Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (115.0.2 -> 115.0.3)
curl (8.2.0 -> 8.2.1)
libqt5-qtwebengine
libzypp (17.31.15 -> 17.31.17)
mozilla-nss
ncurses (6.4.20230701 -> 6.4.20230715)
perl-File-Listing (6.15 -> 6.160.0)
pipewire (0.3.75 -> 0.3.76)
publicsuffix (20230709 -> 20230717)
re2-10
selinux-policy (20230622 -> 20230728)
systemd
wireless-regdb (20230601 -> 20230721)
yast2-users (4.6.2 -> 4.6.4)
zypper (1.14.61 -> 1.14.62)
=== Details ===
==== MozillaFirefox ====
Version update (115.0.2 -> 115.0.3)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 115.0.3
* fixes for other platforms
- remove bashisms from firefox startup script (boo#1213657)
==== curl ====
Version update (8.2.0 -> 8.2.1)
Subpackages: libcurl4
- Update to 8.2.1:
* Bugfixes:
- cfilters: rename close/connect functions to avoid clashes
- ciphers.d: put URL in first column
- cmake: add 'libcurlu'/'libcurltool' for unit tests
- cmake: update ngtcp2 detection
- configure: check for nghttp2_session_get_stream_local_window_size
- docs: mark two TLS options for TLS, not SSL
- docs: provide more see also for cipher options
- hostip: return IPv6 first for localhost resolves
- http2: fix regression on upload EOF handling
- http: VLH, very large header test and fixes
- libcurl-errors.3: add CURLUE_OK
- os400: correct EXPECTED_STRING_LASTZEROTERMINATED
- quiche: fix lookup of transfer at multi
- quiche: fix segfault and other things
- rustls: update rustls-ffi 0.10.0
- socks: print ipv6 address within brackets
- src/mkhelp: strip off escape sequences
- tool: fix tool_seek_cb build when SIZEOF_CURL_OFF_T > SIZEOF_OFF_T
- transfer: do not clear the credentials on redirect to absolute URL
- unittest: remove unneeded *_LDADD
- websocket: rename arguments/variables to match docs
==== libqt5-qtwebengine ====
- build with older re2 on Tumbleweed, the upcoming re2 2023-07-01
breaks qtwebengine
==== libzypp ====
Version update (17.31.15 -> 17.31.17)
- Fix wrong filesize exceeded dl abort in zyppng::Downloader
(bsc#1213673)
In some cases when downloading very small files we can run into
issues when the URL is protected by credentials.
- version 17.31.17 (22)
- Fix negative ZYPP_LOCK_TIMEOUT not waiting forever (bsc#1213231)
- NetworkRequestManager: assert cookie file has mode 0600
(bsc#1158763)
- Don't cleanup orphaned dirs if read-only mode was promised
(bsc#1210740)
- version 17.31.16 (22)
==== mozilla-nss ====
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- Fix file conflict for pp manual page [bsc#1213281]
==== ncurses ====
Version update (6.4.20230701 -> 6.4.20230715)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20230715
+ correct wadd_wch_literal() when adding a non-spacing character to a
double-width character.
+ improve manual page for curs_util.
+ improve manual page for wadd_wch().
- Add ncurses patch 20230708
+ add linux+kbs for terminals which imitate xterm's behavior with
Linux -TD
+ modify MinGW driver to return KEY_BACKSPACE when an unmodified
VK_BACK virtual key is entered (prompted by patch by Pavel Fedin,
Savannah #64292).
+ disallow using $TERMINFO or $HOME/.terminfo when tic "-o" option is
used (report by Sven Joachim, Debian #1040048).
- Port the patch ncurses-6.4.dif
==== perl-File-Listing ====
Version update (6.15 -> 6.160.0)
- updated to 6.16
see /usr/share/doc/packages/perl-File-Listing/Changes
6.16 2023-07-12 15:22:25 -0600
- Support dosftp listings with four-digit years (gh#3, gh#26)
==== pipewire ====
Version update (0.3.75 -> 0.3.76)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.76:
* Highlights
- Fix a regression that would cause the MPV pipewire backend
to fail because of a spurious thread-loop signal.
- Fix a crash when DBus is not found.
- ALSA hires timestamps are now disabled by default.
- Some more fixes and improvements.
* PipeWire
- A new option was added to pw-thread-loop to signal when the
thread starts.
- This is only used in module-rt to avoid regressions in mpv.
(#3374)
- Fix a compilation problem.
- Stream flags now only set the properties when not already
set. This fixes a regression with node autoconnect. (#3382)
* Tools
- pw-cat will now stop when the stream is disconnected. (#2731)
- Improve the pw-cat man page, mention that stdin/stdout
handling is only on raw data.
* modules
- module-rt will now not crash when dbus is not available but
error out as before.
- A new VBAN (vb-audio.com) sender and receiver was added.
(#3380)
* SPA
- Add an option in audioconvert to disable volume updates.
(#3361)
- ALSA hires timestamps are disabled by default because many
drivers seem to give wrong timestamps and cause extra delay.
* bluetooth
- LE Audio support is now enabled by default when liblc3 is
available now that bluez has support for detecting the
hardware features.
==== publicsuffix ====
Version update (20230709 -> 20230717)
- Update to version 20230717:
* Domains are removed `hidora.com`, `users.scale.virtualcloud.com.br`, `clicketcloud.com` (#1598)
* Add storipress.app (#1583)
==== re2-10 ====
- legacy lib package forked from re2, for libqt5-qtwebengine
==== selinux-policy ====
Version update (20230622 -> 20230728)
Subpackages: selinux-policy-targeted
- Update to version 20230728:
* Allow kdump_t to manage symlinks under kdump_var_lib_t (bsc#1213721)
* allow haveged to manage tmpfs directories (bsc#1213594)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-boot systemd-coredump systemd-doc systemd-lang udev
- Drop 0003-strip-the-domain-part-from-etc-hostname-when-setting.patch
/etc/hostname is supposed to contain the static host name of the system. This
patch was used to work around cases where users incorrectly save the FQDN
instead. However this is incorrect and not consistent with what
systemd-hostnamed does and what other distributions do. Also assuming that
/etc/hostname will contain the system host name only removes any ambiguities
since the host name can contain a period.
/etc/hosts is usually where one sets the domain name by aliasing the host name
to the FQDN.
Note that the installer used to save the FQDN in /etc/hostname but this has
been fixed since several years now (bsc#972463).
- systemd-homed is no more considered as experimental
It's been moved to its own dedicated sub-package "systemd-homed".
- systemd-userdb is no more considered as experimental (jsc#PED-2668)
As such it's been moved to the main package.
==== wireless-regdb ====
Version update (20230601 -> 20230721)
- Update to version 20230721:
* wireless-regdb: Update regulatory info for Türkiye (TR)
* wireless-regdb: Update regulatory rules for Egypt (EG) from March 2022 guidelines
==== yast2-users ====
Version update (4.6.2 -> 4.6.4)
- bsc#1211583
- do not pre-fill non-sense user password when going back after
importing user
- 4.6.4
- Allow to edit the NIS master server databases instead of the
local ones, relying on the --prefix argument added to several
commands in the "shadow" package (bsc#1206627).
- 4.6.3
==== zypper ====
Version update (1.14.61 -> 1.14.62)
Subpackages: zypper-log zypper-needs-restarting
- man: revised explanation of --force-resolution (bsc#1213557)
Point out that the option not only allows to remove packages but
may also violate any other active policy if there is no other way
to resolve the job.
- Print summary hint if policies were violated due to
- -force-resolution (bsc#1213557)
- BuildRequires: libzypp-devel >= 17.31.16 (for zypp-tui)
- version 1.14.62
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
7zip
autofs
cloud-init
colord
docker-buildx (0.11.1 -> 0.11.2)
dracut (059+suse.447.g9d1fc722 -> 059+suse.476.g5e324584)
exiv2
freetype2 (2.13.0 -> 2.13.1)
fuse3 (3.15.0 -> 3.15.1)
harfbuzz (7.3.0 -> 8.0.1)
kmod
krb5 (1.20.1 -> 1.21.1)
libX11 (1.8.5 -> 1.8.6)
libgudev (237 -> 238)
libstorage-ng (4.5.123 -> 4.5.127)
libwebp (1.3.0 -> 1.3.1)
openexr (3.1.7 -> 3.1.9)
pipewire (0.3.72 -> 0.3.74)
poppler (23.06.0 -> 23.07.0)
poppler-qt5 (23.06.0 -> 23.07.0)
python-charset-normalizer (3.1.0 -> 3.2.0)
python-jsonschema (4.18.3 -> 4.18.4)
python-referencing (0.29.1 -> 0.30.0)
qemu (8.0.2 -> 8.0.3)
setools
smartmontools
systemd (253.5 -> 253.7)
systemd-presets-branding-openSUSE
taglib (1.13 -> 1.13.1)
xkeyboard-config (2.38 -> 2.39)
xterm (382 -> 384)
zimg (3.0.4 -> 3.0.5)
zlib-ng-compat (2.1.2 -> 2.1.3)
=== Details ===
==== 7zip ====
- Enable ARM64 ASM introduced in 23.01
==== autofs ====
- Add autofs-suse-manpage-remove-initdir.patch
Removes references of initdir from man pages (bsc#1207881)
==== cloud-init ====
- Update cloud-init-write-routes.patch (bsc#1212879)
+ Add necessary import statement
- Enable flake8 linting, fix up patches
+ cloud-init-cve-2023-1786-redact-instance-data-json-main.patch
+ cloud-init-power-rhel-only.patch
+ cloud-init-write-routes.patch
+ datasourceLocalDisk.patch
- Add cloud-init-power-rhel-only.patch (bsc#1210273)
+ Config module cc_refresh_rmc_and_interface is implemented such that
it will only work on RH distros. Set the module availability accordingly.
- Sensitive data exposure (bsc#1210277, CVE-2023-1786)
+ Add hidesensitivedata
+ Add cloud-init-cve-2023-1786-redact-inst-data.patch
+ Do not expose sensitive data gathered from the CSP
==== colord ====
Subpackages: colord-color-profiles libcolord2 libcolorhug2
- Tune _constraints for various architectures.
==== docker-buildx ====
Version update (0.11.1 -> 0.11.2)
- Update to version 0.11.2:
* vendor: github.com/moby/buildkit
v0.12.1-0.20230717122532-faa0cc7da353
* vendor: github.com/tonistiigi/fsutil
v0.0.0-20230629203738-36ef4d8c0dbb
* vendor: github.com/xeipuuv/gojsonpointer
v0.0.0-20190905194746-02993c407bfb
* tests: set a dedicated buildx config dir for each worker
* ci: run docker-container tests in parallel
* tests: share single docker between docker-container backends
* vendor: update buildkit to master@2d91ddcceedc
* k8s: fix missing kubeconfig check from endpoint
* build: mark result handle build as internal
* util/imagetools: remove unused Resolver.ImageConfig
* hack(generated-files): bump golang image to bookworm
* update go to 1.20.6
* hack: force go version to 1.20.5
* vendor: github.com/docker/docker@24.0 36e9e79
==== dracut ====
Version update (059+suse.447.g9d1fc722 -> 059+suse.476.g5e324584)
Subpackages: dracut-ima
- Update to version 059+suse.476.g5e324584:
This is the 2nd backport of the most important fixes and features from the upstream master branch,
while the release date of version 060 is still undefined.
Features:
* feat(network-wicked): remove module
* feat(systemd-rfkill): remove module
* feat(livenet): add memory size check depending on live image size
* feat(nvmf): add code for parsing the NBFT
Fixes:
* fix(systemd-sysext): handle confexts and correct extensions search path
* fix(modsign): load keys to correct keyring
* fix(dmsquash-live-autooverlay): specify filesystemtype when it is already known
* fix(fs-lib): remove quoting form the first argument of the e2fsck call
* fix(Makefile): remove leftover rpm build rules
* fix(Makefile): no longer upload to kernel.org
* fix(nvmf): support /etc/nvme/config.json
* fix(nvmf): install 8021q module unconditionally
* fix(install.d): respect even more kernel-install vars, plus style fixes
* fix(install.d): respect more kernel-install env variables
* fix(dracut.sh): also prevent fsfreeze for tmpfs
* fix(dmsquash-live): allow other fstypes
* fix(bluetooth): make bluetooth rules more strict
* fix(bluetooth): add missing files
* fix(bluetooth): include it if Appearance matches the value assigned for keyboard
* fix(btrfs): do not require module via cmdline when --no-kernel
* fix(btrfs): add missing cmdline function
Other:
* refactor(dracut-init.sh): remove redundant "dracut" from "dracut module" prints
* refactor(virtiofs): remove exit after die
* build: remove rpm spec file and build rules
* docs: remove rd.lvm.snapsize and rd.lvm.snapshot
* chore(gentoo.conf): remove examples to avoid confusion
* chore: remove git2spec.pl, it is no longer used
==== exiv2 ====
- add exiv2-metadata-null-checks.patch fixes gwenview crashes and
other apps https://github.com/Exiv2/exiv2/issues/2638
==== freetype2 ====
Version update (2.13.0 -> 2.13.1)
- update to 2.13.1:
* New function `FT_Get_Default_Named_Instance` to get the
index of the default named instance of an OpenType Variation
Font. A new load flag `FT_LOAD_NO_SVG` to make FreeType ignore
glyphs in an 'SVG ' table.
* New function `FT_GlyphSlot_AdjustWeight` to adjust
the glyph weight either horizontally or vertically.
This is part of the `ftsynth.h` header file
* TrueType interpreter version 38 (also known as
'Infinality') has been deactivated; the value of
`TT_INTERPRETER_VERSION_38` is now the same as
`TT_INTERPRETER_VERSION_40`.
* Switching named instances on and off in Variation Fonts
was buggy if the design coordinates didn't change.
- drop enable-infinality-subpixel-hinting.patch (obsolete, infinality
is deactivated)
==== fuse3 ====
Version update (3.15.0 -> 3.15.1)
Subpackages: libfuse3-3
- Update to release 3.15.1
* Reduce default write size by half
==== harfbuzz ====
Version update (7.3.0 -> 8.0.1)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0
- Update to version 8.0.1:
+ Build fix on 32-bit arm.
+ More speed optimizations:
- 60% speedup in retaingids subsetting SourceHanSans-VF.
- 38% speed up in subsetting (beyond-64k) mega-merged Noto.
- 16% speed up in retain-gid (used for IFT) subsetting of
NotoSansCJKkr.
- Changes from version 8.0.0:
+ New, experimental, WebAssembly (WASM) shaper, that provides
greater flexibility over OpenType/AAT/Graphite shaping, using
WebAssembly embedded inside the font file. Currently WASM
shaper is disabled by default and needs to be enabled at build
time.
+ Improvements to Experimental features introduced in earlier
releases:
- Support for subsetting beyond-64k and VarComposites fonts.
- Support for instancing variable fonts with cubic âglyfâ
table.
- Many big speed optimizations.
==== kmod ====
Subpackages: kmod-bash-completion libkmod2
- Edit usr-lib-modules.patch to /lib/modules provide fallback
behavior for successfully running `make modules_install` in
pristine tarballs.
==== krb5 ====
Version update (1.20.1 -> 1.21.1)
- update to 1.121.1 (CVE-2023-36054):
* Fix potential uninitialized pointer free in kadm5 XDR parsing
[CVE-2023-36054].
* Added a credential cache type providing compatibility with
the macOS 11 native credential cache.
* libkadm5 will use the provided krb5_context object to read
configuration values, instead of creating its own.
* Added an interface to retrieve the ticket session key
from a GSS context.
* The KDC will no longer issue tickets with RC4 or triple-DES
session keys unless explicitly configured with the new
allow_rc4 or allow_des3 variables respectively.
* The KDC will assume that all services can handle aes256-sha1
session keys unless the service principal has a
session_enctypes string attribute.
* Support for PAC full KDC checksums has been added to
mitigate an S4U2Proxy privilege escalation attack.
* The PKINIT client will advertise a more modern set
of supported CMS algorithms.
* Removed unused code in libkrb5, libkrb5support,
and the PKINIT module.
* Modernized the KDC code for processing TGS requests,
the code for encrypting and decrypting key data,
the PAC handling code, and the GSS library packet
parsing and composition code.
* Improved the test framework's detection of memory
errors in daemon processes when used with asan.
==== libX11 ====
Version update (1.8.5 -> 1.8.6)
Subpackages: libX11-6 libX11-data libX11-xcb1
- update to 1.8.6:
* InitExt.c: Add bounds checks for extension request,
event, & error codes
* Fixes CVE-2023-3138: X servers could return values from
XQueryExtension that would cause Xlib to write entries
out-of-bounds of the arrays to store them, though this
would only overwrite other parts of the Display
struct, not outside the bounds allocated for that
structure.
- drop U_InitExt.c-Add-bounds-checks-for-extension-request-ev.patch (upstream)
==== libgudev ====
Version update (237 -> 238)
- Update to version 238:
* Fix newline stripping
* Add g_udev_device_get_current_tags()
* Add a number of tests, and devel docs
* Fix devhelp not being able to find the docs
* Skip locale test with locale isn't available
- Drop patches fixed upstream:
* 71b2fda04dd71c637361e8ead103980ad6f27ed5.patch
* 4216ecd4513bd4c8af73543817a51d6f72f166cc.patch
==== libstorage-ng ====
Version update (4.5.123 -> 4.5.127)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#941
- added get_version_string function
- 4.5.127
- merge gh#openSUSE/libstorage-ng#940
- wait for block device before using blkdiscard
- 4.5.126
- merge gh#openSUSE/libstorage-ng#939
- wait for block device before using wipefs (bsc#1213420)
- coding style
- 4.5.125
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.124
==== libwebp ====
Version update (1.3.0 -> 1.3.1)
Subpackages: libsharpyuv0 libwebp7 libwebpdemux2 libwebpmux3
- Update to version 1.3.1:
* security fixes for lossless encoder (CVE-2023-1999)
* improve error reporting through WebPPicture error codes
* fix upsampling for RGB565 and RGBA4444 in NEON builds
* img2webp: add -sharp_yuv & -near_lossless
* fix webp_js with emcc >= 3.1.27 (stack size change)
* CMake fixes
* further updates to the container and lossless bitstream docs
- Drop libwebp-double-free.patch: fixed upstream.
==== openexr ====
Version update (3.1.7 -> 3.1.9)
Subpackages: libIex-3_1-30 libIlmThread-3_1-30 libOpenEXR-3_1-30
- Add patch to fix regression on non-SSE architectures
https://github.com/AcademySoftwareFoundation/openexr/issues/1460:
* 1488.patch
- Also disable 'DWA[AB]Compression' test on aarch64 as the patch
above fixes the issue for all targets, except aarch64
- version update to 3.1.9
* Patch release that addresses miscelleneous build and doc issues, as well as:
. OSS-fuzz 59382 Heap-buffer-overflow in internal_huf_decompress
- update to 3.1.8:
* Support for DWA compression in OpenEXRCore
* Fix OSS-fuzz 59070 Stack-buffer-overflow in
DwaCompressor_readChannelRules
==== pipewire ====
Version update (0.3.72 -> 0.3.74)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.74:
* Highlights
- Fix a critical bug where audio to bluetooth devices would cut
out randomly.
- Improve RAOP compatibility.
- Avoid crashes after an update.
- Small fixes and improvements.
* PipeWire
- Mix info on port is now created explicitly.
- Remove the node as a driver peer when stopping. This caused
some problem with playback on and other remote bluetooth
devices.
- Work on avoiding crashes when loading new modules that use
internal API with old libpipewire. This is typical after an
update where the old library is still loaded by an
application but when a new stream is created, updated modules
are loaded.
* Modules
- The RTP source module now has an option to ignore the SSRC,
which is useful to continue to receive the stream when the
sender is restarted.
- The native protocol will refuse to load twice now instead of
silently ignoring the error.
- module-raop is compatible with more devices.
* SPA
- plugins will now warn when running out of buffers. This is
always a bad thing.
- Merge scope based cleanup macros.
- Add ratelimit function.
- Update to version 0.3.73:
* Highlights
- Fixes an ALSA resume after suspend error.
- Handle and disable seemingly wrong hires timestamps from
ALSA.
- Filter-chain now has loadable plugin modules. The LV2 and
sofa plugins are moved to a separate .so file to make things
more modular.
- Rate changes in the graph should now be handled more
gracefully by loopback and filter-chain.
- A regression in the rtp-sap module was fixed where it would
in some cases fail to start.
- A potential crash in the peaks resampler was fixed.
- Many cleanups and other small bug fixes.
* PipeWire
- Fix a potential segfault when no fallback driver was set in
the config.
- Improve OPUS detection.
- Add ASYNC flag to pw-filter and pw-stream when queue/dequeue
is not called from the process function. This ensure we
allocate an extra buffer.
- Discard pending process callbacks when disconnecting.
- Cleanups and improvements to the debug environment variable
parsing.
- The graph rate was tweaked to better handle very low rates
 such as those requested by pavucontrol when it does the
signal monitoring.
* Modules
- An example filter module was added.
- Filter-chain and loopback now disable the resamplers if no
rate is specified and will always follow the graph rate.
- Improve setup of filter-chain. The graph is now created when
starting because this ensure the target graph rate is known.
- Filter-chain can now link notify ports to control ports in
the graph.
- Filter-chain now has loadable plugin modules. The LV2 and
sofa plugins are moved to a separate .so file.
- A regression in the rtp-sap module was fixed where it would
in some cases fail to start.
- Module-rt now has options to disable rlimits, portal and
rtkit.
- module-raop-discover now has an options to set the latency.
* Tools
- pw-cat now supports overriding all stream properties.
* SPA
- Disable rate negotiation when the resampler is disabled. We
will always follow the graph rate.
- Set device.icon property for UCM ports as well.
- Improve ALSA recover when using hires timestamps. This fixes
some problems after resume from suspend.
- ALSA will now warn and disable hires timestamp when they seem
wrong.
They can also be disabled manually with a property.
- V4l2 will now gracefully handle ENOTTY when enumerating frame
sizes and frame rates.
- A potential crash in the peaks resampler was fixed.
* pulse-server
- A client crash in pavucontrol is avoided by always setting a
card name.
- The graph rate is now taken correctly when using the FIX
flags.
- An option was added to ignore the FIX flags of a stream. Also
the documentation for those options was updated.
- module-raop-discover now support latency_msec.
* Bluetooth
- Remove an assert and issue a warning/recover instead when a
buffer is too small.
* GStreamer
- The device provider does locking when destroying the
registry.
==== poppler ====
Version update (23.06.0 -> 23.07.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools
- update to 23.07.0:
core:
* Fix reading of utf8-with-bom files
* Fix crash if CERT_ExtractPublicKey doesn't return a public
key
* Fix rendering of some malformed documents. Issue #1395
* Allow for stream compression and compress font streams in
forms Remove method Hints::getPageRanges
qt5:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
qt6:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
utils:
* pdfsig: Allow showung and selecting signature backend
* pdfsig: Describe signature dump format in manual page
==== poppler-qt5 ====
Version update (23.06.0 -> 23.07.0)
- update to 23.07.0:
core:
* Fix reading of utf8-with-bom files
* Fix crash if CERT_ExtractPublicKey doesn't return a public
key
* Fix rendering of some malformed documents. Issue #1395
* Allow for stream compression and compress font streams in
forms Remove method Hints::getPageRanges
qt5:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
qt6:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
utils:
* pdfsig: Allow showung and selecting signature backend
* pdfsig: Describe signature dump format in manual page
==== python-charset-normalizer ====
Version update (3.1.0 -> 3.2.0)
- update to 3.2.0:
* Typehint for function `from_path` no longer enforce
`PathLike` as its first argument
* Minor improvement over the global detection reliability
* Introduce function `is_binary` that relies on main
capabilities, and optimized to detect binaries
* Propagate `enable_fallback` argument throughout `from_bytes`,
`from_path`, and `from_fp` that allow a deeper control over
the detection (default True)
* Edge case detection failure where a file would contain 'very-
long' camel cased word (Issue #289)
==== python-jsonschema ====
Version update (4.18.3 -> 4.18.4)
- update to 4.18.4:
no changelog available, only a diff:
https://github.com/python-jsonschema/jsonschema/compare/v4.18.3...v4.18.4
==== python-referencing ====
Version update (0.29.1 -> 0.30.0)
- Update to version 0.30.0:
* Declare support for 3.12.
* Update the referencing suite.
- Update to version 0.29.3:
* Spelling.
- Update to version 0.29.2:
* Improve the hashability of exceptions when they contain
hashable data.
* [pre-commit.ci] pre-commit autoupdate
* Bump suite from `9335e4a` to `fe891e8`
==== qemu ====
Version update (8.0.2 -> 8.0.3)
- Update to version 8.0.3:
* See full log: https://lists.nongnu.org/archive/html/qemu-stable/2023-07/msg00086.html
* Security issues fixed:
- 9pfs: prevent opening special files (CVE-2023-2861)
- vhost-vdpa (CVE-2023-3301)
* Use the official xkb name for Arabic layout, not the
legacy synonym (bsc#1212966)
* [openSUSE][RPM] Update to version 8.0.3
==== setools ====
Subpackages: python311-setools setools-console
- Add python3-setuptools as a runtime requirement of python3-setools
(boo#1213305)
==== smartmontools ====
- smartmontools.generate_smartd_opts.in: Fix generated options when
SMARTD_SAVESTATES or SMARTD_ATTRLOG are set to "no" (bsc#1207461).
==== systemd ====
Version update (253.5 -> 253.7)
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc udev
- Import commit 2dac0aff9ced1eca0cd11c24e264b33095ee5a5e (merge of v253.7)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/6458c066547eaadf0e9709e441ea36a…
- Import commit 6458c066547eaadf0e9709e441ea36ad03faa860 (merge of v253.6)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/07bb12a282b0ea378850934c4a76008…
- Drop 5002-Revert-core-service-when-resetting-PID-also-reset-kn.patch, it's
been backported to v253.6.
- Move a bunch of files from systemd to udev. These are pretty useless without
block devices.
==== systemd-presets-branding-openSUSE ====
- enable the various libvirt modular daemons (boo#1212195)
==== taglib ====
Version update (1.13 -> 1.13.1)
- Update to version 1.13.1:
* Fixed parsing of TXXX frames without description.
* Detect MP4 atoms with invalid length or type.
* Do not miss ID3v2 frames when an extended header is present.
* Use property "DISCSUBTITLE" for ID3v2 "TSST" frame.
* Build system improvements: Use absolute path for macOS dylib install name,
support --define-prefix when using pkg-config, fixed minimum required
CppUnit version.
* Code clean up using clang-tidy.
==== xkeyboard-config ====
Version update (2.38 -> 2.39)
- Update to version 2.39
* another bugfix release; also needed for changes for the Amharic
(am_ET.UTF-8) compose key sequences in libX11 1.8.5 (see
corresponding changelog entry in libX11 package); removes old
remappings like ar --> ara (git db45bd75, 470ad2cd) [breaks
current qemu build]
==== xterm ====
Version update (382 -> 384)
Subpackages: xterm-bin xterm-resize
- update to 384:
* exclude ASCII space from showMissingGlyphs, since a few
bitmap fonts lack this
* correct a step in rendering double-width characters
with bitmap-fonts
* fixes for ReGIS-related problems:
* mimic an undocumented hardware VT340 feature
which handles color initialization with incomplete parameters.
* handle whitespace between operator/operands for
color values.
* reset ReGIS-context when resetting graphics in RIS.
==== zimg ====
Version update (3.0.4 -> 3.0.5)
- Update to 3.0.5
* colorspace: add ST.428-1 (gamma 2.6) transfer function
* depth: fix AVX-512 integer to float border handling (introduced in 2.6)
* depth: fix NEON dither border handling (introduced in 3.0)
* graph: fix clipping in alpha premultiplication (introduced in 3.0)
* x86: optimizations for AMD Zen4 processors
- Drop e29571.patch
==== zlib-ng-compat ====
Version update (2.1.2 -> 2.1.3)
- update to 2.1.3:
* Fix endless loop bug in chunkcopy_safe. #1526
* Support using distro-supplied Gtest #1519
* Minor code cleanup of deflate.c #1500
* Improve buildsystem detection of ARM Cortex #1521
* Cross-compiling and little-endian fixes #1518 #1520
* Optimize compare256 using RVV #1498
* Optimize slide_hash using RVV #1522
- drop 1526.patch (upstream)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
bind (9.18.16 -> 9.18.17)
elfutils-debuginfod
hwinfo (23.1 -> 23.2)
kernel-source (6.4.3 -> 6.4.4)
libva (2.18.0 -> 2.19.0)
libva-gl (2.18.0 -> 2.19.0)
nghttp2 (1.54.0 -> 1.55.1)
openssh (9.3p1 -> 9.3p2)
openssh-askpass-gnome (9.3p1 -> 9.3p2)
openssl-3
python-jsonschema-specifications (2023.6.1 -> 2023.7.1)
python-rich
qalculate (4.6.1 -> 4.7.0)
sof-firmware (2.2.5 -> 2.2.6)
systemd (253.5 -> 253.7)
sysuser-tools
tar
update-alternatives (1.21.8 -> 1.21.22)
webkit2gtk3 (2.40.3 -> 2.40.4)
webkit2gtk4 (2.40.3 -> 2.40.4)
=== Details ===
==== bind ====
Version update (9.18.16 -> 9.18.17)
- Update to release 9.18.17
Feature Changes:
* If a response from an authoritative server has its RCODE set to
FORMERR and contains an echoed EDNS COOKIE option that was
present in the query, named now retries sending the query to
the same server without an EDNS COOKIE option.
* The relaxed QNAME minimization mode now uses NS records. This
reduces the number of queries named makes when resolving, as it
allows the non-existence of NS RRsets at non-referral nodes to
be cached in addition to the normally cached referrals.
Bug Fixes:
* The ability to read HMAC-MD5 key files, which was accidentally
lost in BIND 9.18.8, has been restored.
* Several minor stability issues with the catalog zone
implementation have been fixed.
==== elfutils-debuginfod ====
Subpackages: debuginfod-profile libdebuginfod1
- Replace libdebuginfo1 sub-package's debuginfod-profile Recommends
with config(debuginfod-profile) Requires, but on the debuginfod-\
client sub-package, instead. And add binutils, bpftrace-tools,
elfutils, gdb, perf, systemd-coredump, and valgrind Supplements
to debuginfod-client sub-package. This should make installation
of debuginfod-client more consistent, along with debuginfod-\
profile, with software/packages that have debuginfod support.
==== hwinfo ====
Version update (23.1 -> 23.2)
Subpackages: libhd23
- merge gh#openSUSE/hwinfo#128
- Add support for loongarch cpu
- 23.2
==== kernel-source ====
Version update (6.4.3 -> 6.4.4)
- Linux 6.4.4 (bsc#1012628).
- start_kernel: Add __no_stack_protector function attribute
(bsc#1012628).
- USB: serial: option: add LARA-R6 01B PIDs (bsc#1012628).
- usb: dwc3: gadget: Propagate core init errors to UDC during
pullup (bsc#1012628).
- phy: tegra: xusb: Clear the driver reference in usb-phy dev
(bsc#1012628).
- extcon: usbc-tusb320: Unregister typec port on driver removal
(bsc#1012628).
- dt-bindings: iio: ad7192: Add mandatory reference voltage source
(bsc#1012628).
- iio: addac: ad74413: don't set DIN_SINK for functions other
than digital input (bsc#1012628).
- iio: adc: ad7192: Fix null ad7192_state pointer access
(bsc#1012628).
- iio: adc: ad7192: Fix internal/external clock selection
(bsc#1012628).
- iio: accel: fxls8962af: errata bug only applicable for
FXLS8962AF (bsc#1012628).
- iio: accel: fxls8962af: fixup buffer scan element type
(bsc#1012628).
- Revert "drm/amd/display: edp do not add non-edid timings"
(bsc#1012628).
- fs: pipe: reveal missing function protoypes (bsc#1012628).
- s390/kasan: fix insecure W+X mapping warning (bsc#1012628).
- blk-mq: don't queue plugged passthrough requests into scheduler
(bsc#1012628).
- block: Fix the type of the second bdev_op_is_zoned_write()
argument (bsc#1012628).
- block/rq_qos: protect rq_qos apis with a new lock (bsc#1012628).
- splice: Fix filemap_splice_read() to use the correct inode
(bsc#1012628).
- erofs: kill hooked chains to avoid loops on deduplicated
compressed images (bsc#1012628).
- x86/resctrl: Only show tasks' pid in current pid namespace
(bsc#1012628).
- fsverity: use shash API instead of ahash API (bsc#1012628).
- fsverity: don't use bio_first_page_all() in
fsverity_verify_bio() (bsc#1012628).
- blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost
(bsc#1012628).
- x86/sev: Fix calculation of end address based on number of pages
(bsc#1012628).
- blk-cgroup: Reinit blkg_iostat_set after clearing in
blkcg_reset_stats() (bsc#1012628).
- virt: sevguest: Add CONFIG_CRYPTO dependency (bsc#1012628).
- blk-mq: fix potential io hang by wrong 'wake_batch'
(bsc#1012628).
- lockd: drop inappropriate svc_get() from locked_get()
(bsc#1012628).
- nvme-core: fix memory leak in dhchap_secret_store (bsc#1012628).
- nvme-core: fix memory leak in dhchap_ctrl_secret (bsc#1012628).
- nvme-core: add missing fault-injection cleanup (bsc#1012628).
- nvme-core: fix dev_pm_qos memleak (bsc#1012628).
- md/raid10: check slab-out-of-bounds in md_bitmap_get_counter
(bsc#1012628).
- md/raid10: fix overflow of md/safe_mode_delay (bsc#1012628).
- md/raid10: fix wrong setting of max_corr_read_errors
(bsc#1012628).
- md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request
(bsc#1012628).
- md/raid10: fix io loss while replacement replace rdev
(bsc#1012628).
- md/raid1-10: factor out a helper to add bio to plug
(bsc#1012628).
- md/raid1-10: factor out a helper to submit normal write
(bsc#1012628).
- md/raid1-10: submit write io directly if bitmap is not enabled
(bsc#1012628).
- block: fix blktrace debugfs entries leakage (bsc#1012628).
- irqchip/loongson-eiointc: Fix irq affinity setting during resume
(bsc#1012628).
- splice: don't call file_accessed in copy_splice_read
(bsc#1012628).
- irqchip/stm32-exti: Fix warning on initialized field overwritten
(bsc#1012628).
- irqchip/jcore-aic: Fix missing allocation of IRQ descriptors
(bsc#1012628).
- svcrdma: Prevent page release when nothing was received
(bsc#1012628).
- erofs: fix compact 4B support for 16k block size (bsc#1012628).
- posix-timers: Prevent RT livelock in itimer_delete()
(bsc#1012628).
- tick/rcu: Fix bogus ratelimit condition (bsc#1012628).
- tracing/timer: Add missing hrtimer modes to
decode_hrtimer_mode() (bsc#1012628).
- btrfs: always read the entire extent_buffer (bsc#1012628).
- btrfs: don't use btrfs_bio_ctrl for extent buffer reading
(bsc#1012628).
- btrfs: return bool from lock_extent_buffer_for_io (bsc#1012628).
- btrfs: submit a writeback bio per extent_buffer (bsc#1012628).
- btrfs: fix range_end calculation in extent_write_locked_range
(bsc#1012628).
- btrfs: don't fail writeback when allocating the compression
context fails (bsc#1012628).
- btrfs: only call __extent_writepage_io from
extent_write_locked_range (bsc#1012628).
- btrfs: don't treat zoned writeback as being from an async
... changelog too long, skipping 1321 lines ...
- commit f6ca0bc
==== libva ====
Version update (2.18.0 -> 2.19.0)
Subpackages: libva-drm2 libva-x11-2 libva2
- Update to 2.19.0:
* add: Add mono_chrome to VAEncSequenceParameterBufferAV1
* add: Enable support for license acquisition of multiple protected
playbacks
* fix: use secure_getenv instead of getenv
* trace: Improve and add VA trace log for AV1 encode
* trace: Unify va log message, replace va_TracePrint with va_TraceMsg.
==== libva-gl ====
Version update (2.18.0 -> 2.19.0)
- Update to 2.19.0:
* add: Add mono_chrome to VAEncSequenceParameterBufferAV1
* add: Enable support for license acquisition of multiple protected
playbacks
* fix: use secure_getenv instead of getenv
* trace: Improve and add VA trace log for AV1 encode
* trace: Unify va log message, replace va_TracePrint with va_TraceMsg.
==== nghttp2 ====
Version update (1.54.0 -> 1.55.1)
- update to 1.55.1:
* Fix memory leak
This commit fixes memory leak that happens when
PUSH_PROMISE or HEADERS frame cannot be sent, and
nghttp2_on_stream_close_callback fails with a fatal error.
For example, if GOAWAY frame has been received, a
HEADERS frame that opens new stream cannot be sent.
This issue has already been made public via CVE-2023-35945
by envoyproxy/envoy project. During embargo period, the
patch to fix this bug was accidentally submitted to
nghttp2/nghttp2 repository [2]. And they decided to
disclose CVE early. I was notified just 1.5 hours
before disclosure. I had no time to respond.
PoC described in [1] is quite simple, but I think it is
not enough to trigger this bug. While it is true that
receiving GOAWAY prevents a client from opening new stream,
and nghttp2 enters error handling branch, in order to cause
the memory leak, nghttp2_session_close_stream function
must return a fatal error.
NGHTTP2_ERR_NOMEM, as its name suggests, indicates out of
memory. It is unlikely that a process gets short of
memory with this simple PoC scenario unless application
does something memory heavy processing.
* NGHTTP2_ERR_CALLBACK_FAILURE is returned from application
defined callback function (nghttp2_on_stream_close_callback, in
this case), which indicates something fatal happened inside a
callback, and a connection must be closed immediately without
any further action. As nghttp2_on_stream_close_error_callback
documentation says, any error code other than 0 or
NGHTTP2_ERR_CALLBACK_FAILURE is treated as fatal
error code. More specifically, it is treated as if
NGHTTP2_ERR_CALLBACK_FAILURE is returned. I guess that
envoy returns
NGHTTP2_ERR_CALLBACK_FAILURE or other error code which is
translated into NGHTTP2_ERR_CALLBACK_FAILURE.
https://github.com/envoyproxy/envoy/security/advisories/GHSA-
jfxv-29pc-x22r
==== openssh ====
Version update (9.3p1 -> 9.3p2)
Subpackages: openssh-clients openssh-common openssh-server
- Update to openssh 9.3p2 (bsc#1213504, CVE-2023-38408):
Security
========
Fix CVE-2023-38408 - a condition where specific libaries loaded via
ssh-agent(1)'s PKCS#11 support could be abused to achieve remote
code execution via a forwarded agent socket if the following
conditions are met:
* Exploitation requires the presence of specific libraries on
the victim system.
* Remote exploitation requires that the agent was forwarded
to an attacker-controlled system.
Exploitation can also be prevented by starting ssh-agent(1) with an
empty PKCS#11/FIDO allowlist (ssh-agent -P '') or by configuring
an allowlist that contains only specific provider libraries.
This vulnerability was discovered and demonstrated to be exploitable
by the Qualys Security Advisory team.
In addition to removing the main precondition for exploitation,
this release removes the ability for remote ssh-agent(1) clients
to load PKCS#11 modules by default (see below).
Potentially-incompatible changes
- -------------------------------
* ssh-agent(8): the agent will now refuse requests to load PKCS#11
modules issued by remote clients by default. A flag has been added
to restore the previous behaviour "-Oallow-remote-pkcs11".
Note that ssh-agent(8) depends on the SSH client to identify
requests that are remote. The OpenSSH >=8.9 ssh(1) client does
this, but forwarding access to an agent socket using other tools
may circumvent this restriction.
==== openssh-askpass-gnome ====
Version update (9.3p1 -> 9.3p2)
- Update to openssh 9.3p2
* No changes for askpass, see main package changelog for
details
==== openssl-3 ====
Subpackages: libopenssl3
- Security fix: [bsc#1213487, CVE-2023-3446]
* Fix DH_check() excessive time with over sized modulus.
* The function DH_check() performs various checks on DH parameters.
One of those checks confirms that the modulus ("p" parameter) is
not too large. Trying to use a very large modulus is slow and
OpenSSL will not normally use a modulus which is over 10,000 bits
in length.
However the DH_check() function checks numerous aspects of the
key or parameters that have been supplied. Some of those checks
use the supplied modulus value even if it has already been found
to be too large.
A new limit has been added to DH_check of 32,768 bits. Supplying
a key/parameters with a modulus over this size will simply cause
DH_check() to fail.
* Add openssl-CVE-2023-3446.patch openssl-CVE-2023-3446-test.patch
- Security fix: [bsc#1213383, CVE-2023-2975]
* AES-SIV implementation ignores empty associated data entries
* Add openssl-CVE-2023-2975.patch
==== python-jsonschema-specifications ====
Version update (2023.6.1 -> 2023.7.1)
- update to 2023.7.1:
no changelog, only diff available at
https://github.com/python-jsonschema/jsonschema-specifications/compare/v202…
==== python-rich ====
- %{?sle15_python_module_pythons} mut be at beginning to work.
==== qalculate ====
Version update (4.6.1 -> 4.7.0)
Subpackages: libqalculate22 qalculate-data
- version update to 4.7.0
* Support for custom default angle unit, e.g. turn, arcsec, arcmin
* Append default angle unit (instead of always radians) when converting
value without unit to angle unit
* More consistent addition and removal of angle unit from function arguments
* Always interpret ./, .*, and .^ as entrywise operators if user intention is unclear
* Change order of operations to place entrywise and ordinary operators on
the same precedence level
* Add function, kron(), for Kronecker product, and constants for Pauli matrices
* Add radius to planets dataset and update other properties
* Support replacement of unknown variables within variable values
* Fix besselj(0, 0)
* Fix incomplete calculation in tan() with try exact approximation
* Fix 0/0=0 equality (do not return true) and output of 2/0 (and similar)
* Fixes and improvements for newtonsolve() and secantsolve()
* Fix segfault when MathStructure is deleted after Calculator, and in destructor
of calculated DynamicVariable (called from Calculator destructor)
* Do not save mode on exit if "-defaults" command line switch where used (CLI)
* Allow multiple actions for keyboard shortcuts (GTK, Qt)
* Add toggle precision, and min, max, or min and max decimals to available
shortcut and button actions (GTK, Qt)
* Add option to exclude units for unformatted ASCII copy (GTK, Qt)
* Add optional value to copy result action, allowing expression copy and
formatting selection (GTK, Qt)
* Fix copy unformatted ASCII when local digit group separator is same as selected
decimal separator (GTK, Qt)
* Add option to automatically copy result (Qt)
* Always set (primary) selection clipboard contents when whole expression is
selected or selection is cleared, e.g. after calculation (Qt)
* Improve support dark mode and high contrast modes, and change default style
to Fusion, on Windows (Qt)
* Minor bug fixes and feature enhancements
==== sof-firmware ====
Version update (2.2.5 -> 2.2.6)
- Update to version 2.2.6:
There's no FW binary change. This release adds a few new topology binaries
for Intel Tiger Lake (TGL), Alder Lake (ADL) and Raptor Lake (RPL) platforms
- Add Notice.NXP
==== systemd ====
Version update (253.5 -> 253.7)
Subpackages: libsystemd0 libudev1 systemd-boot systemd-coredump systemd-doc systemd-lang udev
- Import commit 2dac0aff9ced1eca0cd11c24e264b33095ee5a5e (merge of v253.7)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/6458c066547eaadf0e9709e441ea36a…
- Import commit 6458c066547eaadf0e9709e441ea36ad03faa860 (merge of v253.6)
For a complete list of changes, visit:
https://github.com/openSUSE/systemd/compare/07bb12a282b0ea378850934c4a76008…
- Drop 5002-Revert-core-service-when-resetting-PID-also-reset-kn.patch, it's
been backported to v253.6.
- Move a bunch of files from systemd to udev. These are pretty useless without
block devices.
==== sysuser-tools ====
- Add "quilt setup" friendly hint to %sysusers_requires usage
It is not required to have sysuser-tools installed when working
with a pkg source which uses sysuser-tools at build time.
==== tar ====
Subpackages: tar-lang tar-rmt
- Update tests-skip-time01-on-32bit-time_t.patch to not run test
on armv6 either
==== update-alternatives ====
Version update (1.21.8 -> 1.21.22)
- openssl.patch: use openssl library for MD5 calculation instead
of relying on libmd. libmd is not in Ring0
- require Perl 5.28.1 or later
==== webkit2gtk3 ====
Version update (2.40.3 -> 2.40.4)
Subpackages: WebKitGTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.40.4:
+ Fix a bug in JavaScript reading variable arguments in a call.
==== webkit2gtk4 ====
Version update (2.40.3 -> 2.40.4)
Subpackages: WebKitGTK-6.0-lang libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.40.4:
+ Fix a bug in JavaScript reading variable arguments in a call.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
7zip
dracut (059+suse.447.g9d1fc722 -> 059+suse.476.g5e324584)
exiv2
kmod
libX11 (1.8.5 -> 1.8.6)
libstorage-ng (4.5.123 -> 4.5.127)
libwebp (1.3.0 -> 1.3.1)
libyajl
openexr
pipewire (0.3.72 -> 0.3.74)
python-jsonschema (4.18.3 -> 4.18.4)
python-referencing (0.29.1 -> 0.30.0)
qemu (8.0.2 -> 8.0.3)
setools
systemd-presets-branding-openSUSE
taglib (1.13 -> 1.13.1)
xkeyboard-config (2.38 -> 2.39)
yast2-trans (84.87.20230708.d1de37aed1 -> 84.87.20230714.966688ddd0)
=== Details ===
==== 7zip ====
- Enable ARM64 ASM introduced in 23.01
==== dracut ====
Version update (059+suse.447.g9d1fc722 -> 059+suse.476.g5e324584)
Subpackages: dracut-ima
- Update to version 059+suse.476.g5e324584:
This is the 2nd backport of the most important fixes and features from the upstream master branch,
while the release date of version 060 is still undefined.
Features:
* feat(network-wicked): remove module
* feat(systemd-rfkill): remove module
* feat(livenet): add memory size check depending on live image size
* feat(nvmf): add code for parsing the NBFT
Fixes:
* fix(systemd-sysext): handle confexts and correct extensions search path
* fix(modsign): load keys to correct keyring
* fix(dmsquash-live-autooverlay): specify filesystemtype when it is already known
* fix(fs-lib): remove quoting form the first argument of the e2fsck call
* fix(Makefile): remove leftover rpm build rules
* fix(Makefile): no longer upload to kernel.org
* fix(nvmf): support /etc/nvme/config.json
* fix(nvmf): install 8021q module unconditionally
* fix(install.d): respect even more kernel-install vars, plus style fixes
* fix(install.d): respect more kernel-install env variables
* fix(dracut.sh): also prevent fsfreeze for tmpfs
* fix(dmsquash-live): allow other fstypes
* fix(bluetooth): make bluetooth rules more strict
* fix(bluetooth): add missing files
* fix(bluetooth): include it if Appearance matches the value assigned for keyboard
* fix(btrfs): do not require module via cmdline when --no-kernel
* fix(btrfs): add missing cmdline function
Other:
* refactor(dracut-init.sh): remove redundant "dracut" from "dracut module" prints
* refactor(virtiofs): remove exit after die
* build: remove rpm spec file and build rules
* docs: remove rd.lvm.snapsize and rd.lvm.snapshot
* chore(gentoo.conf): remove examples to avoid confusion
* chore: remove git2spec.pl, it is no longer used
==== exiv2 ====
- add exiv2-metadata-null-checks.patch fixes gwenview crashes and
other apps https://github.com/Exiv2/exiv2/issues/2638
==== kmod ====
Subpackages: kmod-bash-completion libkmod2
- Edit usr-lib-modules.patch to /lib/modules provide fallback
behavior for successfully running `make modules_install` in
pristine tarballs.
==== libX11 ====
Version update (1.8.5 -> 1.8.6)
Subpackages: libX11-6 libX11-data libX11-xcb1
- update to 1.8.6:
* InitExt.c: Add bounds checks for extension request,
event, & error codes
* Fixes CVE-2023-3138: X servers could return values from
XQueryExtension that would cause Xlib to write entries
out-of-bounds of the arrays to store them, though this
would only overwrite other parts of the Display
struct, not outside the bounds allocated for that
structure.
- drop U_InitExt.c-Add-bounds-checks-for-extension-request-ev.patch (upstream)
==== libstorage-ng ====
Version update (4.5.123 -> 4.5.127)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#941
- added get_version_string function
- 4.5.127
- merge gh#openSUSE/libstorage-ng#940
- wait for block device before using blkdiscard
- 4.5.126
- merge gh#openSUSE/libstorage-ng#939
- wait for block device before using wipefs (bsc#1213420)
- coding style
- 4.5.125
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.124
==== libwebp ====
Version update (1.3.0 -> 1.3.1)
Subpackages: libsharpyuv0 libwebp7 libwebpdemux2 libwebpmux3
- Update to version 1.3.1:
* security fixes for lossless encoder (CVE-2023-1999)
* improve error reporting through WebPPicture error codes
* fix upsampling for RGB565 and RGBA4444 in NEON builds
* img2webp: add -sharp_yuv & -near_lossless
* fix webp_js with emcc >= 3.1.27 (stack size change)
* CMake fixes
* further updates to the container and lossless bitstream docs
- Drop libwebp-double-free.patch: fixed upstream.
==== libyajl ====
- add libyajl-CVE-2023-33460.patch (CVE-2023-33460, bsc#1212928)
==== openexr ====
Subpackages: libIex-3_1-30 libIlmThread-3_1-30 libOpenEXR-3_1-30
- Add patch to fix regression on non-SSE architectures
https://github.com/AcademySoftwareFoundation/openexr/issues/1460:
* 1488.patch
- Also disable 'DWA[AB]Compression' test on aarch64 as the patch
above fixes the issue for all targets, except aarch64
==== pipewire ====
Version update (0.3.72 -> 0.3.74)
Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-jack pipewire-lang pipewire-libjack-0_3 pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools
- Update to version 0.3.74:
* Highlights
- Fix a critical bug where audio to bluetooth devices would cut
out randomly.
- Improve RAOP compatibility.
- Avoid crashes after an update.
- Small fixes and improvements.
* PipeWire
- Mix info on port is now created explicitly.
- Remove the node as a driver peer when stopping. This caused
some problem with playback on and other remote bluetooth
devices.
- Work on avoiding crashes when loading new modules that use
internal API with old libpipewire. This is typical after an
update where the old library is still loaded by an
application but when a new stream is created, updated modules
are loaded.
* Modules
- The RTP source module now has an option to ignore the SSRC,
which is useful to continue to receive the stream when the
sender is restarted.
- The native protocol will refuse to load twice now instead of
silently ignoring the error.
- module-raop is compatible with more devices.
* SPA
- plugins will now warn when running out of buffers. This is
always a bad thing.
- Merge scope based cleanup macros.
- Add ratelimit function.
- Update to version 0.3.73:
* Highlights
- Fixes an ALSA resume after suspend error.
- Handle and disable seemingly wrong hires timestamps from
ALSA.
- Filter-chain now has loadable plugin modules. The LV2 and
sofa plugins are moved to a separate .so file to make things
more modular.
- Rate changes in the graph should now be handled more
gracefully by loopback and filter-chain.
- A regression in the rtp-sap module was fixed where it would
in some cases fail to start.
- A potential crash in the peaks resampler was fixed.
- Many cleanups and other small bug fixes.
* PipeWire
- Fix a potential segfault when no fallback driver was set in
the config.
- Improve OPUS detection.
- Add ASYNC flag to pw-filter and pw-stream when queue/dequeue
is not called from the process function. This ensure we
allocate an extra buffer.
- Discard pending process callbacks when disconnecting.
- Cleanups and improvements to the debug environment variable
parsing.
- The graph rate was tweaked to better handle very low rates
 such as those requested by pavucontrol when it does the
signal monitoring.
* Modules
- An example filter module was added.
- Filter-chain and loopback now disable the resamplers if no
rate is specified and will always follow the graph rate.
- Improve setup of filter-chain. The graph is now created when
starting because this ensure the target graph rate is known.
- Filter-chain can now link notify ports to control ports in
the graph.
- Filter-chain now has loadable plugin modules. The LV2 and
sofa plugins are moved to a separate .so file.
- A regression in the rtp-sap module was fixed where it would
in some cases fail to start.
- Module-rt now has options to disable rlimits, portal and
rtkit.
- module-raop-discover now has an options to set the latency.
* Tools
- pw-cat now supports overriding all stream properties.
* SPA
- Disable rate negotiation when the resampler is disabled. We
will always follow the graph rate.
- Set device.icon property for UCM ports as well.
- Improve ALSA recover when using hires timestamps. This fixes
some problems after resume from suspend.
- ALSA will now warn and disable hires timestamp when they seem
wrong.
They can also be disabled manually with a property.
- V4l2 will now gracefully handle ENOTTY when enumerating frame
sizes and frame rates.
- A potential crash in the peaks resampler was fixed.
* pulse-server
- A client crash in pavucontrol is avoided by always setting a
card name.
- The graph rate is now taken correctly when using the FIX
flags.
- An option was added to ignore the FIX flags of a stream. Also
the documentation for those options was updated.
- module-raop-discover now support latency_msec.
* Bluetooth
- Remove an assert and issue a warning/recover instead when a
buffer is too small.
* GStreamer
- The device provider does locking when destroying the
registry.
==== python-jsonschema ====
Version update (4.18.3 -> 4.18.4)
- update to 4.18.4:
no changelog available, only a diff:
https://github.com/python-jsonschema/jsonschema/compare/v4.18.3...v4.18.4
==== python-referencing ====
Version update (0.29.1 -> 0.30.0)
- Update to version 0.30.0:
* Declare support for 3.12.
* Update the referencing suite.
- Update to version 0.29.3:
* Spelling.
- Update to version 0.29.2:
* Improve the hashability of exceptions when they contain
hashable data.
* [pre-commit.ci] pre-commit autoupdate
* Bump suite from `9335e4a` to `fe891e8`
==== qemu ====
Version update (8.0.2 -> 8.0.3)
- Update to version 8.0.3:
* See full log: https://lists.nongnu.org/archive/html/qemu-stable/2023-07/msg00086.html
* Security issues fixed:
- 9pfs: prevent opening special files (CVE-2023-2861)
- vhost-vdpa (CVE-2023-3301)
* Use the official xkb name for Arabic layout, not the
legacy synonym (bsc#1212966)
* [openSUSE][RPM] Update to version 8.0.3
==== setools ====
Subpackages: python311-setools setools-console
- Add python3-setuptools as a runtime requirement of python3-setools
(boo#1213305)
==== systemd-presets-branding-openSUSE ====
- enable the various libvirt modular daemons (boo#1212195)
==== taglib ====
Version update (1.13 -> 1.13.1)
- Update to version 1.13.1:
* Fixed parsing of TXXX frames without description.
* Detect MP4 atoms with invalid length or type.
* Do not miss ID3v2 frames when an extended header is present.
* Use property "DISCSUBTITLE" for ID3v2 "TSST" frame.
* Build system improvements: Use absolute path for macOS dylib install name,
support --define-prefix when using pkg-config, fixed minimum required
CppUnit version.
* Code clean up using clang-tidy.
==== xkeyboard-config ====
Version update (2.38 -> 2.39)
Subpackages: xkeyboard-config-lang
- Update to version 2.39
* another bugfix release; also needed for changes for the Amharic
(am_ET.UTF-8) compose key sequences in libX11 1.8.5 (see
corresponding changelog entry in libX11 package); removes old
remappings like ar --> ara (git db45bd75, 470ad2cd) [breaks
current qemu build]
==== yast2-trans ====
Version update (84.87.20230708.d1de37aed1 -> 84.87.20230714.966688ddd0)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20230714.966688ddd0:
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
* Translated using Weblate (Indonesian)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
cloud-init
docker-buildx (0.11.1 -> 0.11.2)
mlterm
zlib-ng-compat (2.1.2 -> 2.1.3)
=== Details ===
==== cloud-init ====
- Update cloud-init-write-routes.patch (bsc#1212879)
+ Add necessary import statement
- Enable flake8 linting, fix up patches
+ cloud-init-cve-2023-1786-redact-instance-data-json-main.patch
+ cloud-init-power-rhel-only.patch
+ cloud-init-write-routes.patch
+ datasourceLocalDisk.patch
- Add cloud-init-power-rhel-only.patch (bsc#1210273)
+ Config module cc_refresh_rmc_and_interface is implemented such that
it will only work on RH distros. Set the module availability accordingly.
- Sensitive data exposure (bsc#1210277, CVE-2023-1786)
+ Add hidesensitivedata
+ Add cloud-init-cve-2023-1786-redact-inst-data.patch
+ Do not expose sensitive data gathered from the CSP
==== docker-buildx ====
Version update (0.11.1 -> 0.11.2)
- Update to version 0.11.2:
* vendor: github.com/moby/buildkit
v0.12.1-0.20230717122532-faa0cc7da353
* vendor: github.com/tonistiigi/fsutil
v0.0.0-20230629203738-36ef4d8c0dbb
* vendor: github.com/xeipuuv/gojsonpointer
v0.0.0-20190905194746-02993c407bfb
* tests: set a dedicated buildx config dir for each worker
* ci: run docker-container tests in parallel
* tests: share single docker between docker-container backends
* vendor: update buildkit to master@2d91ddcceedc
* k8s: fix missing kubeconfig check from endpoint
* build: mark result handle build as internal
* util/imagetools: remove unused Resolver.ImageConfig
* hack(generated-files): bump golang image to bookworm
* update go to 1.20.6
* hack: force go version to 1.20.5
* vendor: github.com/docker/docker@24.0 36e9e79
==== mlterm ====
Subpackages: mlterm-common mlterm-fcitx mlterm-sdl2
- Disable wayland backend on 15.4 - fails to build.
==== zlib-ng-compat ====
Version update (2.1.2 -> 2.1.3)
- update to 2.1.3:
* Fix endless loop bug in chunkcopy_safe. #1526
* Support using distro-supplied Gtest #1519
* Minor code cleanup of deflate.c #1500
* Improve buildsystem detection of ARM Cortex #1521
* Cross-compiling and little-endian fixes #1518 #1520
* Optimize compare256 using RVV #1498
* Optimize slide_hash using RVV #1522
- drop 1526.patch (upstream)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
autofs
colord
freetype2 (2.13.0 -> 2.13.1)
fuse3 (3.15.0 -> 3.15.1)
harfbuzz (7.3.0 -> 8.0.1)
krb5 (1.20.1 -> 1.21.1)
libgudev (237 -> 238)
poppler (23.06.0 -> 23.07.0)
poppler-qt5 (23.06.0 -> 23.07.0)
python-charset-normalizer (3.1.0 -> 3.2.0)
smartmontools
util-linux
xterm (382 -> 384)
zimg (3.0.4 -> 3.0.5)
=== Details ===
==== autofs ====
- Add autofs-suse-manpage-remove-initdir.patch
Removes references of initdir from man pages (bsc#1207881)
==== colord ====
Subpackages: colord-color-profiles colord-lang libcolord2 libcolorhug2
- Tune _constraints for various architectures.
==== freetype2 ====
Version update (2.13.0 -> 2.13.1)
- update to 2.13.1:
* New function `FT_Get_Default_Named_Instance` to get the
index of the default named instance of an OpenType Variation
Font. A new load flag `FT_LOAD_NO_SVG` to make FreeType ignore
glyphs in an 'SVG ' table.
* New function `FT_GlyphSlot_AdjustWeight` to adjust
the glyph weight either horizontally or vertically.
This is part of the `ftsynth.h` header file
* TrueType interpreter version 38 (also known as
'Infinality') has been deactivated; the value of
`TT_INTERPRETER_VERSION_38` is now the same as
`TT_INTERPRETER_VERSION_40`.
* Switching named instances on and off in Variation Fonts
was buggy if the design coordinates didn't change.
- drop enable-infinality-subpixel-hinting.patch (obsolete, infinality
is deactivated)
==== fuse3 ====
Version update (3.15.0 -> 3.15.1)
Subpackages: libfuse3-3
- Update to release 3.15.1
* Reduce default write size by half
==== harfbuzz ====
Version update (7.3.0 -> 8.0.1)
Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0
- Update to version 8.0.1:
+ Build fix on 32-bit arm.
+ More speed optimizations:
- 60% speedup in retaingids subsetting SourceHanSans-VF.
- 38% speed up in subsetting (beyond-64k) mega-merged Noto.
- 16% speed up in retain-gid (used for IFT) subsetting of
NotoSansCJKkr.
- Changes from version 8.0.0:
+ New, experimental, WebAssembly (WASM) shaper, that provides
greater flexibility over OpenType/AAT/Graphite shaping, using
WebAssembly embedded inside the font file. Currently WASM
shaper is disabled by default and needs to be enabled at build
time.
+ Improvements to Experimental features introduced in earlier
releases:
- Support for subsetting beyond-64k and VarComposites fonts.
- Support for instancing variable fonts with cubic âglyfâ
table.
- Many big speed optimizations.
==== krb5 ====
Version update (1.20.1 -> 1.21.1)
- update to 1.121.1 (CVE-2023-36054):
* Fix potential uninitialized pointer free in kadm5 XDR parsing
[CVE-2023-36054].
* Added a credential cache type providing compatibility with
the macOS 11 native credential cache.
* libkadm5 will use the provided krb5_context object to read
configuration values, instead of creating its own.
* Added an interface to retrieve the ticket session key
from a GSS context.
* The KDC will no longer issue tickets with RC4 or triple-DES
session keys unless explicitly configured with the new
allow_rc4 or allow_des3 variables respectively.
* The KDC will assume that all services can handle aes256-sha1
session keys unless the service principal has a
session_enctypes string attribute.
* Support for PAC full KDC checksums has been added to
mitigate an S4U2Proxy privilege escalation attack.
* The PKINIT client will advertise a more modern set
of supported CMS algorithms.
* Removed unused code in libkrb5, libkrb5support,
and the PKINIT module.
* Modernized the KDC code for processing TGS requests,
the code for encrypting and decrypting key data,
the PAC handling code, and the GSS library packet
parsing and composition code.
* Improved the test framework's detection of memory
errors in daemon processes when used with asan.
==== libgudev ====
Version update (237 -> 238)
- Update to version 238:
* Fix newline stripping
* Add g_udev_device_get_current_tags()
* Add a number of tests, and devel docs
* Fix devhelp not being able to find the docs
* Skip locale test with locale isn't available
- Drop patches fixed upstream:
* 71b2fda04dd71c637361e8ead103980ad6f27ed5.patch
* 4216ecd4513bd4c8af73543817a51d6f72f166cc.patch
==== poppler ====
Version update (23.06.0 -> 23.07.0)
Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools
- update to 23.07.0:
core:
* Fix reading of utf8-with-bom files
* Fix crash if CERT_ExtractPublicKey doesn't return a public
key
* Fix rendering of some malformed documents. Issue #1395
* Allow for stream compression and compress font streams in
forms Remove method Hints::getPageRanges
qt5:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
qt6:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
utils:
* pdfsig: Allow showung and selecting signature backend
* pdfsig: Describe signature dump format in manual page
==== poppler-qt5 ====
Version update (23.06.0 -> 23.07.0)
- update to 23.07.0:
core:
* Fix reading of utf8-with-bom files
* Fix crash if CERT_ExtractPublicKey doesn't return a public
key
* Fix rendering of some malformed documents. Issue #1395
* Allow for stream compression and compress font streams in
forms Remove method Hints::getPageRanges
qt5:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
qt6:
* Fix crash when overprint preview is enabled
* Don't fail signature basics tests if backend is not
configured
utils:
* pdfsig: Allow showung and selecting signature backend
* pdfsig: Describe signature dump format in manual page
==== python-charset-normalizer ====
Version update (3.1.0 -> 3.2.0)
- update to 3.2.0:
* Typehint for function `from_path` no longer enforce
`PathLike` as its first argument
* Minor improvement over the global detection reliability
* Introduce function `is_binary` that relies on main
capabilities, and optimized to detect binaries
* Propagate `enable_fallback` argument throughout `from_bytes`,
`from_path`, and `from_fp` that allow a deeper control over
the detection (default True)
* Edge case detection failure where a file would contain 'very-
long' camel cased word (Issue #289)
==== smartmontools ====
- smartmontools.generate_smartd_opts.in: Fix generated options when
SMARTD_SAVESTATES or SMARTD_ATTRLOG are set to "no" (bsc#1207461).
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 util-linux-lang
- Add patch to detect MD array as container of LUKS properly
(boo#1213227, gh#util-linux/util-linux#2373):
* 0001-Revert-libblkid-try-LUKS2-first-when-probing.patch
==== xterm ====
Version update (382 -> 384)
Subpackages: xterm-bin xterm-resize
- update to 384:
* exclude ASCII space from showMissingGlyphs, since a few
bitmap fonts lack this
* correct a step in rendering double-width characters
with bitmap-fonts
* fixes for ReGIS-related problems:
* mimic an undocumented hardware VT340 feature
which handles color initialization with incomplete parameters.
* handle whitespace between operator/operands for
color values.
* reset ReGIS-context when resetting graphics in RIS.
==== zimg ====
Version update (3.0.4 -> 3.0.5)
- Update to 3.0.5
* colorspace: add ST.428-1 (gamma 2.6) transfer function
* depth: fix AVX-512 integer to float border handling (introduced in 2.6)
* depth: fix NEON dither border handling (introduced in 3.0)
* graph: fix clipping in alpha premultiplication (introduced in 3.0)
* x86: optimizations for AMD Zen4 processors
- Drop e29571.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (115.0.1 -> 115.0.2)
audit (3.0.9 -> 3.1.1)
audit-secondary (3.0.9 -> 3.1.1)
bind
cryptsetup
glibc
iproute2 (6.3 -> 6.4)
kernel-source (6.4.2 -> 6.4.3)
keylime (7.2.5 -> 7.3.0)
libbpf (1.2.0 -> 1.2.2)
libnftnl (1.2.5 -> 1.2.6)
python-jsonschema (4.18.0 -> 4.18.3)
qpdf (11.4.0 -> 11.5.0)
redis (7.0.11 -> 7.0.12)
rpm-config-SUSE (20220926 -> 20230712)
rust-keylime (0.2.1+git.1685699835.3c9d17c -> 0.2.2+git.1689256829.3d2b627)
snapper
texlive
util-linux
util-linux-systemd
=== Details ===
==== MozillaFirefox ====
Version update (115.0.1 -> 115.0.2)
- Mozilla Firefox 115.0.2
* Fixed a bug with displaying a caret in the text editor on some websites
(bmo#1840804)
* Fixed a bug with broken audio rendering on some websites (bmo#1841982)
* Fixed a bug with patternTransform translate using the wrong units
(bmo#1840746)
MFSA 2023-26 (bsc#1213230)
* CVE-2023-3600 (bmo#1839703)
Use-after-free in workers
==== audit ====
Version update (3.0.9 -> 3.1.1)
Subpackages: libaudit1 libauparse0
- Update to 3.1.1:
* Add user friendly keywords for signals to auditctl
* In ausearch, parse up URINGOP and DM_CTRL records
* Harden auparse to better handle corrupt logs
* Fix a CFLAGS propogation problem in the common directory
* Move the audispd af_unix plugin to a standalone program
- Add _multibuild to define additional spec files as additional
flavors.
Eliminates the need for source package links in OBS.
- Enable livepatching on main library on x86_64.
- Update to 3.1:
* Disable ProtectControlGroups in auditd.service by default
* Fix rule checking for exclude filter
* Make audit_rule_syscallbyname_data work correctly outside of auditctl
* Add new record types
* Add io_uring support
* Add support for new FANOTIFY record fields
* Add keyword, this-hour, to ausearch/report start/end options
* Add Requires.private to audit.pc file
* Try to interpret OPENAT2 fields correctly
==== audit-secondary ====
Version update (3.0.9 -> 3.1.1)
Subpackages: audit python3-audit system-group-audit
- Update to 3.1.1:
* Add user friendly keywords for signals to auditctl
* In ausearch, parse up URINGOP and DM_CTRL records
* Harden auparse to better handle corrupt logs
* Fix a CFLAGS propogation problem in the common directory
* Move the audispd af_unix plugin to a standalone program
- Add _multibuild to define additional spec files as additional
flavors.
Eliminates the need for source package links in OBS.
- Update to 3.1:
* Disable ProtectControlGroups in auditd.service by default
* Fix rule checking for exclude filter
* Make audit_rule_syscallbyname_data work correctly outside of auditctl
* Add new record types
* Add io_uring support
* Add support for new FANOTIFY record fields
* Add keyword, this-hour, to ausearch/report start/end options
* Add Requires.private to audit.pc file
* Try to interpret OPENAT2 fields correctly
==== bind ====
- Enable dnstap support
==== cryptsetup ====
Subpackages: cryptsetup-doc libcryptsetup12
- luksFormat: Handle system with low memory and no swap space [bsc#1211079]
* Check for physical memory available also in PBKDF benchmark.
* Try to avoid OOM killer on low-memory systems without swap.
* Use only half of detected free memory on systems without swap.
* Add patches:
- cryptsetup-Check-for-physical-memory-available-also-in-PBKDF-be.patch
- cryptsetup-Try-to-avoid-OOM-killer-on-low-memory-systems-withou.patch
- cryptsetup-Use-only-half-of-detected-free-memory-on-systems-wit.patch
==== glibc ====
Subpackages: glibc-extra glibc-locale glibc-locale-base nscd
- gshadow-erange-rhandling.patch: gshadow: Matching sgetsgent, sgetsgent_r
ERANGE handling (BZ #30151)
- system-sigchld-block.patch: posix: Fix system blocks SIGCHLD erroneously
(BZ #30163)
- gmon-buffer-alloc.patch: gmon: Fix allocated buffer overflow (BZ #29444)
- check-pf-cancel-handler.patch: __check_pf: Add a cancellation cleanup
handler (BZ #20975)
- powerpc64-fcntl-lock.patch: io: Fix F_GETLK, F_SETLK, and F_SETLKW for
powerpc64
- realloc-limit-chunk-reuse.patch: realloc: Limit chunk reuse to only
growing requests (BZ #30579)
- dl-find-object-return.patch: elf: _dl_find_object may return 1 during
early startup (BZ #30515)
- Need to build with GCC 12 as minimum
- fix-locking-in-_IO_cleanup.patch: Update to final version
==== iproute2 ====
Version update (6.3 -> 6.4)
Subpackages: iproute2-bash-completion
- Update to release 6.4
* bridge: mdb: added underlay destination IP support, UDP
destination port support, destination VNI support, source VNI
support, outgoing interface support
* macvlan: added the "bclim" parameter
==== kernel-source ====
Version update (6.4.2 -> 6.4.3)
- Linux 6.4.3 (bsc#1012628).
- mm: call arch_swap_restore() from do_swap_page() (bsc#1012628).
- bootmem: remove the vmemmap pages from kmemleak in
free_bootmem_page (bsc#1012628).
- commit 5fb5b21
==== keylime ====
Version update (7.2.5 -> 7.3.0)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python311-keylime
- Drop migrations_use_sa_text_for_raw_SQL.patch, merged upstream
- Update to version v7.3.0:
* Monthly release (7.3.0)
* tenant: log cleanup and output improvements
* mba: moving the boot event log parsing to the MBA subdirectory
* Add secure mount sanity test to packit testing
* templates: Set empty string as default value for tpm_ownerpassword
* migrations: use sa.text for raw SQL
* ima: only log the accept list on validation failure
* ima: remove code used for reading the IMA log from disk
* tpm: Move functions from tpm_astract.py to tpm_util.py
* tpm: Move splitting of quote string into reusable function
* tpm: Change default value of Hash parameter to Hash.SHA256 from None
* [tests] Enable basic allowlist/excludelist test
* installer.sh: update TPM2TOOLS_VER to 5.5 and cherry-pick patches to fix the bug of parsing for most newer logs with the tpm2_eventlog command.
* web_util: Remove check for code being 'None' since it is always an int
* verifier: Remove possibility for agent to be None and remove error case
* verifier: Remove conversion of agent to dict
* verifier: Remove possibility for agent to be None and remove error case
* verifier: Remove check for agent is None since it cannot be None
- Add migrations_use_sa_text_for_raw_SQL.patch to fix migrations in
new SQLAlchemy versions
==== libbpf ====
Version update (1.2.0 -> 1.2.2)
- update to v1.2.2:
* fix a regression in perf tool caused by libbpf resetting its custom
catch-all SEC() handler on explicit bpf_program__set_type() call
* fix possible double-free in USDT-related libbpf code, which happens when
libbpf runs out of space in __bpf_usdt_specs map due to having too many
unique USDT specs
==== libnftnl ====
Version update (1.2.5 -> 1.2.6)
- Update to release 1.2.6
* expr: meta: introduce broute meta expression
==== python-jsonschema ====
Version update (4.18.0 -> 4.18.3)
- upgrade to 4.18.3:
no changelog available, only a diff:
https://github.com/python-jsonschema/jsonschema/compare/v4.18.2...v4.18.3
- upgrade to 4.18.2:
* Fix an additional regression with the deprecated
jsonschema.RefResolver and pointer resolution.
- upgrade to 4.18.1:
* Fix a regression with jsonschema.RefResolver based resolution
when used in combination with a custom validation dialect (via
jsonschema.validators.create).
==== qpdf ====
Version update (11.4.0 -> 11.5.0)
- Update to 11.5.0:
* When copying the same page more than once, ensure that annotations
are copied and not shared among multiple pages.
* Add new method Buffer::copy and deprecate Buffer copy constructor
and assignment operator. Buffer copies are expensive and should be
done explicitly.
* The source code was reformatted to 100 columns instead of 80.
Numerous cosmetic changes and changes suggested by clang-tidy were made.
==== redis ====
Version update (7.0.11 -> 7.0.12)
- redis 7.0.12:
* (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
a heap overflow in the cjson and cmsgpack libraries, and result in heap
corruption and potentially remote code execution. The problem exists in all
versions of Redis with Lua scripting support, starting from 2.6, and affects
only authenticated and authorized users. (bsc#1213193)
* (CVE-2023-36824) Extracting key names from a command and a list of arguments
may, in some cases, trigger a heap overflow and result in reading random heap
memory, heap corruption and potentially remote code execution. Specifically:
using COMMAND GETKEYS* and validation of key names in ACL rules. (bsc#1213249)
* Re-enable downscale rehashing while there is a fork child
* Fix possible hang in HRANDFIELD, SRANDMEMBER, ZRANDMEMBER when used with <count>
* Improve fairness issue in RANDOMKEY, HRANDFIELD, SRANDMEMBER, ZRANDMEMBER,
SPOP, and eviction
* Fix WAIT to be effective after a blocked module command being unblocked
* Avoid unnecessary full sync after master restart in a rare case
==== rpm-config-SUSE ====
Version update (20220926 -> 20230712)
- Update to version 20230712:
* Add more prjconf macros
* update comment about _lto_cflags
* drop %usrmerged macro (boo#1206798)
* Fix SLE sbat macros used on Leap (bsc#1198458)
==== rust-keylime ====
Version update (0.2.1+git.1685699835.3c9d17c -> 0.2.2+git.1689256829.3d2b627)
Subpackages: keylime-ima-policy
- Update to version 0.2.2+git.1689256829.3d2b627:
* Bump version to 0.2.2
* build(deps): bump tempfile from 3.5.0 to 3.6.0
* removing SIGINT stop signals from Dockerfiles and systemd service, as well as adding SIGTERM to IMA emulator as shutdown signal
- Update to version 0.2.1+git.1689167094.67ce0cf:
* cargo: Bump serde to version 1.0.166
* build(deps): bump libc from 0.2.142 to 0.2.147
* adding release Dockerfiles in 3 flavours: fedora, distroless and wolfi
* hash: add more configurable hash algorithm for public key digest
* cargo: Update clap to version 4.3.11
* cargo: Bump tokio crate version to 1.28.2
* Add an example of IMA policy
* main: Gracefully shutdown on SIGTERM or SIGINT
* cargo: Bump proc-macro2 crate version
* revocation: Parse revocation actions flexibly
* crypto: Add unit tests for x509 functions
* crypto: Make internal functions private
* config: Add unit test for the list to files mapping
* config: Make trusted_client_ca to accept lists
* lib: Implement parser for lists from config file
* build(deps): bump openssl from 0.10.48 to 0.10.55
* Add secure mount sanity test to packit testing.
* [packit] Do not let COPR project expire
==== snapper ====
Subpackages: libsnapper7 snapper-zypp-plugin
- document disadvantage of using network users and order services
after nss-user-lookup (gh#openSUSE/snapper#823)
==== texlive ====
- The rungs lua script belongs to texlive-scripts(-bin) only
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- Add patch to detect MD array as container of LUKS properly
(boo#1213227, gh#util-linux/util-linux#2373):
* 0001-Revert-libblkid-try-LUKS2-first-when-probing.patch
==== util-linux-systemd ====
- Add patch to detect MD array as container of LUKS properly
(boo#1213227, gh#util-linux/util-linux#2373):
* 0001-Revert-libblkid-try-LUKS2-first-when-probing.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (115.0.1 -> 115.0.2)
audit (3.0.9 -> 3.1.1)
audit-secondary (3.0.9 -> 3.1.1)
bind
cryptsetup
iproute2 (6.3 -> 6.4)
kernel-source (6.4.2 -> 6.4.3)
libbpf (1.2.0 -> 1.2.2)
qpdf (11.4.0 -> 11.5.0)
rpm-config-SUSE (20220926 -> 20230712)
texlive
util-linux
util-linux-systemd
=== Details ===
==== MozillaFirefox ====
Version update (115.0.1 -> 115.0.2)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 115.0.2
* Fixed a bug with displaying a caret in the text editor on some websites
(bmo#1840804)
* Fixed a bug with broken audio rendering on some websites (bmo#1841982)
* Fixed a bug with patternTransform translate using the wrong units
(bmo#1840746)
MFSA 2023-26 (bsc#1213230)
* CVE-2023-3600 (bmo#1839703)
Use-after-free in workers
==== audit ====
Version update (3.0.9 -> 3.1.1)
Subpackages: libaudit1 libauparse0
- Update to 3.1.1:
* Add user friendly keywords for signals to auditctl
* In ausearch, parse up URINGOP and DM_CTRL records
* Harden auparse to better handle corrupt logs
* Fix a CFLAGS propogation problem in the common directory
* Move the audispd af_unix plugin to a standalone program
- Add _multibuild to define additional spec files as additional
flavors.
Eliminates the need for source package links in OBS.
- Enable livepatching on main library on x86_64.
- Update to 3.1:
* Disable ProtectControlGroups in auditd.service by default
* Fix rule checking for exclude filter
* Make audit_rule_syscallbyname_data work correctly outside of auditctl
* Add new record types
* Add io_uring support
* Add support for new FANOTIFY record fields
* Add keyword, this-hour, to ausearch/report start/end options
* Add Requires.private to audit.pc file
* Try to interpret OPENAT2 fields correctly
==== audit-secondary ====
Version update (3.0.9 -> 3.1.1)
Subpackages: audit python3-audit system-group-audit
- Update to 3.1.1:
* Add user friendly keywords for signals to auditctl
* In ausearch, parse up URINGOP and DM_CTRL records
* Harden auparse to better handle corrupt logs
* Fix a CFLAGS propogation problem in the common directory
* Move the audispd af_unix plugin to a standalone program
- Add _multibuild to define additional spec files as additional
flavors.
Eliminates the need for source package links in OBS.
- Update to 3.1:
* Disable ProtectControlGroups in auditd.service by default
* Fix rule checking for exclude filter
* Make audit_rule_syscallbyname_data work correctly outside of auditctl
* Add new record types
* Add io_uring support
* Add support for new FANOTIFY record fields
* Add keyword, this-hour, to ausearch/report start/end options
* Add Requires.private to audit.pc file
* Try to interpret OPENAT2 fields correctly
==== bind ====
- Enable dnstap support
==== cryptsetup ====
Subpackages: cryptsetup-doc cryptsetup-lang libcryptsetup12
- luksFormat: Handle system with low memory and no swap space [bsc#1211079]
* Check for physical memory available also in PBKDF benchmark.
* Try to avoid OOM killer on low-memory systems without swap.
* Use only half of detected free memory on systems without swap.
* Add patches:
- cryptsetup-Check-for-physical-memory-available-also-in-PBKDF-be.patch
- cryptsetup-Try-to-avoid-OOM-killer-on-low-memory-systems-withou.patch
- cryptsetup-Use-only-half-of-detected-free-memory-on-systems-wit.patch
==== iproute2 ====
Version update (6.3 -> 6.4)
Subpackages: iproute2-bash-completion
- Update to release 6.4
* bridge: mdb: added underlay destination IP support, UDP
destination port support, destination VNI support, source VNI
support, outgoing interface support
* macvlan: added the "bclim" parameter
==== kernel-source ====
Version update (6.4.2 -> 6.4.3)
- Linux 6.4.3 (bsc#1012628).
- mm: call arch_swap_restore() from do_swap_page() (bsc#1012628).
- bootmem: remove the vmemmap pages from kmemleak in
free_bootmem_page (bsc#1012628).
- commit 5fb5b21
==== libbpf ====
Version update (1.2.0 -> 1.2.2)
- update to v1.2.2:
* fix a regression in perf tool caused by libbpf resetting its custom
catch-all SEC() handler on explicit bpf_program__set_type() call
* fix possible double-free in USDT-related libbpf code, which happens when
libbpf runs out of space in __bpf_usdt_specs map due to having too many
unique USDT specs
==== qpdf ====
Version update (11.4.0 -> 11.5.0)
- Update to 11.5.0:
* When copying the same page more than once, ensure that annotations
are copied and not shared among multiple pages.
* Add new method Buffer::copy and deprecate Buffer copy constructor
and assignment operator. Buffer copies are expensive and should be
done explicitly.
* The source code was reformatted to 100 columns instead of 80.
Numerous cosmetic changes and changes suggested by clang-tidy were made.
==== rpm-config-SUSE ====
Version update (20220926 -> 20230712)
- Update to version 20230712:
* Add more prjconf macros
* update comment about _lto_cflags
* drop %usrmerged macro (boo#1206798)
* Fix SLE sbat macros used on Leap (bsc#1198458)
==== texlive ====
- The rungs lua script belongs to texlive-scripts(-bin) only
==== util-linux ====
- Add patch to detect MD array as container of LUKS properly
(boo#1213227, gh#util-linux/util-linux#2373):
* 0001-Revert-libblkid-try-LUKS2-first-when-probing.patch
==== util-linux-systemd ====
- Add patch to detect MD array as container of LUKS properly
(boo#1213227, gh#util-linux/util-linux#2373):
* 0001-Revert-libblkid-try-LUKS2-first-when-probing.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ibus-table (1.17.0 -> 1.17.1)
keylime (7.2.5 -> 7.3.0)
libnftnl (1.2.5 -> 1.2.6)
python-jsonschema (4.18.0 -> 4.18.3)
redis (7.0.11 -> 7.0.12)
rust-keylime (0.2.1+git.1685699835.3c9d17c -> 0.2.2+git.1689256829.3d2b627)
snapper
=== Details ===
==== ibus-table ====
Version update (1.17.0 -> 1.17.1)
- Update version to 1.17.1
* Fix mypy warnings
* Return empty program_name and window_title in get_active_window_xprop() when
xprop results are unexpected (Resolves:
https://bugzilla.redhat.com/show_bug.cgi?id=2215466)
* Translation update from Weblate
==== keylime ====
Version update (7.2.5 -> 7.3.0)
Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python311-keylime
- Drop migrations_use_sa_text_for_raw_SQL.patch, merged upstream
- Update to version v7.3.0:
* Monthly release (7.3.0)
* tenant: log cleanup and output improvements
* mba: moving the boot event log parsing to the MBA subdirectory
* Add secure mount sanity test to packit testing
* templates: Set empty string as default value for tpm_ownerpassword
* migrations: use sa.text for raw SQL
* ima: only log the accept list on validation failure
* ima: remove code used for reading the IMA log from disk
* tpm: Move functions from tpm_astract.py to tpm_util.py
* tpm: Move splitting of quote string into reusable function
* tpm: Change default value of Hash parameter to Hash.SHA256 from None
* [tests] Enable basic allowlist/excludelist test
* installer.sh: update TPM2TOOLS_VER to 5.5 and cherry-pick patches to fix the bug of parsing for most newer logs with the tpm2_eventlog command.
* web_util: Remove check for code being 'None' since it is always an int
* verifier: Remove possibility for agent to be None and remove error case
* verifier: Remove conversion of agent to dict
* verifier: Remove possibility for agent to be None and remove error case
* verifier: Remove check for agent is None since it cannot be None
- Add migrations_use_sa_text_for_raw_SQL.patch to fix migrations in
new SQLAlchemy versions
==== libnftnl ====
Version update (1.2.5 -> 1.2.6)
- Update to release 1.2.6
* expr: meta: introduce broute meta expression
==== python-jsonschema ====
Version update (4.18.0 -> 4.18.3)
- upgrade to 4.18.3:
no changelog available, only a diff:
https://github.com/python-jsonschema/jsonschema/compare/v4.18.2...v4.18.3
- upgrade to 4.18.2:
* Fix an additional regression with the deprecated
jsonschema.RefResolver and pointer resolution.
- upgrade to 4.18.1:
* Fix a regression with jsonschema.RefResolver based resolution
when used in combination with a custom validation dialect (via
jsonschema.validators.create).
==== redis ====
Version update (7.0.11 -> 7.0.12)
- redis 7.0.12:
* (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger
a heap overflow in the cjson and cmsgpack libraries, and result in heap
corruption and potentially remote code execution. The problem exists in all
versions of Redis with Lua scripting support, starting from 2.6, and affects
only authenticated and authorized users. (bsc#1213193)
* (CVE-2023-36824) Extracting key names from a command and a list of arguments
may, in some cases, trigger a heap overflow and result in reading random heap
memory, heap corruption and potentially remote code execution. Specifically:
using COMMAND GETKEYS* and validation of key names in ACL rules. (bsc#1213249)
* Re-enable downscale rehashing while there is a fork child
* Fix possible hang in HRANDFIELD, SRANDMEMBER, ZRANDMEMBER when used with <count>
* Improve fairness issue in RANDOMKEY, HRANDFIELD, SRANDMEMBER, ZRANDMEMBER,
SPOP, and eviction
* Fix WAIT to be effective after a blocked module command being unblocked
* Avoid unnecessary full sync after master restart in a rare case
==== rust-keylime ====
Version update (0.2.1+git.1685699835.3c9d17c -> 0.2.2+git.1689256829.3d2b627)
Subpackages: keylime-ima-policy
- Update to version 0.2.2+git.1689256829.3d2b627:
* Bump version to 0.2.2
* build(deps): bump tempfile from 3.5.0 to 3.6.0
* removing SIGINT stop signals from Dockerfiles and systemd service, as well as adding SIGTERM to IMA emulator as shutdown signal
- Update to version 0.2.1+git.1689167094.67ce0cf:
* cargo: Bump serde to version 1.0.166
* build(deps): bump libc from 0.2.142 to 0.2.147
* adding release Dockerfiles in 3 flavours: fedora, distroless and wolfi
* hash: add more configurable hash algorithm for public key digest
* cargo: Update clap to version 4.3.11
* cargo: Bump tokio crate version to 1.28.2
* Add an example of IMA policy
* main: Gracefully shutdown on SIGTERM or SIGINT
* cargo: Bump proc-macro2 crate version
* revocation: Parse revocation actions flexibly
* crypto: Add unit tests for x509 functions
* crypto: Make internal functions private
* config: Add unit test for the list to files mapping
* config: Make trusted_client_ca to accept lists
* lib: Implement parser for lists from config file
* build(deps): bump openssl from 0.10.48 to 0.10.55
* Add secure mount sanity test to packit testing.
* [packit] Do not let COPR project expire
==== snapper ====
Subpackages: libsnapper7 snapper-zypp-plugin
- document disadvantage of using network users and order services
after nss-user-lookup (gh#openSUSE/snapper#823)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
glibc
=== Details ===
==== glibc ====
Subpackages: glibc-extra glibc-lang glibc-locale glibc-locale-base nscd
- gshadow-erange-rhandling.patch: gshadow: Matching sgetsgent, sgetsgent_r
ERANGE handling (BZ #30151)
- system-sigchld-block.patch: posix: Fix system blocks SIGCHLD erroneously
(BZ #30163)
- gmon-buffer-alloc.patch: gmon: Fix allocated buffer overflow (BZ #29444)
- check-pf-cancel-handler.patch: __check_pf: Add a cancellation cleanup
handler (BZ #20975)
- powerpc64-fcntl-lock.patch: io: Fix F_GETLK, F_SETLK, and F_SETLKW for
powerpc64
- realloc-limit-chunk-reuse.patch: realloc: Limit chunk reuse to only
growing requests (BZ #30579)
- dl-find-object-return.patch: elf: _dl_find_object may return 1 during
early startup (BZ #30515)
- Need to build with GCC 12 as minimum
- fix-locking-in-_IO_cleanup.patch: Update to final version
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (115.0 -> 115.0.1)
attica-qt5 (5.107.0 -> 5.108.0)
baloo5 (5.107.0 -> 5.108.0)
blog (2.26 -> 2.27)
bluez-qt (5.107.0 -> 5.108.0)
breeze5-icons (5.107.0 -> 5.108.0)
cpio (2.13 -> 2.14)
distrobox (1.5.0 -> 1.5.0.2)
docker (24.0.2_ce -> 24.0.4_ce)
frameworkintegration (5.107.0 -> 5.108.0)
gcc13 (13.1.1+git7364 -> 13.1.1+git7552)
glib2 (2.76.3 -> 2.76.4)
gnome-shell (44.2 -> 44.3)
gpgme (1.20.0 -> 1.21.0)
hwdata (0.371 -> 0.372)
inih (56 -> 57)
kactivities-stats (5.107.0 -> 5.108.0)
kactivities5 (5.107.0 -> 5.108.0)
karchive (5.107.0 -> 5.108.0)
kauth (5.107.0 -> 5.108.0)
kbookmarks (5.107.0 -> 5.108.0)
kcmutils (5.107.0 -> 5.108.0)
kcodecs (5.107.0 -> 5.108.0)
kcompletion (5.107.0 -> 5.108.0)
kconfig (5.107.0 -> 5.108.0)
kconfigwidgets (5.107.0 -> 5.108.0)
kcoreaddons (5.107.0 -> 5.108.0)
kcrash (5.107.0 -> 5.108.0)
kdbusaddons (5.107.0 -> 5.108.0)
kdeclarative (5.107.0 -> 5.108.0)
kded (5.107.0 -> 5.108.0)
kdelibs4support (5.107.0 -> 5.108.0)
kdesu (5.107.0 -> 5.108.0)
kdnssd-framework (5.107.0 -> 5.108.0)
kdoctools (5.107.0 -> 5.108.0)
kernel-firmware (20230620 -> 20230707)
kernel-source (6.3.9 -> 6.4.2)
kfilemetadata5 (5.107.0 -> 5.108.0)
kglobalaccel (5.107.0 -> 5.108.0)
kguiaddons (5.107.0 -> 5.108.0)
kholidays (5.107.0 -> 5.108.0)
khtml (5.107.0 -> 5.108.0)
ki18n (5.107.0 -> 5.108.0)
kiconthemes (5.107.0 -> 5.108.0)
kidletime (5.107.0 -> 5.108.0)
kimageformats (5.107.0 -> 5.108.0)
kinit (5.107.0 -> 5.108.0)
kio (5.107.0 -> 5.108.0)
kirigami2 (5.107.0 -> 5.108.0)
kitemmodels (5.107.0 -> 5.108.0)
kitemviews (5.107.0 -> 5.108.0)
kjobwidgets (5.107.0 -> 5.108.0)
kjs (5.107.0 -> 5.108.0)
knewstuff (5.107.0 -> 5.108.0)
knotifications (5.107.0 -> 5.108.0)
knotifyconfig (5.107.0 -> 5.108.0)
kpackage (5.107.0 -> 5.108.0)
kparts (5.107.0 -> 5.108.0)
kpeople5 (5.107.0 -> 5.108.0)
kpty (5.107.0 -> 5.108.0)
kquickcharts (5.107.0 -> 5.108.0)
krunner (5.107.0 -> 5.108.0)
kservice (5.107.0 -> 5.108.0)
ktexteditor (5.107.0 -> 5.108.0)
ktextwidgets (5.107.0 -> 5.108.0)
kunitconversion (5.107.0 -> 5.108.0)
kwallet (5.107.0 -> 5.108.0)
kwayland (5.107.0 -> 5.108.0)
kwidgetsaddons (5.107.0 -> 5.108.0)
kwindowsystem (5.107.0 -> 5.108.0)
kxmlgui (5.107.0 -> 5.108.0)
libKF5ModemManagerQt (5.107.0 -> 5.108.0)
libKF5NetworkManagerQt (5.107.0 -> 5.108.0)
libgphoto2
libnice
libqt5-qtbase
libqt5-qtgraphicaleffects
libstorage-ng (4.5.122 -> 4.5.123)
mutter (44.2 -> 44.3)
ncurses (6.4.20230617 -> 6.4.20230701)
oath-toolkit (2.6.7 -> 2.6.8)
perl-Cpanel-JSON-XS (4.36 -> 4.37)
perl-HTTP-Date (6.05 -> 6.06)
perl-Net-HTTP (6.22 -> 6.23)
perl-libwww-perl (6.70 -> 6.71)
plasma-framework (5.107.0 -> 5.108.0)
podman
prison-qt5 (5.107.0 -> 5.108.0)
protobuf (4.23.3 -> 4.23.4)
publicsuffix (20230616 -> 20230709)
purpose (5.107.0 -> 5.108.0)
python-M2Crypto (0.38.0 -> 0.39.0)
python-cryptography (41.0.1 -> 41.0.2)
python-referencing (0.29.0 -> 0.29.1)
python-rich (13.4.1 -> 13.4.2)
qqc2-desktop-style (5.107.0 -> 5.108.0)
solid (5.107.0 -> 5.108.0)
sonnet (5.107.0 -> 5.108.0)
syndication (5.107.0 -> 5.108.0)
syntax-highlighting (5.107.0 -> 5.108.0)
threadweaver (5.107.0 -> 5.108.0)
u-boot-rpiarm64 (2023.04 -> 2023.07)
util-linux
util-linux-systemd
vim
wtmpdb (0.7.0 -> 0.7.1)
yast2-installation (4.6.4 -> 4.6.5)
yast2-storage-ng (4.6.11 -> 4.6.12)
=== Details ===
==== MozillaFirefox ====
Version update (115.0 -> 115.0.1)
- Mozilla Firefox 115.0.1
* fixes for other platforms
==== attica-qt5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Attica5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== baloo5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* [Document] Fix parameter name for setParentId
* [WriteTransaction] Avoid false warning when removing empty xattr terms
* [DocumentUrlDB] Remove recursive removal of parent directories
* [AdvancedQueryParser] Correctly parse empty quoted strings
* [AdvancedQueryParser] Fix minor error in test case
* Remove qt6 CI builds
* [UnindexedFileIndexer] Split into multiple transactions
* [FirstRunIndexer] Split initial index run into multiple transactions
* Move basic indexing test/benchmark to autotests
* [BasicIndexingTest] Add options for transaction size and index dir
* [WriteIoTest] Set required parent id
* Minor fixes for manual tests
* Fix signedness mismatch compiler warning
* Fix compiler warning by using an STL-style iterator instead
* Remove redundant transactiontest
* [UnindexedFileIndexer] Skip document when BasicIndexingJob fails
* [Transaction] Allow to fully reset the transaction state
* [WriteTransactionTest] Use unique_ptr for DB and temp dir
* [Transaction] Use unique_ptr for write transaction
* Verify parentId when adding documents
* [DatabaseDbis] Use default member initializers instead of constructor
* Remove unused QMimeDatabase instance from UnindexedFileIndexer
==== blog ====
Version update (2.26 -> 2.27)
Subpackages: libblogger2
- Fix big endian cast problems to be able to read commands
and ansers (blogctl) as well as passphrases (blogd)
==== bluez-qt ====
Version update (5.107.0 -> 5.108.0)
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== breeze5-icons ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Export cmake config so that a app can ensure that breeze-icons is installed
* Remove qt6 CI builds
==== cpio ====
Version update (2.13 -> 2.14)
Subpackages: cpio-mt
- Backport upstream fix for --no-absolute-filenames --make-directories
* fix-operation-no-absolute-filenames.patch
- Update to 2.14:
* New option --ignore-dirnlink
Valid in copy-out mode, it instructs cpio to ignore the actual number of
links reported for each directory member and always store 2 instead.
* Changes in --reproducible option
The --reproducible option implies --ignore-dirlink. In other words, it is
equivalent to --ignore-devno --ignore-dirnlink --renumber-inodes.
* Use GNU ls algorithm for deciding timestamp format in -tv mode
* Fix cpio header verification.
* Fix handling of device numbers on copy out.
* Fix calculation of CRC in copy-out mode.
* Rewrite the fix for CVE-2015-1197.
* Fix combination of --create --append --directory.
* Fix appending to archives bigger than 2G.
- Refresh patches:
* cpio-open_nonblock.patch
* cpio-dev_number.patch
* cpio-default_tape_dev.patch
* cpio-pattern-file-sigsegv.patch
- Remove patches:
* cpio-revert-CVE-2015-1197-fix.patch
* fix-CVE-2021-38185.patch
* fix-CVE-2021-38185_2.patch
* fix-CVE-2021-38185_3.patch
==== distrobox ====
Version update (1.5.0 -> 1.5.0.2)
Subpackages: distrobox-bash-completion
- Update to version 1.5.0.2:
* Fix typo in instructions for setting podman-host path
* Fix user initialization for ubuntu 23.04
* Compatibility: add openEULER and Linux Mint containers
* Fix docker minimum version to 19.03.15.
* Better container detection in host-exec
* fix host file sync when unsharing network
- Changes from version 1.5.0.1:
* Fix bashism in assemble.
* Revert to using distrobox-enter for upgrade.
* Fix bug in init_readlink with relative paths in init.
* Improve dry-run output to show a flag for each line in enter/create.
==== docker ====
Version update (24.0.2_ce -> 24.0.4_ce)
Subpackages: docker-bash-completion docker-rootless-extras
- Update to Docker 24.0.4-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/24.0/#2404>.
- Update to Docker 24.0.3-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/24.0/#2403>. bsc#1213120
- Rebase patches:
* cli-0001-docs-include-required-tools-in-source-tree.patch
==== frameworkintegration ====
Version update (5.107.0 -> 5.108.0)
Subpackages: frameworkintegration-plugin libKF5Style5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== gcc13 ====
Version update (13.1.1+git7364 -> 13.1.1+git7552)
Subpackages: cpp13 libgcc_s1 libgfortran5 libgomp1 libobjc4 libstdc++6 libstdc++6-pp libubsan1
- Bump to f9781fcf733ca3afe5b5811afd8ecbb18d9d3a11, git7552
- Remove gcc13-pr110334.patch again as it breaks libreoffice build.
- Bump to a533ded17fb13cbbb2fa5133ecd470360f66c5cf, git7489.
- Add gcc13-pr110334.patch to fix missed optimization in Skia
resulting in Firefox crashes when building with LTO. [boo#1212101]
- Raise architecture levels for ALP. [PED-153]
* Raise POWER architecture baseline to power9. [PED-2005]
* Raise x86-64 architecture baseline to x86-64-v2 for ALP. [PED-252]
* Delay raising s390x architecture baseline to z14. [PED-253]
==== glib2 ====
Version update (2.76.3 -> 2.76.4)
Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0
- Update to version 2.76.4:
+ Fix build failure on Android with `statx()` support
+ Bugs fixed:
- glib-compile-schemas failed on directory name with no Latin
symbols
- Build failure due to statx fields with NDK r25.c
- glib-compile-resources: Fix non-ASCII arg parsing on Windows
- glib: reset errno to 0 when futex() returns EAGAIN
- Avoid stack overflow in gspawn on macOS
- glocalfileinfo: Fix incorrect use of struct
statx.st_mtimensec on Android
+ Updated translations.
==== gnome-shell ====
Version update (44.2 -> 44.3)
Subpackages: gnome-extensions gnome-shell-calendar
- Update to version 44.3:
+ Fix cursor offset when using magnifier.
+ Fix missing workspace borders after wallpaper changes.
+ Revert screencast optimization that results in bogus windows.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gpgme ====
Version update (1.20.0 -> 1.21.0)
Subpackages: libgpgme11 libgpgmepp6 python311-gpg
- Update to 1.21.0
* Extended gpgme_op_encrypt, gpgme_op_encrypt_sign, and gpgme_op_sign
to allow writing the output directly to a file. [T6530]
* Extended gpgme_op_decrypt and gpgme_op_verify to allow reading the
input data directly from files. [T6530]
* For key signing and uid revoking allow an empty user id. [rMfbc3963d62]
* Pass an input-size-hint also to the gpgsm engine. [T6534]
* qt: Allow writing the created archives directly to a file. [T6530]
* qt: Allow reading the signed/encrypted archive to decrypt
or verify directly from a file. [T6530]
* qt: Qt Jobs working with QIODeviceDataProvider now properly
handle input-size hints and progress for files larger.
2^32 bytes in 32 bit builds. [T6534]
* cpp: Error::isCanceled now also returns true for error code
GPG_ERR_FULLY_CANCELED. [T6510]
* python: Fix wrong use of write. [T6501]
* Interface changes relative to the 1.20.0 release:
- cpp: Data::setFlag NEW.
- cpp: Data::setSizeHint NEW.
- qt: Job::startIt NEW.
- qt: DecryptVerifyArchiveJob::setInputFile NEW.
- qt: DecryptVerifyArchiveJob::inputFile NEW.
- qt: EncryptArchiveJob::setRecipients NEW.
- qt: EncryptArchiveJob::recipients NEW.
- qt: EncryptArchiveJob::setInputPaths NEW.
- qt: EncryptArchiveJob::inputPaths NEW.
- qt: EncryptArchiveJob::setOutputFile NEW.
- qt: EncryptArchiveJob::outputFile NEW.
- qt: EncryptArchiveJob::setEncryptionFlags NEW.
- qt: EncryptArchiveJob::encryptionFlags NEW.
- qt: SignArchiveJob::setSigners NEW.
- qt: SignArchiveJob::signers NEW.
- qt: SignArchiveJob::setInputPaths NEW.
- qt: SignArchiveJob::inputPaths NEW.
- qt: SignArchiveJob::setOutputFile NEW.
- qt: SignArchiveJob::outputFile NEW.
- qt: SignEncryptArchiveJob::setSigners NEW.
- qt: SignEncryptArchiveJob::signers NEW.
- qt: SignEncryptArchiveJob::setRecipients NEW.
- qt: SignEncryptArchiveJob::recipients NEW.
- qt: SignEncryptArchiveJob::setInputPaths NEW.
- qt: SignEncryptArchiveJob::inputPaths NEW.
- qt: SignEncryptArchiveJob::setOutputFile NEW.
- qt: SignEncryptArchiveJob::outputFile NEW.
- qt: SignEncryptArchiveJob::setEncryptionFlags NEW.
- qt: SignEncryptArchiveJob::encryptionFlags NEW.
==== hwdata ====
Version update (0.371 -> 0.372)
- update to 0.372:
* Update pci, usb and vendor ids
==== inih ====
Version update (56 -> 57)
- Update to version 57
* Added a GetUnsigned function for getting unsigned values.
* Added GetInteger64 and GetUnsigned64 to read 64-bit integers.
==== kactivities-stats ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kactivities5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kactivities5-imports libKF5Activities5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== karchive ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Don't create subdirectory in toplevel.
* Remove qt6 CI builds
==== kauth ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kbookmarks ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcmutils ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtilsCore5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcodecs ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcompletion ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kconfig ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigGui5 libKF5ConfigQml5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kconfigwidgets ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcoreaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5CoreAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcrash ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdbusaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdbusaddons-tools libKF5DBusAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdeclarative ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5QuickAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kded ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdelibs4support ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5KDELibs4Support5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== kdesu ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdnssd-framework ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdoctools ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5DocTools5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* doc: use a more generic Frameworks entity in the example
==== kernel-firmware ====
Version update (20230620 -> 20230707)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network
- Update to version 20230707 (git commit d3f66064cf43):
* Partially revert "amdgpu: DMCUB updates for DCN 3.1.4 and 3.1.5"
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* linux-firmware: update firmware for MT7922 WiFi device
* linux-firmware: Update firmware file for Intel Bluetooth AX203
* linux-firmware: Update firmware file for Intel Bluetooth AX203
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* Fix qcom ASoC tglp WHENCE entry
* check_whence: Check link targets are valid
* iwlwifi: add new FWs from core80-39 release
* iwlwifi: update cc/Qu/QuZ firmwares for core80-39 release
* qcom: Add Audio firmware for SC8280XP X13s
* Makefile, copy-firmware: support xz/zstd compressed firmware
* copy-firmware: silence the last shellcheck warnings
* copy-firmware: drop obsolete backticks, quote
* copy-firmware: tweak sed invocation
* copy-firmware: quote deskdir and dirname
* check_whence: error if symlinks are in-tree
* check_whence: error if File: is actually a link
* check_whence: strip quotation marks
* linux-firmware: wilc1000: update WILC1000 firmware to v16.0
* ice: update ice DDP wireless_edge package to 1.3.10.0
* amdgpu: DMCUB updates for DCN 3.1.4 and 3.1.5
- Update aliases
==== kernel-source ====
Version update (6.3.9 -> 6.4.2)
- Refresh
patches.suse/fork-lock-VMAs-of-the-parent-process-when-forking.patch.
Replace by the correct one. It was merged to upstream twice. And this is
the right version.
- commit b97b894
- Update vanilla config files.
Just run oldconfig for vanillas too. No actual changes.
- commit dcdca04
- Update
patches.kernel.org/6.4.1-021-mm-always-expand-the-stack-with-the-mmap-write…
(bsc#1012628 bsc#1212395 CVE-2023-3269).
Add references to CVE.
- commit 5a45f18
- Update config files.
Only run_oldconfig.
- commit 37ad463
- fork: lock VMAs of the parent process when forking
(bsc#1212775).
- mm: lock a vma before stack expansion (bsc#1212775).
- mm: lock newly mapped VMA which can be modified after it
becomes visible (bsc#1212775).
- mm: lock newly mapped VMA with corrected ordering (bsc#1212775).
- Update config files.
- Delete
patches.suse/Revert-x86-mm-try-VMA-lock-based-page-fault-handling.patch.
Drop the downstream revert in favor of upstream fixes above and reset
the configs -- leave STATS off as per default.
- commit e2dafc9
- Linux 6.4.2 (bsc#1012628).
- arch/arm64/mm/fault: Fix undeclared variable error in
do_page_fault() (bsc#1012628).
- drm/amdgpu: Validate VM ioctl flags (bsc#1012628).
- dm ioctl: Avoid double-fetch of version (bsc#1012628).
- docs: Set minimal gtags / GNU GLOBAL version to 6.6.5
(bsc#1012628).
- scripts/tags.sh: Resolve gtags empty index generation
(bsc#1012628).
- hugetlb: revert use of page_cache_next_miss() (bsc#1012628).
- nubus: Partially revert proc_create_single_data() conversion
(bsc#1012628).
- Revert "cxl/port: Enable the HDM decoder capability for switch
ports" (bsc#1012628).
- nfs: don't report STATX_BTIME in ->getattr (bsc#1012628).
- execve: always mark stack as growing down during early stack
setup (bsc#1012628).
- PCI/ACPI: Call _REG when transitioning D-states (bsc#1012628).
- PCI/ACPI: Validate acpi_pci_set_power_state() parameter
(bsc#1012628).
- tools/nolibc: x86_64: disable stack protector for _start
(bsc#1012628).
- xtensa: fix lock_mm_and_find_vma in case VMA not found
(bsc#1012628).
- commit 648ac3b
- regulator: axp20x: Add AXP15060 support.
- commit db7b000
- Revert "Refresh patches.rpmify/usrmerge-Adjust-module-path-in-the-kernel-sources.patch."
This reverts commit b8411965e8341c82ba2e01bb38698945be2390a0. It breaks
the build:
+ ln -s /usr/src/linux-6.4.1-1 /home/abuild/rpmbuild/BUILDROOT/kernel-default-6.4.1-1.1.x86_64/usr/lib/modules/6.4.1-1-default/source
ln: failed to create symbolic link '/home/abuild/rpmbuild/BUILDROOT/kernel-default-6.4.1-1.1.x86_64/usr/lib/modules/6.4.1-1-default/source': No such file or directory
- commit 3561b10
- drm/amd: Don't try to enable secure display TA multiple times
(bsc#1212848).
- drm/amdgpu: fix number of fence calculations (bsc#1212848).
- drm/amd/display: perform a bounds check before filling dirty
rectangles (bsc#1212848).
- drm/amdgpu: check RAS irq existence for VCN/JPEG (bsc#1212848).
- drm/amd/pm: add abnormal fan detection for smu 13.0.0
(bsc#1212848).
- drm/amd: Disable PSR-SU on Parade 0803 TCON (bsc#1212848).
- drm/amd/pm: update the LC_L1_INACTIVITY setting to address
possible noise issue (bsc#1212848).
- drm/amd/display: Fix 128b132b link loss handling (bsc#1212848).
- drm/amd/display: disable seamless boot if force_odm_combine
is enabled (bsc#1212848).
- drm/amd/display: add a NULL pointer check (bsc#1212848).
- drm/amd/pm: revise the ASPM settings for thunderbolt attached
scenario (bsc#1212848).
- drm/amdgpu: fix clearing mappings for BOs that are always
valid in VM (bsc#1212848).
- drm/amdgpu: Skip mark offset for high priority rings
(bsc#1212848).
- drm/amdgpu: make sure that BOs have a backing store
(bsc#1212848).
- drm/amdgpu: make sure BOs are locked in amdgpu_vm_get_memory
(bsc#1212848).
- commit a695138
- Remove more packaging cruft for SLE < 12 SP3
- commit a16781c
- Linux 6.4.1 (bsc#1012628).
- x86/microcode/AMD: Load late on both threads too (bsc#1012628).
- x86/smp: Make stop_other_cpus() more robust (bsc#1012628).
- x86/smp: Dont access non-existing CPUID leaf (bsc#1012628).
- x86/smp: Remove pointless wmb()s from native_stop_other_cpus()
(bsc#1012628).
- x86/smp: Use dedicated cache-line for mwait_play_dead()
(bsc#1012628).
- x86/smp: Cure kexec() vs. mwait_play_dead() breakage
(bsc#1012628).
... changelog too long, skipping 81 lines ...
- commit 4b7bbac
==== kfilemetadata5 ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Reapply ReplayGain changes
==== kglobalaccel ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccelPrivate5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kguiaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5GuiAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Add an option to disable building the geo: URI scheme handler
==== kholidays ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Add juneteenth as variable holiday
* Remove qt6 CI builds
==== khtml ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== ki18n ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kiconthemes ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kidletime ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kimageformats ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* jxl: add support for libjxl v0.9, drop support for old 0.6.1
* Remove qt6 CI builds
==== kinit ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== kio ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kio-core
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* KUrlRequester: restore unnamed filter compatibility with Plasma file dialog
* KUrlRequester::setFilter: note syntax change in compiler deprecation warning
* Add KUrlRequester::nameFilters, deprecate KUrlRequester::filter (kde#369542)
* KUrlRequester::setFilter: note special filter syntax, allow unnamed filters
* KCoreDirLister::nameFilter: revert to non-partial matching again
* filewidgets/kfilewidget: Select and focus filename after canceling overwrite (kde#444515)
* [previewjob] Check whether thumbRootDevice is valid before access (kde#470845)
- Drop patch, merged upstream:
* 0001-previewjob-Check-whether-thumbRootDevice-is-valid-be.patch
==== kirigami2 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Kirigami2-5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* PassiveNotificationsManager: Fix callBack lifetime (kde#470786)
* Backport fix to the template from master
* Use MobileForm.AboutPage
* Improve default template
* BasicListItem: Use pressed state for tooltip
* Port i18n to qsTr
* DefautListItemBackground: prioritize user input events when setting background color
* Fix tst_basiclistitem_tooltip autotest
==== kitemmodels ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kitemmodels-imports libKF5ItemModels5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kitemviews ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kjobwidgets ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kjs ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== knewstuff ====
Version update (5.107.0 -> 5.108.0)
Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuffCore5 libKF5NewStuffWidgets5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== knotifications ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== knotifyconfig ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpackage ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Define json-validate-ignore property in .kde-ci.yml
==== kparts ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpeople5 ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpty ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kquickcharts ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== krunner ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kservice ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== ktexteditor ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== ktextwidgets ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kunitconversion ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwallet ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kwallet-tools kwalletd5 libKF5Wallet5 libkwalletbackend5-5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwayland ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwidgetsaddons ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Remove duplicate row in category selection
==== kwindowsystem ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kxmlgui ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Add a view_redisplay_merge MergeLocal to ui_standards.rc (kde#470848)
==== libKF5ModemManagerQt ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== libKF5NetworkManagerQt ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Include only needed headers instead of QtDBus module header
==== libgphoto2 ====
Subpackages: libgphoto2-6 libgphoto2_port12
- drop lockdev support (boo#1212801)
==== libnice ====
Subpackages: gstreamer-libnice libnice10
- Add 4b63250c.patch: agent/meson: Replace filename with basename.
This avoids emitting absolute paths into generated sourcecode, it
improves reproducibility.
==== libqt5-qtbase ====
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Change %_libqt5_libexecdir to %_libexecdir/qt5 (bsc#1174075)
==== libqt5-qtgraphicaleffects ====
- Fix broken QML dependency
==== libstorage-ng ====
Version update (4.5.122 -> 4.5.123)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.123
==== mutter ====
Version update (44.2 -> 44.3)
- Update to version 44.3:
+ Ensure preferred monitor mode is always included.
+ Avoid rapidly toggling dynamic max render time.
+ Fix dynamic max render time blocking with direct scanout.
+ Misc. bug fixes.
+ Updated translations.
==== ncurses ====
Version update (6.4.20230617 -> 6.4.20230701)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20230701
+ fix mandoc warnings about unnecessary markup.
+ improve parameter check in tparm_setup()
- Extend compiled in fall back terminals with xterm-256color
and ms-terminal (the first is now a days more common and second
one is useful for ssh connections to MS(tm))
- Add ncurses patch 20230624
+ fixes for out-of-memory condition (report by "eaglegai").
- Add ncurses patch 20230625
+ adjust man/make_sed.sh to work with dates as the third field of TH.
+ fixes for out-of-memory condition (report by "eaglegai").
==== oath-toolkit ====
Version update (2.6.7 -> 2.6.8)
- Update to version 2.6.8
* libpskc: Fixes for recent libxmlsec releases.
* pam_oath: Provide fallback pam_modutil_getpwnam implementation.
* pam_oath: Don't fail authentication when pam_modutil_getpwnam
doesn't ** know the user when usersfile don't include ${USER}
or ${HOME}.
* pam_oath: Self-test improvements.
==== perl-Cpanel-JSON-XS ====
Version update (4.36 -> 4.37)
- updated to 4.37
see /usr/share/doc/packages/perl-Cpanel-JSON-XS/Changes
4.37 2023-07-04 (rurban)
- Fix NAN/INF for AIX (Tux: AIX-5.3, tested by XSven on AIX-7.3) GH #165
- Fix empty string result in object stringification (PR #221 jixam)
- Allow \' in strings when allow_singlequote is enabled (PR #217 warpspin)
==== perl-HTTP-Date ====
Version update (6.05 -> 6.06)
- updated to 6.06
see /usr/share/doc/packages/perl-HTTP-Date/Changes
6.06 2023-07-06 22:29:55Z
- Use copyright year rather than range (GH#18) (Olaf Alders)
- Replace "Test" with "Test::More" (GH#20) (James Raspass)
- Remove the executable bit from the test (GH#21) (James Raspass)
- Add support for Windows four-digit year format (GH#23) (Grant Street
Group)
==== perl-Net-HTTP ====
Version update (6.22 -> 6.23)
- updated to 6.23
see /usr/share/doc/packages/perl-Net-HTTP/Changes
6.23 2023-06-16 11:46:01Z
- Don't treat HTTP header names as case sensitive in test (GH#81) (Olaf
Alders)
==== perl-libwww-perl ====
Version update (6.70 -> 6.71)
- updated to 6.71
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.71 2023-06-20 19:44:19Z
- Use rather than require Module::Load (GH#435) (Olaf Alders)
==== plasma-framework ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Plasma5 plasma-framework-components
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Polish DropMenu before creating platform window
==== podman ====
- Don't unconditionally Obsolete podman-cni-config, ensure clean upgrade path.
- Prefer Podman's new network stack (netavark) exclusively on ALP
- Remove unused podman-cni-config subpackage, add systemd
==== prison-qt5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Prison5 prison-qt5-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== protobuf ====
Version update (4.23.3 -> 4.23.4)
- update to 23.4:
* Add dllexport_decl for generated default instance.
* Deps: Update Guava to 32.0.1
==== publicsuffix ====
Version update (20230616 -> 20230709)
- Update to version 20230709:
* util: gTLD data autopull updates for 2023-07-08T15:13:17 UTC (#1796)
* util: gTLD data autopull updates for 2023-07-01T15:13:05 UTC (#1791)
* AWS Submissions to the Public Suffix List - Q1 2023 (#1600)
==== purpose ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Purpose5 libKF5PurposeWidgets5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== python-M2Crypto ====
Version update (0.38.0 -> 0.39.0)
- Update to 0.39.0:
- SUPPORT FOR PYTHON 2 HAS BEEN DEPRECATED AND IT WILL BE
COMPLETELY REMOVED IN THE NEXT RELEASE.
- Remove dependency on parameterized and use unittest.subTest
instead.
- Upgrade embedded six.py module to 1.16.0 (really tiny
inconsequential changes).
- Make tests working on MacOS again (test_bio_membuf: Use fork)
- Use OpenSSL_version_num() instead of unrealiable parsing of
.h file.
- Mitigate the Bleichenbacher timing attacks in the RSA
decryption API (CVE-2020-25657)
- Add functionality to extract EC key from public key + Update
tests
- Worked around compatibility issues with OpenSSL 3.*
- Support for Twisted has been deprecated (they have their own
SSL support anyway).
- Generate TAP while testing.
- Stop using GitHub for testing.
- Accept a small deviation from time in the testsuite (for
systems with non-standard HZ kernel parameter).
- Use the default BIO.__del__ rather tha overriding in BIO.File
(avoid a memleak).
- Resolve "X509_Name.as_der() method from X509.py -> class
X509_Name caused segmentation fault"
- Remove upstreamed patches:
- CVE-2020-25657-Bleichenbacher-attack.patch
- m2crypto-0.38-ossl3-tests.patch
- openssl-adapt-tests-for-3.1.0.patch
- openssl-stop-parsing-header.patch
- timeout_300hz.patch
- add timeout_300hz.patch to accept a small deviation from time
in the testsuite (bsc#1212757)
==== python-cryptography ====
Version update (41.0.1 -> 41.0.2)
- update to 41.0.2:
* Fixed bugs in creating and parsing SSH certificates where
critical options with values were handled incorrectly.
Certificates are now created correctly and parsing accepts
correct values as well as the previously generated
invalid forms with a warning. In the next release, support
for parsing these invalid forms will be removed.
- remove patch remove_python_3_6_deprecation_warning.patch as the
warning was already removed upstream
- Add no-pytest_benchmark.patch, which remove dependency on
pytest-benchmark and coveralls (We don't need no benchmarking
and coverage measurement; bsc#1213005).
==== python-referencing ====
Version update (0.29.0 -> 0.29.1)
- Update to version 0.29.1:
* Update pre-commit hooks.
* Minor rewording of the caching section and give it a
subsection.
* Bump suite from `cb57930` to `9335e4a`
* [pre-commit.ci] pre-commit autoupdate
* Bump suite from `445c8ee` to `cb57930`
* Bump suite from `f6fa54d` to `445c8ee`
* Don't use nox.session.create_tmp.
==== python-rich ====
Version update (13.4.1 -> 13.4.2)
- specfile:
* update copyright year
- update to version 13.4.2:
* Changed
+ Relaxed markdown-it-py dependency
==== qqc2-desktop-style ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== solid ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Solid5 solid-imports solid-tools
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== sonnet ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5SonnetCore5 libKF5SonnetUi5 sonnet-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== syndication ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== syntax-highlighting ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5SyntaxHighlighting5 syntax-highlighting-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* ensure all .json files are valid
* Highlight QML pragma keyword
==== threadweaver ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== u-boot-rpiarm64 ====
Version update (2023.04 -> 2023.07)
Subpackages: u-boot-rpiarm64-doc
- Add starfivevisionfive2 flavor
- Bump opensbi dependency to 1.3
- 2023.07 has been released with a -rc6 leftover, so remove it
from Makefile to have the right version displayed on boot
- Update to 2023.07:
* Full changelog available at:
https://source.denx.de/u-boot/u-boot/-/compare/v2023.04...v2023.07
- add keyring for gpg validation
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1
- No longer provide last and lastb on Tumbleweed. last is provided by
wtmpdb and lastb is no longer supported.
==== util-linux-systemd ====
- No longer provide last and lastb on Tumbleweed. last is provided by
wtmpdb and lastb is no longer supported.
==== vim ====
Subpackages: vim-data vim-data-common vim-small xxd
- Use app icon generated from vimlogo.eps in source tarball; add
higher res icons of sizes 128, 256, and 512px as png sources.
Our current icons deviate from upstream flatpaks for example.
==== wtmpdb ====
Version update (0.7.0 -> 0.7.1)
Subpackages: libwtmpdb0
- https://en.opensuse.org/SourceUrls
- Use noun phrase for Summary.
- Wrap descriptions at 70 (for yast2 textmode).
- Update to ersion 0.7.1
- wtmpdb last: Support "YYYY-MM-DD", "today" and "yesterday" as
time option
- Add last compat symlink and manual page
==== yast2-installation ====
Version update (4.6.4 -> 4.6.5)
- Fixed yupdate script to properly run pre/post scripts
when patching from GitHub (bsc#1213197)
- 4.6.5
==== yast2-storage-ng ====
Version update (4.6.11 -> 4.6.12)
- Ensure adding storage support software packages for MicroOS
which uses its custom partitions_proposal client, not the
standard inst_disk_proposal client (bsc#1212452)
https://github.com/yast/yast-storage-ng/pull/1351
- 4.6.12
- Honor encryption settings if they are set into ProductFeatures
by the Common Critera role (jsc#PED-4166, jsc#PED-4474).
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
blog (2.26 -> 2.27)
cpio (2.13 -> 2.14)
gcc13 (13.1.1+git7364 -> 13.1.1+git7552)
glib2 (2.76.3 -> 2.76.4)
gnome-shell (44.2 -> 44.3)
gpgme (1.20.0 -> 1.21.0)
hwdata (0.371 -> 0.372)
kernel-firmware (20230620 -> 20230707)
kernel-source (6.3.9 -> 6.4.2)
libgphoto2
libnice
libqt5-qtgraphicaleffects
libstorage-ng (4.5.122 -> 4.5.123)
mutter (44.2 -> 44.3)
ncurses (6.4.20230617 -> 6.4.20230701)
perl-Cpanel-JSON-XS (4.36 -> 4.37)
perl-HTTP-Date (6.05 -> 6.06)
perl-Net-HTTP (6.22 -> 6.23)
perl-libwww-perl (6.70 -> 6.71)
publicsuffix (20230616 -> 20230709)
python-M2Crypto (0.38.0 -> 0.39.0)
python-cryptography (41.0.1 -> 41.0.2)
python-referencing (0.29.0 -> 0.29.1)
python-rich (13.4.1 -> 13.4.2)
util-linux
util-linux-systemd
vim
wtmpdb (0.7.0 -> 0.7.1)
yast2-installation (4.6.4 -> 4.6.5)
yast2-storage-ng (4.6.11 -> 4.6.12)
yast2-trans (84.87.20230630.ccfa6add46 -> 84.87.20230708.d1de37aed1)
=== Details ===
==== blog ====
Version update (2.26 -> 2.27)
Subpackages: libblogger2
- Fix big endian cast problems to be able to read commands
and ansers (blogctl) as well as passphrases (blogd)
==== cpio ====
Version update (2.13 -> 2.14)
Subpackages: cpio-lang cpio-mt
- Backport upstream fix for --no-absolute-filenames --make-directories
* fix-operation-no-absolute-filenames.patch
- Update to 2.14:
* New option --ignore-dirnlink
Valid in copy-out mode, it instructs cpio to ignore the actual number of
links reported for each directory member and always store 2 instead.
* Changes in --reproducible option
The --reproducible option implies --ignore-dirlink. In other words, it is
equivalent to --ignore-devno --ignore-dirnlink --renumber-inodes.
* Use GNU ls algorithm for deciding timestamp format in -tv mode
* Fix cpio header verification.
* Fix handling of device numbers on copy out.
* Fix calculation of CRC in copy-out mode.
* Rewrite the fix for CVE-2015-1197.
* Fix combination of --create --append --directory.
* Fix appending to archives bigger than 2G.
- Refresh patches:
* cpio-open_nonblock.patch
* cpio-dev_number.patch
* cpio-default_tape_dev.patch
* cpio-pattern-file-sigsegv.patch
- Remove patches:
* cpio-revert-CVE-2015-1197-fix.patch
* fix-CVE-2021-38185.patch
* fix-CVE-2021-38185_2.patch
* fix-CVE-2021-38185_3.patch
==== gcc13 ====
Version update (13.1.1+git7364 -> 13.1.1+git7552)
Subpackages: cpp13 libatomic1 libgcc_s1 libgfortran5 libgomp1 libobjc4 libquadmath0 libstdc++6 libstdc++6-locale libstdc++6-pp libubsan1
- Bump to f9781fcf733ca3afe5b5811afd8ecbb18d9d3a11, git7552
- Remove gcc13-pr110334.patch again as it breaks libreoffice build.
- Bump to a533ded17fb13cbbb2fa5133ecd470360f66c5cf, git7489.
- Add gcc13-pr110334.patch to fix missed optimization in Skia
resulting in Firefox crashes when building with LTO. [boo#1212101]
- Raise architecture levels for ALP. [PED-153]
* Raise POWER architecture baseline to power9. [PED-2005]
* Raise x86-64 architecture baseline to x86-64-v2 for ALP. [PED-252]
* Delay raising s390x architecture baseline to z14. [PED-253]
==== glib2 ====
Version update (2.76.3 -> 2.76.4)
Subpackages: glib2-lang glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 libgthread-2_0-0
- Update to version 2.76.4:
+ Fix build failure on Android with `statx()` support
+ Bugs fixed:
- glib-compile-schemas failed on directory name with no Latin
symbols
- Build failure due to statx fields with NDK r25.c
- glib-compile-resources: Fix non-ASCII arg parsing on Windows
- glib: reset errno to 0 when futex() returns EAGAIN
- Avoid stack overflow in gspawn on macOS
- glocalfileinfo: Fix incorrect use of struct
statx.st_mtimensec on Android
+ Updated translations.
==== gnome-shell ====
Version update (44.2 -> 44.3)
Subpackages: gnome-extensions gnome-shell-calendar gnome-shell-lang
- Update to version 44.3:
+ Fix cursor offset when using magnifier.
+ Fix missing workspace borders after wallpaper changes.
+ Revert screencast optimization that results in bogus windows.
+ Misc. bug fixes and cleanups.
+ Updated translations.
==== gpgme ====
Version update (1.20.0 -> 1.21.0)
Subpackages: libgpgme11 libgpgmepp6 python311-gpg
- Update to 1.21.0
* Extended gpgme_op_encrypt, gpgme_op_encrypt_sign, and gpgme_op_sign
to allow writing the output directly to a file. [T6530]
* Extended gpgme_op_decrypt and gpgme_op_verify to allow reading the
input data directly from files. [T6530]
* For key signing and uid revoking allow an empty user id. [rMfbc3963d62]
* Pass an input-size-hint also to the gpgsm engine. [T6534]
* qt: Allow writing the created archives directly to a file. [T6530]
* qt: Allow reading the signed/encrypted archive to decrypt
or verify directly from a file. [T6530]
* qt: Qt Jobs working with QIODeviceDataProvider now properly
handle input-size hints and progress for files larger.
2^32 bytes in 32 bit builds. [T6534]
* cpp: Error::isCanceled now also returns true for error code
GPG_ERR_FULLY_CANCELED. [T6510]
* python: Fix wrong use of write. [T6501]
* Interface changes relative to the 1.20.0 release:
- cpp: Data::setFlag NEW.
- cpp: Data::setSizeHint NEW.
- qt: Job::startIt NEW.
- qt: DecryptVerifyArchiveJob::setInputFile NEW.
- qt: DecryptVerifyArchiveJob::inputFile NEW.
- qt: EncryptArchiveJob::setRecipients NEW.
- qt: EncryptArchiveJob::recipients NEW.
- qt: EncryptArchiveJob::setInputPaths NEW.
- qt: EncryptArchiveJob::inputPaths NEW.
- qt: EncryptArchiveJob::setOutputFile NEW.
- qt: EncryptArchiveJob::outputFile NEW.
- qt: EncryptArchiveJob::setEncryptionFlags NEW.
- qt: EncryptArchiveJob::encryptionFlags NEW.
- qt: SignArchiveJob::setSigners NEW.
- qt: SignArchiveJob::signers NEW.
- qt: SignArchiveJob::setInputPaths NEW.
- qt: SignArchiveJob::inputPaths NEW.
- qt: SignArchiveJob::setOutputFile NEW.
- qt: SignArchiveJob::outputFile NEW.
- qt: SignEncryptArchiveJob::setSigners NEW.
- qt: SignEncryptArchiveJob::signers NEW.
- qt: SignEncryptArchiveJob::setRecipients NEW.
- qt: SignEncryptArchiveJob::recipients NEW.
- qt: SignEncryptArchiveJob::setInputPaths NEW.
- qt: SignEncryptArchiveJob::inputPaths NEW.
- qt: SignEncryptArchiveJob::setOutputFile NEW.
- qt: SignEncryptArchiveJob::outputFile NEW.
- qt: SignEncryptArchiveJob::setEncryptionFlags NEW.
- qt: SignEncryptArchiveJob::encryptionFlags NEW.
==== hwdata ====
Version update (0.371 -> 0.372)
- update to 0.372:
* Update pci, usb and vendor ids
==== kernel-firmware ====
Version update (20230620 -> 20230707)
Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network ucode-amd
- Update to version 20230707 (git commit d3f66064cf43):
* Partially revert "amdgpu: DMCUB updates for DCN 3.1.4 and 3.1.5"
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* linux-firmware: update firmware for MT7922 WiFi device
* linux-firmware: Update firmware file for Intel Bluetooth AX203
* linux-firmware: Update firmware file for Intel Bluetooth AX203
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX211
* linux-firmware: Update firmware file for Intel Bluetooth AX210
* linux-firmware: Update firmware file for Intel Bluetooth AX200
* linux-firmware: Update firmware file for Intel Bluetooth AX201
* Fix qcom ASoC tglp WHENCE entry
* check_whence: Check link targets are valid
* iwlwifi: add new FWs from core80-39 release
* iwlwifi: update cc/Qu/QuZ firmwares for core80-39 release
* qcom: Add Audio firmware for SC8280XP X13s
* Makefile, copy-firmware: support xz/zstd compressed firmware
* copy-firmware: silence the last shellcheck warnings
* copy-firmware: drop obsolete backticks, quote
* copy-firmware: tweak sed invocation
* copy-firmware: quote deskdir and dirname
* check_whence: error if symlinks are in-tree
* check_whence: error if File: is actually a link
* check_whence: strip quotation marks
* linux-firmware: wilc1000: update WILC1000 firmware to v16.0
* ice: update ice DDP wireless_edge package to 1.3.10.0
* amdgpu: DMCUB updates for DCN 3.1.4 and 3.1.5
- Update aliases
==== kernel-source ====
Version update (6.3.9 -> 6.4.2)
- Refresh
patches.suse/fork-lock-VMAs-of-the-parent-process-when-forking.patch.
Replace by the correct one. It was merged to upstream twice. And this is
the right version.
- commit b97b894
- Update vanilla config files.
Just run oldconfig for vanillas too. No actual changes.
- commit dcdca04
- Update
patches.kernel.org/6.4.1-021-mm-always-expand-the-stack-with-the-mmap-write…
(bsc#1012628 bsc#1212395 CVE-2023-3269).
Add references to CVE.
- commit 5a45f18
- Update config files.
Only run_oldconfig.
- commit 37ad463
- fork: lock VMAs of the parent process when forking
(bsc#1212775).
- mm: lock a vma before stack expansion (bsc#1212775).
- mm: lock newly mapped VMA which can be modified after it
becomes visible (bsc#1212775).
- mm: lock newly mapped VMA with corrected ordering (bsc#1212775).
- Update config files.
- Delete
patches.suse/Revert-x86-mm-try-VMA-lock-based-page-fault-handling.patch.
Drop the downstream revert in favor of upstream fixes above and reset
the configs -- leave STATS off as per default.
- commit e2dafc9
- Linux 6.4.2 (bsc#1012628).
- arch/arm64/mm/fault: Fix undeclared variable error in
do_page_fault() (bsc#1012628).
- drm/amdgpu: Validate VM ioctl flags (bsc#1012628).
- dm ioctl: Avoid double-fetch of version (bsc#1012628).
- docs: Set minimal gtags / GNU GLOBAL version to 6.6.5
(bsc#1012628).
- scripts/tags.sh: Resolve gtags empty index generation
(bsc#1012628).
- hugetlb: revert use of page_cache_next_miss() (bsc#1012628).
- nubus: Partially revert proc_create_single_data() conversion
(bsc#1012628).
- Revert "cxl/port: Enable the HDM decoder capability for switch
ports" (bsc#1012628).
- nfs: don't report STATX_BTIME in ->getattr (bsc#1012628).
- execve: always mark stack as growing down during early stack
setup (bsc#1012628).
- PCI/ACPI: Call _REG when transitioning D-states (bsc#1012628).
- PCI/ACPI: Validate acpi_pci_set_power_state() parameter
(bsc#1012628).
- tools/nolibc: x86_64: disable stack protector for _start
(bsc#1012628).
- xtensa: fix lock_mm_and_find_vma in case VMA not found
(bsc#1012628).
- commit 648ac3b
- regulator: axp20x: Add AXP15060 support.
- commit db7b000
- Revert "Refresh patches.rpmify/usrmerge-Adjust-module-path-in-the-kernel-sources.patch."
This reverts commit b8411965e8341c82ba2e01bb38698945be2390a0. It breaks
the build:
+ ln -s /usr/src/linux-6.4.1-1 /home/abuild/rpmbuild/BUILDROOT/kernel-default-6.4.1-1.1.x86_64/usr/lib/modules/6.4.1-1-default/source
ln: failed to create symbolic link '/home/abuild/rpmbuild/BUILDROOT/kernel-default-6.4.1-1.1.x86_64/usr/lib/modules/6.4.1-1-default/source': No such file or directory
- commit 3561b10
- drm/amd: Don't try to enable secure display TA multiple times
(bsc#1212848).
- drm/amdgpu: fix number of fence calculations (bsc#1212848).
- drm/amd/display: perform a bounds check before filling dirty
rectangles (bsc#1212848).
- drm/amdgpu: check RAS irq existence for VCN/JPEG (bsc#1212848).
- drm/amd/pm: add abnormal fan detection for smu 13.0.0
(bsc#1212848).
- drm/amd: Disable PSR-SU on Parade 0803 TCON (bsc#1212848).
- drm/amd/pm: update the LC_L1_INACTIVITY setting to address
possible noise issue (bsc#1212848).
- drm/amd/display: Fix 128b132b link loss handling (bsc#1212848).
- drm/amd/display: disable seamless boot if force_odm_combine
is enabled (bsc#1212848).
- drm/amd/display: add a NULL pointer check (bsc#1212848).
- drm/amd/pm: revise the ASPM settings for thunderbolt attached
scenario (bsc#1212848).
- drm/amdgpu: fix clearing mappings for BOs that are always
valid in VM (bsc#1212848).
- drm/amdgpu: Skip mark offset for high priority rings
(bsc#1212848).
- drm/amdgpu: make sure that BOs have a backing store
(bsc#1212848).
- drm/amdgpu: make sure BOs are locked in amdgpu_vm_get_memory
(bsc#1212848).
- commit a695138
- Remove more packaging cruft for SLE < 12 SP3
- commit a16781c
- Linux 6.4.1 (bsc#1012628).
- x86/microcode/AMD: Load late on both threads too (bsc#1012628).
- x86/smp: Make stop_other_cpus() more robust (bsc#1012628).
- x86/smp: Dont access non-existing CPUID leaf (bsc#1012628).
- x86/smp: Remove pointless wmb()s from native_stop_other_cpus()
(bsc#1012628).
- x86/smp: Use dedicated cache-line for mwait_play_dead()
(bsc#1012628).
- x86/smp: Cure kexec() vs. mwait_play_dead() breakage
(bsc#1012628).
... changelog too long, skipping 81 lines ...
- commit 4b7bbac
==== libgphoto2 ====
Subpackages: libgphoto2-6 libgphoto2-6-lang libgphoto2_port12
- drop lockdev support (boo#1212801)
==== libnice ====
Subpackages: gstreamer-libnice libnice10
- Add 4b63250c.patch: agent/meson: Replace filename with basename.
This avoids emitting absolute paths into generated sourcecode, it
improves reproducibility.
==== libqt5-qtgraphicaleffects ====
- Fix broken QML dependency
==== libstorage-ng ====
Version update (4.5.122 -> 4.5.123)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- Translated using Weblate (Georgian) (bsc#1149754)
- 4.5.123
==== mutter ====
Version update (44.2 -> 44.3)
Subpackages: mutter-lang
- Update to version 44.3:
+ Ensure preferred monitor mode is always included.
+ Avoid rapidly toggling dynamic max render time.
+ Fix dynamic max render time blocking with direct scanout.
+ Misc. bug fixes.
+ Updated translations.
==== ncurses ====
Version update (6.4.20230617 -> 6.4.20230701)
Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen
- Add ncurses patch 20230701
+ fix mandoc warnings about unnecessary markup.
+ improve parameter check in tparm_setup()
- Extend compiled in fall back terminals with xterm-256color
and ms-terminal (the first is now a days more common and second
one is useful for ssh connections to MS(tm))
- Add ncurses patch 20230624
+ fixes for out-of-memory condition (report by "eaglegai").
- Add ncurses patch 20230625
+ adjust man/make_sed.sh to work with dates as the third field of TH.
+ fixes for out-of-memory condition (report by "eaglegai").
==== perl-Cpanel-JSON-XS ====
Version update (4.36 -> 4.37)
- updated to 4.37
see /usr/share/doc/packages/perl-Cpanel-JSON-XS/Changes
4.37 2023-07-04 (rurban)
- Fix NAN/INF for AIX (Tux: AIX-5.3, tested by XSven on AIX-7.3) GH #165
- Fix empty string result in object stringification (PR #221 jixam)
- Allow \' in strings when allow_singlequote is enabled (PR #217 warpspin)
==== perl-HTTP-Date ====
Version update (6.05 -> 6.06)
- updated to 6.06
see /usr/share/doc/packages/perl-HTTP-Date/Changes
6.06 2023-07-06 22:29:55Z
- Use copyright year rather than range (GH#18) (Olaf Alders)
- Replace "Test" with "Test::More" (GH#20) (James Raspass)
- Remove the executable bit from the test (GH#21) (James Raspass)
- Add support for Windows four-digit year format (GH#23) (Grant Street
Group)
==== perl-Net-HTTP ====
Version update (6.22 -> 6.23)
- updated to 6.23
see /usr/share/doc/packages/perl-Net-HTTP/Changes
6.23 2023-06-16 11:46:01Z
- Don't treat HTTP header names as case sensitive in test (GH#81) (Olaf
Alders)
==== perl-libwww-perl ====
Version update (6.70 -> 6.71)
- updated to 6.71
see /usr/share/doc/packages/perl-libwww-perl/Changes
6.71 2023-06-20 19:44:19Z
- Use rather than require Module::Load (GH#435) (Olaf Alders)
==== publicsuffix ====
Version update (20230616 -> 20230709)
- Update to version 20230709:
* util: gTLD data autopull updates for 2023-07-08T15:13:17 UTC (#1796)
* util: gTLD data autopull updates for 2023-07-01T15:13:05 UTC (#1791)
* AWS Submissions to the Public Suffix List - Q1 2023 (#1600)
==== python-M2Crypto ====
Version update (0.38.0 -> 0.39.0)
- Update to 0.39.0:
- SUPPORT FOR PYTHON 2 HAS BEEN DEPRECATED AND IT WILL BE
COMPLETELY REMOVED IN THE NEXT RELEASE.
- Remove dependency on parameterized and use unittest.subTest
instead.
- Upgrade embedded six.py module to 1.16.0 (really tiny
inconsequential changes).
- Make tests working on MacOS again (test_bio_membuf: Use fork)
- Use OpenSSL_version_num() instead of unrealiable parsing of
.h file.
- Mitigate the Bleichenbacher timing attacks in the RSA
decryption API (CVE-2020-25657)
- Add functionality to extract EC key from public key + Update
tests
- Worked around compatibility issues with OpenSSL 3.*
- Support for Twisted has been deprecated (they have their own
SSL support anyway).
- Generate TAP while testing.
- Stop using GitHub for testing.
- Accept a small deviation from time in the testsuite (for
systems with non-standard HZ kernel parameter).
- Use the default BIO.__del__ rather tha overriding in BIO.File
(avoid a memleak).
- Resolve "X509_Name.as_der() method from X509.py -> class
X509_Name caused segmentation fault"
- Remove upstreamed patches:
- CVE-2020-25657-Bleichenbacher-attack.patch
- m2crypto-0.38-ossl3-tests.patch
- openssl-adapt-tests-for-3.1.0.patch
- openssl-stop-parsing-header.patch
- timeout_300hz.patch
- add timeout_300hz.patch to accept a small deviation from time
in the testsuite (bsc#1212757)
==== python-cryptography ====
Version update (41.0.1 -> 41.0.2)
- update to 41.0.2:
* Fixed bugs in creating and parsing SSH certificates where
critical options with values were handled incorrectly.
Certificates are now created correctly and parsing accepts
correct values as well as the previously generated
invalid forms with a warning. In the next release, support
for parsing these invalid forms will be removed.
- remove patch remove_python_3_6_deprecation_warning.patch as the
warning was already removed upstream
- Add no-pytest_benchmark.patch, which remove dependency on
pytest-benchmark and coveralls (We don't need no benchmarking
and coverage measurement; bsc#1213005).
==== python-referencing ====
Version update (0.29.0 -> 0.29.1)
- Update to version 0.29.1:
* Update pre-commit hooks.
* Minor rewording of the caching section and give it a
subsection.
* Bump suite from `cb57930` to `9335e4a`
* [pre-commit.ci] pre-commit autoupdate
* Bump suite from `445c8ee` to `cb57930`
* Bump suite from `f6fa54d` to `445c8ee`
* Don't use nox.session.create_tmp.
==== python-rich ====
Version update (13.4.1 -> 13.4.2)
- specfile:
* update copyright year
- update to version 13.4.2:
* Changed
+ Relaxed markdown-it-py dependency
==== util-linux ====
Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 util-linux-lang
- No longer provide last and lastb on Tumbleweed. last is provided by
wtmpdb and lastb is no longer supported.
==== util-linux-systemd ====
- No longer provide last and lastb on Tumbleweed. last is provided by
wtmpdb and lastb is no longer supported.
==== vim ====
Subpackages: vim-data vim-data-common vim-small xxd
- Use app icon generated from vimlogo.eps in source tarball; add
higher res icons of sizes 128, 256, and 512px as png sources.
Our current icons deviate from upstream flatpaks for example.
==== wtmpdb ====
Version update (0.7.0 -> 0.7.1)
Subpackages: libwtmpdb0
- https://en.opensuse.org/SourceUrls
- Use noun phrase for Summary.
- Wrap descriptions at 70 (for yast2 textmode).
- Update to ersion 0.7.1
- wtmpdb last: Support "YYYY-MM-DD", "today" and "yesterday" as
time option
- Add last compat symlink and manual page
==== yast2-installation ====
Version update (4.6.4 -> 4.6.5)
- Fixed yupdate script to properly run pre/post scripts
when patching from GitHub (bsc#1213197)
- 4.6.5
==== yast2-storage-ng ====
Version update (4.6.11 -> 4.6.12)
- Ensure adding storage support software packages for MicroOS
which uses its custom partitions_proposal client, not the
standard inst_disk_proposal client (bsc#1212452)
https://github.com/yast/yast-storage-ng/pull/1351
- 4.6.12
- Honor encryption settings if they are set into ProductFeatures
by the Common Critera role (jsc#PED-4166, jsc#PED-4474).
==== yast2-trans ====
Version update (84.87.20230630.ccfa6add46 -> 84.87.20230708.d1de37aed1)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20230708.d1de37aed1:
* Translated using Weblate (Chinese (China) (zh_CN))
* Translated using Weblate (Kurdish)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
distrobox (1.5.0 -> 1.5.0.2)
oath-toolkit (2.6.7 -> 2.6.8)
=== Details ===
==== distrobox ====
Version update (1.5.0 -> 1.5.0.2)
Subpackages: distrobox-bash-completion
- Update to version 1.5.0.2:
* Fix typo in instructions for setting podman-host path
* Fix user initialization for ubuntu 23.04
* Compatibility: add openEULER and Linux Mint containers
* Fix docker minimum version to 19.03.15.
* Better container detection in host-exec
* fix host file sync when unsharing network
- Changes from version 1.5.0.1:
* Fix bashism in assemble.
* Revert to using distrobox-enter for upgrade.
* Fix bug in init_readlink with relative paths in init.
* Improve dry-run output to show a flag for each line in enter/create.
==== oath-toolkit ====
Version update (2.6.7 -> 2.6.8)
- Update to version 2.6.8
* libpskc: Fixes for recent libxmlsec releases.
* pam_oath: Provide fallback pam_modutil_getpwnam implementation.
* pam_oath: Don't fail authentication when pam_modutil_getpwnam
doesn't ** know the user when usersfile don't include ${USER}
or ${HOME}.
* pam_oath: Self-test improvements.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
attica-qt5 (5.107.0 -> 5.108.0)
baloo5 (5.107.0 -> 5.108.0)
bluez-qt (5.107.0 -> 5.108.0)
breeze5-icons (5.107.0 -> 5.108.0)
docker (24.0.2_ce -> 24.0.4_ce)
frameworkintegration (5.107.0 -> 5.108.0)
kactivities-stats (5.107.0 -> 5.108.0)
kactivities5 (5.107.0 -> 5.108.0)
karchive (5.107.0 -> 5.108.0)
kauth (5.107.0 -> 5.108.0)
kbookmarks (5.107.0 -> 5.108.0)
kcmutils (5.107.0 -> 5.108.0)
kcodecs (5.107.0 -> 5.108.0)
kcompletion (5.107.0 -> 5.108.0)
kconfig (5.107.0 -> 5.108.0)
kconfigwidgets (5.107.0 -> 5.108.0)
kcoreaddons (5.107.0 -> 5.108.0)
kcrash (5.107.0 -> 5.108.0)
kdbusaddons (5.107.0 -> 5.108.0)
kdeclarative (5.107.0 -> 5.108.0)
kded (5.107.0 -> 5.108.0)
kdelibs4support (5.107.0 -> 5.108.0)
kdesu (5.107.0 -> 5.108.0)
kdnssd-framework (5.107.0 -> 5.108.0)
kdoctools (5.107.0 -> 5.108.0)
kfilemetadata5 (5.107.0 -> 5.108.0)
kglobalaccel (5.107.0 -> 5.108.0)
kguiaddons (5.107.0 -> 5.108.0)
kholidays (5.107.0 -> 5.108.0)
khtml (5.107.0 -> 5.108.0)
ki18n (5.107.0 -> 5.108.0)
kiconthemes (5.107.0 -> 5.108.0)
kidletime (5.107.0 -> 5.108.0)
kimageformats (5.107.0 -> 5.108.0)
kinit (5.107.0 -> 5.108.0)
kio (5.107.0 -> 5.108.0)
kirigami2 (5.107.0 -> 5.108.0)
kitemmodels (5.107.0 -> 5.108.0)
kitemviews (5.107.0 -> 5.108.0)
kjobwidgets (5.107.0 -> 5.108.0)
kjs (5.107.0 -> 5.108.0)
knewstuff (5.107.0 -> 5.108.0)
knotifications (5.107.0 -> 5.108.0)
knotifyconfig (5.107.0 -> 5.108.0)
kpackage (5.107.0 -> 5.108.0)
kparts (5.107.0 -> 5.108.0)
kpeople5 (5.107.0 -> 5.108.0)
kpty (5.107.0 -> 5.108.0)
kquickcharts (5.107.0 -> 5.108.0)
krunner (5.107.0 -> 5.108.0)
kservice (5.107.0 -> 5.108.0)
ktexteditor (5.107.0 -> 5.108.0)
ktextwidgets (5.107.0 -> 5.108.0)
kunitconversion (5.107.0 -> 5.108.0)
kwallet (5.107.0 -> 5.108.0)
kwayland (5.107.0 -> 5.108.0)
kwidgetsaddons (5.107.0 -> 5.108.0)
kwindowsystem (5.107.0 -> 5.108.0)
kxmlgui (5.107.0 -> 5.108.0)
libKF5ModemManagerQt (5.107.0 -> 5.108.0)
libKF5NetworkManagerQt (5.107.0 -> 5.108.0)
libqt5-qtbase
plasma-framework (5.107.0 -> 5.108.0)
podman
prison-qt5 (5.107.0 -> 5.108.0)
purpose (5.107.0 -> 5.108.0)
qqc2-desktop-style (5.107.0 -> 5.108.0)
solid (5.107.0 -> 5.108.0)
sonnet (5.107.0 -> 5.108.0)
syndication (5.107.0 -> 5.108.0)
syntax-highlighting (5.107.0 -> 5.108.0)
threadweaver (5.107.0 -> 5.108.0)
xen (4.17.1_04 -> 4.17.1_06)
=== Details ===
==== attica-qt5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Attica5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== baloo5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: baloo5-file baloo5-file-lang baloo5-imports baloo5-kioslaves baloo5-kioslaves-lang baloo5-tools baloo5-tools-lang libKF5Baloo5 libKF5BalooEngine5 libKF5BalooEngine5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* [Document] Fix parameter name for setParentId
* [WriteTransaction] Avoid false warning when removing empty xattr terms
* [DocumentUrlDB] Remove recursive removal of parent directories
* [AdvancedQueryParser] Correctly parse empty quoted strings
* [AdvancedQueryParser] Fix minor error in test case
* Remove qt6 CI builds
* [UnindexedFileIndexer] Split into multiple transactions
* [FirstRunIndexer] Split initial index run into multiple transactions
* Move basic indexing test/benchmark to autotests
* [BasicIndexingTest] Add options for transaction size and index dir
* [WriteIoTest] Set required parent id
* Minor fixes for manual tests
* Fix signedness mismatch compiler warning
* Fix compiler warning by using an STL-style iterator instead
* Remove redundant transactiontest
* [UnindexedFileIndexer] Skip document when BasicIndexingJob fails
* [Transaction] Allow to fully reset the transaction state
* [WriteTransactionTest] Use unique_ptr for DB and temp dir
* [Transaction] Use unique_ptr for write transaction
* Verify parentId when adding documents
* [DatabaseDbis] Use default member initializers instead of constructor
* Remove unused QMimeDatabase instance from UnindexedFileIndexer
==== bluez-qt ====
Version update (5.107.0 -> 5.108.0)
Subpackages: bluez-qt-imports bluez-qt-udev libKF5BluezQt6
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== breeze5-icons ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Export cmake config so that a app can ensure that breeze-icons is installed
* Remove qt6 CI builds
==== docker ====
Version update (24.0.2_ce -> 24.0.4_ce)
Subpackages: docker-bash-completion docker-rootless-extras
- Update to Docker 24.0.4-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/24.0/#2404>.
- Update to Docker 24.0.3-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/24.0/#2403>. bsc#1213120
- Rebase patches:
* cli-0001-docs-include-required-tools-in-source-tree.patch
==== frameworkintegration ====
Version update (5.107.0 -> 5.108.0)
Subpackages: frameworkintegration-plugin libKF5Style5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kactivities-stats ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kactivities5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kactivities5-imports libKF5Activities5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== karchive ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Archive5 libKF5Archive5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Don't create subdirectory in toplevel.
* Remove qt6 CI builds
==== kauth ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Auth5 libKF5Auth5-lang libKF5AuthCore5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kbookmarks ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Bookmarks5 libKF5Bookmarks5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcmutils ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kcmutils-imports libKF5KCMUtils5 libKF5KCMUtils5-lang libKF5KCMUtilsCore5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcodecs ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Codecs5 libKF5Codecs5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcompletion ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Completion5 libKF5Completion5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kconfig ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kconf_update5 libKF5ConfigCore5 libKF5ConfigCore5-lang libKF5ConfigGui5 libKF5ConfigQml5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kconfigwidgets ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5ConfigWidgets5 libKF5ConfigWidgets5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcoreaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kcoreaddons-lang libKF5CoreAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kcrash ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdbusaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdbusaddons-tools libKF5DBusAddons5 libKF5DBusAddons5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdeclarative ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdeclarative-components libKF5CalendarEvents5 libKF5Declarative5 libKF5Declarative5-lang libKF5QuickAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kded ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdelibs4support ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdelibs4support-lang libKF5KDELibs4Support5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== kdesu ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Su5 libKF5Su5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdnssd-framework ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5DNSSD5 libKF5DNSSD5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kdoctools ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kdoctools-lang libKF5DocTools5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* doc: use a more generic Frameworks entity in the example
==== kfilemetadata5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kfilemetadata5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Reapply ReplayGain changes
==== kglobalaccel ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kglobalaccel5 libKF5GlobalAccel5 libKF5GlobalAccel5-lang libKF5GlobalAccelPrivate5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kguiaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5GuiAddons5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Add an option to disable building the geo: URI scheme handler
==== kholidays ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Holidays5 libKF5Holidays5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Add juneteenth as variable holiday
* Remove qt6 CI builds
==== khtml ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5KHtml5 libKF5KHtml5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== ki18n ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5I18n5 libKF5I18n5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kiconthemes ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5IconThemes5 libKF5IconThemes5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kidletime ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kimageformats ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* jxl: add support for libjxl v0.9, drop support for old 0.6.1
* Remove qt6 CI builds
==== kinit ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kinit-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== kio ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kio-core kio-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* KUrlRequester: restore unnamed filter compatibility with Plasma file dialog
* KUrlRequester::setFilter: note syntax change in compiler deprecation warning
* Add KUrlRequester::nameFilters, deprecate KUrlRequester::filter (kde#369542)
* KUrlRequester::setFilter: note special filter syntax, allow unnamed filters
* KCoreDirLister::nameFilter: revert to non-partial matching again
* filewidgets/kfilewidget: Select and focus filename after canceling overwrite (kde#444515)
* [previewjob] Check whether thumbRootDevice is valid before access (kde#470845)
- Drop patch, merged upstream:
* 0001-previewjob-Check-whether-thumbRootDevice-is-valid-be.patch
==== kirigami2 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kirigami2-lang libKF5Kirigami2-5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* PassiveNotificationsManager: Fix callBack lifetime (kde#470786)
* Backport fix to the template from master
* Use MobileForm.AboutPage
* Improve default template
* BasicListItem: Use pressed state for tooltip
* Port i18n to qsTr
* DefautListItemBackground: prioritize user input events when setting background color
* Fix tst_basiclistitem_tooltip autotest
==== kitemmodels ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kitemmodels-imports libKF5ItemModels5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kitemviews ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5ItemViews5 libKF5ItemViews5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kjobwidgets ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5JobWidgets5 libKF5JobWidgets5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kjs ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- No code change since 5.107.0
==== knewstuff ====
Version update (5.107.0 -> 5.108.0)
Subpackages: knewstuff-imports libKF5NewStuff5 libKF5NewStuff5-lang libKF5NewStuffCore5 libKF5NewStuffWidgets5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== knotifications ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Notifications5 libKF5Notifications5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== knotifyconfig ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5NotifyConfig5 libKF5NotifyConfig5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpackage ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kpackage-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Define json-validate-ignore property in .kde-ci.yml
==== kparts ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Parts5 libKF5Parts5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpeople5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kpeople5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kpty ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Pty5 libKF5Pty5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kquickcharts ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== krunner ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kservice ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kservice-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== ktexteditor ====
Version update (5.107.0 -> 5.108.0)
Subpackages: ktexteditor-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== ktextwidgets ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5TextWidgets5 libKF5TextWidgets5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kunitconversion ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5UnitConversion5 libKF5UnitConversion5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwallet ====
Version update (5.107.0 -> 5.108.0)
Subpackages: kwallet-tools kwallet-tools-lang kwalletd5 kwalletd5-lang libKF5Wallet5 libkwalletbackend5-5
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwayland ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kwidgetsaddons ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5WidgetsAddons5 libKF5WidgetsAddons5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Remove duplicate row in category selection
==== kwindowsystem ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5WindowSystem5 libKF5WindowSystem5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== kxmlgui ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5XmlGui5 libKF5XmlGui5-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Add a view_redisplay_merge MergeLocal to ui_standards.rc (kde#470848)
==== libKF5ModemManagerQt ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== libKF5NetworkManagerQt ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Include only needed headers instead of QtDBus module header
==== libqt5-qtbase ====
Subpackages: libQt5Concurrent5 libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5OpenGL5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 libqt5-qtbase-platformtheme-gtk3
- Change %_libqt5_libexecdir to %_libexecdir/qt5 (bsc#1174075)
==== plasma-framework ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Plasma5 plasma-framework-components plasma-framework-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* Polish DropMenu before creating platform window
==== podman ====
- Don't unconditionally Obsolete podman-cni-config, ensure clean upgrade path.
- Prefer Podman's new network stack (netavark) exclusively on ALP
- Remove unused podman-cni-config subpackage, add systemd
==== prison-qt5 ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Prison5 prison-qt5-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== purpose ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Purpose5 libKF5PurposeWidgets5 purpose-lang
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== qqc2-desktop-style ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== solid ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5Solid5 libKF5Solid5-lang solid-imports solid-tools
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== sonnet ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5SonnetCore5 libKF5SonnetCore5-lang libKF5SonnetUi5 sonnet-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== syndication ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== syntax-highlighting ====
Version update (5.107.0 -> 5.108.0)
Subpackages: libKF5SyntaxHighlighting5 libKF5SyntaxHighlighting5-lang syntax-highlighting-imports
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
* ensure all .json files are valid
* Highlight QML pragma keyword
==== threadweaver ====
Version update (5.107.0 -> 5.108.0)
- Update to 5.108.0
* New feature release
* For more details please see:
* https://kde.org/announcements/frameworks/5/5.108.0
- Changes since 5.107.0:
* Remove qt6 CI builds
==== xen ====
Version update (4.17.1_04 -> 4.17.1_06)
- Upstream bug fixes (bsc#1027519)
645dec48-AMD-IOMMU-assert-boolean-enum.patch
646b782b-PCI-pci_get_pdev-respect-segment.patch
647dfb0e-x86-missing-unlock-in-microcode_update_helper.patch
648863fc-AMD-IOMMU-Invalidate-All-check.patch
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (114.0.2 -> 115.0)
accountsservice
baloo5-widgets (23.04.2 -> 23.04.3)
bind
docker-buildx (0.11.0 -> 0.11.1)
dolphin (23.04.2 -> 23.04.3)
evince (44.2 -> 44.3)
ffmpegthumbs (23.04.2 -> 23.04.3)
filelight (23.04.2 -> 23.04.3)
fwupd
gdm
gnome-user-docs (44.1 -> 44.3)
gupnp (1.6.3 -> 1.6.4)
hwinfo (22.3 -> 23.1)
kaccounts-integration (23.04.2 -> 23.04.3)
kaccounts-providers (23.04.2 -> 23.04.3)
kate (23.04.2 -> 23.04.3)
kde-print-manager (23.04.2 -> 23.04.3)
kdegraphics-thumbnailers (23.04.2 -> 23.04.3)
kdenetwork-filesharing (23.04.2 -> 23.04.3)
kdialog (23.04.2 -> 23.04.3)
kernel-default-base
khelpcenter5 (23.04.2 -> 23.04.3)
kio-extras5 (23.04.2 -> 23.04.3)
konsole (23.04.2 -> 23.04.3)
kpmcore (23.04.2 -> 23.04.3)
kwalletmanager5 (23.04.2 -> 23.04.3)
libkdcraw (23.04.2 -> 23.04.3)
libkexiv2 (23.04.2 -> 23.04.3)
libstorage-ng (4.5.121 -> 4.5.122)
libxcrypt (4.4.34 -> 4.4.35)
mobipocket (23.04.2 -> 23.04.3)
mozilla-nss (3.89.1 -> 3.90)
partitionmanager (23.04.2 -> 23.04.3)
pulseaudio
python-configobj
python-jsonschema (4.17.3 -> 4.18.0)
python-urllib3 (2.0.2 -> 2.0.3)
python311 (3.11.3 -> 3.11.4)
python311-core (3.11.3 -> 3.11.4)
signon-kwallet-extension (23.04.2 -> 23.04.3)
spectacle (23.04.2 -> 23.04.3)
upower (1.90.0 -> 1.90.1)
=== Details ===
==== MozillaFirefox ====
Version update (114.0.2 -> 115.0)
- Mozilla Firefox 115.0
* Support for importing payment methods saved in Chrome-based browser
* Hardware video decoding is now enabled for Intel GPUs on Linux
* The Tab Manager dropdown now features close buttons, so tabs
can be closed more quickly
* Streamlined the user interface for importing data in from other browsers
* Users without platform support for H264 video decoding can now
fallback to Cisco's OpenH264 plugin for playback.
* Undo and redo are now available in Password fields
* Changed: On Linux, middle clicks on the new tab button will
now open the xclipboard contents in the new tab. If the
xclipboard content is a URL then that URL is opened, any
other text is opened with your default search provider.
* Changed: For users with a Firefox Colorways built-in theme,
the theme will be automatically migrated to the same theme
hosted on addons.mozilla.org for Firefox profiles that have
disabled add-ons auto-updates. This will allow users to keep
their Colorways theme when they are later removed from
Firefox installer files.
* Changed: Certain Firefox users may come across a message in
the extensions panel indicating that their add-ons are not
allowed on the site currently open. We have introduced a new
back-end feature to only allow some extensions monitored by
Mozilla to run on specific websites for various reasons,
including security concerns.
* HTML5: The builtin editor now behaves similarly to other
browsers with `contenteditable` and `designMode` when
splitting a node, e.g. typing Enter to split a paragraph, and
also when joining two nodes, e.g. typing Backspace at the
start of a paragraph to join the paragraph and the previous
one.
When a node is split, the builtin editor creates a new node
after the original one instead of before, i.e. creates the
right node instead of the left node.
Similarly, when two nodes are joined, the builtin editor
deletes the latter node and moves its children to the end of
the preceding node instead of deleting the former node and
moving its child to the start of the following node.
* HTML5: WebRTC application developers can now specify a target
in milliseconds of media for the jitter buffer to hold.
Altering the target value allows applications to control the
tradeoff between playout delay and the risk of running out of
audio or video frames due to network jitter.
* HTML5: Change array by copy provides additional methods on
`Array.prototype` and `TypedArray.prototype` to enable
changes on the array by returning a new copy of it with the
change.
* HTML5: The animation-composition property is now supported,
allowing a declarative way to define the composite operation
used when multiple animations affect the same property
simultaneously.
* HTML5: Added the URL.canParse() function to allow easy and
fast checking if URLs are valid and parseable.
* HTML5: IndexedDB is now also supported in private browsing
without memory limits thanks to encrypted storage on disk.
The temporary keys to decrypt the information are hold in RAM
only and all stored information is purged at the normal end
of a private browsing session from disk.
* HTML5: Supports conditions are now supported in CSS import
rules @import supports(...)
* Developer: In web development, we rely on third-party
libraries which you may not be interested in while debugging.
These can be ignored. Ignoring them means that breakpoints
will not get hit and they are skipped during stepping.
You can now choose to **Hide ignore-listed sources** in the
Developer Tools source tree
* Developer: We have introduced a new option,
`devtools.f12_enabled`, that can be utilized to prevent the
accidental use of the F12 key, which opens the DevTools
toolbox (bug).
* Enterprise: You can find information about policy updates and
enterprise specific bug fixes in the Firefox for Enterprise
115 Release Notes.
MFSA 2023-22 (bsc#1212438)
* CVE-2023-3482 (bmo#1839464)
Block all cookies bypass for localstorage
* CVE-2023-37201 (bmo#1826002)
Use-after-free in WebRTC certificate generation
* CVE-2023-37202 (bmo#1834711)
Potential use-after-free from compartment mismatch in SpiderMonkey
* CVE-2023-37203 (bmo#291640)
Drag and Drop API may provide access to local system files
* CVE-2023-37204 (bmo#1832195)
Fullscreen notification obscured via option element
* CVE-2023-37205 (bmo#1704420)
URL spoofing in address bar using RTL characters
* CVE-2023-37206 (bmo#1813299)
Insufficient validation of symlinks in the FileSystem API
* CVE-2023-37207 (bmo#1816287)
Fullscreen notification obscured
* CVE-2023-37208 (bmo#1837675)
Lack of warning when opening Diagcab files
* CVE-2023-37209 (bmo#1837993)
Use-after-free in `NotifyOnHistoryReload`
* CVE-2023-37210 (bmo#1821886)
Full-screen mode exit prevention
* CVE-2023-37211 (bmo#1832306, bmo#1834862, bmo#1835886,
bmo#1836550, bmo#1837450)
Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13,
... changelog too long, skipping 9 lines ...
- removed obsolete mozilla-buildfixes.patch
==== accountsservice ====
Subpackages: libaccountsservice0 typelib-1_0-AccountsService-1_0
- Rebase accountsservice-sysconfig.patch: (boo#1212675 boo#1212973).
- Remove accountsservice-assume-gdm.patch: Fixed by new rebasing
of accountsservice-sysconfig.patch.
==== baloo5-widgets ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== bind ====
- rebuild bind-utils on libuv updates (bsc#1212090)
==== docker-buildx ====
Version update (0.11.0 -> 0.11.1)
- fix wrong version output by using the git tag as the commit hash
- Update to version 0.11.1:
* Revert "bake: fix incorrect dockerfile resolution against
cwd:// context"
* vendor: update tonistiigi/vt100 to master@f9a4f7ef6531
* build: fix host-gateway handling
* docs: update generated content
* vendor: update cli-docs-tool to 0.6.0
* test: build details output
* build: missing newline when printing build details on error
* dockerfile: update docker to 24.0.2
* controller: include CgroupParent in build.Options
* bake: ignore profiles in compose definitions
* chore: make docs
* docs: set experimental annotation
* builder: skip name validation for docker context
* bake: fix incorrect dockerfile resolution against cwd://
context
==== dolphin ====
Version update (23.04.2 -> 23.04.3)
Subpackages: dolphin-part libdolphinvcs5
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== evince ====
Version update (44.2 -> 44.3)
Subpackages: evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 44.3:
+ Add support for validating appdata versions.
+ Check for NEWS and appdata updates for new releases.
+ Don't discard matches without text area in the find bar.
+ Updated translations.
==== ffmpegthumbs ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== filelight ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== fwupd ====
Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0
- Enable efi_fw_update on riscv64
- fwupdagent and dfu-tool are only built %{with efi_fw_update}
==== gdm ====
Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Merge pulseaudio-gdm-hooks into the gdm package. This was previously
part of pulseaudio.spec, which was fairly complex (dir ownership,
separate tmpfiles, dependencies) and it also caused pulseaudio.spec
to runtime depend on gdm. Avoid all of that by just adding it here:
+ Add default.pa
+ Add entries to gdm.tmpfiles
==== gnome-user-docs ====
Version update (44.1 -> 44.3)
- Update to version 44.3:
+ Updated translations.
==== gupnp ====
Version update (1.6.3 -> 1.6.4)
- Update to version 1.6.4:
+ Keep a weak reference to proxy in action.
+ Add API to provide HTTP credentials for simple authentication.
+ Remove xmlRecoverMemory usage.
- Drop 80e68995.patch: Fixed upstream.
==== hwinfo ====
Version update (22.3 -> 23.1)
- merge gh#openSUSE/hwinfo#137
- adjust exported symbols to yast2-hardware-detection test case
- 23.1
- merge gh#openSUSE/hwinfo#134
- restrict libhd exported symbols to the documented API
(bsc#1212756)
- fix pppoe compile warning
- 23.0
==== kaccounts-integration ====
Version update (23.04.2 -> 23.04.3)
Subpackages: libkaccounts2
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kaccounts-providers ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kate ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kate-plugins
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- Changes since 23.04.2:
* Improve code action invocation with no selection
* Fix LSP inlay hint deserialization
* lsp: Use label as insertText as a last resort
==== kde-print-manager ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdegraphics-thumbnailers ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdenetwork-filesharing ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdialog ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kernel-default-base ====
- Add ptp_kvm (bsc#1211969)
==== khelpcenter5 ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kio-extras5 ====
Version update (23.04.2 -> 23.04.3)
Subpackages: libkioarchive5
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== konsole ====
Version update (23.04.2 -> 23.04.3)
Subpackages: konsole-part konsole-part-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- Changes since 23.04.2:
* Tab bar settings: fix MIME type filtering of custom CSS file picker
* Hides redundant widgets on dialog for emoji font selection (kde#469563)
==== kpmcore ====
Version update (23.04.2 -> 23.04.3)
Subpackages: libkpmcore12
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kwalletmanager5 ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libkdcraw ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libkexiv2 ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libstorage-ng ====
Version update (4.5.121 -> 4.5.122)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#938
- prioritize activation of swap
- 4.5.122
==== libxcrypt ====
Version update (4.4.34 -> 4.4.35)
- update to 4.4.35:
* Fix build with Perl v5.38.0 (issue #170).
* Fix build with MinGW-w(32|64).
==== mobipocket ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== mozilla-nss ====
Version update (3.89.1 -> 3.90)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- update to NSS 3.90
* bmo#1623338 - ride along: remove a duplicated doc page
* bmo#1623338 - remove a reference to IRC
* bmo#1831983 - clang-format lib/freebl/stubs.c
* bmo#1831983 - Add a constant time select function
* bmo#1774657 - Updating an old dbm with lots of certs with keys to
sql results in a database that is slow to access.
* bmo#1830973 - output early build errors by default
* bmo#1804505 - Update the technical constraints for KamuSM
* bmo#1822921 - Add BJCA Global Root CA1 and CA2 root certificates
* bmo#1790763 - Enable default UBSan Checks
* bmo#1786018 - Add explicit handling of zero length records
* bmo#1829391 - Tidy up DTLS ACK Error Handling Path
* bmo#1786018 - Refactor zero length record tests
* bmo#1829112 - Fix compiler warning via correct assert
* bmo#1755267 - run linux tests on nss-t/t-linux-xlarge-gcp
* bmo#1806496 - In FIPS mode, nss should reject RSASSA-PSS salt lengths
larger than the output size of the hash function used,
or provide an indicator
* bmo#1784163 - Fix reading raw negative numbers
* bmo#1748237 - Repairing unreachable code in clang built with gyp
* bmo#1783647 - Integrate Vale Curve25519
* bmo#1799468 - Removing unused flags for Hacl*
* bmo#1748237 - Adding a better error message
* bmo#1727555 - Update HACL* till 51a72a953a4ee6f91e63b2816ae5c4e62edf35d6
* bmo#1782980 - Fall back to the softokn when writing certificate trust
* bmo#1806010 - FIPS-104-3 requires we restart post programmatically
* bmo#1826650 - cmd/ecperf: fix dangling pointer warning on gcc 13
* bmo#1818766 - Update ACVP dockerfile for compatibility with debian
package changes
* bmo#1815796 - Add a CI task for tracking ECCKiila code status, update
whitespace in ECCKiila files
* bmo#1819958 - Removed deprecated sprintf function and replaced with snprintf
* bmo#1822076 - fix rst warnings in nss doc
* bmo#1821997 - Fix incorrect pygment style
* bmo#1821292 - Change GYP directive to apply across platforms
* Add libsmime3 abi-check exception for NSS_CMSSignerInfo_GetDigestAlgTag
- add nss-fix-bmo1836925.patch to fix build-errors
- Remove nss-fips-tls-allow-md5-prf.patch, since we no longer need
the workaround in FIPS mode (bsc#1200325)
- Remove nss-fips-tests-skip.patch. This is no longer needed since
we removed the code to short-circuit broken hashes and moved to
using the SLI
- Add nss-allow-slow-tests.patch, which allows a timed test to run
longer than 1s. This avoids turning slow builds into broken builds
- Add nss-fips-drbg-libjitter.patch to use libjitterentropy for
entropy. This is disabled until we can avoid the inline assembler
in the latter's header file that relies on GNU extensions
- Add nss-fips-pct-pubkeys.patch (bsc#1207209) for pairwise consistency
checks
==== partitionmanager ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse
- Drop pulseaudio-gdm-hooks subpackage including default.pa-for-gdm
and pulseaudio-gdm-hooks.tmpfiles. Moved to gdm instead.
==== python-configobj ====
- Add remove_six.patch (gh#DiffSK/configobj#239) removing the
need for six.
==== python-jsonschema ====
Version update (4.17.3 -> 4.18.0)
- update to 4.18.0
* Use only ``autodoc`` to generate the API documentation by
@DanielNoord in
https://github.com/python-jsonschema/jsonschema/pull/1021
* Replace codecov with coverage (7)'s native markdown support by
@Julian in
https://github.com/python-jsonschema/jsonschema/pull/1025
* Add annotations for `_Error` by @DanielNoord in
https://github.com/python-jsonschema/jsonschema/pull/1022
* Replace `$ref` & `$dynamicRef` support / `RefResolver` with the
new referencing library by @Julian in
https://github.com/python-jsonschema/jsonschema/pull/1049
* Maybe fix PDF builds (in ReadTheDocs). by @Julian in
https://github.com/python-jsonschema/jsonschema/pull/1055
* documentation mistype fix by @aryanA101a in
https://github.com/python-jsonschema/jsonschema/pull/1063
* fix: Python 3.11 date.fromisoformat() allows extra formats by
@jvtm in
https://github.com/python-jsonschema/jsonschema/pull/1076
* Do not validate for unevaluatedProperties by @ikonst in
https://github.com/python-jsonschema/jsonschema/pull/1075
==== python-urllib3 ====
Version update (2.0.2 -> 2.0.3)
- Disable test_deprecated_no_scheme so it needs network connection to
run correctly.
- update to 2.0.3:
* Allowed alternative SSL libraries such as LibreSSL, while
still issuing a warning as we cannot help users facing issues
with implementations other than OpenSSL.
* Deprecated URLs which don't have an explicit scheme
* Fixed response decoding with Zstandard when compressed data
is made of several frames.
* Fixed ``assert_hostname=False`` to correctly skip hostname
check.
==== python311 ====
Version update (3.11.3 -> 3.11.4)
Subpackages: python311-curses python311-dbm
- Update to Python 3.11.4:
- gh-103142: The version of OpenSSL used in Windows and
Mac installers has been upgraded to 1.1.1u to address
CVE-2023-2650, CVE-2023-0465, CVE-2023-0466, CVE-2023-0464,
as well as CVE-2023-0286, CVE-2022-4303, and CVE-2022-4303
fixed previously in 1.1.1t (gh-101727).
- gh-102153: urllib.parse.urlsplit() now strips leading C0
control and space characters following the specification for
URLs defined by WHATWG in response to CVE-2023-24329
(bsc#1208471).
- gh-99889: Fixed a security in flaw in uu.decode() that could
allow for directory traversal based on the input if no
out_file was specified.
- gh-104049: Do not expose the local on-disk
location in directory indexes produced by
http.client.SimpleHTTPRequestHandler.
- gh-103935: trace.__main__ now uses io.open_code() for files
to be executed instead of raw open().
- gh-102953: The extraction methods in tarfile, and
shutil.unpack_archive(), have a new filter argument that
allows limiting tar features than may be surprising or
dangerous, such as creating files outside the destination
directory. See Extraction filters for details (fixing
CVE-2007-4559, bsc#1203750).
- Remove upstreamed patches:
- CVE-2007-4559-filter-tarfile_extractall.patch
==== python311-core ====
Version update (3.11.3 -> 3.11.4)
Subpackages: libpython3_11-1_0 python311-base
- Update to Python 3.11.4:
- gh-103142: The version of OpenSSL used in Windows and
Mac installers has been upgraded to 1.1.1u to address
CVE-2023-2650, CVE-2023-0465, CVE-2023-0466, CVE-2023-0464,
as well as CVE-2023-0286, CVE-2022-4303, and CVE-2022-4303
fixed previously in 1.1.1t (gh-101727).
- gh-102153: urllib.parse.urlsplit() now strips leading C0
control and space characters following the specification for
URLs defined by WHATWG in response to CVE-2023-24329
(bsc#1208471).
- gh-99889: Fixed a security in flaw in uu.decode() that could
allow for directory traversal based on the input if no
out_file was specified.
- gh-104049: Do not expose the local on-disk
location in directory indexes produced by
http.client.SimpleHTTPRequestHandler.
- gh-103935: trace.__main__ now uses io.open_code() for files
to be executed instead of raw open().
- gh-102953: The extraction methods in tarfile, and
shutil.unpack_archive(), have a new filter argument that
allows limiting tar features than may be surprising or
dangerous, such as creating files outside the destination
directory. See Extraction filters for details (fixing
CVE-2007-4559, bsc#1203750).
- Remove upstreamed patches:
- CVE-2007-4559-filter-tarfile_extractall.patch
==== signon-kwallet-extension ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== spectacle ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== upower ====
Version update (1.90.0 -> 1.90.1)
Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0
- Update to 1.90.1:
* Detect headsets with kernel batteries such as Logitech and
Steelseries headsets, and make them automatically disappear if
the headset is turned off (if the kernel driver supports the
wireless_status attribute)
* Hide duplicate Logitech Bluetooth devices (Bolt-compatible devices
connected through Bluetooth would show as 2 batteries)
* Hide duplicate Logitech wireless devices when they get connected
through USB as well
* Fix Bluetooth device names not synchronising, and use user-chosen
names when available
* Handle the "present" sysfs attribute changing
* Fix iDevices not appearing
* Fix reading capacity_level with newer libgudev
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (115.0 -> 115.0.1)
inih (56 -> 57)
protobuf (4.23.3 -> 4.23.4)
=== Details ===
==== MozillaFirefox ====
Version update (115.0 -> 115.0.1)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 115.0.1
* fixes for other platforms
==== inih ====
Version update (56 -> 57)
- Update to version 57
* Added a GetUnsigned function for getting unsigned values.
* Added GetInteger64 and GetUnsigned64 to read 64-bit integers.
==== protobuf ====
Version update (4.23.3 -> 4.23.4)
- update to 23.4:
* Add dllexport_decl for generated default instance.
* Deps: Update Guava to 32.0.1
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
baloo5-widgets (23.04.2 -> 23.04.3)
bind
dolphin (23.04.2 -> 23.04.3)
ffmpegthumbs (23.04.2 -> 23.04.3)
filelight (23.04.2 -> 23.04.3)
kaccounts-integration (23.04.2 -> 23.04.3)
kaccounts-providers (23.04.2 -> 23.04.3)
kate (23.04.2 -> 23.04.3)
kde-print-manager (23.04.2 -> 23.04.3)
kdegraphics-thumbnailers (23.04.2 -> 23.04.3)
kdenetwork-filesharing (23.04.2 -> 23.04.3)
kdialog (23.04.2 -> 23.04.3)
kernel-default-base
khelpcenter5 (23.04.2 -> 23.04.3)
kio-extras5 (23.04.2 -> 23.04.3)
konsole (23.04.2 -> 23.04.3)
kpmcore (23.04.2 -> 23.04.3)
kwalletmanager5 (23.04.2 -> 23.04.3)
libkdcraw (23.04.2 -> 23.04.3)
libkexiv2 (23.04.2 -> 23.04.3)
libstorage-ng (4.5.121 -> 4.5.122)
mobipocket (23.04.2 -> 23.04.3)
partitionmanager (23.04.2 -> 23.04.3)
python-jsonschema (4.17.3 -> 4.18.0)
signon-kwallet-extension (23.04.2 -> 23.04.3)
spectacle (23.04.2 -> 23.04.3)
=== Details ===
==== baloo5-widgets ====
Version update (23.04.2 -> 23.04.3)
Subpackages: baloo5-widgets-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== bind ====
- rebuild bind-utils on libuv updates (bsc#1212090)
==== dolphin ====
Version update (23.04.2 -> 23.04.3)
Subpackages: dolphin-part dolphin-part-lang libdolphinvcs5
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== ffmpegthumbs ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== filelight ====
Version update (23.04.2 -> 23.04.3)
Subpackages: filelight-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kaccounts-integration ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kaccounts-integration-lang libkaccounts2
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kaccounts-providers ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kaccounts-providers-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kate ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kate-lang kate-plugins
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- Changes since 23.04.2:
* Improve code action invocation with no selection
* Fix LSP inlay hint deserialization
* lsp: Use label as insertText as a last resort
==== kde-print-manager ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kde-print-manager-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdegraphics-thumbnailers ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdenetwork-filesharing ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kdenetwork-filesharing-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kdialog ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kdialog-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kernel-default-base ====
- Add ptp_kvm (bsc#1211969)
==== khelpcenter5 ====
Version update (23.04.2 -> 23.04.3)
Subpackages: khelpcenter5-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kio-extras5 ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kio-extras5-lang libkioarchive5
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== konsole ====
Version update (23.04.2 -> 23.04.3)
Subpackages: konsole-part konsole-part-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- Changes since 23.04.2:
* Tab bar settings: fix MIME type filtering of custom CSS file picker
* Hides redundant widgets on dialog for emoji font selection (kde#469563)
==== kpmcore ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kpmcore-lang libkpmcore12
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== kwalletmanager5 ====
Version update (23.04.2 -> 23.04.3)
Subpackages: kwalletmanager5-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libkdcraw ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libkexiv2 ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== libstorage-ng ====
Version update (4.5.121 -> 4.5.122)
Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1
- merge gh#openSUSE/libstorage-ng#938
- prioritize activation of swap
- 4.5.122
==== mobipocket ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== partitionmanager ====
Version update (23.04.2 -> 23.04.3)
Subpackages: partitionmanager-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== python-jsonschema ====
Version update (4.17.3 -> 4.18.0)
- update to 4.18.0
* Use only ``autodoc`` to generate the API documentation by
@DanielNoord in
https://github.com/python-jsonschema/jsonschema/pull/1021
* Replace codecov with coverage (7)'s native markdown support by
@Julian in
https://github.com/python-jsonschema/jsonschema/pull/1025
* Add annotations for `_Error` by @DanielNoord in
https://github.com/python-jsonschema/jsonschema/pull/1022
* Replace `$ref` & `$dynamicRef` support / `RefResolver` with the
new referencing library by @Julian in
https://github.com/python-jsonschema/jsonschema/pull/1049
* Maybe fix PDF builds (in ReadTheDocs). by @Julian in
https://github.com/python-jsonschema/jsonschema/pull/1055
* documentation mistype fix by @aryanA101a in
https://github.com/python-jsonschema/jsonschema/pull/1063
* fix: Python 3.11 date.fromisoformat() allows extra formats by
@jvtm in
https://github.com/python-jsonschema/jsonschema/pull/1076
* Do not validate for unevaluatedProperties by @ikonst in
https://github.com/python-jsonschema/jsonschema/pull/1075
==== signon-kwallet-extension ====
Version update (23.04.2 -> 23.04.3)
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
==== spectacle ====
Version update (23.04.2 -> 23.04.3)
Subpackages: spectacle-lang
- Update to 23.04.3
* New bugfix release
* For more details please see:
* https://kde.org/announcements/gear/23.04.3/
- No code change since 23.04.2
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
MozillaFirefox (114.0.2 -> 115.0)
accountsservice
docker-buildx (0.11.0 -> 0.11.1)
evince (44.2 -> 44.3)
fwupd
gdm
gnome-user-docs (44.1 -> 44.3)
gupnp (1.6.3 -> 1.6.4)
hwinfo (22.3 -> 23.1)
ibus-table-others (1.3.13 -> 1.3.16)
libxcrypt (4.4.34 -> 4.4.35)
mozilla-nss (3.89.1 -> 3.90)
pulseaudio
python-configobj
python-urllib3 (2.0.2 -> 2.0.3)
python311 (3.11.3 -> 3.11.4)
python311-core (3.11.3 -> 3.11.4)
upower (1.90.0 -> 1.90.1)
=== Details ===
==== MozillaFirefox ====
Version update (114.0.2 -> 115.0)
Subpackages: MozillaFirefox-translations-common
- Mozilla Firefox 115.0
* Support for importing payment methods saved in Chrome-based browser
* Hardware video decoding is now enabled for Intel GPUs on Linux
* The Tab Manager dropdown now features close buttons, so tabs
can be closed more quickly
* Streamlined the user interface for importing data in from other browsers
* Users without platform support for H264 video decoding can now
fallback to Cisco's OpenH264 plugin for playback.
* Undo and redo are now available in Password fields
* Changed: On Linux, middle clicks on the new tab button will
now open the xclipboard contents in the new tab. If the
xclipboard content is a URL then that URL is opened, any
other text is opened with your default search provider.
* Changed: For users with a Firefox Colorways built-in theme,
the theme will be automatically migrated to the same theme
hosted on addons.mozilla.org for Firefox profiles that have
disabled add-ons auto-updates. This will allow users to keep
their Colorways theme when they are later removed from
Firefox installer files.
* Changed: Certain Firefox users may come across a message in
the extensions panel indicating that their add-ons are not
allowed on the site currently open. We have introduced a new
back-end feature to only allow some extensions monitored by
Mozilla to run on specific websites for various reasons,
including security concerns.
* HTML5: The builtin editor now behaves similarly to other
browsers with `contenteditable` and `designMode` when
splitting a node, e.g. typing Enter to split a paragraph, and
also when joining two nodes, e.g. typing Backspace at the
start of a paragraph to join the paragraph and the previous
one.
When a node is split, the builtin editor creates a new node
after the original one instead of before, i.e. creates the
right node instead of the left node.
Similarly, when two nodes are joined, the builtin editor
deletes the latter node and moves its children to the end of
the preceding node instead of deleting the former node and
moving its child to the start of the following node.
* HTML5: WebRTC application developers can now specify a target
in milliseconds of media for the jitter buffer to hold.
Altering the target value allows applications to control the
tradeoff between playout delay and the risk of running out of
audio or video frames due to network jitter.
* HTML5: Change array by copy provides additional methods on
`Array.prototype` and `TypedArray.prototype` to enable
changes on the array by returning a new copy of it with the
change.
* HTML5: The animation-composition property is now supported,
allowing a declarative way to define the composite operation
used when multiple animations affect the same property
simultaneously.
* HTML5: Added the URL.canParse() function to allow easy and
fast checking if URLs are valid and parseable.
* HTML5: IndexedDB is now also supported in private browsing
without memory limits thanks to encrypted storage on disk.
The temporary keys to decrypt the information are hold in RAM
only and all stored information is purged at the normal end
of a private browsing session from disk.
* HTML5: Supports conditions are now supported in CSS import
rules @import supports(...)
* Developer: In web development, we rely on third-party
libraries which you may not be interested in while debugging.
These can be ignored. Ignoring them means that breakpoints
will not get hit and they are skipped during stepping.
You can now choose to **Hide ignore-listed sources** in the
Developer Tools source tree
* Developer: We have introduced a new option,
`devtools.f12_enabled`, that can be utilized to prevent the
accidental use of the F12 key, which opens the DevTools
toolbox (bug).
* Enterprise: You can find information about policy updates and
enterprise specific bug fixes in the Firefox for Enterprise
115 Release Notes.
MFSA 2023-22 (bsc#1212438)
* CVE-2023-3482 (bmo#1839464)
Block all cookies bypass for localstorage
* CVE-2023-37201 (bmo#1826002)
Use-after-free in WebRTC certificate generation
* CVE-2023-37202 (bmo#1834711)
Potential use-after-free from compartment mismatch in SpiderMonkey
* CVE-2023-37203 (bmo#291640)
Drag and Drop API may provide access to local system files
* CVE-2023-37204 (bmo#1832195)
Fullscreen notification obscured via option element
* CVE-2023-37205 (bmo#1704420)
URL spoofing in address bar using RTL characters
* CVE-2023-37206 (bmo#1813299)
Insufficient validation of symlinks in the FileSystem API
* CVE-2023-37207 (bmo#1816287)
Fullscreen notification obscured
* CVE-2023-37208 (bmo#1837675)
Lack of warning when opening Diagcab files
* CVE-2023-37209 (bmo#1837993)
Use-after-free in `NotifyOnHistoryReload`
* CVE-2023-37210 (bmo#1821886)
Full-screen mode exit prevention
* CVE-2023-37211 (bmo#1832306, bmo#1834862, bmo#1835886,
bmo#1836550, bmo#1837450)
Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13,
... changelog too long, skipping 9 lines ...
- removed obsolete mozilla-buildfixes.patch
==== accountsservice ====
Subpackages: accountsservice-lang libaccountsservice0 typelib-1_0-AccountsService-1_0
- Rebase accountsservice-sysconfig.patch: (boo#1212675 boo#1212973).
- Remove accountsservice-assume-gdm.patch: Fixed by new rebasing
of accountsservice-sysconfig.patch.
==== docker-buildx ====
Version update (0.11.0 -> 0.11.1)
- fix wrong version output by using the git tag as the commit hash
- Update to version 0.11.1:
* Revert "bake: fix incorrect dockerfile resolution against
cwd:// context"
* vendor: update tonistiigi/vt100 to master@f9a4f7ef6531
* build: fix host-gateway handling
* docs: update generated content
* vendor: update cli-docs-tool to 0.6.0
* test: build details output
* build: missing newline when printing build details on error
* dockerfile: update docker to 24.0.2
* controller: include CgroupParent in build.Options
* bake: ignore profiles in compose definitions
* chore: make docs
* docs: set experimental annotation
* builder: skip name validation for docker context
* bake: fix incorrect dockerfile resolution against cwd://
context
==== evince ====
Version update (44.2 -> 44.3)
Subpackages: evince-lang evince-plugin-pdfdocument libevdocument3-4 libevview3-3 typelib-1_0-EvinceDocument-3_0 typelib-1_0-EvinceView-3_0
- Update to version 44.3:
+ Add support for validating appdata versions.
+ Check for NEWS and appdata updates for new releases.
+ Don't discard matches without text area in the find bar.
+ Updated translations.
==== fwupd ====
Subpackages: fwupd-bash-completion fwupd-lang libfwupd2 typelib-1_0-Fwupd-2_0
- Enable efi_fw_update on riscv64
- fwupdagent and dfu-tool are only built %{with efi_fw_update}
==== gdm ====
Subpackages: gdm-lang gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0
- Merge pulseaudio-gdm-hooks into the gdm package. This was previously
part of pulseaudio.spec, which was fairly complex (dir ownership,
separate tmpfiles, dependencies) and it also caused pulseaudio.spec
to runtime depend on gdm. Avoid all of that by just adding it here:
+ Add default.pa
+ Add entries to gdm.tmpfiles
==== gnome-user-docs ====
Version update (44.1 -> 44.3)
- Update to version 44.3:
+ Updated translations.
==== gupnp ====
Version update (1.6.3 -> 1.6.4)
- Update to version 1.6.4:
+ Keep a weak reference to proxy in action.
+ Add API to provide HTTP credentials for simple authentication.
+ Remove xmlRecoverMemory usage.
- Drop 80e68995.patch: Fixed upstream.
==== hwinfo ====
Version update (22.3 -> 23.1)
- merge gh#openSUSE/hwinfo#137
- adjust exported symbols to yast2-hardware-detection test case
- 23.1
- merge gh#openSUSE/hwinfo#134
- restrict libhd exported symbols to the documented API
(bsc#1212756)
- fix pppoe compile warning
- 23.0
==== ibus-table-others ====
Version update (1.3.13 -> 1.3.16)
Subpackages: ibus-table-rustrad ibus-table-translit
- Update to 1.3.16
* feat: several improvements to Old Hungarian
* fix: remove { and } from VALID_INPUT_CHARS in LaTeX table
==== libxcrypt ====
Version update (4.4.34 -> 4.4.35)
- update to 4.4.35:
* Fix build with Perl v5.38.0 (issue #170).
* Fix build with MinGW-w(32|64).
==== mozilla-nss ====
Version update (3.89.1 -> 3.90)
Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs
- update to NSS 3.90
* bmo#1623338 - ride along: remove a duplicated doc page
* bmo#1623338 - remove a reference to IRC
* bmo#1831983 - clang-format lib/freebl/stubs.c
* bmo#1831983 - Add a constant time select function
* bmo#1774657 - Updating an old dbm with lots of certs with keys to
sql results in a database that is slow to access.
* bmo#1830973 - output early build errors by default
* bmo#1804505 - Update the technical constraints for KamuSM
* bmo#1822921 - Add BJCA Global Root CA1 and CA2 root certificates
* bmo#1790763 - Enable default UBSan Checks
* bmo#1786018 - Add explicit handling of zero length records
* bmo#1829391 - Tidy up DTLS ACK Error Handling Path
* bmo#1786018 - Refactor zero length record tests
* bmo#1829112 - Fix compiler warning via correct assert
* bmo#1755267 - run linux tests on nss-t/t-linux-xlarge-gcp
* bmo#1806496 - In FIPS mode, nss should reject RSASSA-PSS salt lengths
larger than the output size of the hash function used,
or provide an indicator
* bmo#1784163 - Fix reading raw negative numbers
* bmo#1748237 - Repairing unreachable code in clang built with gyp
* bmo#1783647 - Integrate Vale Curve25519
* bmo#1799468 - Removing unused flags for Hacl*
* bmo#1748237 - Adding a better error message
* bmo#1727555 - Update HACL* till 51a72a953a4ee6f91e63b2816ae5c4e62edf35d6
* bmo#1782980 - Fall back to the softokn when writing certificate trust
* bmo#1806010 - FIPS-104-3 requires we restart post programmatically
* bmo#1826650 - cmd/ecperf: fix dangling pointer warning on gcc 13
* bmo#1818766 - Update ACVP dockerfile for compatibility with debian
package changes
* bmo#1815796 - Add a CI task for tracking ECCKiila code status, update
whitespace in ECCKiila files
* bmo#1819958 - Removed deprecated sprintf function and replaced with snprintf
* bmo#1822076 - fix rst warnings in nss doc
* bmo#1821997 - Fix incorrect pygment style
* bmo#1821292 - Change GYP directive to apply across platforms
* Add libsmime3 abi-check exception for NSS_CMSSignerInfo_GetDigestAlgTag
- add nss-fix-bmo1836925.patch to fix build-errors
- Remove nss-fips-tls-allow-md5-prf.patch, since we no longer need
the workaround in FIPS mode (bsc#1200325)
- Remove nss-fips-tests-skip.patch. This is no longer needed since
we removed the code to short-circuit broken hashes and moved to
using the SLI
- Add nss-allow-slow-tests.patch, which allows a timed test to run
longer than 1s. This avoids turning slow builds into broken builds
- Add nss-fips-drbg-libjitter.patch to use libjitterentropy for
entropy. This is disabled until we can avoid the inline assembler
in the latter's header file that relies on GNU extensions
- Add nss-fips-pct-pubkeys.patch (bsc#1207209) for pairwise consistency
checks
==== pulseaudio ====
Subpackages: libpulse-mainloop-glib0 libpulse0 pulseaudio-setup pulseaudio-utils system-user-pulse
- Drop pulseaudio-gdm-hooks subpackage including default.pa-for-gdm
and pulseaudio-gdm-hooks.tmpfiles. Moved to gdm instead.
==== python-configobj ====
- Add remove_six.patch (gh#DiffSK/configobj#239) removing the
need for six.
==== python-urllib3 ====
Version update (2.0.2 -> 2.0.3)
- Disable test_deprecated_no_scheme so it needs network connection to
run correctly.
- update to 2.0.3:
* Allowed alternative SSL libraries such as LibreSSL, while
still issuing a warning as we cannot help users facing issues
with implementations other than OpenSSL.
* Deprecated URLs which don't have an explicit scheme
* Fixed response decoding with Zstandard when compressed data
is made of several frames.
* Fixed ``assert_hostname=False`` to correctly skip hostname
check.
==== python311 ====
Version update (3.11.3 -> 3.11.4)
Subpackages: python311-curses python311-dbm
- Update to Python 3.11.4:
- gh-103142: The version of OpenSSL used in Windows and
Mac installers has been upgraded to 1.1.1u to address
CVE-2023-2650, CVE-2023-0465, CVE-2023-0466, CVE-2023-0464,
as well as CVE-2023-0286, CVE-2022-4303, and CVE-2022-4303
fixed previously in 1.1.1t (gh-101727).
- gh-102153: urllib.parse.urlsplit() now strips leading C0
control and space characters following the specification for
URLs defined by WHATWG in response to CVE-2023-24329
(bsc#1208471).
- gh-99889: Fixed a security in flaw in uu.decode() that could
allow for directory traversal based on the input if no
out_file was specified.
- gh-104049: Do not expose the local on-disk
location in directory indexes produced by
http.client.SimpleHTTPRequestHandler.
- gh-103935: trace.__main__ now uses io.open_code() for files
to be executed instead of raw open().
- gh-102953: The extraction methods in tarfile, and
shutil.unpack_archive(), have a new filter argument that
allows limiting tar features than may be surprising or
dangerous, such as creating files outside the destination
directory. See Extraction filters for details (fixing
CVE-2007-4559, bsc#1203750).
- Remove upstreamed patches:
- CVE-2007-4559-filter-tarfile_extractall.patch
==== python311-core ====
Version update (3.11.3 -> 3.11.4)
Subpackages: libpython3_11-1_0 python311-base
- Update to Python 3.11.4:
- gh-103142: The version of OpenSSL used in Windows and
Mac installers has been upgraded to 1.1.1u to address
CVE-2023-2650, CVE-2023-0465, CVE-2023-0466, CVE-2023-0464,
as well as CVE-2023-0286, CVE-2022-4303, and CVE-2022-4303
fixed previously in 1.1.1t (gh-101727).
- gh-102153: urllib.parse.urlsplit() now strips leading C0
control and space characters following the specification for
URLs defined by WHATWG in response to CVE-2023-24329
(bsc#1208471).
- gh-99889: Fixed a security in flaw in uu.decode() that could
allow for directory traversal based on the input if no
out_file was specified.
- gh-104049: Do not expose the local on-disk
location in directory indexes produced by
http.client.SimpleHTTPRequestHandler.
- gh-103935: trace.__main__ now uses io.open_code() for files
to be executed instead of raw open().
- gh-102953: The extraction methods in tarfile, and
shutil.unpack_archive(), have a new filter argument that
allows limiting tar features than may be surprising or
dangerous, such as creating files outside the destination
directory. See Extraction filters for details (fixing
CVE-2007-4559, bsc#1203750).
- Remove upstreamed patches:
- CVE-2007-4559-filter-tarfile_extractall.patch
==== upower ====
Version update (1.90.0 -> 1.90.1)
Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 upower-lang
- Update to 1.90.1:
* Detect headsets with kernel batteries such as Logitech and
Steelseries headsets, and make them automatically disappear if
the headset is turned off (if the kernel driver supports the
wireless_status attribute)
* Hide duplicate Logitech Bluetooth devices (Bolt-compatible devices
connected through Bluetooth would show as 2 batteries)
* Hide duplicate Logitech wireless devices when they get connected
through USB as well
* Fix Bluetooth device names not synchronising, and use user-chosen
names when available
* Handle the "present" sysfs attribute changing
* Fix iDevices not appearing
* Fix reading capacity_level with newer libgudev
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ghostscript
patterns-microos
policycoreutils
suse-module-tools (16.0.31 -> 16.0.32)
yast2-network (4.6.4 -> 4.6.5)
=== Details ===
==== ghostscript ====
Subpackages: ghostscript-x11
- CVE-2023-36664.patch fixes CVE-2023-36664
see https://bugs.ghostscript.com/show_bug.cgi?id=706761
"OS command injection in %pipe% access"
and https://bugs.ghostscript.com/show_bug.cgi?id=706778
"%pipe% allowed_path bypass"
and bsc#1212711
"permission validation mishandling for pipe devices
(with the %pipe% prefix or the | pipe character prefix)"
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add KDE partition manager to the default plasma install (boo#1212925)
==== policycoreutils ====
Subpackages: policycoreutils-python-utils python3-policycoreutils
- Only recommend policycoreutils-devel. The requires causes build issues
and this can be used with a policy from a different source
- Required fixed python3-selinux, not version dependend sub-packages
==== suse-module-tools ====
Version update (16.0.31 -> 16.0.32)
Subpackages: suse-module-tools-scriptlets
- Update to version 16.0.32:
* rpm-script: check for regenerate-initrd-posttrans in %posttrans
(boo#1212957)
==== yast2-network ====
Version update (4.6.4 -> 4.6.5)
- Fix typo when writing the wireless channel (bsc#1212976)
- 4.6.5
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ghostscript
patterns-microos
policycoreutils
suse-module-tools (16.0.31 -> 16.0.32)
yast2-network (4.6.4 -> 4.6.5)
yast2-trans (84.87.20230619.113a4fdc71 -> 84.87.20230630.ccfa6add46)
=== Details ===
==== ghostscript ====
Subpackages: ghostscript-x11
- CVE-2023-36664.patch fixes CVE-2023-36664
see https://bugs.ghostscript.com/show_bug.cgi?id=706761
"OS command injection in %pipe% access"
and https://bugs.ghostscript.com/show_bug.cgi?id=706778
"%pipe% allowed_path bypass"
and bsc#1212711
"permission validation mishandling for pipe devices
(with the %pipe% prefix or the | pipe character prefix)"
==== patterns-microos ====
Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap
- Add KDE partition manager to the default plasma install (boo#1212925)
==== policycoreutils ====
Subpackages: policycoreutils-lang policycoreutils-python-utils python3-policycoreutils
- Only recommend policycoreutils-devel. The requires causes build issues
and this can be used with a policy from a different source
- Required fixed python3-selinux, not version dependend sub-packages
==== suse-module-tools ====
Version update (16.0.31 -> 16.0.32)
Subpackages: suse-module-tools-scriptlets
- Update to version 16.0.32:
* rpm-script: check for regenerate-initrd-posttrans in %posttrans
(boo#1212957)
==== yast2-network ====
Version update (4.6.4 -> 4.6.5)
- Fix typo when writing the wireless channel (bsc#1212976)
- 4.6.5
==== yast2-trans ====
Version update (84.87.20230619.113a4fdc71 -> 84.87.20230630.ccfa6add46)
Subpackages: yast2-trans-cs yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-fr yast2-trans-hu yast2-trans-it yast2-trans-ja yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ru yast2-trans-zh_CN yast2-trans-zh_TW
- Update to version 84.87.20230630.ccfa6add46:
* Translated using Weblate (Indonesian)
* Translated using Weblate (Finnish)
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
evolution-data-server (3.48.3 -> 3.48.4)
hwinfo (22.2 -> 22.3)
kdump (1.9.2 -> 1.9.3)
kexec-tools (2.0.26 -> 2.0.26.0)
libphonenumber (8.12.23 -> 8.13.15)
perl-Bootloader (1.5 -> 1.6)
protobuf (4.22.5 -> 4.23.3)
systemd
=== Details ===
==== evolution-data-server ====
Version update (3.48.3 -> 3.48.4)
Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4
- Update to version 3.48.4:
+ Bug Fixed: Camel: Learn as Junk filter action not actually
running the learn function.
==== hwinfo ====
Version update (22.2 -> 22.3)
Subpackages: libhd22
- merge gh#openSUSE/hwinfo#133
- avoid linking problems with libsamba (bsc#1212756)
- 22.3
==== kdump ====
Version update (1.9.2 -> 1.9.3)
- upgrade to version 1.9.3
* fix calibrate
* update kdump(7) manpage
* turn missing ssh, lftp or host key into a fatal error
* depend on openssh-clients not openssh
- refreshed calibrate values
==== kexec-tools ====
Version update (2.0.26 -> 2.0.26.0)
- Pull kexec-bootloader from perl-Bootloader, bump version so that
perl-Bootloader can obsolete kexec-tools containing kexec-bootloader
(bsc#1211082).
==== libphonenumber ====
Version update (8.12.23 -> 8.13.15)
- absl is also needed for using the -devel package
- Update to version 8.13.15:
* Updated phone metadata for region code(s): BE, BF, IL, MN, NE, OM, SO, SV
* Updated carrier data for country calling code(s):
226 (en), 227 (en), 252 (en), 351 (en), 968 (en), 972 (en)
- Update to version 8.13.14:
* Many data changes
* Removal of unused leading_zero_possible proto field in
phonemetadata.proto and all generated code
* https://github.com/google/libphonenumber/blob/v8.13.14/release_notes.txt
- Depends on abseil now
- Turn metadata regeneration off explicitly, wasn't done previously
either. This allows dropping the java dependency.
- Add patches to fix building:
* 0001-Build-with-C-17.patch
* 0001-Revert-Fix-typo-in-arguments-to-add_metadata_gen_tar.patch
- protobuf got fixed, builds fine with 22 now
- prefer protobuf 21 as it is not compatible with v22
==== perl-Bootloader ====
Version update (1.5 -> 1.6)
- merge gh#openSUSE/perl-bootloader#154
- move kexec-bootloader from kexec-tools to perl-Bootloader
- 1.6
==== protobuf ====
Version update (4.22.5 -> 4.23.3)
- update to 23.3:
C++
* Regenerate stale files
* Use the same ABI for static and shared libraries on non-
Windows platforms
* Add a workaround for GCC constexpr bug
Objective-C
* Regenerate stale files
UPB (Python/PHP/Ruby C-Extension)
* Fixed a bug in `upb_Map_Delete()` that caused crashes in
map.delete(k) for Ruby when string-keyed maps were in use.
Compiler
* Add missing header to Objective-c generator
* Add a workaround for GCC constexpr bug
Java
* Rollback of: Simplify protobuf Java message builder by
removing methods that calls the super class only.
Csharp
* [C#] Replace regex that validates descriptor names
- drop 0001-Use-the-same-ABI-for-static-and-shared-libraries-on-.patch (upstream)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc udev
- Split off sd-boot into separate "systemd-boot" subpackage
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
hwinfo (22.2 -> 22.3)
kdump (1.9.2 -> 1.9.3)
kexec-tools (2.0.26 -> 2.0.26.0)
perl-Bootloader (1.5 -> 1.6)
protobuf (4.22.5 -> 4.23.3)
systemd
=== Details ===
==== hwinfo ====
Version update (22.2 -> 22.3)
Subpackages: libhd22
- merge gh#openSUSE/hwinfo#133
- avoid linking problems with libsamba (bsc#1212756)
- 22.3
==== kdump ====
Version update (1.9.2 -> 1.9.3)
- upgrade to version 1.9.3
* fix calibrate
* update kdump(7) manpage
* turn missing ssh, lftp or host key into a fatal error
* depend on openssh-clients not openssh
- refreshed calibrate values
==== kexec-tools ====
Version update (2.0.26 -> 2.0.26.0)
- Pull kexec-bootloader from perl-Bootloader, bump version so that
perl-Bootloader can obsolete kexec-tools containing kexec-bootloader
(bsc#1211082).
==== perl-Bootloader ====
Version update (1.5 -> 1.6)
- merge gh#openSUSE/perl-bootloader#154
- move kexec-bootloader from kexec-tools to perl-Bootloader
- 1.6
==== protobuf ====
Version update (4.22.5 -> 4.23.3)
- update to 23.3:
C++
* Regenerate stale files
* Use the same ABI for static and shared libraries on non-
Windows platforms
* Add a workaround for GCC constexpr bug
Objective-C
* Regenerate stale files
UPB (Python/PHP/Ruby C-Extension)
* Fixed a bug in `upb_Map_Delete()` that caused crashes in
map.delete(k) for Ruby when string-keyed maps were in use.
Compiler
* Add missing header to Objective-c generator
* Add a workaround for GCC constexpr bug
Java
* Rollback of: Simplify protobuf Java message builder by
removing methods that calls the super class only.
Csharp
* [C#] Replace regex that validates descriptor names
- drop 0001-Use-the-same-ABI-for-static-and-shared-libraries-on-.patch (upstream)
==== systemd ====
Subpackages: libsystemd0 libudev1 systemd-coredump systemd-doc systemd-lang udev
- Split off sd-boot into separate "systemd-boot" subpackage
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the aarch64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.11 -> 7.1.1.12)
Imath (3.1.6 -> 3.1.9)
NetworkManager (1.42.6 -> 1.42.8)
busybox-links
colord-gtk
docker
glib-networking (2.76.0 -> 2.76.1)
gnome-control-center (44.2 -> 44.3)
gnome-software (44.2 -> 44.3)
gstreamer (1.22.3 -> 1.22.4)
gstreamer-plugins-bad (1.22.3 -> 1.22.4)
gstreamer-plugins-base (1.22.3 -> 1.22.4)
gstreamer-plugins-good (1.22.3 -> 1.22.4)
gvfs (1.50.4 -> 1.50.5)
kbd (2.5.1 -> 2.6.1)
kmod
libgexiv2
libopenmpt (0.6.10 -> 0.7.2)
libtommath
libunwind (1.6.2 -> 1.7.0)
libzypp (17.31.14 -> 17.31.15)
open-vm-tools
protobuf (21.12 -> 4.22.5)
protobuf-c
protobuf21
python-attrs
python-pycryptodome
qemu
sddm
speech-dispatcher
webkit2gtk3 (2.40.2 -> 2.40.3)
webkit2gtk4 (2.40.2 -> 2.40.3)
=== Details ===
==== ImageMagick ====
Version update (7.1.1.11 -> 7.1.1.12)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.12
- added patches
fix CVE-2023-3428 [bsc#1212847], heap-buffer-overflow in coders/tiff.c
+ ImageMagick-CVE-2023-3428.patch
==== Imath ====
Version update (3.1.6 -> 3.1.9)
- update to 3.1.9:
* Fix Heap-buffer-overflow in internal_huf_decompress
* Support for DWA compression in OpenEXRCore
* Fix for threadpool deadlocks during shutdown on Windows
* Stack-buffer-overflow in DwaCompressor_readChannelRules
==== NetworkManager ====
Version update (1.42.6 -> 1.42.8)
Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Update to version 1.42.8:
+ Add support for ppp 2.5.0.
+ Fix nft rules for balance-slb bonding.
+ Support port priority for bonding.
+ Fix regression handling the PKEY_ID for infiniband profiles in
ifcfg-rh format.
+ Fix race in nm-cloud-setup that caused partial configuration
and loss of connectivity with multiple interfaces.
+ Don't touch "net.ipv6.conf.$IFACE.forwarding" unless explicitly
required for IPv6 sharing.
+ Various bugfixes related to team, Wi-Fi P2P, IPv6LL.
+ Automatically unblock autoconnect of profiles during reapply.
- Update https://www.gnome.org/projects/NetworkManager/ URL tag to
NM's newest home page: https://networkmanager.dev/, and main
package summary to: standard Linux network configuration tool
suite.
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-hostname busybox-sed busybox-sendmail busybox-which busybox-xz
- Make sure last stays in busybox-util-linux, even if we moved
the original binary from util-linux to wtmpdb
==== colord-gtk ====
- fix segfault when turning monitor back on (bsc#1212840):
Fix-the-callback-signature-to-fix-a-crash.patch
==== docker ====
Subpackages: docker-bash-completion
- Recommend docker-rootless-extras instead of Require(ing) it, given
it's an additional functionality and not inherently required for
docker to function.
- Add docker-rootless-extras subpackage
(https://docs.docker.com/engine/security/rootless)
==== glib-networking ====
Version update (2.76.0 -> 2.76.1)
- Update to version 2.76.1:
+ Fix proxy tests when built against libproxy 0.5.
+ Updated translations.
- Drop a7db10e8862050f19af5c2eebcd1d590a04d5ced.patch: fixed
upstream.
- Add a7db10e8862050f19af5c2eebcd1d590a04d5ced.patch: Fix tests
using libproxy 0.5.
==== gnome-control-center ====
Version update (44.2 -> 44.3)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-user-faces
- Update to version 44.3:
+ Updated translations.
==== gnome-software ====
Version update (44.2 -> 44.3)
Subpackages: gnome-software-plugin-packagekit
- Update to version 44.3:
+ Fix a crash when refining a flatpak app.
+ Fix a state recover after a failed app update.
+ Updated translations.
==== gstreamer ====
Version update (1.22.3 -> 1.22.4)
Subpackages: libgstreamer-1_0-0 typelib-1_0-Gst-1_0
- Update to version 1.22.4:
+ Highlighted bugfixes:
- Security fixes for flacparse, dvdspu, and subparse.
- d3d11videosink: Fix error on pause and play.
- decklink: Correctly handle SDK strings on macOS and free
strings after usage on Linux.
- filesink: Fix buffered mode writing of buffer lists and
buffers with multiple memories.
- gldownload: handle passthrough without a critical.
- h265parse: Fix framerate handling regression.
- oggdemux: vp8 fixes.
- mp4mux, qtmux, qtdemux: Opus audio mapping fixes.
- pngdec: Fix wrong colours output from 16bit RGB images.
- ptp clock: Work around ptpd bug in default configuration.
- srtpdec: fix critical warnings on shutdown.
- v4l2src: fix support for bayer format.
- v4l2videoenc: support force-keyframe event in v4l2 encoder.
- vtenc: apply DTS offset to ensure DTS <= PTS.
- gst-python: allow more functions to be called before
gst_init().
- various bug fixes, memory leak fixes, and other stability and
reliability improvements.
+ gstreamer:
- filesink: Fix buffered mode writing of buffer lists and
buffers with multiple memories.
- basesink: Clear EOS flag on STREAM-START event.
- typefindhelper: downgrade bogus error level debug log
message.
- ptp:
. Correctly parse clock ID from the commandline parameters in
the helper.
. Work around bug in ptpd in default configuration.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-bad ====
Version update (1.22.3 -> 1.22.4)
Subpackages: libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0
- Update to version 1.22.4:
+ asfmux: fix possible unaligned write on 32-bit ARM.
+ d3d11videosink: Fix error on pause and play.
+ d3dvideosink: Fix navigation event leak.
+ decklink: Correctly handle SDK strings on macOS and free
strings after usage on Linux.
+ dvdspu: Make sure enough data is allocated for the available
data.
+ fdkaacdec: Support up to 5 rear channels.
+ h265parse: Fix framerate handling.
+ kmssink: Add STM32 LTDC and NXP i.MX8M Plus LCDIFv3
auto-detection.
+ sdpdemux: ensure that only one srcpad is created per stream.
+ srtpdec: fix critical warnings on shutdown.
+ testsrcbin: Remove spurious caps unref.
+ va: map the mbbrc to correct enum value in get_property().
+ vtenc: apply DTS offset to ensure DTS <= PTS.
+ vtdec: time glitches on h264 playback.
+ waylandsink: Emit "map" signal boarder surface is ready.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-base ====
Version update (1.22.3 -> 1.22.4)
Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0
- Update to version 1.22.4:
+ alsasink: Fix stall for transition from PAUSED to READY with
USB speakerphone.
+ appsink: unref buffer in prev sample early so buffers from v4l2
can be released properly.
+ basetextoverlay: Fix typo in "text-y" property description.
+ gldownload: handle passthrough without a critical.
+ glfilter: add parent meta to output buffer for input buffer.
+ oggdemux: vp8: Push headers downstream and detect keyframe
packets.
+ opus: Fix potential crash when getting unexpected channel
position.
+ streamsynchronizer: reset eos on STREAM_START.
+ subparse: Look for the closing > of a tag after the opening <.
+ video: convertframe: Add D3D11 specific conversion path.
+ videometa: Only validate the alignment only when it contains
some info.
+ video-blend: Fix linking error with C++.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-good ====
Version update (1.22.3 -> 1.22.4)
Subpackages: gstreamer-plugins-good-gtk
- Update to version 1.22.4:
+ flacparse: Avoid integer overflow in available data check for
image tags.
+ flvmux: use the correct timestamp to calculate wait times.
+ isomp4: Fix (E)AC-3 channel count handling.
+ jpegdec: fixes related to interlaced jpeg.
+ pngdec: Fix wrong colours output from 16bit RGB images.
+ qtmux, qtdemux: fix byte order for opus extension.
+ rtspsrc: Do not try send dropped get/set parameter.
+ qt5, qt6: Add more meson options and eliminate all automagic.
+ qt: glrenderer: don't attempt to use QWindow from non-Qt main
thread.
+ qml6glsink: Support building on win32.
+ v4l2src: fix support for bayer format.
+ v4l2: Change to query only up to
V4L2_CID_PRIVATE_BASE+V4L2_CID_MAX_CTRLS.
+ v4l2videodec: treat MPEG-1 format as MPEG-2.
+ v4l2videoenc: support force keyframe event in v4l2 encoder.
+ tests: rtpbin_buffer_list: fix possible unaligned write/read on
32-bit ARM.
- Add libQt5Gui-private-headers-devel BuildRequires: New
explicit dependency.
- Rebase reduce-required-meson.patch.
- Drop adaptivedemux2-uri-data.patch: Fixed upstream.
==== gvfs ====
Version update (1.50.4 -> 1.50.5)
Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse
- Update to version 1.50.5:
+ smbbrowse: Fix empty device listing after unrelated mount
failure.
+ udisks: Fix missing unmount notifications.
+ trash:
- Fix nfs4 and cifs monitoring.
- Fix wrongly reported item-count.
+ smb: Allow renaming a file to the same name with a different
case.
+ mtp: Emit delete event on device disconnection.
+ Some other fixes and improvements.
+ Updated translations.
- Drop patches fixed upstream:
+ fc2669f63c5def1528dda2e7833db5774aa08e22.patch
+ 85bfb701fc95abeaa8a8ca3d9059378a9490f738.patch
+ 41862c0179f834d8bc3bd84ce78ee495050f2676.patch
==== kbd ====
Version update (2.5.1 -> 2.6.1)
Subpackages: kbd-legacy
- Update to version 2.6.1:
- libkfont:
* Fix font saving from linux kernel if KD_FONT_OP_GET_TALL is available.
* Respect font height when writing psf2 header.
- keymaps:
* Create new 'mac-fr' layout for contemporary French Macs.
- Version 2.6.0 changelog:
- libkfont:
* Leverage KD_FONT_OP_GET/SET_TALL font operations. The new
KD_FONT_OP_GET/SET_TALL font operations allow to load fonts taller
than 32 pixels by dropping the VGA-specific vertical pitch limitation
(requires kernel 6.2 or later).
* Use threadsafe strtok_r.
* Increase soname version.
- setvtrgb:
* Fix read from pipe. The pipe is not rewindable, but we don't really
need to rewind() but we need to unread one character.
- keymaps:
* i386/dvorak/dvorak-de.map: Add dvorak-de.map from console-data.
* i386/qwerty/is-latin1.map: the circumflex should also be available in
its original level-3 position.
* i386/qwerty/la-latin1.map: Convert the characters expressed in Latin-1
to the named constants, to ease up transition to Unicode.
* pine/en.map: New version of pinephone keyboard map file.
- unimaps:
* Add mapping for U+25CF. The unicode maps in font files like
eurlatgr.psfu and cp850-8x16.psfu have an entry for U+25CF, but the
plaintext unimap files do not.
- tests:
* Use strace to track syscalls. Now strace is powerful enough to show
ioctls specific to console configuration.
- po:
* Update translations (from translationproject.org).
==== kmod ====
Subpackages: kmod-bash-completion libkmod2
- Fix up usrmerge patches to make the feature configurable (boo#1212835)
* testsuite-Handle-different-sysconfdir.patch
* testsuite-depmod-use-defines-for-the-rootfs-lib_modu.patch
* depmod-Introduce-outdir-option.patch
* man-depmod.d-Fix-incorrect-usr-lib-search-path.patch
* kmod-Add-config-command-to-show-compile-time-configu.patch
- Refresh usr-lib-modprobe.patch
- Refresh usr-lib-modules.patch
- Refresh no-stylesheet-download.patch
==== libgexiv2 ====
- Drop baselibs.conf: the biarch module is not used anymore.
- Add fix-32bit-compat.patch: Fix 32bit build compatibility. Taken
from https://gitlab.gnome.org/GNOME/gexiv2/-/merge_requests/75
- Add 06adc8fb70cb8c77c0cd364195d8251811106ef8.patch: Fix
compatibility with exiv2 main branch.
==== libopenmpt ====
Version update (0.6.10 -> 0.7.2)
- Update to 0.7.2:
* [New] MOD: Can now read modified 8-channel MOD files from the DOS game Aleshar - The World Of Ice.
* [Sec] Possible out-of-bounds read or write when reading malformed MED files. (r19389)
* [Bug] The Opal OPL3 emulator symbols were not namespaced properly.
- Update to 0.7.1
* IT: Improved fingerprinting of early ModPlug Tracker versions.
* XMF: Modules from Astroidea demos can now be read as well.
- Changes in 0.7.0:
* [New] 667 files from Composer 667 are now supported.
* [New] GTK and GT2 files from Gramouf Tracker are now supported.
* [New] Can now read a variant of the DSMI AMF format called DMF,
as found in various DOS games distributed by Webfoot (Tronic,
H2O, PowBall, etc.).
* [New] DSM files from Dynamic Studio are now supported.
* [New] XMF files from the DOS game Imperium Galactica are now
supported.
* [New] Can now read the hacked MOD format (DMF) from the game
âApocalypse Abyssâ.
* [New] libopenmpt: New APIs for getting the current tempo as a
floating point value: openmpt::module::get_current_tempo2()
(C++), and openmpt_module_get_current_tempo2() (C).
* [New] C API: New stream callbacks for various platform
extensions to the C stdio interface:
openmpt_stream_get_file_posix_lfs64_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_posix_lfs64.h
for explicit off64_t on Posix systems,
openmpt_stream_get_file_posix_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_posix.h
for off_t on Posix systems,
openmpt_stream_get_file_msvcrt_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_msvcrt.h
for 64bit file support on Windows systems with the Microsoft
C runtime, and openmpt_stream_get_file_mingw_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_mingw.h
for 64bit file support when targetting MinGW.
The old openmpt_stream_get_file_callbacks() has been
deprecated in favour of a stricly standard conforming
openmpt_stream_get_file_callbacks2() in the same
libopenmpt/libopenmpt_stream_callbacks_file.h header.
libopenmpt/libopenmpt.h defines
LIBOPENMPT_STREAM_CALLBACKS_FILE_POSIX_LFS64,
LIBOPENMPT_STREAM_CALLBACKS_FILE_POSIX,
LIBOPENMPT_STREAM_CALLBACKS_FILE_MSVCRT,
and LIBOPENMPT_STREAM_CALLBACKS_FILE_MINGW respectively
in order to allow for checking header availability.
* [New] C API: New stream callbacks for memory buffers.
openmpt_stream_get_buffer_callbacks() and
openmpt_stream_buffer_init() are deprecated.
Use openmpt_stream_get_buffer_callbacks2() and
openmpt_stream_buffer_init2() instead.
The new variants do not support loading only a file prefix and
checking for overflow any more. This was only useful when using
the old openmpt_could_open_probability2() style interface from
the libopenmpt 0.2 API, which has been superseded by
openmpt_probe_file_header(),
openmpt_probe_file_header_without_filesize(), and
openmpt_probe_file_header_from_stream() in libopenmpt 0.3.0.
* [New] libopenmpt_ext: New interface interactive3 adding
openmpt::ext::interactive3::set_current_tempo2() (C++) and
openmpt_module_ext_interface_interactive3.set_current_tempo2()
(C) which allow setting non-integer tempo values.
* [New] New Makefile option CONFIG=mingw-w64 which consolidates
all MinGW-w64 build configurations with the following options:
MINGW_FLAVOUR=[|-posix|-win32], WINDOWS_ARCH=[x86|amd64],
WINDOWS_FAMILY=[|desktop-app|app|phone-app|pc-app],
and WINDOWS_VERSION=[win95|win98|winme|winnt4|win2000|winxp|winxp64|winvista|win7|win8|win8.1|win10|win11].
* [New] New Makefile option CONFIG=mingw which consolidates all
MinGW build configurations with the following options:
MINGW_FLAVOUR=[|-posix|-win32],
and WINDOWS_VERSION=[win95|win98|winme|winnt4|win2000|winxp].
* [New] Building with MSYS2 is now fully supported for Makefile
and Autotools build systems.
* [New] Makefile CONFIG=djgpp now supports CPU= option to build
optimized for a particular CPU. See build/make/config-djgpp.mk
for all available options. FLAVOURED_DIR=1 places the
CPU-specific optimized builds in separate folders below bin/.
* [New] Building with a MinGW32 CRTDLL toolchain is now supported
via Makefile option CONFIG=mingw32crt.
* [New] Makefile now uses PKG_CONFIG as path to pkg-config.
* [New] The C++ API is now also enabled for Emscripten builds
by default.
* [New] Support for GCC 7 has been restored.
* [New] Support for Clang 6 has been restored.
* [New] Support for Android NDK 18 has been restored.
* [New] openmpt123: --banner [0|1|2] allows changing the
openmpt123 banner style to hidden, shown, or verbose,
respectively.
* [New] openmpt123: --assume-terminal allows skipping the
openmpt123 terminal check, and thus allows running the UI with
non-terminal stdin, which can be useful for some very basic
remote control functionality.
* [Change] xmp-openmpt: The Amiga resampler emulation is now
enabled by default.
* [Change] in_openmpt: The Amiga resampler emulation is now
enabled by default.
* [Change] The official Windows builds (x86, amd64, arm, arm64)
now require Windows 10 21H2 (or later). The official legacy
Windows builds (x86-legacy, amd64-legacy) are unchanged and
still require Windows 7 (or later).
... changelog too long, skipping 83 lines ...
happen when using a volume command to achieve the same effect).
==== libtommath ====
- handle rpmlint warnings/errors:
* update rpmlintrc to address new Factory warnings
* make libtommath-examples noarch
* make shared library executable
- specfile style changes enforced by hard to avoid format_spec_file
service
- Add 546.patch: Fix possible integer overflow.
==== libunwind ====
Version update (1.6.2 -> 1.7.0)
- Update to 1.7.0:
* DWARF: dwarf4 fix cie parsing.
* x86_64: Stop aliasing RSP and CFA.
* Prefer EXTBL unwinding on ARM.
* [GCC pedantic] Fix "error: comma at end of enumerator list"
when linking to libunwind.
* Fix table indexing in dwarf_search_unwind_table.
* Expose function-pointer-to-name API.
* Add port for Linux on LoongArch.
* Add more POSIX polyfills for nix cross-build on win.
* DWARF: avoid a data race.
* skip latex2man check with --disable-documentation.
* Skip init_mem_validate calls during remote unwind.
* [Loongarch64] amend the LoongArch64's CMakeLists.txt and compiling error.
* Update license in pal-single-threaded.c.
* Fix to malloc call in tdep_get_elf_image.
* Updated to determine PAGE_SIZE dynamically.
* Unwind with pointer authentication on arm64.
* Make some structs non-empty.
* DWARF: avoid invalid memory access with invalid CFI.
* fix incorrect store in AArch64 getcontext.
* avoid leaking registers across sigreturn.
* Use constant for array size in os-linux.
* added coredump support for s390x.
* Allow an alternate LOG_DRIVER to be specified.
* Remove bashisms from tests/check-namespace.sh.
* Add autodetection of procfs_status type.
* Add remote unwinding support for macOS.
* Expose get_proc_info_in_range API.
* Autodetect presence of elf_fpregset_t.
* coredump: stop assuming .text and .eh_frame are both in the first
segment of an ELF file.
* Make sigaltstack() optional.
* Add support for arm fp registers unwind.
* updated dist to focal for s390x jobs.
* Add RISC-V machine value in remote unwind.
* Fix SOFTFP case for arm getcontext.
* Added support for unwinding from the vsyscall region.
* Stop the autotools nag about AC_CONFIG_MACRO_DIRS.
* Fix make distcheck due to missing coredump header.
* Fix undefined behavior issues in aarch64.
* Account for lr in aarch64's uc_addr.
* tests/run-coredump-unwind: Skip test if no coredump has been created.
* [LoongArch64] Update the port to latest kernel ABI.
* arm64: Add support for unwinding in SVE functions
* check-namespace.sh: adjust aarch64 symbols.
* Updated to determine PAGE_SIZE dynamically for loongarch64.
* Gia64-test-nat.c: #include <signal.h> for sigaction().
* Fix for unw_backtrace fast path does not work on x86_64.
* fix the way load offset is detected so it works with lld linker.
* Remove the unused powerpc setcontext() dummies.
* Add unw_backtrace2 function.
- Include the man pages, README and LICENSE files.
- Update libunwind.keyring file.
==== libzypp ====
Version update (17.31.14 -> 17.31.15)
- Fix build against protobuf >= 22 (fixes #465, closes #466)
Port away from protobuf_generate_cpp. Upstream protobuf does not
export protobuf_generate_cpp by default anymore.
Use protobuf_generate instead, which is also available on older
versions.
- Remove SUSE < SLE11 constructs (fixes #464).
- version 17.31.15 (22)
==== open-vm-tools ====
Subpackages: libvmtools0 open-vm-tools-desktop
- limit to protobuf < 22 for now until build failures have been fixed
==== protobuf ====
Version update (21.12 -> 4.22.5)
- Add patch to fix linking ThreadSafeArena:
* 0001-Use-the-same-ABI-for-static-and-shared-libraries-on-.patch
- Drop the protobuf-source package, no longer used
- update to 22.5:
C++
* Add missing cstdint header
* Fix: missing -DPROTOBUF_USE_DLLS in pkg-config (#12700)
* Avoid using string(JOIN..., which requires cmake 3.12
* Explicitly include GTest package in examples
* Bump Abseil submodule to 20230125.3 (#12660)
- update to 22.4:
C++
* Fix libprotoc: export useful symbols from .so
* Fix btree issue in map tests.
Python
* Fix bug in _internal_copy_files where the rule would fail in
downstream repositories.
Other
* Bump utf8_range to version with working pkg-config (#12584)
* Fix declared dependencies for pkg-config
* Update abseil dependency and reorder dependencies to ensure
we use the version specified in protobuf_deps.
* Turn off clang::musttail on i386
- drop python2 handling
- fix version handling and package the private libs again
- Fix confusion in versions
==== protobuf-c ====
- limit to protobuf < 22 as it is not compatible with newer
versions (gh#protobuf-c#544)
==== protobuf21 ====
- rename to protobuf21 and provide cpp bindings only for now
as protobuf 22 is disruptive
==== python-attrs ====
- remove outdated constructs, we no longer support < 3.8
==== python-pycryptodome ====
- Add %{?sle15_python_module_pythons}
==== qemu ====
- Patches added (first one is relevant for boo#1197298 and bsc#1212768):
* [openSUSE][RPM] Use --preserve-argv0 in qemu-linux-user (#32)
* [openSUSE][RPM] Split qemu-tools package (#31)
==== sddm ====
Subpackages: sddm-branding-openSUSE
- Add patches to allow dropping InputMethod= from 11-kwin_wayland.conf
(boo#1212880):
* 0001-greeter-Look-at-WAYLAND_DISPLAY-for-platform-detecti.patch
* 0002-Ignore-InputMethod-qtvirtualkeyboard-on-wayland.patch
==== speech-dispatcher ====
Subpackages: libspeechd2 python3-speechd
- Use always python3.11 to build, so Leap use also python3.11 to
build.
==== webkit2gtk3 ====
Version update (2.40.2 -> 2.40.3)
Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.40.3:
+ Make memory pressure monitor honor memory.memsw.usage_in_bytes
if exists.
+ Include key modifiers in wheel events.
+ Apply cookie blocking policy to WebSocket handshakes.
+ Remove accidental dependency on GLib 2.70.
+ Fix the build with BUBBLEWRAP_SANDBOX disabled.
+ Fix several crashes and rendering issues.
==== webkit2gtk4 ====
Version update (2.40.2 -> 2.40.3)
Subpackages: libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.40.3:
+ Make memory pressure monitor honor memory.memsw.usage_in_bytes
if exists.
+ Include key modifiers in wheel events.
+ Apply cookie blocking policy to WebSocket handshakes.
+ Remove accidental dependency on GLib 2.70.
+ Fix the build with BUBBLEWRAP_SANDBOX disabled.
+ Fix several crashes and rendering issues.
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
Imath (3.1.6 -> 3.1.9)
SDL2 (2.28.0 -> 2.28.1)
kbd (2.5.1 -> 2.6.1)
=== Details ===
==== Imath ====
Version update (3.1.6 -> 3.1.9)
- update to 3.1.9:
* Fix Heap-buffer-overflow in internal_huf_decompress
* Support for DWA compression in OpenEXRCore
* Fix for threadpool deadlocks during shutdown on Windows
* Stack-buffer-overflow in DwaCompressor_readChannelRules
==== SDL2 ====
Version update (2.28.0 -> 2.28.1)
- Update to release 2.28.1
* Added support for the Nintendo Online Famicom controllers
* Improved support for third-party Nintendo Switch controllers
* Fixed setting the player LED on Nintendo Switch controllers
* Added Linux controller mapping for the Logitech Chillstream
==== kbd ====
Version update (2.5.1 -> 2.6.1)
Subpackages: kbd-legacy
- Update to version 2.6.1:
- libkfont:
* Fix font saving from linux kernel if KD_FONT_OP_GET_TALL is available.
* Respect font height when writing psf2 header.
- keymaps:
* Create new 'mac-fr' layout for contemporary French Macs.
- Version 2.6.0 changelog:
- libkfont:
* Leverage KD_FONT_OP_GET/SET_TALL font operations. The new
KD_FONT_OP_GET/SET_TALL font operations allow to load fonts taller
than 32 pixels by dropping the VGA-specific vertical pitch limitation
(requires kernel 6.2 or later).
* Use threadsafe strtok_r.
* Increase soname version.
- setvtrgb:
* Fix read from pipe. The pipe is not rewindable, but we don't really
need to rewind() but we need to unread one character.
- keymaps:
* i386/dvorak/dvorak-de.map: Add dvorak-de.map from console-data.
* i386/qwerty/is-latin1.map: the circumflex should also be available in
its original level-3 position.
* i386/qwerty/la-latin1.map: Convert the characters expressed in Latin-1
to the named constants, to ease up transition to Unicode.
* pine/en.map: New version of pinephone keyboard map file.
- unimaps:
* Add mapping for U+25CF. The unicode maps in font files like
eurlatgr.psfu and cp850-8x16.psfu have an entry for U+25CF, but the
plaintext unimap files do not.
- tests:
* Use strace to track syscalls. Now strace is powerful enough to show
ioctls specific to console configuration.
- po:
* Update translations (from translationproject.org).
1
0
Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.
Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version…
https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com…
Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org.
For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports
Packages changed:
ImageMagick (7.1.1.11 -> 7.1.1.12)
NetworkManager (1.42.6 -> 1.42.8)
busybox-links
colord-gtk
docker
evolution-data-server (3.48.3 -> 3.48.4)
glib-networking (2.76.0 -> 2.76.1)
gnome-control-center (44.2 -> 44.3)
gnome-software (44.2 -> 44.3)
gstreamer (1.22.3 -> 1.22.4)
gstreamer-plugins-bad (1.22.3 -> 1.22.4)
gstreamer-plugins-base (1.22.3 -> 1.22.4)
gstreamer-plugins-good (1.22.3 -> 1.22.4)
gvfs (1.50.4 -> 1.50.5)
kmod
libgexiv2
libopenmpt (0.6.10 -> 0.7.2)
libphonenumber (8.12.23 -> 8.13.15)
libtommath
libunwind (1.6.2 -> 1.7.0)
libwps (0.4.13 -> 0.4.14)
libzypp (17.31.14 -> 17.31.15)
open-vm-tools
protobuf (21.12 -> 4.22.5)
protobuf-c
python-attrs
python-pycryptodome
qemu
sddm
speech-dispatcher
webkit2gtk3 (2.40.2 -> 2.40.3)
webkit2gtk4 (2.40.2 -> 2.40.3)
=== Details ===
==== ImageMagick ====
Version update (7.1.1.11 -> 7.1.1.12)
Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10
- version update to 7.1.1.12
- added patches
fix CVE-2023-3428 [bsc#1212847], heap-buffer-overflow in coders/tiff.c
+ ImageMagick-CVE-2023-3428.patch
==== NetworkManager ====
Version update (1.42.6 -> 1.42.8)
Subpackages: NetworkManager-bluetooth NetworkManager-lang NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0
- Update to version 1.42.8:
+ Add support for ppp 2.5.0.
+ Fix nft rules for balance-slb bonding.
+ Support port priority for bonding.
+ Fix regression handling the PKEY_ID for infiniband profiles in
ifcfg-rh format.
+ Fix race in nm-cloud-setup that caused partial configuration
and loss of connectivity with multiple interfaces.
+ Don't touch "net.ipv6.conf.$IFACE.forwarding" unless explicitly
required for IPv6 sharing.
+ Various bugfixes related to team, Wi-Fi P2P, IPv6LL.
+ Automatically unblock autoconnect of profiles during reapply.
- Update https://www.gnome.org/projects/NetworkManager/ URL tag to
NM's newest home page: https://networkmanager.dev/, and main
package summary to: standard Linux network configuration tool
suite.
==== busybox-links ====
Subpackages: busybox-coreutils busybox-gawk busybox-grep busybox-gzip busybox-hostname busybox-sed busybox-sendmail busybox-which busybox-xz
- Make sure last stays in busybox-util-linux, even if we moved
the original binary from util-linux to wtmpdb
==== colord-gtk ====
- fix segfault when turning monitor back on (bsc#1212840):
Fix-the-callback-signature-to-fix-a-crash.patch
==== docker ====
Subpackages: docker-bash-completion
- Recommend docker-rootless-extras instead of Require(ing) it, given
it's an additional functionality and not inherently required for
docker to function.
- Add docker-rootless-extras subpackage
(https://docs.docker.com/engine/security/rootless)
==== evolution-data-server ====
Version update (3.48.3 -> 3.48.4)
Subpackages: evolution-data-server-lang libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-2 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4
- Update to version 3.48.4:
+ Bug Fixed: Camel: Learn as Junk filter action not actually
running the learn function.
==== glib-networking ====
Version update (2.76.0 -> 2.76.1)
Subpackages: glib-networking-lang
- Update to version 2.76.1:
+ Fix proxy tests when built against libproxy 0.5.
+ Updated translations.
- Drop a7db10e8862050f19af5c2eebcd1d590a04d5ced.patch: fixed
upstream.
- Add a7db10e8862050f19af5c2eebcd1d590a04d5ced.patch: Fix tests
using libproxy 0.5.
==== gnome-control-center ====
Version update (44.2 -> 44.3)
Subpackages: gnome-control-center-color gnome-control-center-goa gnome-control-center-lang gnome-control-center-user-faces
- Update to version 44.3:
+ Updated translations.
==== gnome-software ====
Version update (44.2 -> 44.3)
Subpackages: gnome-software-lang gnome-software-plugin-packagekit
- Update to version 44.3:
+ Fix a crash when refining a flatpak app.
+ Fix a state recover after a failed app update.
+ Updated translations.
==== gstreamer ====
Version update (1.22.3 -> 1.22.4)
Subpackages: gstreamer-lang libgstreamer-1_0-0 typelib-1_0-Gst-1_0
- Update to version 1.22.4:
+ Highlighted bugfixes:
- Security fixes for flacparse, dvdspu, and subparse.
- d3d11videosink: Fix error on pause and play.
- decklink: Correctly handle SDK strings on macOS and free
strings after usage on Linux.
- filesink: Fix buffered mode writing of buffer lists and
buffers with multiple memories.
- gldownload: handle passthrough without a critical.
- h265parse: Fix framerate handling regression.
- oggdemux: vp8 fixes.
- mp4mux, qtmux, qtdemux: Opus audio mapping fixes.
- pngdec: Fix wrong colours output from 16bit RGB images.
- ptp clock: Work around ptpd bug in default configuration.
- srtpdec: fix critical warnings on shutdown.
- v4l2src: fix support for bayer format.
- v4l2videoenc: support force-keyframe event in v4l2 encoder.
- vtenc: apply DTS offset to ensure DTS <= PTS.
- gst-python: allow more functions to be called before
gst_init().
- various bug fixes, memory leak fixes, and other stability and
reliability improvements.
+ gstreamer:
- filesink: Fix buffered mode writing of buffer lists and
buffers with multiple memories.
- basesink: Clear EOS flag on STREAM-START event.
- typefindhelper: downgrade bogus error level debug log
message.
- ptp:
. Correctly parse clock ID from the commandline parameters in
the helper.
. Work around bug in ptpd in default configuration.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-bad ====
Version update (1.22.3 -> 1.22.4)
Subpackages: gstreamer-plugins-bad-lang libgstadaptivedemux-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0
- Update to version 1.22.4:
+ asfmux: fix possible unaligned write on 32-bit ARM.
+ d3d11videosink: Fix error on pause and play.
+ d3dvideosink: Fix navigation event leak.
+ decklink: Correctly handle SDK strings on macOS and free
strings after usage on Linux.
+ dvdspu: Make sure enough data is allocated for the available
data.
+ fdkaacdec: Support up to 5 rear channels.
+ h265parse: Fix framerate handling.
+ kmssink: Add STM32 LTDC and NXP i.MX8M Plus LCDIFv3
auto-detection.
+ sdpdemux: ensure that only one srcpad is created per stream.
+ srtpdec: fix critical warnings on shutdown.
+ testsrcbin: Remove spurious caps unref.
+ va: map the mbbrc to correct enum value in get_property().
+ vtenc: apply DTS offset to ensure DTS <= PTS.
+ vtdec: time glitches on h264 playback.
+ waylandsink: Emit "map" signal boarder surface is ready.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-base ====
Version update (1.22.3 -> 1.22.4)
Subpackages: gstreamer-plugins-base-lang libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 typelib-1_0-GstTag-1_0
- Update to version 1.22.4:
+ alsasink: Fix stall for transition from PAUSED to READY with
USB speakerphone.
+ appsink: unref buffer in prev sample early so buffers from v4l2
can be released properly.
+ basetextoverlay: Fix typo in "text-y" property description.
+ gldownload: handle passthrough without a critical.
+ glfilter: add parent meta to output buffer for input buffer.
+ oggdemux: vp8: Push headers downstream and detect keyframe
packets.
+ opus: Fix potential crash when getting unexpected channel
position.
+ streamsynchronizer: reset eos on STREAM_START.
+ subparse: Look for the closing > of a tag after the opening <.
+ video: convertframe: Add D3D11 specific conversion path.
+ videometa: Only validate the alignment only when it contains
some info.
+ video-blend: Fix linking error with C++.
- Rebase reduce-required-meson.patch.
==== gstreamer-plugins-good ====
Version update (1.22.3 -> 1.22.4)
Subpackages: gstreamer-plugins-good-gtk gstreamer-plugins-good-lang
- Update to version 1.22.4:
+ flacparse: Avoid integer overflow in available data check for
image tags.
+ flvmux: use the correct timestamp to calculate wait times.
+ isomp4: Fix (E)AC-3 channel count handling.
+ jpegdec: fixes related to interlaced jpeg.
+ pngdec: Fix wrong colours output from 16bit RGB images.
+ qtmux, qtdemux: fix byte order for opus extension.
+ rtspsrc: Do not try send dropped get/set parameter.
+ qt5, qt6: Add more meson options and eliminate all automagic.
+ qt: glrenderer: don't attempt to use QWindow from non-Qt main
thread.
+ qml6glsink: Support building on win32.
+ v4l2src: fix support for bayer format.
+ v4l2: Change to query only up to
V4L2_CID_PRIVATE_BASE+V4L2_CID_MAX_CTRLS.
+ v4l2videodec: treat MPEG-1 format as MPEG-2.
+ v4l2videoenc: support force keyframe event in v4l2 encoder.
+ tests: rtpbin_buffer_list: fix possible unaligned write/read on
32-bit ARM.
- Add libQt5Gui-private-headers-devel BuildRequires: New
explicit dependency.
- Rebase reduce-required-meson.patch.
- Drop adaptivedemux2-uri-data.patch: Fixed upstream.
==== gvfs ====
Version update (1.50.4 -> 1.50.5)
Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse gvfs-lang
- Update to version 1.50.5:
+ smbbrowse: Fix empty device listing after unrelated mount
failure.
+ udisks: Fix missing unmount notifications.
+ trash:
- Fix nfs4 and cifs monitoring.
- Fix wrongly reported item-count.
+ smb: Allow renaming a file to the same name with a different
case.
+ mtp: Emit delete event on device disconnection.
+ Some other fixes and improvements.
+ Updated translations.
- Drop patches fixed upstream:
+ fc2669f63c5def1528dda2e7833db5774aa08e22.patch
+ 85bfb701fc95abeaa8a8ca3d9059378a9490f738.patch
+ 41862c0179f834d8bc3bd84ce78ee495050f2676.patch
==== kmod ====
Subpackages: kmod-bash-completion libkmod2
- Fix up usrmerge patches to make the feature configurable (boo#1212835)
* testsuite-Handle-different-sysconfdir.patch
* testsuite-depmod-use-defines-for-the-rootfs-lib_modu.patch
* depmod-Introduce-outdir-option.patch
* man-depmod.d-Fix-incorrect-usr-lib-search-path.patch
* kmod-Add-config-command-to-show-compile-time-configu.patch
- Refresh usr-lib-modprobe.patch
- Refresh usr-lib-modules.patch
- Refresh no-stylesheet-download.patch
==== libgexiv2 ====
- Drop baselibs.conf: the biarch module is not used anymore.
- Add fix-32bit-compat.patch: Fix 32bit build compatibility. Taken
from https://gitlab.gnome.org/GNOME/gexiv2/-/merge_requests/75
- Add 06adc8fb70cb8c77c0cd364195d8251811106ef8.patch: Fix
compatibility with exiv2 main branch.
==== libopenmpt ====
Version update (0.6.10 -> 0.7.2)
- Update to 0.7.2:
* [New] MOD: Can now read modified 8-channel MOD files from the DOS game Aleshar - The World Of Ice.
* [Sec] Possible out-of-bounds read or write when reading malformed MED files. (r19389)
* [Bug] The Opal OPL3 emulator symbols were not namespaced properly.
- Update to 0.7.1
* IT: Improved fingerprinting of early ModPlug Tracker versions.
* XMF: Modules from Astroidea demos can now be read as well.
- Changes in 0.7.0:
* [New] 667 files from Composer 667 are now supported.
* [New] GTK and GT2 files from Gramouf Tracker are now supported.
* [New] Can now read a variant of the DSMI AMF format called DMF,
as found in various DOS games distributed by Webfoot (Tronic,
H2O, PowBall, etc.).
* [New] DSM files from Dynamic Studio are now supported.
* [New] XMF files from the DOS game Imperium Galactica are now
supported.
* [New] Can now read the hacked MOD format (DMF) from the game
âApocalypse Abyssâ.
* [New] libopenmpt: New APIs for getting the current tempo as a
floating point value: openmpt::module::get_current_tempo2()
(C++), and openmpt_module_get_current_tempo2() (C).
* [New] C API: New stream callbacks for various platform
extensions to the C stdio interface:
openmpt_stream_get_file_posix_lfs64_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_posix_lfs64.h
for explicit off64_t on Posix systems,
openmpt_stream_get_file_posix_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_posix.h
for off_t on Posix systems,
openmpt_stream_get_file_msvcrt_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_msvcrt.h
for 64bit file support on Windows systems with the Microsoft
C runtime, and openmpt_stream_get_file_mingw_callbacks()
in libopenmpt/libopenmpt_stream_callbacks_file_mingw.h
for 64bit file support when targetting MinGW.
The old openmpt_stream_get_file_callbacks() has been
deprecated in favour of a stricly standard conforming
openmpt_stream_get_file_callbacks2() in the same
libopenmpt/libopenmpt_stream_callbacks_file.h header.
libopenmpt/libopenmpt.h defines
LIBOPENMPT_STREAM_CALLBACKS_FILE_POSIX_LFS64,
LIBOPENMPT_STREAM_CALLBACKS_FILE_POSIX,
LIBOPENMPT_STREAM_CALLBACKS_FILE_MSVCRT,
and LIBOPENMPT_STREAM_CALLBACKS_FILE_MINGW respectively
in order to allow for checking header availability.
* [New] C API: New stream callbacks for memory buffers.
openmpt_stream_get_buffer_callbacks() and
openmpt_stream_buffer_init() are deprecated.
Use openmpt_stream_get_buffer_callbacks2() and
openmpt_stream_buffer_init2() instead.
The new variants do not support loading only a file prefix and
checking for overflow any more. This was only useful when using
the old openmpt_could_open_probability2() style interface from
the libopenmpt 0.2 API, which has been superseded by
openmpt_probe_file_header(),
openmpt_probe_file_header_without_filesize(), and
openmpt_probe_file_header_from_stream() in libopenmpt 0.3.0.
* [New] libopenmpt_ext: New interface interactive3 adding
openmpt::ext::interactive3::set_current_tempo2() (C++) and
openmpt_module_ext_interface_interactive3.set_current_tempo2()
(C) which allow setting non-integer tempo values.
* [New] New Makefile option CONFIG=mingw-w64 which consolidates
all MinGW-w64 build configurations with the following options:
MINGW_FLAVOUR=[|-posix|-win32], WINDOWS_ARCH=[x86|amd64],
WINDOWS_FAMILY=[|desktop-app|app|phone-app|pc-app],
and WINDOWS_VERSION=[win95|win98|winme|winnt4|win2000|winxp|winxp64|winvista|win7|win8|win8.1|win10|win11].
* [New] New Makefile option CONFIG=mingw which consolidates all
MinGW build configurations with the following options:
MINGW_FLAVOUR=[|-posix|-win32],
and WINDOWS_VERSION=[win95|win98|winme|winnt4|win2000|winxp].
* [New] Building with MSYS2 is now fully supported for Makefile
and Autotools build systems.
* [New] Makefile CONFIG=djgpp now supports CPU= option to build
optimized for a particular CPU. See build/make/config-djgpp.mk
for all available options. FLAVOURED_DIR=1 places the
CPU-specific optimized builds in separate folders below bin/.
* [New] Building with a MinGW32 CRTDLL toolchain is now supported
via Makefile option CONFIG=mingw32crt.
* [New] Makefile now uses PKG_CONFIG as path to pkg-config.
* [New] The C++ API is now also enabled for Emscripten builds
by default.
* [New] Support for GCC 7 has been restored.
* [New] Support for Clang 6 has been restored.
* [New] Support for Android NDK 18 has been restored.
* [New] openmpt123: --banner [0|1|2] allows changing the
openmpt123 banner style to hidden, shown, or verbose,
respectively.
* [New] openmpt123: --assume-terminal allows skipping the
openmpt123 terminal check, and thus allows running the UI with
non-terminal stdin, which can be useful for some very basic
remote control functionality.
* [Change] xmp-openmpt: The Amiga resampler emulation is now
enabled by default.
* [Change] in_openmpt: The Amiga resampler emulation is now
enabled by default.
* [Change] The official Windows builds (x86, amd64, arm, arm64)
now require Windows 10 21H2 (or later). The official legacy
Windows builds (x86-legacy, amd64-legacy) are unchanged and
still require Windows 7 (or later).
... changelog too long, skipping 83 lines ...
happen when using a volume command to achieve the same effect).
==== libphonenumber ====
Version update (8.12.23 -> 8.13.15)
- absl is also needed for using the -devel package
- Update to version 8.13.15:
* Updated phone metadata for region code(s): BE, BF, IL, MN, NE, OM, SO, SV
* Updated carrier data for country calling code(s):
226 (en), 227 (en), 252 (en), 351 (en), 968 (en), 972 (en)
- Update to version 8.13.14:
* Many data changes
* Removal of unused leading_zero_possible proto field in
phonemetadata.proto and all generated code
* https://github.com/google/libphonenumber/blob/v8.13.14/release_notes.txt
- Depends on abseil now
- Turn metadata regeneration off explicitly, wasn't done previously
either. This allows dropping the java dependency.
- Add patches to fix building:
* 0001-Build-with-C-17.patch
* 0001-Revert-Fix-typo-in-arguments-to-add_metadata_gen_tar.patch
- protobuf got fixed, builds fine with 22 now
- prefer protobuf 21 as it is not compatible with v22
==== libtommath ====
- handle rpmlint warnings/errors:
* update rpmlintrc to address new Factory warnings
* make libtommath-examples noarch
* make shared library executable
- specfile style changes enforced by hard to avoid format_spec_file
service
- Add 546.patch: Fix possible integer overflow.
==== libunwind ====
Version update (1.6.2 -> 1.7.0)
- Update to 1.7.0:
* DWARF: dwarf4 fix cie parsing.
* x86_64: Stop aliasing RSP and CFA.
* Prefer EXTBL unwinding on ARM.
* [GCC pedantic] Fix "error: comma at end of enumerator list"
when linking to libunwind.
* Fix table indexing in dwarf_search_unwind_table.
* Expose function-pointer-to-name API.
* Add port for Linux on LoongArch.
* Add more POSIX polyfills for nix cross-build on win.
* DWARF: avoid a data race.
* skip latex2man check with --disable-documentation.
* Skip init_mem_validate calls during remote unwind.
* [Loongarch64] amend the LoongArch64's CMakeLists.txt and compiling error.
* Update license in pal-single-threaded.c.
* Fix to malloc call in tdep_get_elf_image.
* Updated to determine PAGE_SIZE dynamically.
* Unwind with pointer authentication on arm64.
* Make some structs non-empty.
* DWARF: avoid invalid memory access with invalid CFI.
* fix incorrect store in AArch64 getcontext.
* avoid leaking registers across sigreturn.
* Use constant for array size in os-linux.
* added coredump support for s390x.
* Allow an alternate LOG_DRIVER to be specified.
* Remove bashisms from tests/check-namespace.sh.
* Add autodetection of procfs_status type.
* Add remote unwinding support for macOS.
* Expose get_proc_info_in_range API.
* Autodetect presence of elf_fpregset_t.
* coredump: stop assuming .text and .eh_frame are both in the first
segment of an ELF file.
* Make sigaltstack() optional.
* Add support for arm fp registers unwind.
* updated dist to focal for s390x jobs.
* Add RISC-V machine value in remote unwind.
* Fix SOFTFP case for arm getcontext.
* Added support for unwinding from the vsyscall region.
* Stop the autotools nag about AC_CONFIG_MACRO_DIRS.
* Fix make distcheck due to missing coredump header.
* Fix undefined behavior issues in aarch64.
* Account for lr in aarch64's uc_addr.
* tests/run-coredump-unwind: Skip test if no coredump has been created.
* [LoongArch64] Update the port to latest kernel ABI.
* arm64: Add support for unwinding in SVE functions
* check-namespace.sh: adjust aarch64 symbols.
* Updated to determine PAGE_SIZE dynamically for loongarch64.
* Gia64-test-nat.c: #include <signal.h> for sigaction().
* Fix for unw_backtrace fast path does not work on x86_64.
* fix the way load offset is detected so it works with lld linker.
* Remove the unused powerpc setcontext() dummies.
* Add unw_backtrace2 function.
- Include the man pages, README and LICENSE files.
- Update libunwind.keyring file.
==== libwps ====
Version update (0.4.13 -> 0.4.14)
- Update to 0.4.14:
* autoupdate configure.ac
* correct various warnings
==== libzypp ====
Version update (17.31.14 -> 17.31.15)
- Fix build against protobuf >= 22 (fixes #465, closes #466)
Port away from protobuf_generate_cpp. Upstream protobuf does not
export protobuf_generate_cpp by default anymore.
Use protobuf_generate instead, which is also available on older
versions.
- Remove SUSE < SLE11 constructs (fixes #464).
- version 17.31.15 (22)
==== open-vm-tools ====
Subpackages: libvmtools0 open-vm-tools-desktop
- limit to protobuf < 22 for now until build failures have been fixed
==== protobuf ====
Version update (21.12 -> 4.22.5)
- Add patch to fix linking ThreadSafeArena:
* 0001-Use-the-same-ABI-for-static-and-shared-libraries-on-.patch
- Drop the protobuf-source package, no longer used
- update to 22.5:
C++
* Add missing cstdint header
* Fix: missing -DPROTOBUF_USE_DLLS in pkg-config (#12700)
* Avoid using string(JOIN..., which requires cmake 3.12
* Explicitly include GTest package in examples
* Bump Abseil submodule to 20230125.3 (#12660)
- update to 22.4:
C++
* Fix libprotoc: export useful symbols from .so
* Fix btree issue in map tests.
Python
* Fix bug in _internal_copy_files where the rule would fail in
downstream repositories.
Other
* Bump utf8_range to version with working pkg-config (#12584)
* Fix declared dependencies for pkg-config
* Update abseil dependency and reorder dependencies to ensure
we use the version specified in protobuf_deps.
* Turn off clang::musttail on i386
- drop python2 handling
- fix version handling and package the private libs again
- Fix confusion in versions
==== protobuf-c ====
- limit to protobuf < 22 as it is not compatible with newer
versions (gh#protobuf-c#544)
==== python-attrs ====
- remove outdated constructs, we no longer support < 3.8
==== python-pycryptodome ====
- Add %{?sle15_python_module_pythons}
==== qemu ====
- Patches added (first one is relevant for boo#1197298 and bsc#1212768):
* [openSUSE][RPM] Use --preserve-argv0 in qemu-linux-user (#32)
* [openSUSE][RPM] Split qemu-tools package (#31)
==== sddm ====
Subpackages: sddm-branding-openSUSE
- Add patches to allow dropping InputMethod= from 11-kwin_wayland.conf
(boo#1212880):
* 0001-greeter-Look-at-WAYLAND_DISPLAY-for-platform-detecti.patch
* 0002-Ignore-InputMethod-qtvirtualkeyboard-on-wayland.patch
==== speech-dispatcher ====
Subpackages: libspeechd2 python3-speechd
- Use always python3.11 to build, so Leap use also python3.11 to
build.
==== webkit2gtk3 ====
Version update (2.40.2 -> 2.40.3)
Subpackages: WebKitGTK-4.1-lang libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles
- Update to version 2.40.3:
+ Make memory pressure monitor honor memory.memsw.usage_in_bytes
if exists.
+ Include key modifiers in wheel events.
+ Apply cookie blocking policy to WebSocket handshakes.
+ Remove accidental dependency on GLib 2.70.
+ Fix the build with BUBBLEWRAP_SANDBOX disabled.
+ Fix several crashes and rendering issues.
==== webkit2gtk4 ====
Version update (2.40.2 -> 2.40.3)
Subpackages: WebKitGTK-6.0-lang libjavascriptcoregtk6_0-1 libwebkitgtk6_0-4 webkitgtk-6_0-injected-bundles
- Update to version 2.40.3:
+ Make memory pressure monitor honor memory.memsw.usage_in_bytes
if exists.
+ Include key modifiers in wheel events.
+ Apply cookie blocking policy to WebSocket handshakes.
+ Remove accidental dependency on GLib 2.70.
+ Fix the build with BUBBLEWRAP_SANDBOX disabled.
+ Fix several crashes and rendering issues.
1
0