/bin/dbus-launch Requires,
as that is what is really needed.
==== libyuv ====
Version update (20220920+f9fda6e -> 20230517+a377993)
- Trim redundancies and compact descriptions.
- Update to snapshot 20230517+a377993:
* ARGBToI420Alpha function to convert ARGB to I420 with Alpha
* Enable I{422,444}AlphaToARGBRow_RVV & ARGBAttentuateRow_RVV
* Bump version and apply clang format
* Enable ARGBToYMatrixRow_RVV/RGBAToYMatrixRow_RVV/RGBToYMatrixRow_RVV
* Enable RVV if qemu is detected
* Add ARGBToRAWRow_RVV, ARGBToRGB24Row_RVV, RGB24ToARGBRow_RVV
* YUY2ToNV12 using YUY2ToY and YUY2ToNVUV
* Remove old cipd clobber gclient hook.
* Roll chromium_revision 004bde16df..28dca358ed (1051775:1052960)
* Roll chromium_revision 7d683aeda8..004bde16df (1050091:1051775)
* [code-health] Migrate presubmit to python3
* Enable unlimited data for YUV to RGB
* Roll chromium_revision 829c6df33d..7d683aeda8 (945687:1050098th
- Add libyuv-tools package
- Run test suite in %check
- drop Don-t-install-conversion-tool.patch
- add Install-missing-yuvconstants-binary.patch
- add cmake-minimum-required.patch
- drop Link-main-library-against-libjpeg.patch applied upstream
- add convert_test-little-endian.patch
==== mutter ====
Subpackages: mutter-lang
- Add mutter-fix-wacom-tablet-crash.patch: Use clutter error trap
to fix x11 error of some input device configuration like wacom
tablet (bsc#1211413, glgo#GNOME/mutter#2796).
==== yast2-storage-ng ====
Version update (4.6.9 -> 4.6.10)
- Add bus_id for DASD (gh#yast/yast-storage-ng#1339,
gh#openSUSE/agama#578).
- 4.6.10
==== yast2-trans ====
Version update (84.87.20230513.307f8d2fb9 -> 84.87.20230516.e4ba802a)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20230516.e4ba802a:
* Translations for Leap 15.5 GMC poo#113950
* Translated using Weblate (Slovak)
* Translated using Weblate (Dutch)
* Translated using Weblate (Catalan)
* Translated using Weblate (French)
* Translated using Weblate (Japanese)
* New POT for text domain 'services-manager'.
* New POT for text domain 'control'.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
iso_ent
openconnect (9.10 -> 9.12)
wget (1.21.3 -> 1.21.4)
=== Details ===
==== iso_ent ====
- Modernise spec file
==== openconnect ====
Version update (9.10 -> 9.12)
Subpackages: libopenconnect5 openconnect-bash-completion openconnect-lang
- Update to release 9.12:
* Explicitly reject overly long tun device names.
* Increase maximum input size from stdin (#579).
* Ignore 0.0.0.0 as NBNS address (!446, vpnc-scripts#58).
* Fix stray (null) in URL path after Pulse authentication (4023bd95).
* Fix config XML parsing mistake that left GlobalProtect ESP non-working in v9.10 (!475).
* Fix case sensitivity in GPST header matching (!474).
==== wget ====
Version update (1.21.3 -> 1.21.4)
Subpackages: wget-lang
- GNU wget 1.21.4:
* Document --retry-on-host-error in help text
* Increase read buffer size to 64k.
This should speed up downloads on gigabit and faster connections
* Update deprecated option '--html-extension' to
'--adjust-extension' in documentation
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.8 -> 7.1.1.9)
fuse3
perl-Bootloader (1.0 -> 1.1)
plasma-branding-MicroOS (20230420 -> 20230519)
python-PyJWT (2.6.0 -> 2.7.0)
redis
xterm (379 -> 380)
=== Details ===
==== ImageMagick ====
Version update (7.1.1.8 -> 7.1.1.9)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- update to 7.1.1.9:
* support for Oklab
https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#711-9---2023-…
==== fuse3 ====
Subpackages: libfuse3-3
- update the license tag matching the code (LGPL-2.1-only and
GPL-2.0-only)
==== perl-Bootloader ====
Version update (1.0 -> 1.1)
- no not install kexec-bootloader
- 1.1
- merge gh#openSUSE/perl-bootloader#144
- add default-settings script
- add new kexec-bootloader
- add --default-settings option (bsc#1211082)
==== plasma-branding-MicroOS ====
Version update (20230420 -> 20230519)
- Add Ark to default flatpak installation script (boo#1211555)
- 20230519
==== python-PyJWT ====
Version update (2.6.0 -> 2.7.0)
- update to version 2.7.0
* Add classifier for Python 3.11 by @eseifert in #818
* Add Algorithm.compute_hash_digest and use it to implement at_hash validation example by @sirosen in #775
* fix: use datetime.datetime.timestamp function to have a milliseconds by @daillouf in #821
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #825
* Custom header configuration in jwk client by @thundercat1 in #823
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #828
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #833
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #835
* Add PyJWT._{de,en}code_payload hooks by @akx in #829
* Add sort_headers parameter to api_jwt.encode by @evroon in #832
* Make mypy configuration stricter and improve typing by @akx in #830
* Bump actions/stale from 6 to 7 by @dependabot in #840
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #838
* Add more types by @Viicos in #843
* Differentiate between two errors by @irdkwmnsb in #809
* Fix _validate_iat validation by @Viicos in #847
* Improve error messages when cryptography isn't installed by @Viicos in #846
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #852
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #855
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #859
* Make Algorithm an abstract base class by @Viicos in #845
* docs: correct mistake in the changelog about verify param by @gbillig in #866
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #868
* Bump actions/stale from 7 to 8 by @dependabot in #872
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #874
* Add a timeout for PyJWKClient requests by @daviddavis in #875
* Add client connection error exception by @daviddavis in #876
* Add complete types to take all allowed keys into account by @Viicos in #873
* [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #878
* Build and upload PyPI package by @jpadilla in #884
* Fix for issue #862 - ignore invalid keys in a jwks. by @timw6n in #863
* Add as_dict option to Algorithm.to_jwk by @fluxth in #881
==== redis ====
- refresh redis-hashes from upstream source
==== xterm ====
Version update (379 -> 380)
Subpackages: xterm-bin xterm-resize
- update to 380:
* reduce compiler warnings in configure script.
* simplify the change for sixelScrolling
* add xterm+focus and report+da2, update report+version building
blocks in terminfo, from post-ncurses 6.4
* drop the -title option from uxterm and koi8rxterm, because that
interferes with deriving the default title from the -e option
(Debian #1031837). Compensate for this by using the -class option
to derive a default title.
* improve description of readline 2003 mode in ctlseqs.ms
* other improvements to status-line feature (report by Thomas Wolff):
+ clear status line on DECCOLM
+ ignore DECSASD if no previous DECSSDT
+ allow DECSSDT 1 immediately after DECSSDT 2, i.e., without
switching back to host mode.
* adjust RequestResize to avoid shrinking screen when using DECCOLM
while the status-line is active (report/patch by Thomas Wolff).
* disallow wrapping before the beginning of the screen, to the end of
the screen, for cursor-back sequences (Redhat #2182357).
* modify makefile to install the 16x16 xpm files (report by Harald
Dunkel).
* update test-package to reflect resolution of Debian #906901.
* change default of showMissingGlyphs to True.
* improve handling of double-sized characters when those happen to be
missing from the bitmap font and/or are fullwidth.
* pointer/overflow fixes (reported by David Leadbeater):
+ improve limit-checks for control-sequence numeric parameters
in SIXEL graphics.
+ add null-pointer checks in WriteNow macro to handle a case
where SS2 or SS3 might be in effect while processing a
combining character.
+ disallow ReGIS reporting for character-set names containing
characters other than alphanumerics or underscore.
+ implement TrueType fallback font for double-sized characters,
including Unicode fullwidth. Also add limitFontHeight to
provide for configuring the distinction between
slightly-oversized glyphs and double-sized glyphs.
* configure script improvements:
+ check for nfsd_t
* fix a typo in the underline cursor thickness derivation
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
libcap (2.68 -> 2.69)
permissions (1699_20230424 -> 1699_20230516)
polkit-default-privs (1550+20230307.7f42172 -> 1550+20230517.ab68b2d)
python-gevent (22.10.1 -> 22.10.2)
python-greenlet (1.1.3 -> 2.0.2)
update-alternatives
=== Details ===
==== libcap ====
Version update (2.68 -> 2.69)
- updated to 2.69
- An audit was performed on libcap and friends by https://x41-dsec.de/ (blog) . The audit (final report, 2023-05-10) was sponsored by the the Open Source Technology Improvement Fund, https://ostif.org/ (blog). Five issues were found. Four of them are addressed in this release. Each issue was labeled in the audit results as follows:
- LCAP-CR-23-01 (SEVERITY) LOW (CVE-2023-2602) - found by David Gstir (bsc#1211418)
- LCAP-CR-23-02 (SEVERITY) MEDIUM (CVE-2023-2603) - found by Richard Weinberger (bsc#1211419)
- LCAP-CR-23-100 (SEVERITY) NONE
- LCAP-CR-23-101 (SEVERITY) NONE
- LCAP-CR-23-102 (SEVERITY) NONE
- Man page style improvement from Emanuele Torre
==== permissions ====
Version update (1699_20230424 -> 1699_20230516)
Subpackages: chkstat permissions-config
- Update to version 20230516:
* common permissions: add icingaweb2 setgid directory (bsc#1211314)
==== polkit-default-privs ====
Version update (1550+20230307.7f42172 -> 1550+20230517.ab68b2d)
- Update to version 1550+20230517.ab68b2d:
* rename com.deepin.api to org.deepin.dde (bsc#1211376)
==== python-gevent ====
Version update (22.10.1 -> 22.10.2)
- Add patch handle-python-ssl-changes.patch:
* Handle Python 3.10 changes where ssl.shared_ciphers() changes
behaviour.
- skip one more test from testsuite
- update to 22.10.2:
* Update to greenlet 2.0. This fixes a deallocation issue that
required a change in greenlet's ABI. The design of greenlet 2.0 is
intended to prevent future fixes and enhancements from
requiring an ABI change, making it easier to update gevent
and greenlet independently.
- Switch documentation to be within the main package.
==== python-greenlet ====
Version update (1.1.3 -> 2.0.2)
- update to 2.0.2:
* Fix calling ``greenlet.settrace()`` with the same tracer
object that was currently active.
* Various compilation and standards conformance fixes.
* Python 3.11: Fix a memory leak. See issue 328 and gevent issue 1924.
- 2.0.0.post0 (2022-11-03)
* Add Programming Language :: Python :: 3.11 to the PyPI classifier
metadata.
- 2.0.0rc5 (2022-10-31)
* Linux: Fix another group of rare crashes that could occur when shutting
down an interpeter running multiple threads. See issue 325.
- 2.0.0rc4 (2022-10-30)
* Linux: Fix a rare crash that could occur when shutting down an interpreter
running multiple threads, when some of those threads are in greenlets
making calls to functions that release the GIL.
- 2.0.0rc1 (2022-10-27)
* Deal gracefully with greenlet switches that occur while deferred
deallocation of objects is happening using CPython's "trash can"
mechanism. Previously, if a large nested container held items that
switched greenlets during delayed deallocation, and that second greenlet
also invoked the trash can, CPython's internal state could become corrupt.
This was visible as an assertion error in debug builds. Now, the relevant
internal state is saved and restored during greenlet switches. See also
gevent issue 1909.
* Rename the C API function PyGreenlet_GET_PARENT to PyGreenlet_GetParent
for consistency. The old name remains available as a deprecated alias.
- 2.0.0a1 (2022-01-20)
* Drop support for very old versions of GCC and MSVC.
Compilation now requires a compiler that either supports C++11 or has some
other intrinsic way to create thread local variables; for older GCC, clang
and SunStudio we use __thread, while for older MSVC we use
__declspec(thread).
* This version of greenlet is known to compile and pass tests on CPython
3.11.0a4. Earlier or later 3.11 releases may or may not work. See PR 280.
Special thanks to Brandt Bucher and the CPython developers.
* Fix several leaks that could occur when using greenlets from multiple
threads. For example, it is no longer necessary to call getcurrent()
before exiting a thread to allow its main greenlet to be cleaned up. See
issue 252.
* Fix the C API PyGreenlet_Throw to perform the same error checking that the
Python API greenlet.throw() does. Previously, it did no error checking.
- drop sphinx-6.0.0.patch (upstream)
==== update-alternatives ====
- Add _multibuild to define additional spec files as additional
flavors.
Eliminates the need for source package links in OBS.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
createrepo_c
dos2unix (7.4.4 -> 7.5.0)
llvm16 (16.0.3 -> 16.0.4)
nghttp2 (1.52.0 -> 1.53.0)
pipewire (0.3.70 -> 0.3.71)
poppler (23.04.0 -> 23.05.0)
poppler-qt5 (23.04.0 -> 23.05.0)
python-anyio
python-attrs (22.2.0 -> 23.1.0)
python-httpcore (0.16.3 -> 0.17.0)
python-requests (2.28.2 -> 2.30.0)
python-responses (0.21.0 -> 0.23.1)
python-urllib3 (1.26.15 -> 2.0.2)
tpm2.0-tools
tracker (3.5.1 -> 3.5.2)
tracker-miners (3.5.1 -> 3.5.2)
yast2-storage-ng (4.6.8 -> 4.6.9)
=== Details ===
==== createrepo_c ====
Subpackages: libcreaterepo_c0 python3-createrepo_c
- disable DeltaRPM for ALP
==== dos2unix ====
Version update (7.4.4 -> 7.5.0)
- update to 7.5.0:
* New option -e, --add-eol to add a line break to the last line
if the isn't one
* New option -O, --to-stdout to write to standard output
==== llvm16 ====
Version update (16.0.3 -> 16.0.4)
- Update to version 16.0.4.
* This release contains bug-fixes for the LLVM 16.0.0 release.
This release is API and ABI compatible with 16.0.0.
- Rebase patches:
* llvm-do-not-install-static-libraries.patch
* llvm-remove-clang-only-flags.patch
==== nghttp2 ====
Version update (1.52.0 -> 1.53.0)
- Update to version 1.53.0:
* https://nghttp2.org/blog/2023/05/10/nghttp2-v1-53-0/
==== pipewire ====
Version update (0.3.70 -> 0.3.71)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.71:
* Highlights
- A new zero-latency jackdbus bridge was added. This works
similar to what PulseAudio has to offer and creates a
sink/source when jackdbus is started. It is however much more
efficient and runs the complete PipeWire graph as a
synchronous JACK client with no added latency.
- Many performance improvements. Activation of remote nodes is
more efficient, fewer eventfds are required on the clients,
less callback overhead in performence critical paths and an
optimized poll function was added. This was mainly driven by
the jackdbus module to get the lowest possible overhead when
running the graph.
- The JACK notify callback implementation was reworked to
emulate better what JACK does, improving compatibility with
ardour7 and the JACK stress test.
- More work on BAP devices. Device latency is now passed on to
applications also for multi-device headsets, and channel
allocation is handled better.
- Many more improvements and bugfixes.
* PipeWire
- Remove the hardcoded limit on io_areas. This is used to link
nodes together and exchange buffers, it was limited to 2048
but now dynamically scales based on requirements.
- Rate and quantum changes are now applied correctly in more
cases. (#3159)
- Updates to client-node to more efficiently process the
driver.
- The profiler information was improved to be more accurate.
It should now work better for remote drivers.
- Some potential memory map errors were fixed in the protocol
because in some case with large messages, some fds were
closed too soon.
- pw-filter now implements the pw_filter_set_active() method.
- A potential out-of-buffers case was fixed in capture
pw-streams where buffers were not moved to the recycle queue
when the node suspended.
- Nodes are now always woken up with the eventfd. Previously
there were some optimiztions in the server to directly call
into the node process function but that optimization is not
necessary. Without this optimization it is now possible to
run nodes in different threads.
- pw-stream trigger is now implemented correctly in all cases.
- Remote nodes now use one eventfd less because they get
triggered with the node eventfd directly.
- Monitor ports are now ignored in latency updates.
- A potential race when reporting an error to a client was
fixed. (#3192)
- Fix a bug where always_process nodes would sometimes IDLE.
(#3189)
- Optimize peer activation. Nodes are now activated more
efficiently and independent of the number of links. It also
reduces the number of eventfds and memory in remote clients.
- A bug in property serialization was fixed. Values with spaces
would only serialize the first part of the value.
* Modules
- Correctly handle the echo-canceler plugin init method
fallback. The samplerate was not correctly configured. This
is only a regression for people that have external
echo-canceler plugins.
- RAOP sink now only sets the volume on the remote end when the
stream is recording. (#3175)
- RAOP discover now tries to deduplicate entries from the same
host.
- A new zero-latency jackdbus bridge was added. This works
similar to what pulseaudio has to offer and creates a
sink/source when jackdbus is started. It is however much more
efficient and runs the complete PipeWire graph as a
synchronous JACK client.
- The access module uses a more secure way to check the
application executable.
- module-combine-stream now has configurable delay and latency
for each stream. This can be used to align sinks/sources with
different latencies.
- A potential crash in module-pulse-tunnel was fixed when
shutting down. (#3199)
- Module-rt will now clamp the nice value to the min allowed
value to avoid errors from rtkit. (#3186)
- Fix a bug with the session counters in module-rtp-sap. Also
use the right format for L24. Improve the AES67 example
config.
- Improve some warning and info messages in module-rt. (#3194)
- module-rtp-session should now do something when started
without arguments.
- A potential crash in module-rtp-session was fixed. (#3217)
- module-filter-chain has better error reporting when a
convolver fails to load. (#3223)
* SPA
- Move some things around to avoid compiler warnings. (#3171)
- Increase mixer ports. Reorganize some things and bump mixer
input ports from 128 to 512.
- Fix a potential crash when a node is scheduled before it
completes the setup.
- The JACK sink and source SPA plugins have seen some
improvements.
- Allow the peaks resampler still if we disabled resampling.
- Perform more cleanup in audioadapter when in error.
- An optimized non-cancellable loop implementation was added.
- Callbacks were optimized with a _fast() varsion that doesn't
... changelog too long, skipping 47 lines ...
- Document the PipeWire native protocol.
==== poppler ====
Version update (23.04.0 -> 23.05.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools
- update to 23.05.0:
* Fix crash when filling some forms
* Set SigFlags when signing unsigned signature
* Add some infrastructure code to support multiple signing
backends
* Fix potential stack overflow in PostScriptFunction::parseCode
* Fix some minor uninitialised memory reads
==== poppler-qt5 ====
Version update (23.04.0 -> 23.05.0)
- update to 23.05.0:
* Fix crash when filling some forms
* Set SigFlags when signing unsigned signature
* Add some infrastructure code to support multiple signing
backends
* Fix potential stack overflow in PostScriptFunction::parseCode
* Fix some minor uninitialised memory reads
==== python-anyio ====
- Add patch fix-failing-tls-tests.patch:
* Fix test failures with Python TLS changes.
==== python-attrs ====
Version update (22.2.0 -> 23.1.0)
- Update to 23.1.0:
[#] Backwards-incompatible Changes
* Python 3.6 has been dropped and packaging switched to static
package data using Hatch. #993
[#] Deprecations
* The support for zope-interface via the attrs.validators.provides
validator is now deprecated and will be removed in, or after,
April 2024.
* The presence of a C-based package in our developement dependencies
has caused headaches and we're not under the impression it's used
a lot.
* Let us know if you're using it and we might publish it as a
separate package. #1120
[#] Changes
* attrs.filters.exclude() and attrs.filters.include() now support
the passing of attribute names as strings. #1068
* attrs.has() and attrs.fields() now handle generic classes
correctly. #1079
* Fix frozen exception classes when raised within e.g.
contextlib.contextmanager, which mutates their __traceback__
attributes. #1081
* @frozen now works with type checkers that implement PEP-681 (ex.
pyright). #1084
* Restored ability to unpickle instances pickled before 22.2.0.
[#1085]
* attrs.asdict()'s and attrs.astuple()'s type stubs now accept the
attrs.AttrsInstance protocol. #1090
* Fix slots class cellvar updating closure in CPython 3.8+ even when
__code__ introspection is unavailable. #1092
* attrs.resolve_types() can now pass include_extras to
typing.get_type_hints() on Python 3.9+, and does so by default.
[#1099]
* Added instructions for pull request workflow to CONTRIBUTING.md.
[#1105]
* Added type parameter to attrs.field() function for use with
attrs.make_class().
* Please note that type checkers ignore type metadata passed into
make_class(), but it can be useful if you're wrapping attrs. #1107
* It is now possible for attrs.evolve() (and attr.evolve()) to
change fields named inst if the instance is passed as a positional
argument.
* Passing the instance using the inst keyword argument is now
deprecated and will be removed in, or after, April 2024. #1117
* attrs.validators.optional() now also accepts a tuple of validators
(in addition to lists of validators). #1122
==== python-httpcore ====
Version update (0.16.3 -> 0.17.0)
- update to 0.17.0:
* Add DEBUG level logging. (#648)
* Respect HTTP/2 max concurrent streams when settings updates
are sent by server. (#652)
* Increase the allowable HTTP header size to 100kB. (#647)
* Add `retries` option to SOCKS proxy classes. (#643)
==== python-requests ====
Version update (2.28.2 -> 2.30.0)
- add sle15_python_module_pythons
- Update to 2.30.0:
* Added support for urllib3 2.0. 
* Defer chunked requests to the urllib3 implementation to improve
standardization.
* Relax header component requirements to support bytes/str subclasses.
==== python-responses ====
Version update (0.21.0 -> 0.23.1)
- Update 636-urllib3-2-compat.patch (from
gh#getsentry/responses!636).
- Fix missing runtime requirements
- Remove runtime requirement of typing stubs
- Update to 0.23.1:
- Remove `tomli` import. See #630
- Add Python 3.11 support
- Fix type annotations of `CallList`. See #593
- `request` object is attached to any custom exception provided
as `Response` `body` argument. See #588
- Fixed mocked responses leaking between tests when
`assert_all_requests_are_fired` and a request was not fired.
- [BETA] Default recorder format was changed to YAML.
Added `responses.RequestsMock._parse_response_file` and
`responses._recorder.Recorder.dump_to_file` methods that
allow users to override default parser to eg toml, json
- Update `requests` dependency to the version of 2.22.0 or
higher. See #584.
- [BETA] Added possibility to record responses to TOML files
via `(a)_recorder.record(file_path="out.toml")` decorator.
- [BETA] Added possibility to replay responses
(populate registry) from TOML files via
`responses._add_from_file(file_path="out.toml")` method.
- Fix type for the `mock`'s patcher object. See #556
- Fix type annotation for `CallList`
- Add `passthrough` argument to `BaseResponse` object. See #557
- Fix `registries` leak. See #563
- `OriginalResponseShim` is removed. See #585
- Add support for the `loose` version of `json_params_matcher`
via named argument `strict_match`. See #551
- Add lists support as JSON objects in
`json_params_matcher`. See #559
- Added project links to pypi listing.
- `delete`, `get`, `head`, `options`, `patch`,
`post`, `put` shortcuts are now implemented using
`functools.partialmethod`.
- Fix `MaxRetryError` exception. Replace exception by
`RetryError` according to `requests` implementation. See
[#572].
- Adjust error message when `Retry` is exhausted. See #580.
- Remove py_old_re_Pattern.patch, because we donât care about
compatibility with pre-SLE15-SP4 any more.
- Add compat-urllib3-2.patch and unbundle-urllib3.patch to make
the package compatible with urllib3 >= 2.0 (still not enough
gh#getsentry/responses#635).
==== python-urllib3 ====
Version update (1.26.15 -> 2.0.2)
- update to 2.0.2:
* Fixed ``HTTPResponse.stream()`` to continue yielding bytes if
buffered decompressed data was still available to be read
even if the underlying socket is closed. This prevents
a compressed response from being truncated.
- Update to 2.0.1:
* Fixed a socket leak when fingerprint or hostname verifications fail.
* Fixed an error when HTTPResponse.read(0) was the first read call or when
the internal response body buffer was otherwise empty.
* Removed support for Python 2.7, 3.5, and 3.6.
* Removed fallback on certificate commonName in match_hostname() function.
* Removed support for Python with an ssl module compiled with LibreSSL,
CiscoSSL, wolfSSL, and all other OpenSSL alternatives.
* Removed support for OpenSSL versions earlier than 1.1.1.
* Removed urllib3.contrib.appengine.AppEngineManager and support for Google
App Engine Standard Environment.
* Changed ssl_version to instead set the corresponding
SSLContext.minimum_version and SSLContext.maximum_version values.
* Changed default SSLContext.minimum_version to be TLSVersion.TLSv1_2
in line with Python 3.10.
* Changed urllib3.util.create_urllib3_context to not override the system
cipher suites with a default value.
* Changed multipart/form-data header parameter formatting matches the
WHATWG HTML Standard as of 2021-06-10.
* Changed HTTPConnection.request() to always use lowercase chunk boundaries
when sending requests with Transfer-Encoding: chunked.
* Changed enforce_content_length default to True, preventing silent data
loss when reading streamed responses.
* Changed all parameters in the HTTPConnection and HTTPSConnection
constructors to be keyword-only except host and port.
* Changed HTTPConnection.getresponse() to set the socket timeout from
HTTPConnection.timeout value before reading data from the socket.
* Changed name of Retry.BACK0FF_MAX to be Retry.DEFAULT_BACKOFF_MAX.
* Changed TLS handshakes to use SSLContext.check_hostname when possible.
* Changed the default blocksize to 16KB to match OpenSSL's default read
amounts.
* Changed HTTPResponse.read() to raise an error when calling with
decode_content=False after using decode_content=True to prevent data loss.
* Fixed thread-safety issue where accessing a PoolManager with many
distinct origins would cause connection pools to be closed while
requests are in progress.
* Fixed the default value of HTTPSConnection.socket_options to match
HTTPConnection.
* Fixed a socket leak if HTTPConnection.connect() fails.
- Drop patch remove_mock.patch, included upstream.
- Fiddle with {Build,}Requires as appropiate, six finally dropped.
==== tpm2.0-tools ====
- Disable tests. Some tests randomly fails, maybe dependening on the
OBS worker assigned during the build (not confirmed)
==== tracker ====
Version update (3.5.1 -> 3.5.2)
Subpackages: libtracker-sparql-3_0-0 tracker-data-files tracker-lang
- Update to version 3.5.2:
+ Fix several possible crashers.
+ Fix bashisms in doc generation scripts.
+ Fix ISO8601 date strings in cursors on Darwin.
+ Plug leak.
- Add 63ea8f1a.patch: Revert build: Detect appropriate strftime()
year modifier at build time. Revert upstream commit for now as it
breaks build for i586.
==== tracker-miners ====
Version update (3.5.1 -> 3.5.2)
Subpackages: tracker-miner-files tracker-miners-lang
- Update to version 3.5.2:
+ Fix a number of potential crashers.
+ Fix possibly stuck extractor process.
+ Restore performance lost in 3.5.1 of extractor query to get
unextracted items.
+ Plug memory leak.
==== yast2-storage-ng ====
Version update (4.6.8 -> 4.6.9)
- GuidedProposal: allow Agama to configure exactly what to do with
every existing partition (gh#yast/yast-storage-ng#1337).
- 4.6.9
1
0