MicroOS

Download

microos@lists.opensuse.org

August 2024

4 participants
23 discussions

New ARM MicroOS snapshot 20240808 released!
by Guillaume Gardet 10 Aug '24

10 Aug '24

Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: Imath (3.1.9 -> 3.1.11) Mesa (24.1.2 -> 24.1.3) Mesa-drivers (24.1.2 -> 24.1.3) MicroOS-release (20240629 -> 20240808) NetworkManager (1.48.2 -> 1.48.6) SVT-AV1 (2.1.1 -> 2.1.2) aaa_base (84.87+git20240620.57ee9e1 -> 84.87+git20240805.7513b28) aalib aardvark-dns abseil-cpp apparmor (4.0.1 -> 4.0.2) baloo-widgets (24.05.1 -> 24.05.2) bluedevil6 (6.1.1 -> 6.1.4) bolt boost-base breeze6 (6.1.1 -> 6.1.4) breeze6-gtk (6.1.1 -> 6.1.4) btrfsmaintenance (0.5 -> 0.5.2) btrfsprogs (6.9 -> 6.10) ca-certificates-mozilla (2.66 -> 2.68) checkpolicy (3.6 -> 3.7) chrony cockpit (316 -> 321) cockpit-podman (84 -> 91) colord container-selinux (2.228.0 -> 2.232.1) coreutils coreutils-systemd cryptsetup (2.7.2 -> 2.7.4) cups (2.4.8 -> 2.4.10) curl (8.8.0 -> 8.9.0) discover6 (6.1.1 -> 6.1.4) docker (26.1.4_ce -> 26.1.5_ce) docker-buildx (0.15.1 -> 0.16.2) dolphin (24.05.1 -> 24.05.2) dracut (059+suse.598.gfe80dac7 -> 059+suse.628.g20b345b4) ell (0.66 -> 0.67) evolution-data-server (3.52.2 -> 3.52.4) exiv2 (0.28.2 -> 0.28.3) ffmpeg-4 ffmpeg-6 ffmpegthumbs (24.05.1 -> 24.05.2) flatpak-kcm6 (6.1.1 -> 6.1.4) fontconfig fribidi (1.0.14 -> 1.0.15) fwupd (1.9.21 -> 1.9.23) gcc14 (14.1.1+git10335 -> 14.2.0+git10526) gdm gettext-runtime ghostscript (10.03.0 -> 10.03.1) glib2 (2.80.3 -> 2.80.4) glslang (14.2.0 -> 14.3.0) gnome-control-center (46.2 -> 46.3) gnome-initial-setup (46.2 -> 46.3) gnome-keyring (46.1 -> 46.2) gnome-online-accounts (3.50.2 -> 3.50.4) gnome-shell (46.2 -> 46.4) gnome-software (46.2 -> 46.3) gnutls (3.8.5 -> 3.8.6) google-noto-fonts (20240601 -> 20240801) grub2 gsettings-desktop-schemas (46.0 -> 46.1) gstreamer (1.24.0 -> 1.24.6) gstreamer-plugins-bad (1.24.0 -> 1.24.6) gstreamer-plugins-base (1.24.0 -> 1.24.6) gstreamer-plugins-good (1.24.0 -> 1.24.5) gtk2 gtk3 (3.24.42 -> 3.24.43) gtk4 (4.14.4 -> 4.15.4) gvfs (1.54.1 -> 1.54.2) harfbuzz (8.5.0 -> 9.0.0) health-checker (1.10+git20240111.cb84209 -> 1.11+git20240730.5dafd6a) hplip hwdata (0.383 -> 0.384) ibus (1.5.29 -> 1.5.30) ima-evm-utils (1.5 -> 1.6) installation-images-MicroOS (17.130 -> 17.136) irqbalance kaccounts-integration (24.05.1 -> 24.05.2) kaccounts-integration-kf5 (24.05.1 -> 24.05.2) kaccounts-providers (24.05.1 -> 24.05.2) kactivitymanagerd6 (6.1.1 -> 6.1.4) kate (24.05.1 -> 24.05.2) kde-cli-tools6 (6.1.1 -> 6.1.4) kde-gtk-config6 (6.1.1 -> 6.1.4) kdecoration6 (6.1.1 -> 6.1.4) kdegraphics-mobipocket (24.05.1 -> 24.05.2) kdegraphics-thumbnailers (24.05.1 -> 24.05.2) kdenetwork-filesharing (24.05.1 -> 24.05.2) kdeplasma6-addons (6.1.1 -> 6.1.4) kdialog (24.05.1 -> 24.05.2) kdump (2.0.7 -> 2.0.9) kernel-firmware (20240618 -> 20240728) kernel-source (6.9.7 -> 6.10.3) kf6-attica (6.3.0 -> 6.4.0) kf6-baloo (6.3.0 -> 6.4.0) kf6-bluez-qt (6.3.0 -> 6.4.0) kf6-breeze-icons (6.3.0 -> 6.4.0) kf6-frameworkintegration (6.3.0 -> 6.4.0) kf6-karchive (6.3.0 -> 6.4.0) kf6-kauth (6.3.0 -> 6.4.0) kf6-kbookmarks (6.3.0 -> 6.4.0) kf6-kcmutils (6.3.0 -> 6.4.0) kf6-kcodecs (6.3.0 -> 6.4.0) kf6-kcolorscheme (6.3.0 -> 6.4.0) kf6-kcompletion (6.3.0 -> 6.4.0) kf6-kconfig (6.3.0 -> 6.4.0) kf6-kconfigwidgets (6.3.0 -> 6.4.0) kf6-kcoreaddons (6.3.0 -> 6.4.0) kf6-kcrash (6.3.0 -> 6.4.0) kf6-kdbusaddons (6.3.0 -> 6.4.0) kf6-kdeclarative (6.3.0 -> 6.4.0) kf6-kded (6.3.0 -> 6.4.0) kf6-kdesu (6.3.0 -> 6.4.0) kf6-kdnssd (6.3.0 -> 6.4.0) kf6-kdoctools (6.3.0 -> 6.4.0) kf6-kfilemetadata (6.3.0 -> 6.4.0) kf6-kglobalaccel (6.3.0 -> 6.4.0) kf6-kguiaddons (6.3.0 -> 6.4.0) kf6-kholidays (6.3.0 -> 6.4.0) kf6-ki18n (6.3.0 -> 6.4.0) kf6-kiconthemes (6.3.0 -> 6.4.0) kf6-kidletime (6.3.0 -> 6.4.0) kf6-kio (6.3.0 -> 6.4.0) kf6-kirigami (6.3.0 -> 6.4.0) kf6-kitemmodels (6.3.0 -> 6.4.0) kf6-kitemviews (6.3.0 -> 6.4.0) kf6-kjobwidgets (6.3.0 -> 6.4.0) kf6-knewstuff (6.3.0 -> 6.4.0) kf6-knotifications (6.3.0 -> 6.4.0) kf6-knotifyconfig (6.3.0 -> 6.4.0) kf6-kpackage (6.3.0 -> 6.4.0) kf6-kparts (6.3.0 -> 6.4.0) kf6-kpty (6.3.0 -> 6.4.0) kf6-kquickcharts (6.3.0 -> 6.4.0) kf6-krunner (6.3.0 -> 6.4.0) kf6-kservice (6.3.0 -> 6.4.0) kf6-kstatusnotifieritem (6.3.0 -> 6.4.0) kf6-ksvg (6.3.0 -> 6.4.0) kf6-ktexteditor (6.3.0 -> 6.4.0) kf6-ktextwidgets (6.3.0 -> 6.4.0) kf6-kunitconversion (6.3.0 -> 6.4.0) kf6-kuserfeedback (6.3.0 -> 6.4.0) kf6-kwallet (6.3.0 -> 6.4.0) kf6-kwidgetsaddons (6.3.0 -> 6.4.0) kf6-kwindowsystem (6.3.0 -> 6.4.0) kf6-kxmlgui (6.3.0 -> 6.4.0) kf6-modemmanager-qt (6.3.0 -> 6.4.0) kf6-networkmanager-qt (6.3.0 -> 6.4.0) kf6-prison (6.3.0 -> 6.4.0) kf6-purpose (6.3.0 -> 6.4.0) kf6-qqc2-desktop-style (6.3.0 -> 6.4.0) kf6-solid (6.3.0 -> 6.4.0) kf6-sonnet (6.3.0 -> 6.4.0) kf6-syndication (6.3.0 -> 6.4.0) kf6-syntax-highlighting (6.3.0 -> 6.4.0) kgamma6 (6.1.1 -> 6.1.4) kglobalacceld6 (6.1.1 -> 6.1.4) kinfocenter6 (6.1.1 -> 6.1.4) kio-extras (24.05.1 -> 24.05.2) kio-gdrive (24.05.1 -> 24.05.2) kirigami-addons6 (1.3.0 -> 1.4.0) kmenuedit6 (6.1.1 -> 6.1.4) konsole (24.05.1 -> 24.05.2) kpipewire6 (6.1.1 -> 6.1.4) kpmcore (24.05.1 -> 24.05.2) krb5 (1.21.2 -> 1.21.3) kscreen6 (6.1.1 -> 6.1.4) kscreenlocker6 (6.1.1 -> 6.1.4) ksshaskpass6 (6.1.1 -> 6.1.4) ksystemstats6 (6.1.1 -> 6.1.4) kwayland-integration6 (6.1.1 -> 6.1.4) kwayland6 (6.1.1 -> 6.1.4) kwin6 (6.1.1.2 -> 6.1.4) kwrited6 (6.1.1 -> 6.1.4) layer-shell-qt6 (6.1.1 -> 6.1.4) ldb (2.9.0 -> 2.9.1) less (656 -> 661) libX11 (1.8.9 -> 1.8.10) libXfont2 (2.0.6 -> 2.0.7) libXtst (1.2.4 -> 1.2.5) libadwaita (1.5.1 -> 1.5.2) libapparmor (4.0.1 -> 4.0.2) libbacktrace (1.0+git20240302 -> 1.0+git20240718) libblockdev (3.1.0 -> 3.1.1) libbpf (1.4.3 -> 1.4.5) libcdio libdb-4_8 libdecor (0.2.0 -> 0.2.2) libdnf (0.73.1 -> 0.73.2) libgcrypt (1.10.3 -> 1.11.0) libgexiv2 (0.14.2 -> 0.14.3) libgnomesu (2.0.7 -> 2.0.8) libgusb (0.4.8 -> 0.4.9) libjxl (0.10.2 -> 0.10.3) libkdcraw-qt6 (24.05.1 -> 24.05.2) libkexiv2-qt6 (24.05.1 -> 24.05.2) libkgapi6 (24.05.1 -> 24.05.2) libksba (1.6.6 -> 1.6.7) libkscreen6 (6.1.1 -> 6.1.4) libksysguard6 (6.1.1 -> 6.1.4) libndp libnl3 (3.9.0 -> 3.10.0) libnvme (1.9+0.g80c5cf2 -> 1.10+0.gdd51fa8) libopenmpt (0.7.8 -> 0.7.9) libostree (2024.6 -> 2024.7) libphonenumber (8.13.30 -> 8.13.40) libplasma6 (6.1.1 -> 6.1.4) libqt5-qtbase (5.15.14+kde140 -> 5.15.14+kde143) librsvg (2.58.1 -> 2.58.2) libselinux (3.6 -> 3.7) libselinux-bindings (3.6 -> 3.7) libsemanage (3.6 -> 3.7) libsepol (3.6 -> 3.7) libsolv (0.7.29 -> 0.7.30) liburing (2.5 -> 2.6) libva (2.21.0 -> 2.22.0) libvisual libvpx (1.14.0 -> 1.14.1) libxml2 (2.12.8 -> 2.12.9) libzypp (17.34.1 -> 17.35.9) live555 (2023.11.30 -> 2024.06.26) llvm18 (18.1.6 -> 18.1.8) lua54 (5.4.6 -> 5.4.7) lvm2 lvm2-device-mapper lz4 (1.9.4 -> 1.10.0) makedumpfile microos-tools (2.21+git12 -> 2.21+git13) milou6 (6.1.1 -> 6.1.4) mozilla-nss (3.100 -> 3.102.1) mpg123 (1.32.6 -> 1.32.7) multipath-tools (0.9.9+90+suse.f1d2f20 -> 0.9.9+161+suse.0c835ef) mutter (46.2 -> 46.4) ncurses (6.5.20240608 -> 6.5.20240713) nvme-cli (2.9.1 -> 2.10) open-vm-tools (12.4.0 -> 12.4.5) openblas_openmp openldap2 (2.6.7 -> 2.6.8) openssh openssl-3 orc (0.4.38 -> 0.4.39) osinfo-db (20240510 -> 20240701) p11-kit pam partitionmanager (24.05.1 -> 24.05.2) passt (20240624.1ee2eca -> 20240726.57a21d2) patterns-microos pciutils (3.12.0 -> 3.13.0) pcr-oracle perl (5.38.2 -> 5.40.0) perl-Bootloader (1.13 -> 1.14) pinentry (1.2.1 -> 1.3.1) pinentry-gui (1.2.1 -> 1.3.1) pipewire (1.2.0 -> 1.2.1) plasma5support6 (6.1.1 -> 6.1.4) plasma6-activities (6.1.1 -> 6.1.4) plasma6-activities-stats (6.1.1 -> 6.1.4) plasma6-browser-integration (6.1.1 -> 6.1.4) plasma6-desktop (6.1.1 -> 6.1.4) plasma6-integration (6.1.1 -> 6.1.4) plasma6-nm (6.1.1 -> 6.1.4) plasma6-openSUSE plasma6-pa (6.1.1 -> 6.1.4) plasma6-print-manager (6.1.1 -> 6.1.4) plasma6-systemmonitor (6.1.1 -> 6.1.4) plasma6-workspace (6.1.1 -> 6.1.4) podman (5.1.1 -> 5.2.0) policycoreutils (3.6 -> 3.7) polkit polkit-default-privs (1550+20240620.095c860 -> 1550+20240708.7e0e3f4) polkit-kde-agent-6 (6.1.1 -> 6.1.4) poppler (24.03.0 -> 24.07.0) poppler-qt6 (24.03.0 -> 24.07.0) powerdevil6 (6.1.1 -> 6.1.4) procps python-Jinja2 python-PyYAML python-certifi (2023.11.17 -> 2024.7.4) python-cffi python-cryptography (42.0.8 -> 43.0.0) python-jsonschema (4.22.0 -> 4.23.0) python-psutil (5.9.7 -> 6.0.0) python-pyOpenSSL (24.1.0 -> 24.2.1) python-pycairo (1.26.0 -> 1.26.1) python-pyrsistent python-pyserial python-semanage (3.6 -> 3.7) python-setuptools (70.0.0 -> 70.1.1) python-tornado6 (6.4 -> 6.4.1) python311 python311-core qemu (9.0.0 -> 9.0.2) qqc2-breeze-style6 (6.1.1 -> 6.1.4) qt6-base qt6-sensors qt6-wayland re2 (20240601 -> 20240702) rootlesskit (2.1.0 -> 2.2.0) runc (1.2.0~rc1 -> 1.2.0~rc2) samba (4.20.1+git.339.cf6e153bb2 -> 4.20.2+git.350.4cfcde9cdb) sdbootutil (1+git20240514.56dc89c -> 1+git20240722.e6d7c91) sddm-kcm6 (6.1.1 -> 6.1.4) selinux-policy (20240617 -> 20240802) sensors shim signon-kwallet-extension (24.05.1 -> 24.05.2) skopeo (1.15.1 -> 1.16.0) snapper (0.11.0 -> 0.11.1) sof-firmware (2024.03 -> 2024.06) spectacle (24.05.1 -> 24.05.2) speech-dispatcher sssd sudo suse-module-tools (16.0.45 -> 16.0.48) system-config-printer systemd (255.7 -> 256.4) systemd-presets-branding-Aeon systemsettings6 (6.1.1 -> 6.1.4) sysuser-tools (3.2 -> 3.3) taglib (2.0 -> 2.0.1) tar thin-provisioning-tools (1.0.12 -> 1.0.13) toolbox (2.3+git20231030.3a6ef35 -> 2.3+git20240704.84ec25e) tpm2.0-abrmd transactional-update (4.6.8 -> 4.7.0) upower (1.90.2+15 -> 1.90.4) util-linux util-linux-systemd vim (9.1.0512 -> 9.1.0636) vte vulkan-loader (1.3.283.0 -> 1.3.290) vulkan-tools (1.3.283.0 -> 1.3.290) webkit2gtk3 webkit2gtk4 wireplumber (0.5.4+git2.96dc045 -> 0.5.5) wtmpdb (0.12.0+git.20240508 -> 0.13.0+git.20240726) xdg-desktop-portal-kde6 (6.1.1 -> 6.1.4) xdg-utils xfsprogs (6.8.0 -> 6.9.0) xinit xmlsec1 (1.2.38 -> 1.2.40) xorg-x11-server xterm (389 -> 393) xwayland (24.1.0 -> 24.1.1) yast2 (5.0.8 -> 5.0.9) zchunk (1.4.0 -> 1.5.1) zenity (4.0.1 -> 4.0.2) zypp-boot-plugin (0.0.10 -> 0.0.11) zypper (1.14.74 -> 1.14.76) === Details === ==== Imath ==== Version update (3.1.9 -> 3.1.11) - update to 3.1.11: * Fix a problem where downstream projects using Imath would build python bindings even if they weren't requested. * Fix for missing `std::bit_cast` * Fix missing/necessary use of IMATH_HOSTDEVICE * IMATH_INSTALL_PKG_CONFIG is now on by default, even on Windows * Fix calling default constructor by uniform init in TypeTraits * Fix redundant PYIMATH_EXPORTS causing compile issues on Windows Clang * Update to SO versioning policy: * succ()/pred() now use std::nextafter(). * Expand epsilon bounds for m44x pyImath test. * Rename "docs" to "website". * Add missing copyright/license identifiers. ==== Mesa ==== Version update (24.1.2 -> 24.1.3) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - Update to bugfix release 24.1.3 - -> https://docs.mesa3d.org/relnotes/24.1.3 - supersedes the following patches: * u_dri-Fix-BGR-format-exclusion.patch * u_egl-gbm-Enable-RGBA-configs.patch * u_egl-surfaceless-Enable-RGBA-configs.patch * boo1226725-test-fix1.patch - use gcc-13 on SLE 15/Leap 15.x in order to fix build; credits go to "Friedrich Haubensak" <hsk17(a)mail.de> to figure this out! ==== Mesa-drivers ==== Version update (24.1.2 -> 24.1.3) Subpackages: Mesa-dri Mesa-gallium - Update to bugfix release 24.1.3 - -> https://docs.mesa3d.org/relnotes/24.1.3 - supersedes the following patches: * u_dri-Fix-BGR-format-exclusion.patch * u_egl-gbm-Enable-RGBA-configs.patch * u_egl-surfaceless-Enable-RGBA-configs.patch * boo1226725-test-fix1.patch - use gcc-13 on SLE 15/Leap 15.x in order to fix build; credits go to "Friedrich Haubensak" <hsk17(a)mail.de> to figure this out! ==== MicroOS-release ==== Version update (20240629 -> 20240808) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== NetworkManager ==== Version update (1.48.2 -> 1.48.6) Subpackages: NetworkManager-bluetooth NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Add NetworkManager-dont-renew-bridge-dhcp-if-no-mac-on-wakeup.patch: manager: don't renew dhcp lease when software devices' MAC is empty (bsc#1225498, glfd#NetworkManager/NetworkManager#1587). - Update to version 1.48.6: + activation: Allow changing controller of exposed active connection + ovs: wait for the link to be ready before activating + policy: assert that the auto-activate list is empty on dispose - Update to version 1.48.4: + Support matching a OVS system interface by MAC address. + When looking up the system hostname from the reverse DNS lookup of addresses configured on interfaces, NetworkManager now takes into account the content of /etc/hosts. ==== SVT-AV1 ==== Version update (2.1.1 -> 2.1.2) - update to 2.1.2: * Cleanup, bug fixes: * Fixed profile-guided-optimization build by removing the remaining decoder path ==== aaa_base ==== Version update (84.87+git20240620.57ee9e1 -> 84.87+git20240805.7513b28) - Update to version 84.87+git20240805.7513b28: * Remove obsolete resolv+ manual page * Remove obsolete defaultdomain.5 manual page * Move /etc/skel to /usr/etc/skel (hermetic-usr) * Remove obsolete refresh_initrd * Add deprecation notice for service [jsc#PED-266] - Update to version 84.87+git20240801.75f05dd: * sysctl: Don't set kernel.pid_max on 32b archs (bsc#1227117) ==== aalib ==== - Add -fpermissive to the remaining uses of optflags. [boo#1223910] ==== aardvark-dns ==== - rust >= 1.70 is required to build more recent versions of this package. Also, BuildRequire cargo+rust to prevent conflicts with `cargo-packaging`. ==== abseil-cpp ==== Subpackages: libabsl_2401_0_0 libabsl_lite_2401_0_0 - Add upstream patch abseil-cmake-gtest-testonly.patch to fix issue with GTest and CMake 3.30 ==== apparmor ==== Version update (4.0.1 -> 4.0.2) Subpackages: apparmor-abstractions apparmor-parser apparmor-profiles apparmor-utils python3-apparmor - update to AppArmor 4.0.2 - bugfix release with lots of fixes in all areas - add new userns profiles for balena-etcher, chromium and wike - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_4.0.2 for the detailed upstream changelog - drop upstream(ed) patches: - aa-remove-unknown-fix-unconfined.diff - logprof-mount-empty-source.diff - plasmashell.diff - sampa-rpcd-witness.diff - sddm-xauth.diff - teardown-unconfined.diff - test-aa-notify.diff - tools-fix-redefinition.diff - utils-relax-mount-rules-2.diff - utils-relax-mount-rules.diff - refresh GPG key (was expired) ==== baloo-widgets ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix FileMetadataItemCountTest::testItemCount ==== bluedevil6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== bolt ==== - Edit license: LGPL-2.1-or-later - Add BuildRequires: asciidoc to produce manpages: * boltd.8 boltctl.1 - Switch dependencies to provided pkgconfig - Update meson required version 0.60 - Use autosetup ==== boost-base ==== Subpackages: boost-license1_85_0 libboost_filesystem1_85_0 libboost_thread1_85_0 - add patch boost-1.85.0-python-numpy-2.patch from upstream ==== breeze6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: breeze6-cursors breeze6-decoration breeze6-style breeze6-wallpapers - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== breeze6-gtk ==== Version update (6.1.1 -> 6.1.4) Subpackages: gtk2-metatheme-breeze6 gtk3-metatheme-breeze6 gtk4-metatheme-breeze6 metatheme-breeze6-common - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== btrfsmaintenance ==== Version update (0.5 -> 0.5.2) - update to version 0.5.2 - fix syntax error in run_task, preventing jobs to start - start scrub jobs sequentially if RAID5 or RAID6 data profile is found - fix btrfsmaintenance-refresh.service description - fix bsc#1224364 - update to version 0.5.1 - fix handling of OnCalendar timer directive in the drop-in configuration file that reads the periods from the sysconfig - fix use of --verbose option of fstrim, not available on util-linux < 2.27 - ship manual page of README, also available as 'systemctl help servicename' ==== btrfsprogs ==== Version update (6.9 -> 6.10) Subpackages: btrfsprogs-udev-rules libbtrfs0 libbtrfsutil1 - update to 6.10 * inspect: * list-chunks: new command to print information about chunks (i.e. the physical chunks as stored on devices), sortable; requires root as it's using SEARCH_TREE ioctl * tree-stats: * new option -t to print only the given tree * add long options for size units * filesystem df: with increased verbosity print per-type information from sysfs * version: print a line with built-in features or options (+FEATURE1 -FEATURE2) * image: document option -s and its potential problems * fixes: * scrub status: user selected base for Rate values * receive: escape special characters in paths and xattrs * dump-tree: escape special characters in paths and xattrs * image: sanitizing filenames did not work properly in all cases * convert: fix displayed restored image path on rollback * tune change csum: do conversion in smaller batches * other: * build fixes for uClibc * build fix for python 3.13 * documentation updates - update to 6.9.2 * subvol list: fix accidental trimming of subvolume name * check: revert checking file extent item 'ram_bytes' * libbtrfsutil: * patchlevel version update 1.3.2 * fix accidentally closing fd passed to subvolume iterator - update to 6.9.1 * fix detection of intermediate super block flags (e.g. csum change and other conversions) * raid-stripe-tree support (still experimental): * moved under experimental build flags (mkfs, convert) * format change, removed encoding type; backward incompatible * receive dump: escape special chars in xattr names and values, and clone source path * tune change csum: fix reservation size when starting a transaction * other: * new and updated tests * updated CI images, new reference build targets * cleanups and refactoring ==== ca-certificates-mozilla ==== Version update (2.66 -> 2.68) - Updated to 2.68 state of Mozilla SSL root CAs (bsc#1227525) - Added: FIRMAPROFESIONAL CA ROOT-A WEB - Distrust: GLOBALTRUST 2020 ==== checkpolicy ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes: * checkpolicy: support CIDR notation for nodecon statements * checkpolicy: provide more descriptive error messages and improve error handling * Bugfixes: * checkpolicy: handle unprintable token * checkpolicy: avoid assigning garbage values * checkpolicy: free temporary bounds type * checkpolicy: perform contiguous check in host byte order * checkpolicy: include <ctype.h> for isprint(3) * oss-fuzz fixes: * checkpolicy: add libfuzz based fuzzer * checkpolicy: free complete role_allow_rule on error * checkpolicy: free identifiers on invalid typebounds * checkpolicy: return YYerror on invalid character * checkpolicy: clone level only once ==== chrony ==== Subpackages: chrony-pool-openSUSE - Update clknetsim to snapshot 633a0be: fix missing stat/fstat with latest glibc. ==== cockpit ==== Version update (316 -> 321) Subpackages: cockpit-bridge cockpit-networkmanager cockpit-packagekit cockpit-system cockpit-ws - load pam_oath for optional TOTP for authentication - new version 321: * Bug fixes and performance improvements - vendor.tar.gz: dropped. Bundling now part of main tarball. - update_version.sh: use instead of `osc service mr` to do version updates. updated README.packaging - new version 320: * pam-ssh-add: Fix insecure killing of session ssh-agent (bsc#1226040, CVE-2024-6126) - changes in older versions: * Storage: Btrfs snapshots * Podman: Add image pull action * Files: Bookmark support * webserver: System user changes * Metrics: Grafana setup now prefers Valkey - 0001-users-Support-for-watching-lastlog2.patch, 0002-users-Support-for-watching-lastlog2-and-wutmp-on-overview-page.patch removed, upstreamed - fix suse_docs.patch causing invalid json against the storaged manifest bsc#1227299 ==== cockpit-podman ==== Version update (84 -> 91) - New version 91. Changes since 84: * Implement pull option for existing images * Use binary http channel for podman socket for non-UTF-8 robustness * Stop using obsolete cockpit.utf8_{de,en}coder() API * Translation updates * Bug fixes and performance improvements - update_version.sh: fetch package-lock.json from upstream instead of regenerating. ==== colord ==== Subpackages: colord-color-profiles libcolord2 libcolorhug2 - Build -D_FILE_OFFSET_BITS=64 and -D_TIME_BITS=64 in order to avoid wrong type being passed to gmtime_r on i586 (and perhaps other 32bit targets). [boo#1228331] ==== container-selinux ==== Version update (2.228.0 -> 2.232.1) - Update to version 2.232.1: * Bump to v2.232.1 * TMT: fix srpm download syntax on rawhide * Bump to 2.232.0 * Packit: remove `update_release` key from downstream jobs (#313) * Update container-selinux.8 man page * Add ownership of /usr/share/udica (#312) * Packit/TMT: upstream maintenance of downstream gating tests * extend container_engine_t again * Allow spc_t to use localectl * Allow spc_t to use timedatectl * introduce container_use_xserver_devices boolean to allow GPU access - Update to version 2.231.0: * Allow container domains to communicate with spc_t unix_stream_sockets * Move to %posttrans to ensure selinux-policy got updated before the commands run (bsc#1221720) - Manual update to version 2.230.0+git4.a8e389d to include this commit that is needed for the main selinux-policy update to work: * Rename all /var/run file context entries to /run - Update to version 2.230.0: * Move to tar_scm based packaging: added _service and _servicedata * Allow containers to unmount file systems * Add buildah as a container_runtime_exec_t label * Additional rules for container_user_t * improve container_engine_t ==== coreutils ==== - Avoid empty scriptlets - coreutils-i18n.patch: fold(1): fix exit code for non-existent file. The exit code of fold(1) was zero for non-existent file: $ fold badfile; echo $? fold: badfile: No such file or directory 0 The bug was introduced by the downstrean I18N patch. (rhbz#2296201) ==== coreutils-systemd ==== - Avoid empty scriptlets - coreutils-i18n.patch: fold(1): fix exit code for non-existent file. The exit code of fold(1) was zero for non-existent file: $ fold badfile; echo $? fold: badfile: No such file or directory 0 The bug was introduced by the downstrean I18N patch. (rhbz#2296201) ==== cryptsetup ==== Version update (2.7.2 -> 2.7.4) Subpackages: libcryptsetup12 - Update to 2.7.4: * Detect device busy failure for device-mapper table-referenced devices. * Fix shared activation for dm-verity devices. * Add --shared option for veritysetup open action. * Do not use exclusive flag for the allocated backing loop files. * Fixes for problems found by static analyzers and Valgrind. * Fixes to tests and CI scripts. - Use fdupes to link identical man pages. - Update to 2.7.3: * Do not allow formatting LUKS2 with Opal SED (hardware encryption) if the reported logical sector size for the block device and Opal encryption logical block differs. * Fixes to wiping LUKS2 headers after Opal locking area erase. * Mention the need for possible PSID revert before Opal format for some drives (man page). * Fix Bitlocker-compatible code to ignore newly seen metadata entries. * Fix interactive query retry if LUKS2 unbound keyslot is present. * Detect unsupported zoned devices for LUKS header devices. * Allow "capi" cipher format for benchmark command and fix parsing of plain IV in "capi" format. * Add support for HCTR2 encryption mode. * Source code now uses SPDX license identifiers instead of full license preambles. * Fix missing includes for cryptographic backend that could cause compilation errors for some systems. * Fix tests to work correctly in FIPS mode with recent OpenSSL 3.2. * Fix various (mostly false positive) issues detected by Coverity. - License: Replace legacy 'AND SUSE-GPL-2.0-with-openssl-exception' with 'WITH cryptsetup-OpenSSL-exception' (the official SPDX exception). ==== cups ==== Version update (2.4.8 -> 2.4.10) Subpackages: cups-client cups-config libcups2 libcupsimage2 - Replaced avoid_C99_mode_for_loop_initial_declarations.patch which is now the upstream fix https://github.com/OpenPrinting/cups/commit/a2b8872ea95564e065e3a08e2aa12a1… see https://github.com/OpenPrinting/cups/issues/1000 and https://github.com/OpenPrinting/cups/pull/1004 - Version upgrade to 2.4.10: See https://github.com/openprinting/cups/releases CUPS 2.4.10 brings two fixes: * Fixed error handling when reading a mixed 1setOf attribute. * Fixed scheduler start if there is only domain socket to listen on (Issue #985) which is fix for regression after fix for CVE-2024-35235 in scenarios where is no other listeners in cupsd.conf than domain socket created on demand by systemd, launchd or upstart. Issues are those at https://github.com/OpenPrinting/cups/issues - Version upgrade to 2.4.9: See https://github.com/openprinting/cups/releases CUPS 2.4.9 brings security fix for CVE-2024-35235 and several bug fixes regarding CUPS Web User Interface, PPD generation and HTTP protocol implementation. Detailed list (from CHANGES.md): * Fixed domain socket handling (CVE-2024-35235) * Fixed creating of `cupsUrfSupported` PPD keyword (Issue #952) * Fixed searching for destinations in web ui (Issue #954) * Fixed TLS negotiation using OpenSSL with servers that require the TLS SNI extension. * Really raised `cups_enum_dests()` timeout for listing available IPP printers (Issue #751)... * Fixed `Host` header regression (Issue #967) * Fixed DNS-SD lookups of local services with Avahi (Issue #970) * Fixed listing jobs in destinations in web ui. (Apple issue #6204) * Fixed showing search query in web ui help page. (Issue #977) Issues are those at https://github.com/OpenPrinting/cups/issues Apple issues are those at https://github.com/apple/cups/issues - Adapted downgrade-autoconf-requirement.patch for CUPS 2.4.10 - Removed cups-2.4.8-CVE-2024-35235.patch : fixed upstream see the above CUPS 2.4.9 changes - avoid_C99_mode_for_loop_initial_declarations.patch avoids error "'for' loop initial declarations are only allowed in C99 mode" that happens when building for SLE12 in scheduler/client.c at "for (char *start = ..." since https://github.com/OpenPrinting/cups/commit/a7eda84da73126e40400e05dd27d57f… see https://github.com/OpenPrinting/cups/issues/1000 ==== curl ==== Version update (8.8.0 -> 8.9.0) Subpackages: libcurl4 - Update to 8.9.0: * Security fixes: - [bsc#1227888, CVE-2024-6197] curl: freeing stack buffer in utf8asn1str - [bsc#1228260, CVE-2024-6874] idn: tweak buffer use when converting with macidn * Changes: - curl: add --ip-tos (IP Type of Service / Traffic Class) - curl: add --mptcp - curl: add --vlan-priority - curl: add -w '%{num_retries} - gnutls: support CA caching - mbedtls: support CURLOPT_CERTINFO - noproxy: patterns need to be comma separated - socket: support binding to interface *AND* IP - tcpkeepalive: add CURLOPT_TCP_KEEPCNT and --keepalive-cnt - urlapi: add CURLU_NO_GUESS_SCHEME - wolfssl: support CA caching * Bugfixes: - connection: shutdown TLS (for FTP) better - curl-config: revert to backticks to support old target envs - curl: allow etag and content-disposition for 3xx reply - curl: bsearch the --write-out variable name - curl: check for --disable case *sensitively* - doh: fix leak and zero-length HTTPS RR crash - file: separate fake headers and body with a stand-alone CRLF - ftp: remove redundant null pointer check in loop condition - gnutls: improve TLS shutdown - gnutls: pass in SNI name, not hostname when checking cert - hostip: skip error check for infallible function call - http/3: add shutdown support - http/3: resume upload on ack if we have more data to send - lib: add a few DEBUGASSERT(data) to aid code analyzers - lib: add failure reason on bind errors - lib: graceful connection shutdown - lib: xfer_setup and non-blocking shutdown - multi: add multi->proto_hash, a key-value store for protocol data - multi: do a final progress update on connect failure - multi: fix multi_wait() timeout handling - multi: fix pollset during RESOLVING phase - ngtcp2+quictls: fix cert-status use - noproxy: test bad ipv6 net size first - openssl/gnutls: rectify the TLS version checks for QUIC - openssl: fix hostname handling when using ECH - openssl: stop duplicate ssl key logging for legacy OpenSSL - quic: enable UDP GRO - quic: openssl quic, cmake and doc version update to 3.3.0 - quic: require at least OpenSSL 3.3 for QUIC - quic: update to quiche 0.22.0 - smtp: for starttls, do full upgrade - tool_operate: avoid explicitly setting verifypeer to 1 - tool_writeout: get certinfo only when needing it - transfer: avoid polling socket every transfer loop - transfer: conn close on paused upload - transfer: do not use EXPIRE_NOW while blocked - transfer: remove curl_upload_refill_watermark, no longer used - transfer: set CSELECT_IN if there is data pending - url: allow DoH transfers to override max connection limit - x509asn1: add some common ECDSA OIDs - x509asn1: ASN1tostr() should fail when 'constructed' is set - x509asn1: fallback to dotted OID representation - x509asn1: prevent NULL dereference - x509asn1: remove superfluous free() - x509asn1: remove two static variables * Rebase libcurl-ocloexec.patch * Remove curl-make-install-curl-config.patch upstream ==== discover6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: discover6-backend-flatpak discover6-backend-fwupd discover6-notifier - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Only chop off leading @ from tokenized license text if needed (kde#491172) * flatpak: Make sure we don't call versionCompare with a null resource * flatpak: Ensure we are caching the right icons (kde#490786) * category: assert names aren't duplicated * ApplicationPage: Do not use Item.visible to calculate the visibility of the parent (kde#489745) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * flatpak: also auto-handle rebases from runtimes * flatpak: uninstall properly EOL refs that have no replacement * flatpak: don't trip over null gerrors (kde#487526) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * ApplicationPage: Fix share dialog (kde#488976) * update version for new release ==== docker ==== Version update (26.1.4_ce -> 26.1.5_ce) Subpackages: docker-rootless-extras - Update to Docker 26.1.5-ce. See upstream changelog online at <https://docs.docker.com/engine/release-notes/26.1/#2615> - This update includes a fix for CVE-2024-41110. bsc#1228324 - Rebase patches: * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch * 0006-bsc1221916-update-to-patched-buildkit-version-to-fix.patch * 0007-bsc1214855-volume-use-AtomicWriteFile-to-save-volume.patch * cli-0001-docs-include-required-tools-in-source-tree.patch [NOTE: This update was only ever released in SLES and Leap.] - Update to Docker 25.0.6-ce. See upstream changelog online at <https://docs.docker.com/engine/release-notes/25.0/#2506> - This update includes a fix for CVE-2024-41110. bsc#1228324 - Rebase patches: * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch * 0006-bsc1221916-update-to-patched-buildkit-version-to-fix.patch * 0007-bsc1214855-volume-use-AtomicWriteFile-to-save-volume.patch ==== docker-buildx ==== Version update (0.15.1 -> 0.16.2) - Update to version 0.16.2: * vendor: update buildkit to v0.15.1 - Update to version 0.16.1: * clarify the appropriate place to use the debug flag when viewing warnings * test: bake print * bake: check printer before printing warnings - Update to version 0.16.0: * Notable Changes - Build command now ensures that multi-node builds use the same build reference for each node #2572 - Bake command now supports --call and --check flags and call key in target definition for selecting custom build methods [#2556] #2576 - Bake definition variables and targets supports new description key for defining text-based description that can be inspected later #2556 - Experimental: Bake command supports new --list-targets and - -list-variables flags for inspecting the definition and possible configuration options for your project. #2556 - Bake command now supports printing warnings similarly to the build command. #2501 - Avoid duplicate requests and improve the performance of remote driver #2501 - Build warnings can now be saved to the metadata file when defining BUILDX_METADATA_WARNINGS=1 #2551 #2521 #2550 - Improve message of --check when no warnings are detected [#2549] - Fix support for multi-type annotations during build #2522 - Fix possible inefficient transfer of files when switching projects due to incremental transfer reuse (regression from v0.14+) #2558 - Fix incorrect default load for chained Bake targets #2583 - Fix incorrect COMPOSE_PROJECT_NAME handling in Bake #2579 - Fix index annotations support for multi-node builds #2546 - Fix capturing provenance metadata for builds from remote context #2560 ==== dolphin ==== Version update (24.05.1 -> 24.05.2) Subpackages: dolphin-part libdolphinvcs6 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Add missing GENERATE_MOC to kconfig_add_kcfg_files * CI: Disable Craft Windows ==== dracut ==== Version update (059+suse.598.gfe80dac7 -> 059+suse.628.g20b345b4) Subpackages: dracut-ima - Update to version 059+suse.628.g20b345b4: * feat(crypt): force the inclusion of crypttab entries with x-initrd.attach (bsc#1226529) * fix(mdraid): try to assemble the missing raid device (bsc#1226412) * feat(ifcfg): minimize s390-specific network configuration aspects * refactor(ifcfg): delete code duplication using iface_get_subchannels() * fix(znet): append to udev rules so each rd.znet_ifname is effective * feat(qeth_rules): remove qeth handling consolidated in 95znet * docs(dracut.cmdline): generalize description of rd.znet * feat(znet): use zdev for consolidated device configuration * feat(dasd): minimize dasd handling consolidated in s390-tools * feat(dasd_mod): minimize dasd handling consolidated in s390-tools * feat(dasd_rules): remove dasd handling consolidated in s390-tools * feat(zfcp): minimize zfcp handling consolidated in s390-tools * feat(zfcp_rules): remove zfcp handling consolidated in s390-tools * refactor(cms): remove now unnecessary inclusion of full s390utils-base * refactor(cms): use consolidated network config with zdev from s390-tools * refactor(cms): use consolidated dasd config with zdev from s390-tools * refactor(cms): use consolidated zfcp config with zdev from s390-tools * refactor(cms): use zdev to simplify handling CMSDASD=... boot option * fix(dracut-install): continue parsing if ldd prints "cannot be preloaded" (bsc#1208690) ==== ell ==== Version update (0.66 -> 0.67) - update to 0.67: * Add support for handling sysctl char settings. ==== evolution-data-server ==== Version update (3.52.2 -> 3.52.4) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-3 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.52.4: + alarm-notify: Save acknowledge time without sending iTip message. + Calendar: Anniversaries hidden when book goes to online. - Update to version 3.52.3: + Bug Fixes: - Camel: . Attachments not recognized when filtering POP3 message . Search folder's message UID is not persistent - CalDAV: Correct check for "is Google server" + Miscellaneous: - OAuth2 Prompter: Fix two memory leaks - EOAuth2ServiceYahoo: Update redirect URI - CI: Workaround broken git clone for libcanberra - Fix few issues reported by Coverity Scan + Updated translations. ==== exiv2 ==== Version update (0.28.2 -> 0.28.3) - update to 0.28.3 (bsc#1227528, CVE-2024-39695): * Release Notes: + https://github.com/Exiv2/exiv2/issues/3008 + https://github.com/Exiv2/exiv2/milestone/14?closed=1 * This release also fixes a low-severity security issue in asfvideo.cpp: out-of-bounds read in AsfVideo::streamProperties. - use --parallel as single-dash parameters are eaten by ctest's rpm macro ==== ffmpeg-4 ==== Subpackages: libavcodec58_134 libavformat58_76 libavutil56_70 libpostproc55_9 libswresample3_9 libswscale5_9 - Add ffmpeg-c99.patch so that the package conforms to the C99 standard and builds on i586 with GCC 14. - Add ffmpeg-4-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230, bsc#1227296) ==== ffmpeg-6 ==== Subpackages: libavcodec60 libavfilter9 libavformat60 libavutil58 libpostproc57 libswresample4 libswscale7 - Add ffmpeg-c99.patch so that the package conforms to the C99 standard and builds on i586 with GCC 14. - Add ffmpeg-6-CVE-2024-32230.patch: Backporting 96449cfe from upstream, Fix 1 line and one column images. (CVE-2024-32230 bsc#1227296) - Add ffmpeg-6-CVE-2024-32228.patch: Backporting 45964876 from upstream, Fix segfault on invalid film grain metadata. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-5d7f234e.patch: Backporting 5d7f234e from upstream, document that there can be multiple complex filtergraphs to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-f50382cb.patch: Backporting f50382cb from upstream, implement AFGS1 parsing. to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) - Add ffmpeg-6-CVE-2024-32228-shim-1535d338.patch: Backporting 1535d338 from upstream, add AOM film grain synthesis, to prepare dependence code for CVE-2024-32228. (CVE-2024-32228, bsc#1227277) ==== ffmpegthumbs ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== flatpak-kcm6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - No code changes since 6.1.3 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - No code changes since 6.1.2 - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - No code changes since 6.1.1 ==== fontconfig ==== Subpackages: libfontconfig1 - Run autoreconf unconditionally to allow newer versions of Automake. ==== fribidi ==== Version update (1.0.14 -> 1.0.15) - update to 1.0.15: * Fixed the bad tarball from 1.0.14 with stall include files. There are no other changes ==== fwupd ==== Version update (1.9.21 -> 1.9.23) Subpackages: libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.9.23: + Fix a regression in 1.9.22 that caused some devices not to probe correctly. + Try harder to get a valid response when flashing usi-dock devices. - Update to version 1.9.22: + This release fixes the following bugs: - Add a PCB tag in the usi-dock GUID to distinguish different revisions. - Add explicit hidraw permission to fwupd.service to fix several devices. - Always load the flashrom plugin when using coreboot. - Be explicit with the rts54hub detach retry delay to fix the Acer D501. - Be more careful when setting thelio-io version strings. - Fix a critical warning if a device returns unexpected data from DFU upload. - Fix a critical warning if the DMI manufacturer is an empty string. - Fix several reported integer overflows from Coverity. - Fix the Blackbird and Talos II baseboard details. - Fix transient version number issue after flashing wacom-usb devices. - Increase the cros_ec acquiesce delay to manage additional reboots. - Only accept valid ASCII cabinet filenames. - Only require udevdir when gudev support is enabled. - Only show one PixArt receiver device per physical device. - Set the rts54hub version in more cases. - Speed up the daemon self tests by ~60%. - Use the bootloader build-timestamp as the fallback HWID BIOS version. + This release adds support for the following hardware: - Framework SD - Raspberry Pi 5 (unofficial) ==== gcc14 ==== Version update (14.1.1+git10335 -> 14.2.0+git10526) Subpackages: libgcc_s1 libgfortran5 libgomp1 libstdc++6 libubsan1 - Update to GCC 14.2.0 release, c035a7c30c310ff928988cbcf, git10526 - Add libquadmath0-devel-gcc14 sub-package to allow installing quadmath.h and SO link without installing the fortran frontend - Drop SLE11 compatibility %selfconflict wrapper, drop various conditions gating SLE11 build support - Update to gcc-14 branch head, a544898f6dd6a1689bb25abfd, git10504 * GCC 14.2 release candidate. ==== gdm ==== Subpackages: gdm-schema gdmflexiserver libgdm1 typelib-1_0-Gdm-1_0 - Rebase gdm-restart-session-when-X-server-restart.patch. ==== gettext-runtime ==== Subpackages: libtextstyle0 - Use %autosetup ==== ghostscript ==== Version update (10.03.0 -> 10.03.1) - Version upgrade to 10.03.1: Highlights in this release include: See 'Recent Changes in Ghostscript' at Ghostscript upstream https://ghostscript.readthedocs.io/en/gs10.03.1/News.html * Fixes for CVE-2024-33869, CVE-2023-52722, CVE-2024-33870, CVE-2024-33871 and CVE-2024-29510 - Regarding CVE-2024-33869 see bsc#1226946 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=5ae2e… https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f5336… https://bugs.ghostscript.com/show_bug.cgi?id=707691 - Regarding CVE-2023-52722 see bsc#1223852 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=afd71… - Regarding CVE-2024-33870 see bsc#1226944 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=79aef… https://bugs.ghostscript.com/show_bug.cgi?id=707686 - Regarding CVE-2024-33871 see bsc#1225491 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=71458… - Regarding CVE-2024-29510 see bsc#1226945 and https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=3b173… ==== glib2 ==== Version update (2.80.3 -> 2.80.4) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 typelib-1_0-GLib-2_0 typelib-1_0-GModule-2_0 typelib-1_0-GObject-2_0 typelib-1_0-Gio-2_0 - Update to version 2.80.4: + Bugs fixed: - GLib unit tests fail on macOS runner due to localhost being out of addresses - Random failures to build glib 2.80.3 - Backport !4111 âgioerror: Map EADDRNOTAVAIL to G_IO_ERROR_CONNECTION_REFUSEDâ to glib-2-80 - Backport !3373 and !4117 âHandle files >4GB in g_file_load_contents()â to glib-2-80 - Backport !4020 and !4122: fixes to GIR install locations and build race fixes - Backport !4110 âgthreadedresolver: ref-sink returned records in lookup_records()â to glib-2-80 ==== glslang ==== Version update (14.2.0 -> 14.3.0) - Update to release 14.3 * Generate vector constructions more efficiently when sizes match * Skip identity conversions for 8-bit and 16-bit types * Emit debug info for buffer references * Add support for OpExtInstWithForwardRefsKHR * Generate SPV_EXT_replicated_compisites when requested by pragma * Add back layoutLocation to public API ==== gnome-control-center ==== Version update (46.2 -> 46.3) Subpackages: gnome-control-center-color gnome-control-center-goa - Rebase gnome-control-center-info-never-use-gnome-software.patch and rename to gnome-control-center-system-never-use-gnome-software.patch - Rebase gnome-control-center-bring-back-firewall-zone.patch. - Update to version 46.3: + CI fixes + Mouse: Make Mouse test click indicator not respond for middle clicks + Network: Reference icon-name proper for wifi panel + Tests: Don't require Xvfb or setxkbmap for tests + Sharing: Make Orca read the "Add Folder" row in Media Sharing settings + Update translations. - Refresh patches with quilt. ==== gnome-initial-setup ==== Version update (46.2 -> 46.3) - Update to version 46.3: + The summary page now uses an embedded themed icon for the checkmark, which ensures that the icon is loaded at the proper scaling level on hidpi displays. + If you customize the generated username for the new account, changing the account name no longer clobbers the customized username. + The keyboard page no longer crashes if it is destroyed and recreated while still waiting for the set of IBus engines. + Updated translations. ==== gnome-keyring ==== Version update (46.1 -> 46.2) Subpackages: gnome-keyring-pam libgck-modules-gnome-keyring - Update to version 46.2: + Don't use `bool` as variable name + autogoo: replace AC_HELP_STRING with AS_HELP_STRING + Default "automatically unlock" checkbox to false + build: Fix distcheck with systemd unit + rpc-layer: Fix undefined reference to g_strlcpy + Updated translations. ==== gnome-online-accounts ==== Version update (3.50.2 -> 3.50.4) Subpackages: libgoa-1_0-0 libgoa-backend-1_0-2 - Update to version 3.50.4: + Allow editing the details for Exchange accounts when re-authenticating. + Correctly save and reset settings for TLS certificate errors. - Update to version 3.50.3: + WebDAV: minor fixes for accounts with app passwords + Fix libsoup error handling + Updated translations. ==== gnome-shell ==== Version update (46.2 -> 46.4) Subpackages: gnome-shell-calendar - Update to version 46.4: + Fix glitches in looking glass + Improve Persian on-screen keyboard layout + Make overview startup notification more reliable + Fix keyboard navigation in app folders + Fix connecting to WPA2 enterprise networks + Misc. bug fixes and cleanups + Updated translations. - Add CVE-2024-36472.patch: Show notification when detecting captive portal (glgo#GNOME/gnome-shell#7688 bsc#1225567 CVE-2024-36472). - Update to version 46.3.1: + Fix including gvc source in tarball - Changes from version 46.3: + Fix rendering artifacts of some rounded borders + Fix overview animation glitch when windows overlap workspaces + Misc. bug fixes and cleanups + Updated translations. - Add gvc (libgnome-volume-control) submodule to _service file and inject subproject into the source directory. This is not tracked as git submodules, so the regular 'git submodule' service parameter is ineffective here. ==== gnome-software ==== Version update (46.2 -> 46.3) - Update to version 46.3: + Show "Install All" button only for codecs + Prefer vendor name from os release in app origin + Updated translations. ==== gnutls ==== Version update (3.8.5 -> 3.8.6) - Update to 3.8.6: * libgnutls: PBMAC1 is now supported as a MAC mechanism for PKCS#12 To be compliant with FIPS 140-3, PKCS#12 files with MAC based on PBKDF2 (PBMAC1) is now supported, according to the specification proposed in draft-ietf-lamps-pkcs12-pbmac1. * libgnutls: SHA3 extendable output functions (XOF) are now supported SHA3 XOF, SHAKE128 and SHAKE256, are now usable through a new public API gnutls_hash_squeeze. * API and ABI modifications: - gnutls_pkcs12_generate_mac3: New function - gnutls_pkcs12_flags_t: New enum - gnutls_hash_squeeze: New function * Rebase patches: - gnutls-FIPS-140-3-references.patch - gnutls-FIPS-jitterentropy.patch ==== google-noto-fonts ==== Version update (20240601 -> 20240801) Subpackages: google-noto-sans-fonts google-noto-sans-math-fonts - Update to 20240801 * Sans Mongolian has its shaping rules updated to match UTN#57 * Serif Balinese fixed some overlaps * Nastaliq Urdu has most of its issues fixed - Update to 20240701 * Sans Kaithi, Sans Psalter Pahlavi, Serif Toto, Sans Nag Mundari, Sans Old Italic, Sans Old Sogdian, Sans Old Turkic, Serif Old Uyghur, Sans Masaram Gondi, Sans Hebrew, Sans Math, Sans Limbu, Sans Mandaic, and Sans Marchen have all received updates ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Fix btrfs subvolume for platform modules not mounting at runtime when the default subvolume is the topmost root tree (bsc#1228124) * grub2-btrfs-06-subvol-mount.patch - Rediff * 0001-Unify-the-check-to-enable-btrfs-relative-path.patch - Switch to '--no-hostonly' when creating the ZIPL initrd in the KIWI build environment to avoid some potential issues due to the missing modules * grub2-s390x-set-hostonly.patch - Fix error in grub-install when root is on tmpfs (bsc#1226100) * 0001-grub-install-bailout-root-device-probing.patch - Fix incorrect Platform tag in rpm header (bsc#1217967) - Fix error if dash shell script is used (bsc#1226453) * 0007-grub-switch-to-blscfg-adapt-to-openSUSE.patch * 0009-10_linux-Some-refinement-for-BLS.patch - Fix input handling in ppc64le grub2 has high latency (bsc#1223535) * 0001-net-drivers-ieee1275-ofnet-Remove-200-ms-timeout-in-.patch ==== gsettings-desktop-schemas ==== Version update (46.0 -> 46.1) - Update to version 46.1: + Updated translations. ==== gstreamer ==== Version update (1.24.0 -> 1.24.6) Subpackages: libgstreamer-1_0-0 typelib-1_0-Gst-1_0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Refresh patches with quilt. - Drop 0001-Canonicalize-the-library-path-returned-by-dladdr.patch and 0001-ptp-Dont-install-test-executable.patch: Fixed upstream. ==== gstreamer-plugins-bad ==== Version update (1.24.0 -> 1.24.6) Subpackages: libgstadaptivedemux-1_0-0 libgstanalytics-1_0-0 libgstbadaudio-1_0-0 libgstbasecamerabinsrc-1_0-0 libgstcodecparsers-1_0-0 libgstcodecs-1_0-0 libgstcuda-1_0-0 libgstinsertbin-1_0-0 libgstisoff-1_0-0 libgstmpegts-1_0-0 libgstmse-1_0-0 libgstphotography-1_0-0 libgstplay-1_0-0 libgstplayer-1_0-0 libgstsctp-1_0-0 libgsttranscoder-1_0-0 libgsturidownloader-1_0-0 libgstva-1_0-0 libgstvulkan-1_0-0 libgstwayland-1_0-0 libgstwebrtc-1_0-0 libgstwebrtcnice-1_0-0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Drop 0001-Move-PROP_RATE_CONTROL-to-the-end-of-the-array.patch: Fixed upstream. ==== gstreamer-plugins-base ==== Version update (1.24.0 -> 1.24.6) Subpackages: libgstallocators-1_0-0 libgstapp-1_0-0 libgstaudio-1_0-0 libgstfft-1_0-0 libgstgl-1_0-0 libgstpbutils-1_0-0 libgstriff-1_0-0 libgstrtp-1_0-0 libgstrtsp-1_0-0 libgstsdp-1_0-0 libgsttag-1_0-0 libgstvideo-1_0-0 - Update to version 1.24.6: + Highlighted bugfixes: - Fix compatibility with FFmpeg 7.0. - qmlglsink: Fix failure to display content on recent Android devices. - adaptivedemux: Fix handling of closed caption streams. - cuda: Fix runtime compiler loading with old CUDA tookit. - decodebin3 stream selection handling fixes. - d3d11compositor, d3d12compositor: Fix transparent background mode with YUV output. - d3d12converter: Make gamma remap work as intended. - h264decoder: Update output frame duration for interlaced video when second field frame is discarded. - macOS audio device provider now listens to audio devices being added/removed at runtime. - Rust plugins: audioloudnorm, s3hlssink, gtk4paintablesink, livesync and webrtcsink fixes. - videoaggregator: preserve features in non-alpha caps for subclasses with non-system memory sink caps. - vtenc: Fix redistribute latency spam. - v4l2: fixes for complex video formats. - va: Fix strides when importing DMABUFs, dmabuf handle leaks, and blocklist unmaintained Intel i965 driver for encoding. - waylandsink: Fix surface cropping for rotated streams. - webrtcdsp: Enable multi_channel processing to fix handling of stereo streams. - Various bug fixes, memory leak fixes, and other stability and reliability improvements. - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. - Refresh patches with quilt. - Drop gst-plugins-base-audiobasesink-gap.patch and gstreamer-plugins-base-CVE-2024-4453.patch: Fixed upstream. ==== gstreamer-plugins-good ==== Version update (1.24.0 -> 1.24.5) - Update to version 1.24.5: + Highlighted bugfixes: - webrtcsink: Support for AV1 via nvav1enc, av1enc or rav1enc encoders - AV1 RTP payloader/depayloader fixes to work correctly with Chrome and Pion WebRTC - av1parse, av1dec error handling/robustness improvements - av1enc: Handle force-keyunit events properly for WebRTC - decodebin3: selection and collection handling improvements - hlsdemux2: Various fixes for discontinuities, variant switching, playlist updates - qml6glsink: fix RGB format support - rtspsrc: more control URL handling fixes - v4l2src: Interpret V4L2 report of sync loss as video signal loss - d3d12 encoder, memory and videosink fixes - vtdec: more robust error handling, fix regression - ndi: support for NDI SDK v6 - Various bug fixes, memory leak fixes, and other stability and reliability improvements - Please see https://gstreamer.freedesktop.org/releases/1.24/ for changes between 1.24.0 and this version and even more in-depth info. ==== gtk2 ==== Subpackages: gtk2-tools libgtk-2_0-0 - Add automake-1.17.patch to support Automake 1.17 in autogen.sh - Add CVE-2024-6655.patch: CVE-2024-6655 Stop looking for modules in cwd (bsc#1228120). ==== gtk3 ==== Version update (3.24.42 -> 3.24.43) Subpackages: gtk3-data gtk3-schema gtk3-tools libgtk-3-0 typelib-1_0-Gtk-3_0 - Update to version 3.24.43: + Stop looking for modules in cwd (bsc#1228120 CVE-2024-6655). + Updated translations. ==== gtk4 ==== Version update (4.14.4 -> 4.15.4) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Add 0002-Revert-no-pointer-viewport.patch -- Fixes https://gitlab.gnome.org/GNOME/gtk/-/issues/6620 - Add missed optflags to CFLAGS. - Add -Wno-int-conversion to CFLAGS to enable compilation with GCC 14. - Update to version 4.15.4: + GtkPopover: Fix size allocation with wrapping labels + GtkColumnView: Check column visibility when measuring + CSS: - Fix fallout from recent changes - Make implementation of currentcolor inheritance match browsers + Gdk: - Introduce GdkColorState for encoding color space information. Currently, we support srgb, srgb-linear, rec2100-pq and rec2100-linear - Add color states to GdkTexture, as well as to the texture builder and downloader objects, and convert as necessary - Add GdkMemoryTextureBuilder - Attach color states when loading or saving textures - Add GdkCicpParams to create color state objects for cicp tuples - Drop GDK_DEBUG=vulkan-validate. Use VK_INSTEANCE_LAYERS=VK_LAYER_KHRONOS_validation instead + Gsk: - Improve caching of glyphs and textures - Remove the uber shader - Numerous bug fixes - Fix corner cases in offload handling - Implement occlusion culling for opaque content - Allow offloading (some) transformed textures - Take colorstate into account when compositing - Add GDK_DEBUG=linear to opt into linear compositing - Implement tiling for large textures - Stop using descriptors and go back to simpler texture management that should work better with older GL - Use correct shader clip mode for glyphs - Improve shadow rendering + Media: Attach color states to textures obtained from gstreamer + Wayland: - Allow offloading GL textures via dmabuf export - Suppot the xx-color-management-v4 protocol + Deprecations: GskGLShader and the render node + Tools: - Improve the rendernode tool extract command - Add an image tool that is about manipulating textures + Build: GTK now requires a C11 compiler + Updated translations. - Update to version 4.15.3: + Accessibility: - Only emit notifications when cursor positions change in GtkText. - Fix handling of help text properties. + CSS: Fix some crashes introduced in recent currentcolor changes. + DND: Avoid a critical. + Documentation: Fix many oversights and missing docs. - Changes from version 4.15.2: + GtkFileChooserWidget: - Plug some memory leaks. - Make Ctrl-Shift-N create a new folder. + GtkPopover: Handle resizing and position changes better. + CSS: - Support color(), oklab(). - Support color-mix() (https://www.w3.org/TR/css-color-5/) - Support relative colors (https://www.w3.org/TR/css-color-5/) - Support more colorspaces in color(). - Allow percentages for opacity. - Handle currentcolor more correctly. + Accessibility: Avoid markup when reading labels. + GSK: - Subset fonts when serializing node trees. - Make ngl export render_texture results as dmabufs. + Wayland: Use xdg-dialog protocol for attached dialogs. + Documentation: Widget shortcuts and actions are now described in the docs. + Debugging: Add GTK_DEBUG=css for warning about deprecated css syntax. + Tools: rendernode-tool: Add an extract command for data urls. + Deprecations: - CSS Color functions shade(), lighter(), darker(), alpha(), mix(). + Updated translations. - Update to version 4.15.1: + GtkGraphicsOffload: Don't crash without a child. + GtkSpinner: Don't animate when unmapped. + CSS: - Support the :root selector. - Support variables and custom properties. - Implement math functions. - Support modern syntax and calc in rgb() and hsl(). + Icontheme: - Make symbolic svg loading more efficient. - Handle color-free symbolics more efficiently. + Accessibility: - Make the gtk-demo sidebar search more accessible. - Stop emitting focus events. - Realize child contexts when necessary. + GDK: - Support XDG_ACTIVATION_TOKEN. ... changelog too long, skipping 20 lines ... + Updated translations. ==== gvfs ==== Version update (1.54.1 -> 1.54.2) Subpackages: gvfs-backend-afc gvfs-backend-goa gvfs-backend-samba gvfs-backends gvfs-fuse - Update to version 1.54.2: + ftp: - Change cwd to root before renaming to prevent failures - Use timegm instead of mktime to not shift dates by timezone - Preserve mtime when copying to local + udisks2: Ignore autofs mounts to prevent duplicated entries + build: - Add deprecated_apis option to control installation of headers - Disable burn backend by default + dav: Disable query_info_on_read method to fix mtime preservation + network: Disable usage of smbbrowse backend by default + smbbrowse: Don't enforce NT1 to fix mounting in certain cases + onedrive: Fix various memory leaks + Updated translations. - Pass burn=true to meson, we still want to build the burn backend, at least for now. ==== harfbuzz ==== Version update (8.5.0 -> 9.0.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - update to version 9.0.0: + Speed up âAATâ shaping for short words by up to 4% + Ignore unknown âCFFâ operators + âhb_subset_input_keep_everything()â now keeps also non-unicode ânameâ table records. + Update the IANA and OpenType language tag registries + Support composite glyphs with very large number of points in hb-draw API + Various build fixes ==== health-checker ==== Version update (1.10+git20240111.cb84209 -> 1.11+git20240730.5dafd6a) Subpackages: health-checker-plugins-MicroOS - Update to version 1.11+git20240730.5dafd6a: * Add rpm db consistency plugin ==== hplip ==== Subpackages: hplip-hpijs hplip-udev-rules - Add hplip-pserror-c99.patch hplip-scan-hpaio-include.patch hplip-scan-orblite-c99.patch hplip-sclpml-strcasestr.patch hplip-hpaio-gcc14.patch to avoid C99 violations which prevent building with GCC 14. [boo#1225777] ==== hwdata ==== Version update (0.383 -> 0.384) - update to 0.384: * Update pci and vendor ids ==== ibus ==== Version update (1.5.29 -> 1.5.30) Subpackages: libibus-1_0-5 typelib-1_0-IBus-1_0 - Upstream update to 1.5.30 * Fix Super key is not handled in GTK 4 applications * ui/gtk3: Fix SEGV with Super-space in Wayland * tools: Fix ibus start/restart in Plasma Wayland 5696033 * ui/gtk3: Fix ibus-daemon timeout in Plasma Wayland * ui/gtk3: Set Indicator status at launching time * Implement preedit color in Plasma Wayland * Implement ibus start/restart for Plasma Wayland * Show preferences menu item in activate menu * Fix control keys with game application * Fix typing freeze with barcode reader * Fix preedit issue with X applications * setup/enginedialog: Improve the search for engines - Refresh ibus-ui-gtk3-restart-via-systemd.patch - Drop patches merged by the upstream * ibus-complete-preedit-signals-for-postprocesskeyevent.patch * ibus-enginesimple-dont-commit-any-characters.patch ==== ima-evm-utils ==== Version update (1.5 -> 1.6) - Update project source URL. - Add LicenseRef-GPL-2.0-with-openssl-exception to License: (upstream has not yet created appropriate exception in SPDX). - Update to version 1.6 https://lore.kernel.org/linux-integrity/20240703164454.61614-1-zohar@linux.… - Upstream bumped soname to 5.0.0 - Upstream changed license to GPL-2.0-or-later (evmctl), LGPL-2.0-or-later (libimaevm + devel package), and GPL-2.0-or-later WITH Linux-syscall-note exception (both) https://github.com/linux-integrity/ima-evm-utils/issues/4 (mention both GPL and LGPL and add specific license to subpackages) - Remove patch from upstream (0001-fsverity.test-Add-usr-sbin-into-PATH.patch) ==== installation-images-MicroOS ==== Version update (17.130 -> 17.136) - merge gh#openSUSE/installation-images#734 - adjust rescue build to mitigate libpxbackend-1_0-mini trouble - 17.136 - merge gh#openSUSE/installation-images#731 - Revert "drop unused wget (bsc#1215290)" (bsc#1228736) - 17.135 - merge gh#openSUSE/installation-images#728 - fix perl issue in test case - 17.134 - merge gh#openSUSE/installation-images#726 - make some compression settings configurable (bsc#1223982, jsc#PED-8374) - limit compression in OBS to 4 threads - ppc64: optimize for minimal compressed initrd size - 17.133 - merge gh#openSUSE/installation-images#724 - Add explicit dependency on 'attr'. - 17.132 - merge gh#openSUSE/installation-images#723 - etc: update module.config to match 6.10 - 17.131 ==== irqbalance ==== - removed ProtectKernelTunables=yes from irqbalance.service to fix "Cannot change IRQ %d affinity: Read-only file system" errors. See https://github.com/Irqbalance/irqbalance/issues/308 ==== kaccounts-integration ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkaccounts6-2 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix i18n domain ==== kaccounts-integration-kf5 ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix i18n domain ==== kaccounts-providers ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kactivitymanagerd6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - No code changes since 6.1.3 - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - No code changes since 6.1.2 - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - No code changes since 6.1.1 ==== kate ==== Version update (24.05.1 -> 24.05.2) Subpackages: kate-plugins - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kde-cli-tools6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kde-gtk-config6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: kde-gtk-config6-gtk3 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdecoration6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libkdecorations2-6 libkdecorations2private11 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdegraphics-mobipocket ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdegraphics-thumbnailers ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdenetwork-filesharing ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdeplasma6-addons ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Enable the kameleon kded, service got whitelisted (boo#1226306) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kdialog ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kdump ==== Version update (2.0.7 -> 2.0.9) - upgrade to version 2.0.9 * start kdump-early earlier using DefaultDependencies=no * fadump: avoid re-registration if kernel is hotplug ready * mkdumprd: use pbl to get default kernel version (boo#1226676) ==== kernel-firmware ==== Version update (20240618 -> 20240728) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20240728 (git commit bcd040c21dc9): * amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351 * Revert "iwlwifi: update ty/So/Ma firmwares for core89-58 release" (CVE-2023-47210, bsc#1225601, CVE-2023-38417, bsc#1225600) * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: update firmware for MT7921 WiFi device * linux-firmware: update firmware for mediatek bluetooth chip (MT7922) * linux-firmware: update firmware for mediatek bluetooth chip (MT7921) * iwlwifi: add gl FW for core89-58 release * iwlwifi: update ty/So/Ma firmwares for core89-58 release * iwlwifi: update cc/Qu/QuZ firmwares for core89-58 release * mediatek: Update mt8195 SOF firmware and sof-tplg * ASoC: tas2781: fix the license issue for tas781 firmware * rtl_bt: Update RTL8852B BT USB FW to 0x048F_4008 * .gitignore: Ignore intermediate files * i915: Update Xe2LPD DMC to v2.21 * qcom: move signed x1e80100 signed firmware to the SoC subdir * qcom: add video firmware file for vpu-3.0 * intel: avs: Add topology file for I2S Analog Devices 4567 * intel: avs: Add topology file for I2S Nuvoton 8825 * intel: avs: Add topology file for I2S Maxim 98927 * intel: avs: Add topology file for I2S Maxim 98373 * intel: avs: Add topology file for I2S Maxim 98357a * intel: avs: Add topology file for I2S Dialog 7219 * intel: avs: Add topology file for I2S Realtek 5663 * intel: avs: Add topology file for I2S Realtek 5640 * intel: avs: Add topology file for I2S Realtek 5514 * intel: avs: Add topology file for I2S Realtek 298 * intel: avs: Add topology file for I2S Realtek 286 * intel: avs: Add topology file for I2S Realtek 274 * intel: avs: Add topology file for Digital Microphone Array * intel: avs: Add topology file for HDMI codecs * intel: avs: Add topology file for HDAudio codecs * Add a copy of Apache-2.0 * intel: avs: Update AudioDSP base firmware for APL-based platforms - Update aliases from 6.10.y and 6.11-rc1 - Add the Provides/Obsoletes for avs-topology-firmware, as now the firmware files are provided in this package - Update to version 20240712 (git commit ed874ed83cac): * amdgpu: update DMCUB to v0.0.225.0 for Various AMDGPU Asics * qcom: add gpu firmwares for x1e80100 chipset (bsc#1219458) * linux-firmware: add firmware for qat_402xx devices * amdgpu: update raven firmware * amdgpu: update SMU 13.0.10 firmware * amdgpu: update SDMA 6.0.3 firmware * amdgpu: update PSP 13.0.10 firmware * amdgpu: update GC 11.0.3 firmware * amdgpu: update vega20 firmware * amdgpu: update PSP 13.0.5 firmware * amdgpu: update PSP 13.0.8 firmware * amdgpu: update vega12 firmware * amdgpu: update vega10 firmware * amdgpu: update VCN 4.0.0 firmware * amdgpu: update SDMA 6.0.0 firmware * amdgpu: update PSP 13.0.0 firmware * amdgpu: update GC 11.0.0 firmware * amdgpu: update picasso firmware * amdgpu: update beige goby firmware * amdgpu: update vangogh firmware * amdgpu: update dimgrey cavefish firmware * amdgpu: update navy flounder firmware * amdgpu: update PSP 13.0.11 firmware * amdgpu: update GC 11.0.4 firmware * amdgpu: update green sardine firmware * amdgpu: update VCN 4.0.2 firmware * amdgpu: update SDMA 6.0.1 firmware * amdgpu: update PSP 13.0.4 firmware * amdgpu: update GC 11.0.1 firmware * amdgpu: update sienna cichlid firmware * amdgpu: update VPE 6.1.1 firmware * amdgpu: update VCN 4.0.6 firmware * amdgpu: update SDMA 6.1.1 firmware * amdgpu: update PSP 14.0.1 firmware * amdgpu: update GC 11.5.1 firmware * amdgpu: update VCN 4.0.5 firmware * amdgpu: update SDMA 6.1.0 firmware * amdgpu: update PSP 14.0.0 firmware * amdgpu: update GC 11.5.0 firmware * amdgpu: update navi14 firmware * amdgpu: update renoir firmware * amdgpu: update navi12 firmware * amdgpu: update PSP 13.0.6 firmware * amdgpu: update GC 9.4.3 firmware * amdgpu: update yellow carp firmware * amdgpu: update VCN 4.0.4 firmware * amdgpu: update SMU 13.0.7 firmware * amdgpu: update SDMA 6.0.2 firmware * amdgpu: update PSP 13.0.7 firmware * amdgpu: update GC 11.0.2 firmware * amdgpu: update navi10 firmware * amdgpu: update raven2 firmware * amdgpu: update aldebaran firmware * linux-firmware: Update AMD cpu microcode * linux-firmware: Add ISH firmware file for Intel Lunar Lake platform * amdgpu: update DMCUB to v0.0.224.0 for Various AMDGPU Asics * cirrus: cs35l41: Update various firmware for ASUS laptops using CS35L41 * amdgpu: Update ISP FW for isp v4.1.1 - Update to version 20240622 (git commit 7d931f8afa51): * linux-firmware: mediatek: Update MT8173 VPU firmware to v1.2.0 * qcom: Add AIC100 firmware files ==== kernel-source ==== Version update (6.9.7 -> 6.10.3) - net: drop bad gso csum_start and offset in virtio_net_hdr (git-fixes). - commit ba01e0e - Linux 6.10.3 (bsc#1012628). - spi: spi-microchip-core: Fix the number of chip selects supported (bsc#1012628). - spi: atmel-quadspi: Add missing check for clk_prepare (bsc#1012628). - EDAC, i10nm: make skx_common.o a separate module (bsc#1012628). - rcu/tasks: Fix stale task snaphot for Tasks Trace (bsc#1012628). - md: fix deadlock between mddev_suspend and flush bio (bsc#1012628). - md/raid0: don't free conf on raid0_run failure (bsc#1012628). - md/raid1: don't free conf on raid0_run failure (bsc#1012628). - platform/chrome: cros_ec_debugfs: fix wrong EC message version (bsc#1012628). - ubd: refactor the interrupt handler (bsc#1012628). - ubd: untagle discard vs write zeroes not support handling (bsc#1012628). - block: initialize integrity buffer to zero before writing it to media (bsc#1012628). - dm: Call dm_revalidate_zones() after setting the queue limits (bsc#1012628). - io_uring: Fix probe of disabled operations (bsc#1012628). - cgroup/cpuset: Optimize isolated partition only generate_sched_domains() calls (bsc#1012628). - cgroup/cpuset: Fix remote root partition creation problem (bsc#1012628). - x86/kconfig: Add as-instr64 macro to properly evaluate AS_WRUSS (bsc#1012628). - hfsplus: fix to avoid false alarm of circular locking (bsc#1012628). - x86/of: Return consistent error type from x86_of_pci_irq_enable() (bsc#1012628). - x86/pci/intel_mid_pci: Fix PCIBIOS_* return code handling (bsc#1012628). - x86/pci/xen: Fix PCIBIOS_* return code handling (bsc#1012628). - x86/platform/iosf_mbi: Convert PCIBIOS_* return codes to errnos (bsc#1012628). - x86/syscall: Mark exit[_group] syscall handlers __noreturn (bsc#1012628). - cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1012628). - hwmon: (adt7475) Fix default duty on fan is disabled (bsc#1012628). - block: Call .limit_depth() after .hctx has been set (bsc#1012628). - block/mq-deadline: Fix the tag reservation code (bsc#1012628). - xen-blkfront: fix sector_size propagation to the block layer (bsc#1012628). - perf: arm_pmuv3: Avoid assigning fixed cycle counter with threshold (bsc#1012628). - md: Don't wait for MD_RECOVERY_NEEDED for HOT_REMOVE_DISK ioctl (bsc#1012628). - md/raid5: recheck if reshape has finished with device_lock held (bsc#1012628). - hwmon: (ltc2991) re-order conditions to fix off by one bug (bsc#1012628). - pwm: stm32: Always do lazy disabling (bsc#1012628). - drm/bridge: adv7511: Fix Intermittent EDID failures (bsc#1012628). - arm64: smp: Fix missing IPI statistics (bsc#1012628). - nvmet-auth: fix nvmet_auth hash error handling (bsc#1012628). - drm/meson: fix canvas release in bind function (bsc#1012628). - pwm: atmel-tcb: Fix race condition and convert to guards (bsc#1012628). - drm/xe/display/xe_hdcp_gsc: Free arbiter on driver removal (bsc#1012628). - hwmon: (max6697) Fix underflow when writing limit attributes (bsc#1012628). - hwmon: (max6697) Fix swapped temp{1,8} critical alarms (bsc#1012628). - soc: qcom: socinfo: Update X1E PMICs (bsc#1012628). - arm64: dts: qcom: sc8180x: Correct PCIe slave ports (bsc#1012628). - arm64: dts: qcom: sc7280: Remove CTS/RTS configuration (bsc#1012628). - ARM: dts: qcom: msm8226-microsoft-common: Enable smbb explicitly (bsc#1012628). - arm64: dts: qcom: sc7180: drop extra UFS PHY compat (bsc#1012628). - arm64: dts: qcom: sc8180x: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sdm845: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm6115: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm6350: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8250: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8350: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: sm8450: add power-domain to UFS PHY (bsc#1012628). - arm64: dts: qcom: msm8996-xiaomi-common: drop excton from the USB PHY (bsc#1012628). - arm64: dts: qcom: sdm850-lenovo-yoga-c630: fix IPA firmware path (bsc#1012628). - arm64: dts: qcom: msm8998: enable adreno_smmu by default ... changelog too long, skipping 2174 lines ... - commit 3c2a141 ==== kf6-attica ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Attica6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-baloo ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-baloo-file kf6-baloo-imports kf6-baloo-kioslaves libKF6Baloo6 libKF6BalooEngine6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Revert "[Extractor] Change to QCoreApplication" (kde#487628) * Port QML modules to declarative type registration * CI: update clang-format image ==== kf6-bluez-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-bluez-qt-imports libKF6BluezQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add core/primary services for LE Audio: CSIS, MCS, BASS, PACS, CAS * Add comments to improve readability and maintainability * Bump TODO KF6 to TODO KF7 * Manager: Add list property for connectedDevices * Manager: Sort out property shorthand in tests ==== kf6-breeze-icons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6BreezeIcons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Use newly introduced ColorScheme-Accent (kde#446468) * Improve excalamation point placement in data-warning/dialog-warning icon (kde#487626) * Add generic translate icon, symlink crow-translate-tray * Add non-symbolic base version of network-wireless-bluetooth icons * mark as non gui executables to have output on Windows ==== kf6-frameworkintegration ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-frameworkintegration-plugin libKF6Style6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-karchive ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Archive6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Don't accept tar files with sizes < 0 * Fix crash with malformed files ==== kf6-kauth ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6AuthCore6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * move dbus dep to backend & tests * gitignore: add VS Code dir ==== kf6-kbookmarks ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Bookmarks6 libKF6BookmarksWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kcmutils ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kcmutils-imports libKF6KCMUtils6 libKF6KCMUtilsCore6 libKF6KCMUtilsQuick6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * plugins: Use help-about icons instead of dialog-information * SettingHighlighterPrivate: Optimize connections * plugins: Use symbolic versions of the icons * Declare missing QML module dependency * Properly declare KQuickConfigModule as having attached properties * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir * Ensure KCM load function is called only once (kde#487388) ==== kf6-kcodecs ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Codecs6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove unused static tables ==== kf6-kcolorscheme ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ColorScheme6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kcompletion ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Completion6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kconfig ==== Version update (6.3.0 -> 6.4.0) Subpackages: kconf_update6 kf6-kconfig-imports libKF6ConfigCore6 libKF6ConfigGui6 libKF6ConfigQml6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix two cmakelint types of issue * Fix KCONFIG_USE_QML=OFF by moving ECMQmlModule behind the conditional * kconfig_compiler: Don't generate .moc include * kconfig_compiler: Allow generating QML type registration macros * kconfig_compiler: Use automoc for GENERATE_MOC * Avoid unused variable definition * Allow desktop files to be a symbolic link * Fix compile * KStandardActions: Use C++11 for loop * fix compile dependencies for windows * Register KCoreConfigSkeleton to QML * provide a generic named USE_DBUS option to allow to choose if to use it * don't warn if no dbus enabled ==== kf6-kconfigwidgets ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ConfigWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use ==== kf6-kcoreaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kcoreaddons-imports libKF6CoreAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Rename deprecated argument CLASSNAME to CLASS_NAME in ecm_add_qml_module() for KCoreAddonsPlugin * kurlmimedata: warn about problems while retrieving files from portal * decode os-release as UTF-8 * use REQUIRED_QT_VERSION for dbus, too * provide USE_DBUS option to allow to turn on/off dbus parts ==== kf6-kcrash ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Crash6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing QtOpenGL dependency ==== kf6-kdbusaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kdbusaddons-tools libKF6DBusAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kdeclarative ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kdeclarative-imports libKF6CalendarEvents6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing copyright to KeySequenceItem ==== kf6-kded ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdesu ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Su6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdnssd ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kdoctools ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6DocTools6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * remove silly goose from template * gitignore: add VS Code dir ==== kf6-kfilemetadata ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6FileMetaData3 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kglobalaccel ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6GlobalAccel6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix cmakelint issues * gitignore: add VS Code dir ==== kf6-kguiaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6GuiAddons6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * KColorSchemeWatcherMac: update name in copyright * clipboard: Add roundtrip when setting clipboard (kde#466414) * support USE_DBUS option to enable/disable dbus use ==== kf6-kholidays ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kholidays-imports libKF6Holidays6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add holidays for Germany, Bremen and Germany, Hamburg * Add public holidays for Uzbekistan * holiday_pe_es - add Peru holidays per "Decreto Legislativo 713" (kde#488513) * Update russian holidays substitution for 2021, 2022, 2023, 2024 * Update holiday_ph_en - fix syntax error "of august" should be "in august" * Change optional name to Philippines * Introduce a holidays file for Philippines (kde#487468) ==== kf6-ki18n ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6I18n6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Make country name detection substring matching more strict ==== kf6-kiconthemes ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kiconthemes-imports libKF6IconThemes6 libKF6IconWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Flip logic when to use Accent/HighlightedText * support USE_DBUS option to enable/disable dbus use ==== kf6-kidletime ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kidletime-plugins libKF6IdleTime6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Port towards QNativeInterface::QWaylandApplication * gitignore: add VS Code dir ==== kf6-kio ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6KIO6 - Add patch to fix issues with dropping files (kde#490183, boo#1228053): * 0001-Remove-parent-for-DropMenu.patch - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * core: use QString to format number * Remove unnecessary space character in empty text file template (kde#487768) * Port DropJob to KJobWidgets::windowHandle() * Use resolved executable in KProcessRunner::fromExecutable * Handle using parent environment correctly in SystemdProcessRunner * Prepare environment for systemd in SystemdProcessRunner * Enable CommandLauncherJob tests (modulo _KDE_APPLICATIONS_AS_SERVICE on CI) * kmountpoint: use advised call params when possible for libmount * Remove unused includes * Drop unused modifiers support from user agent code * [kprotocolmanager] Remmove unused http_config * Remove unused includes * Don't pass proxy config to workers * Drop protocol proxying * Deprecate KProtocolInfo::proxiedBy * [ftp] Drop ProxiedBy=http * kfileitem.cpp: If fileMode is not unknown, set InitCalled to true in readUDSEntry (kde#485771) * support USE_DBUS option to enable/disable dbus use * [webdav] emit ERR_UNSUPPORTED_ACTION when performing fileSystemFreeSpace on a file * Add desktop file for kiod (kde#459054) * gitignore: add VS Code dir * kfileitemtest: testBasicDirectory relax size assertion * commandlauncherjob: emit error when no executable ==== kf6-kirigami ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kirigami-imports libKirigamiPlatform6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add Kirigmai.Action unit tests * Fix static build * Allow initializing a Kirigami.Action from a QAction * NavigationTabButton: improve text legibility (kde#489573) * Dialog: Add horizontal padding to prevent content from leaking onto borders * ActionTextField: de-duplicate action icon code * dialogs/Dialog.qml: removed colorSet * ActionTextField: fix QML errors * Update build.gradle in application template to Qt 6 * Remove unused KItemModels import * Fix: The issue of abnormal touch events * Relax property types to QtQuick.Templates counterparts * Units: decouple grid unit from font metrics * Fix typo * support USE_DBUS option to enable/disable dbus use * PlaceholderMessage: Announce the text and description to a11y (kde#482753) * fix: install KirigamiPrivate soversion ==== kf6-kitemmodels ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kitemmodels-imports libKF6ItemModels6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * kdescendantsproxymodel: fix nested signals on source model reset * kdescendantsproxymodeltest: use model tester in the tests where it passes * Port kdescendantsproxymodeltest to std::unique_ptr ==== kf6-kitemviews ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ItemViews6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Relicense files from LGPL-2.0-only to LGPL-2.0-or-later * gitignore: add VS Code dir * KWidgetItemDelegateEventListener: remove useless destroy event sending ==== kf6-kjobwidgets ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6JobWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-knewstuff ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-knewstuff-imports libKF6NewStuffCore6 libKF6NewStuffWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove Icons view * Remove user-facing view switcher * Use Tiles view by default * Add punctuation to warning * BigPreviewDelegate: Fix "Update" action * Action: Remove dead code * gitignore: add VS Code dir ==== kf6-knotifications ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-knotifications-imports libKF6Notifications6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * fix missing HAVE_DBUS usages * support USE_DBUS option to enable/disable dbus use * Adapt Android default notifications and documentations to KF6 search path ==== kf6-knotifyconfig ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6NotifyConfig6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * Port to KStandardActions ==== kf6-kpackage ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Package6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * remove stray lib * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-kparts ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Parts6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * PartLoader: Allow reading of InitialPreference from KParts object * PartLoader: Add mechanism to provide capabilities standardized in JSON metadata ==== kf6-kpty ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Pty6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Apply 2 suggestion(s) to 1 file(s) * Fix "Connecting from COMPAT signal" warning ==== kf6-kquickcharts ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * controls: Don't use visible for hiding text in LegendDelegate * controls/legenddelegate: Always hide name if its width is 0 ==== kf6-krunner ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Runner6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix build with `QT_NO_CAST_FROM_ASCII` ==== kf6-kservice ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Service6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir * Fix description in metainfo * Fix tier information ==== kf6-kstatusnotifieritem ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6StatusNotifierItem6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-ksvg ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-ksvg-imports libKF6Svg6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix masks of completely black mask frames * Restore proper devicepixelratio when extracting from cache (kde#488295) * Fix description in metainfo * Remove explicit maintainer from metainfo - Drop patch, merged upstream: * 0001-Restore-proper-devicepixelratio-when-extracting-from.patch ==== kf6-ktexteditor ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6TextEditor6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * add a tool to test javascript scripts * fix JS API result of view.executeCommand() * kateregexpsearch: fix FAST_DEBUG * API documentation: fix typo on kte_design page * add action to popy the current file name and line (kde#488027) * prefer even indent sizes (kde#474505) * try different way to read file for digest * remove gradient, looks ugly * add missing :, are there for all other entries * don't remember encoding if known to be broken (kde#445015) * ensure we don't keep old session config keys (kde#486648) ==== kf6-ktextwidgets ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kunitconversion ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6UnitConversion6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-kuserfeedback ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kuserfeedback-imports libKF6UserFeedbackCore6 libKF6UserFeedbackWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kwallet ==== Version update (6.3.0 -> 6.4.0) Subpackages: kwalletd6 libKF6Wallet6 libKF6WalletBackend6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * gitignore: add VS Code dir ==== kf6-kwidgetsaddons ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6WidgetsAddons6 - Add upstream fix: * 0001-Partially-revert-cccaa8.patch - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix the since version of KJobWidgets::windowHandle,setWindowHandle * kjobwidgets: Force setWindow() creating a window handle * kjobwidgets: Add functions to associate QWindow with a KJob * KTitleWidget: restore size policies to Preferred & vertical centering (kde#488319) * KTitleWidget: do not autoFillBackground by default, drop StyledPanel frame (kde#) * Make compile fine without qt6.7 deprecated methods ==== kf6-kwindowsystem ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-kwindowsystem-imports libKF6WindowSystem6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix compiler error when memfd is absent * gitignore: add VS Code dir ==== kf6-kxmlgui ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6XmlGui6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Remove old dead code from KDE4 * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-modemmanager-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6ModemManagerQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-networkmanager-qt ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-networkmanager-qt-imports libKF6NetworkManagerQt6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add missing find_dependency call on Qt6Network. (kde#489094) * Fixed occasional lag issue with ActiveConnection. * Recognize OWE in AP capabilities and connection security * Add VRF and loopback device types * Recognize the "loopback" connection type * Fix check for device and AP cipher compatibility ==== kf6-prison ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-prison-imports libKF6Prison6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Adjust scanner-qt6.qml for newer QtMultimedia ==== kf6-purpose ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-purpose-services libKF6Purpose6 libKF6PurposeWidgets6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * JobView: Fix switch-case: add default branch * plugins/barcode: Fix up QML * widgets: Rework type registration and property initialization, improve QML * Don't let the Heading overflow * AlternativesModel: Use logging category * AlternativesModel: Drop unused header * tests: Rework testing share tool * tests: Set initial properties instead of introspecting objects later * tests: Correctly check for additional positional arguments * tests: Remove duplicating calls to add help and version CLI options * tests: Add missing translation domain * Drop QML import versions * Fix some QML and C++ code style * Use ellipses instead of triple period * AlternativesModel: Use correct role for a tooltip * kdeconnect: Don't let the Heading overflow * Namespace embedded resources * support USE_DBUS option to enable/disable dbus use * gitignore: add VS Code dir ==== kf6-qqc2-desktop-style ==== Version update (6.3.0 -> 6.4.0) - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * combobox: Set focus on text field within combobox * Delegates: Use inset to control spacing around hover/selection highlight * Limit focus workaround to affected versions * itembranchindicators: Store QPersistentModelIndex instead of QModelIndex * itemindicators: Don't access thread-unsafe data from the render thread (kde#487850) * Implement baselineOffset for more controls * KQuickStyleItem: Mark baselineOffset method as const * Implement SplitView with splitter handles * support USE_DBUS option to enable/disable dbus use ==== kf6-solid ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Solid6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Fix "Connecting from COMPAT signal" warning * support USE_DBUS option to enable/disable dbus use * Narrow down types of backend objects to Ifaces::DeviceManager * Doc: Port 0 to nullptr * Drop a reference to non-existent interface class * Add missing forward declaration * gitignore: add VS Code dir ==== kf6-sonnet ==== Version update (6.3.0 -> 6.4.0) Subpackages: kf6-sonnet-imports libKF6SonnetCore6 libKF6SonnetUi6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - No code change since 6.3.0 ==== kf6-syndication ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6Syndication6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * dublincore.h "organisation" -> "organization" (prefer en_US) * gitignore: add VS Code dir ==== kf6-syntax-highlighting ==== Version update (6.3.0 -> 6.4.0) Subpackages: libKF6SyntaxHighlighting6 - Update to 6.4.0 * New feature release * For more details please see: * https://kde.org/announcements/frameworks/6/6.4.0 - Changes since 6.3.0: * Add CustomType highlighting and improve import highlighting * Corrected Gleam syntax * Add Gleam syntax * OrgMode: add header-item folding, properties folding, more todo keywords * avoid that we try to open files without name * [dracula.theme] Fix "ISO/Delphi Extended" for Pascal. * nginx: update for new directives and variables * systemd unit: update to systemd v256 * Add basic syntax highlighting rules for opsi-script * [dracula.theme] Fix "Special Variable" for PHP. * Add Typst highlighter ==== kgamma6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Fix wrong types/obsolete keys for kcm_kgamma.json file - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kglobalacceld6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKGlobalAccelD6-0 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * explicitly process invalid keycodes (kde#489001) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kinfocenter6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kio-extras ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkioarchive6-6 trash_kcm - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kio-gdrive ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fix regression in fileId lookup (kde#487021) ==== kirigami-addons6 ==== Version update (1.3.0 -> 1.4.0) - Update to 1.4.0 https://carlschwan.eu/2024/07/23/kirigami-addons-1.4/ * New module to manage actions similar to that we can find in the QtWidgets world * The FormCard design was tweaked a bit more when using a dark theme * New component to the FormCard collection: FormTextAreaDelegate ==== kmenuedit6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== konsole ==== Version update (24.05.1 -> 24.05.2) Subpackages: konsole-part - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== kpipewire6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: kpipewire6-imports libKPipeWire6 libKPipeWireDmaBuf6 libKPipeWireRecord6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * sourcestream: make resilient against pipewire restarts * Add encoder using libopenh264 (kde#476187) - Drop patches, now upstream: * 0001-Simpler-yet-more-useful-handling-of-KPIPEWIRE_FORCE_.patch * 0002-Add-encoder-using-libopenh264.patch - Add patches to support libopenh264 for encoding (boo#1227461, kde#476187): * 0001-Simpler-yet-more-useful-handling-of-KPIPEWIRE_FORCE_.patch * 0002-Add-encoder-using-libopenh264.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * produce: Properly cleanup on deactivate in all cases (kde#488687) * produce: Destroy PipeWireSourceStream on the right thread (kde#489434) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kpmcore ==== Version update (24.05.1 -> 24.05.2) Subpackages: libkpmcore12 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== krb5 ==== Version update (1.21.2 -> 1.21.3) - Update to 1.21.3 * Fix vulnerabilities in GSS message token handling: * CVE-2024-37370, bsc#1227186 * CVE-2024-37371, bsc#1227187 * Fix a potential bad pointer free in krb5_cccol_have_contents() * Fix a memory leak in the macOS ccache type - Update patch 0009-Fix-three-memory-leaks.patch ==== kscreen6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Emit OrientationSensor::availableChanged() when needed (kde#488764) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * kcm: use ContextualHelpButton from Kirigami * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kscreenlocker6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKScreenLocker6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * greeter/pamauthenticators: also consider non-interactive info messages a "prompt" (kde#490547) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * greeter/authenticators: add a property for if a prompt was shown in the past * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ksshaskpass6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ksystemstats6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kwayland-integration6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kwayland6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKWaylandClient6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== kwin6 ==== Version update (6.1.1.2 -> 6.1.4) Subpackages: libkwin6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * activation: fix X11 windows being stuck in should_get_focus more properly * plugins/buttonrebinds: correctly handle level 1 keys (kde#484367) * backends/drm: don't block direct scanout if color profile source isn't set to ICC * Fix checking whether GraphicsBufferView is null * backends/drm: don't apply the brightness factor without HDR * activation: don't add the active window to should_get_focus list (kde#484155) * core/renderloop: don't move the target presentation timestamp back when rescheduling (kde#488843) * core/renderloop: fix triple buffering hysteresis * scene/itemrenderer_opengl: reset OpenGL state for YUV conversion back to RGB * autotests: test placement to always put the titlebar on the screen * placement: keep the titlebar in the screen with centered placement (kde#489500) * placement: don't overwrite scheduled position change in cascadeIfCovering * Make Workspace::desktopResized() reassign outputs of uninitialized windows * wayland: Avoid klipper loop with existing but empty clipboards (kde#469644) * backends/drm: Fix a crash in DrmGpu::releaseBuffers() * wayland: Ignore plasma shell reposition requests during interactive move resize (kde#481829) * backends/drm: limit max_bpc to 8 by default with docks * compositor_wayland: count rendering time for all steps of compositing * xdgshellwindow: never request clients to resize to a negative size (kde#489983) * backends/libinput: Ignore redundant events for pointer buttons and keyboard keys when pressed/released on multiple devices (kde#486034) * backends/x11: Fix crash that happens when toggling compositing * plugins/stickykeys: Unlatch modifiers when locking * Fix sticky keys for AltGr * Test locking sticky keys for all modifiers * Release key in sticky key test * utils: Fix gaining realtime scheduling with musl (kde#487996) * core/renderloop: add some hysteresis to triple buffering - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * plugins/nightlight: Relax custom times constraints (kde#489366) * wayland: Simplify XdgPopupWindow::sendRoleConfigure() * wayland: Dismiss XdgPopupWindow when the parent window is closed (kde#472013) * tiling: Don't put maximized windows in tile (kde#489463) * Input method window should not break showing desktop (kde#489057) * plugins/fadingpopups: don't block direct scanout (kde#487780) * backends/drm: test and apply all mode changes at once * autotests/drm: add test for vrr capability changing without a hotunplug * backends/drm: update output properties after they're created too (kde#486149) * use separation dep_version to build against, updated by release scripts * plugins/screencast: Don't download texture data if target size and texture size mismatch * plugins/screencast: Allocate offscreen texture in WindowScreenCastSource::render(QImage) as big as the memfd buffer (kde#489764) * autotests: Skip testScreencasting in CI * Foward modifiers after disabling sticky keys * plugins/screenshot: Port blitScreenshot() to glReadnPixels() * wayland: add error handling for QFile::open failure in org_kde_plasma_window_get_icon * placement: ignore the active output with place under mouse (kde#488110) * opengl: Add OpenGlContext::glGetnTexImage() * plugins/screencast: Prefer glReadnPixels() and glGetnTexImage() * WindowHeapDelegate: label topMargin to small, remove height padding (kde#489595) * plugins/glide: drop references to closed windows if they're not animated * update version for new release * plugins/screencast: Handle frame rate throttling timer firing a bit earlier * backends/drm: disable triple buffering on NVidia (kde#487833) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1.2: * Don't assert on null output * quicktiling: Reset layout when last quicktile ceases to exist (kde#465937) * wayland: Bump default max buffer size to 1 MiB * plugins/qpa: set deprecated functions option correctly * plugins/kdecoration: Fix MenuButton not accepting button press events (kde#488993) * plugins/colorcorrection: simplify the effect, merge the shader files and support color management * opengl: Reset OpenGlContext::currentContext() if it's destroyed (kde#488830) * window: adhere to window rules in checkWorkspacePosition (kde#489117) * plugins/hidecursor: show the cursor on tablet events (kde#489009) ==== kwrited6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== layer-shell-qt6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libLayerShellQtInterface6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== ldb ==== Version update (2.9.0 -> 2.9.1) - Update to 2.9.1 * Many qsort() comparison functions are non-transitive, which can lead to out-of-bounds access in some circumstances; (bso#15569). ==== less ==== Version update (656 -> 661) - Update to 661: * fix crash - buffer overflow by one in fexpand * fix free(): double free detected in tcache 2 * fix segmentation fault on line-num-width & -N ==== libX11 ==== Version update (1.8.9 -> 1.8.10) Subpackages: libX11-6 libX11-data libX11-xcb1 - Update to 1.8.10; this release includes: * Re-fix XIM input sometimes jumbled (#205, #206, #207, #208, !246) * Fix various static analysis errors (!250) * Add compose sequences for Arabic hamza (!218), Ezh (!221), and hryvnia currency (!259) * Make colormap private interfaces thread safe (#215, !254) * Fix deadlock in XRebindKeysym() (!256) * Assorted memory handling cleanups (!251, !258) * Restore VAX support still in use by NetBSD (!257) ==== libXfont2 ==== Version update (2.0.6 -> 2.0.7) - Update to version 2.0.7 * This release cleans out remnants of support for archiac platforms, improves handling of font server reconnection, fixes several issues found by static analysis, and updates some build checks. ==== libXtst ==== Version update (1.2.4 -> 1.2.5) - Update to version 1.2.5 * This release fixes issues found by Coverity & gcc -fanalyzer ==== libadwaita ==== Version update (1.5.1 -> 1.5.2) Subpackages: libadwaita-1-0 typelib-1_0-Adw-1 - Update to version 1.5.2: + AdwAlertDialog: - Fix unmatched va_start() - Fix setting default widget when removing a response + AdwBreakpointCondition: Fix leaks when parsing + AdwBreakpointBin: Fix a leak + AdwDialog: - Fix toggling presentation mode - Fix close button ignoring :can-close - Fix ::close-attempt not emitting in some cases - Fix swipe area for bottom sheets - Leak fixes + AdwHeaderBar: - Fix initial focus for the back button - Fix split view links in docs + AdwMessageDialog: Fix unmatched va_start() + AdwSpinRow: Fix ::input handling + AdwTabButton: Fix needs-attention badge on RTL + AdwTabView: Accessibility fixes + AdwViewStack: Accessibility fixes + Updated translations. ==== libapparmor ==== Version update (4.0.1 -> 4.0.2) - update to AppArmor 4.0.2 - bugfix release with lots of fixes in all areas - add new userns profiles for balena-etcher, chromium and wike - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_4.0.2 for the detailed upstream changelog - drop upstream(ed) patches: - aa-remove-unknown-fix-unconfined.diff - logprof-mount-empty-source.diff - plasmashell.diff - sampa-rpcd-witness.diff - sddm-xauth.diff - teardown-unconfined.diff - test-aa-notify.diff - tools-fix-redefinition.diff - utils-relax-mount-rules-2.diff - utils-relax-mount-rules.diff - refresh GPG key (was expired) ==== libbacktrace ==== Version update (1.0+git20240302 -> 1.0+git20240718) - Update to version 1.0+git20240718: * libbacktrace: use __has_attribute for fallthrough * libbacktrace: add cast to avoid warning * libbacktrace: better backtrace_print when no debug info * libbacktrace: add notes about dl_iterate_phdr to README * libbacktrace: support FDPIC * libbacktrace: avoid infinite recursion * libbacktrace: improve XCOFF support * Libbacktrace: Fix the use of newline in sed replacement * libbacktrace: fix b2test_buildid test on non-english locales * libbacktrace: fix UBSAN issues * Config,Darwin: Allow for configuring Darwin to use embedded runpath. * libbacktrace: correct duplicate configury * libbacktrace: update libtool.m4 to current GCC HEAD * Handle jobserver file descriptors in btest. * libbacktrace: update copyright years * libbacktrace: don't fail if symbol size is unknown * libbacktrace: correctly gather Mach-O symbol table * libbacktrace: fix testsuite for clang * libbacktrace: suggest how to fix missing debug info * libbacktrace: remove trailing whitespace * libbacktrace: it's OK if zstd decompressor sees no backward bits * libbacktrace: add DLLS as they are loaded * libbacktrace: load Windows modules * libbacktrace: test --compress-debug-sections=ARG for each ARG * libbacktrace: don't assume compressed section is aligned ==== libblockdev ==== Version update (3.1.0 -> 3.1.1) Subpackages: libbd_crypto3 libbd_fs3 libbd_loop3 libbd_lvm3 libbd_mdraid3 libbd_nvme3 libbd_part3 libbd_swap3 libbd_utils3 libblockdev3 - update to 3.1.1: * Use glib2 G_GNUC_UNUSED in place of UNUSED locally defined * Port to G_GNUC_INTERNAL for controlling symbols visibility * Fix some more occurrences of missing port to G_GNUC_UNUSED * dm_logging: Annotate redirect_dm_log() printf format * tests: Add NVMe persistent discovery controller tests * tests: Add NVMe controller type checks * Makefile: Fix bumpver to work with micro versions * tests: Manually remove removed PVs from LVM devices file * tests: Ignore LVM devices file for non-LVM tests * tests: Fix removing custom LVM devices file * nvme: Add bd_nvme_is_tech_avail to the API file * lvm-dbus: Fix passing size for pvresize over DBus ==== libbpf ==== Version update (1.4.3 -> 1.4.5) - update to 1.4.5: * Another small bug fix release backporting https://github.com/ libbpf/libbpf/commit/d9f9fd5b22223ae69c62e083da6093d95a0db799 which works around kernel-side bug with USDT PID filtering on kernels that support multi-uprobe (but have broken PID filtering). ==== libcdio ==== - Add c99.patch fixing implicit declaration of a function error so that the 32bit version of this package can be built with GCC 14. ==== libdb-4_8 ==== - Security fix: [bsc#1174414, CVE-2019-2708] * libdb: Data store execution leads to partial DoS * Backport the upsteam commits: - Fixed several possible crashes when running db_verify on a corrupted database. [#27864] - Fixed several possible hangs when running db_verify on a corrupted database. [#27864] - Added a warning message when attempting to verify a queue database which has many extent files. Verification will take a long time if there are many extent files. [#27864] * Add libdb-4_8-CVE-2019-2708.patch ==== libdecor ==== Version update (0.2.0 -> 0.2.2) Subpackages: libdecor-0-0 - Update to version 0.2.2: * gtk: fix memory leak when destroying the gtk plugin * gtk: fix memory leak when freeing seats * gtk: Make resize corner region larger * cairo: Make resize corner region larger * cursor-settings: Get theme/size from env if D-Bus call fails * gtk: Use g_clear_pointer() in a couple of places * gtk: Don't early out of frame free function Includes changes from 0.2.1: * gtk: Don't report errors during construction * Handle NULL wl_output as argument * gtk: Optionally use wl_output_release * cairo: Optionally use wl_output_release * libdecor: fix leak of DBusError in get_setting_sync * gtk: use error notification with string formatting * gtk: disable setlocale() * build: Use `gnu_symbol_visibility` everywhere ==== libdnf ==== Version update (0.73.1 -> 0.73.2) Subpackages: libdnf-repo-config-zypp libdnf2 - version update to 0.73.2 * context: use rpmtsAddReinstallElement() when doing a reinstall by @kontura in #1650 * MergedTransaction: Fix invalid memory access when dropping items by @jan-kolarik in #1658 * ConfigParser: fix use-out-of-scope leaks by @evan-goode in #1661 * Since we use rpmtsAddReinstallElement rpm also uninstalls the package by @kontura in #1660 * Fix countme bucket calculation by @dmnks in #1662 ==== libgcrypt ==== Version update (1.10.3 -> 1.11.0) - Update to 1.11.0: * New and extended interfaces: - Add an API for Key Encapsulation Mechanism (KEM). [T6755] - Add Streamlined NTRU Prime sntrup761 algorithm. [rCcf9923e1a5] - Add Kyber algorithm according to FIPS 203 ipd 2023-08-24. [rC18e5c0d268] - Add Classic McEliece algorithm. [rC003367b912] - Add One-Step KDF with hash and MAC. [T5964] - Add KDF algorithm HKDF of RFC-5869. [T5964] - Add KDF algorithm X963KDF for use in CMS. [rC3abac420b3] - Add GMAC-SM4 and Poly1305-SM4. [rCd1ccc409d4] - Add ARIA block cipher algorithm. [rC316c6d7715] - Add explicit FIPS indicators for MD and MAC algorithms. [T6376] - Add support for SHAKE as MGF in RSA. [T6557] - Add gcry_md_read support for SHAKE algorithms. [T6539] - Add gcry_md_hash_buffers_ext function. [T7035] - Add cSHAKE hash algorithm. [rC065b3f4e02] - Support internal generation of IV for AEAD cipher mode. [T4873] * Performance: - Add SM3 ARMv8/AArch64/CE assembly implementation. [rCfe891ff4a3] - Add SM4 ARMv8/AArch64 assembly implementation. [rCd8825601f1] - Add SM4 GFNI/AVX2 and GFI/AVX512 implementation. [rC5095d60af4,rCeaed633c16] - Add SM4 ARMv9 SVE CE assembly implementation. [rC2dc2654006] - Add PowerPC vector implementation of SM4. [rC0b2da804ee] - Optimize ChaCha20 and Poly1305 for PPC P10 LE. [T6006] - Add CTR32LE bulk acceleration for AES on PPC. [rC84f2e2d0b5] - Add generic bulk acceleration for CTR32LE mode (GCM-SIV) for SM4 and Camellia. [rCcf956793af] - Add GFNI/AVX2 implementation of Camellia. [rC4e6896eb9f] - Add AVX2 and AVX512 accelerated implementations for GHASH (GCM) and POLYVAL (GCM-SIV). [rCd857e85cb4, rCe6f3600193] - Add AVX512 implementation for SHA512. [rC089223aa3b] - Add AVX512 implementation for Serpent. [rCce95b6ec35] - Add AVX512 implementation for Poly1305 and ChaCha20. [rCcd3ed49770, rC9a63cfd617] - Add AVX512 accelerated implementation for SHA3 and Blake2. [rCbeaad75f46,rC909daa700e] - Add VAES/AVX2 accelerated i386 implementation for AES. [rC4a42a042bc] - Add bulk processing for XTS mode of Camellia and SM4. [rC32b18cdb87, rCaad3381e93] - Accelerate XTS and ECB modes for Twofish and Serpent. [rCd078a928f5,rC8a1fe5f78f] - Add AArch64 crypto/SHA512 extension implementation for SHA512. [rCe51d3b8330] - Add AArch64 crypto-extension implementation for Camellia. [rC898c857206] - Accelerate OCB authentication on AMD with AVX2. [rC6b47e85d65] * Bug fixes: - For PowerPC check for missing optimization level for vector register usage. [T5785] - Fix EdDSA secret key check. [T6511] - Fix decoding of PKCS#1-v1.5 and OAEP padding. [rC34c2042792] - Allow use of PKCS#1-v1.5 with SHA3 algorithms. [T6976] - Fix AESWRAP padding length check. [T7130] * Other: - Allow empty password for Argon2 KDF. [rCa20700c55f] - Various constant time operation imporvements. - Add "bp256", "bp384", "bp512" aliases for Brainpool curves. - Support for the random server has been removed. [T5811] - The control code GCRYCTL_ENABLE_M_GUARD is deprecated and not supported any more. Please use valgrind or other tools. [T5822] - Logging is now done via the libgpg-error logging functions. [rCab0bdc72c7] * Remove patches fixed upstream: - libgcrypt-no-deprecated-grep-alias.patch - libgcrypt-Chacha20-poly1305-Optimized-chacha20-poly1305.patch - libgcrypt-ppc-enable-P10-assembly-with-ENABLE_FORCE_SOF.patch * Rebase patches: - libgcrypt-FIPS-jitter-errorcodes.patch - libgcrypt-FIPS-jitter-whole-entropy.patch - FIPS: Make sure that Libgcrypt makes use of the built-in Jitter RNG for the whole length entropy buffer in FIPS mode. [bsc#1220893] * Add libgcrypt-FIPS-jitter-whole-entropy.patch - FIPS: Set the FSM into error state if Jitter RNG is returning an error code to the caller when an health test error occurs when random bytes are requested through the jent_read_entropy_safe() function. [bsc#1220895] * Add libgcrypt-FIPS-jitter-errorcodes.patch - FIPS: Replace the built-in jitter rng with standalone version * Remove the internal jitterentropy copy [bsc#1220896] * Add libgcrypt-FIPS-jitter-standalone.patch * Remove not needed libgcrypt-jitterentropy-3.4.0.patch - Update upstream libgcrypt.keyring ==== libgexiv2 ==== Version update (0.14.2 -> 0.14.3) - Update to version 0.14.3: + Prevent std::exception escaping from exiv2 + Declare gexiv2_metadata_open_stream and _save_stream as deprecated + Documentation updates + Bugs fixed: https://gitlab.gnome.org/GNOME/gexiv2/issues/81 ==== libgnomesu ==== Version update (2.0.7 -> 2.0.8) Subpackages: libgnomesu0 - Update to version 2.0.8: * Builds with GCC 14 (boo#1225852, obsoletes libgnomesu-configure-C99.diff). * Updated translations. - Added libgnomesu-configure-C99.diff to make malloc and realloc configure script snippets compliant with C99 so that the same features are also configured even with GCC 14. [boo#1225852] ==== libgusb ==== Version update (0.4.8 -> 0.4.9) - update to 0.4.9: * Allow reading HID descriptors larger than 255 bytes * Close the libusb handle if returning open failure * Fix a buffer over-read when emulating devices * Only request the BOS descriptor when bcdUSB is new enough ==== libjxl ==== Version update (0.10.2 -> 0.10.3) - Update to release 0.10.3 * fix bug in huffman-rle-gradient (e1) specialized decode path ==== libkdcraw-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKDcrawQt6-5 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkexiv2-qt6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKExiv2Qt6-0 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libkgapi6 ==== Version update (24.05.1 -> 24.05.2) Subpackages: libKPim6GAPICore6 libKPim6GAPIDrive6 libkgapi6-sasl2-kdexoauth2 - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== libksba ==== Version update (1.6.6 -> 1.6.7) - Update to 1.6.7: * Allow for an empty Subject in certs. [T7171] * Release-info: https://dev.gnupg.org/T7173 * Rebase libksba-nobetasuffix.patch ==== libkscreen6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libKF6Screen8 libKF6ScreenDpms8 libkscreen6-plugin - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * Destroy the registry when WaylandConfig gets deleted (kde#482768) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== libksysguard6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: ksysguardsystemstats6-data libKSysGuardSystemStats2 libksysguard6-imports - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== libndp ==== - Add libndp-CVE-2024-5564.patch: add a check on the route information option length field (bsc#1225771 CVE-2024-5564). ==== libnl3 ==== Version update (3.9.0 -> 3.10.0) Subpackages: libnl-config libnl3-200 - Update to release 3.10 * route: support for setting ageing time for dynamic bridge table entries * route: support for VLAN filtering on bridge ports * route: support for layer 3 filtering on bridges ==== libnvme ==== Version update (1.9+0.g80c5cf2 -> 1.10+0.gdd51fa8) Subpackages: libnvme-mi1 libnvme1 - Update to version 1.10: * linux: update TLS version 1 PSK derivation (bsc#1228376) * tree: fix nvme_read_config() to not set errno if return 0 * types: add new fields added in TP4165 * types: Changed the space into tap space * tree: handle no address phy slot dirs * linux: Remove the use of OpenSSL Engine API * types: Added new controller attribute as per TP4104 * tree: add helper to lookup hostnqn/hostid (bsc#1226216) * fabrics: extend hostnqn/hostid variable inject interface (bsc#1226216) * json: filter out pcie transport (bsc#1226216) * tree: preserve parsing order of a config file (bsc#1226216) * types: add new field added in TP4099 * types: add new field added in TP4090 * linux: add nvme_revoke_tls_key (bsc#1226197) * tree: fix segfault in nvme_free_tree() * types: add PEL vendor specific and TCG defined events definitions * mi-mctp: initialize the rc variable in handle_mctp_endpoint() * linux: avoid potential null pointer dereference * linux: add nvme_get_ana_log_len_from_id_ctrl() * libnvme: export nvme_mi_admin_get_ana_log_atomic() * ioctl: add support for atomic, piecewise ANA log fetch * ioctl: replace nvme_ana_rsp_hdr in doc comments * ioctl: respect rae in nvme_get_log_ana() * ioctl: fix nvme_get_log_ana_groups() pointer type * types: add new filed added in TP4141a * mi: Probe quirks on first command submission * tree: optionally skip namespaces during scanning * ioctl: update nvme_set_var_size_tags() to properly use reftag * types: add enum for Protection Information Format * libnvme: Introduce functions to generate host identifier and host NQN (bsc#1226216) * fabrics: Unescape URI elements * tests: Add uriparser tests * fabrics: Introduce simple URI parser * linux: default init cleanup variable * linux: Fix uninitialized variables * types: add the nvme Cancel command opcode * log: split log variables from root object * log: keep log level logic in one place * mi: restore default ep timeout during admin_passthru * mi: fix the rc for nvme_mi_scan_ep * ccan/endian.h: Only define __{BIG,LITTLE}_ENDIAN if undefined. * Use C99 types for uint32_t * mi: fix the return error code. ==== libopenmpt ==== Version update (0.7.8 -> 0.7.9) - Update to 0.7.9: * [Sec] Potential division by 0 when seeking in the module with seek.sync_samples enabled (r21167). * [Change] The work-around for https://gcc.gnu.org/bugzilla/show_bug.cgi?id=115049 has been changed from forcing -O1 on GCC 14 to setting - fno-ipa-ra on all GCC versions on non-ELF platforms. * MOD: Allow sample swapping to work when swapping from a non-looping, stopped sample back to a looping sample (fixes MOD.energy). * DBM: Import second sustain point in case the first sustain point is not set, or if it has a lower index than the first. * DBM: When several instruments referenced the same sample with different properties (volume, loop points, etc.), only one set of properties was imported (fixes DBM.Supernova). * DBM: Prioritize effects more correctly when the same effect is encountered in both effect columns of a cell (fixes DBM.143_Gnoj). * DBM: Donât import offset effects when thereâs a tone portmento next to them. * DBM: A few IT-specific playback quirks are disabled for more accurate playback (e.g. in âAre You Flying With Me?â by Jazzcat). * DIGI: Sample play direction was reset if adjacent channel contained a Note Cut note. * AMF: When running out of sample slots, file reading became be misaligned because the sample name was not skipped. * MED: Command 0F was not imported. * MED: Upper frequency limits should be more accurate now. * MED: Channel panning is now only applied in MMD2 files if the free pan flag is set. * MED: Volume command resolution was incorrect for pre-MMD3 files. * XM: oggmod does not support stereo samples but keeps the stereo flag when encoding such samples. Such samples are now imported as mono samples instead of not importing them at all. * XM: For files saved with registered MadTracker 2 versions, do not put binary garbage (the user ID) in the tracker metadata field. It is replaced with âregisteredâ instead. * For some truncated files, the used tracker was not identified correctly. * S3M: Identify files saved with early Impulse Tracker versions, Sound Club 2, Liquid Tracker, NESMusa, UNMO3, deMODifier, Kosmic To-S3M, and better tell old ModPlug Tracker versions apart. * S3M: When skipping sample loading, some tracker identifications were not working as intended. * IT: Identify files saved with itwriter. * DTM: Identify files saved with Digital Tracker 2.3. * xmp-openmpt: If there is only one subsong, set the song title to the âglobalâ song title instead of the name of that subsong. * xmp-openmpt: Sample and instrument names were not sanitized, sometimes showing on multiple rows. ==== libostree ==== Version update (2024.6 -> 2024.7) Subpackages: libostree-1-1 - update to 2024.7: + bugfix for "transient-etc" users + a new ostree.prepare-root.composefs kernel option that allows dynamic overrides for the composefs state + new API to directly create a composefs from an ostree commit ==== libphonenumber ==== Version update (8.13.30 -> 8.13.40) - Update to version 8.13.40: * Updated metadata - Use mode="manual" in _service ==== libplasma6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasma6 libplasma6-components libplasma6-desktoptheme - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * containmentitem.cpp: Do not set dropJob parent to m_dropMenu (kde#484674) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * On applet destroyed go out of configure mode (kde#488977) * Workaround to possible infinite reize loops (kde#488974) * quick/dialogbackground: Ensure we delete the SVG item (kde#486743) * update version for new release ==== libqt5-qtbase ==== Version update (5.15.14+kde140 -> 5.15.14+kde143) Subpackages: libQt5Core5 libQt5DBus5 libQt5Gui5 libQt5Network5 libQt5PrintSupport5 libQt5Sql5 libQt5Sql5-sqlite libQt5Test5 libQt5Widgets5 libQt5Xml5 - Update to version 5.15.14+kde143: * HTTP2: Delay any communication until encrypted() can be responded to (bsc#1227426, CVE-2024-39936) * Add missing line continuations for memory_resource opt-out on Apple systems * a11y atspi: Add null checks in table iface methods ==== librsvg ==== Version update (2.58.1 -> 2.58.2) Subpackages: gdk-pixbuf-loader-rsvg librsvg-2-2 rsvg-thumbnailer typelib-1_0-Rsvg-2_0 - Update to version 2.58.2: + Don't leak XML entities when the XML document fails to parse. + Fix stack overflow in <use> reference cycle. ==== libselinux ==== Version update (3.6 -> 3.7) Subpackages: libselinux1 selinux-tools - Fix segfault caused by upstream changes in selabel_open(): libselinux-set-free-d-data-to-NULL.patch Can be removed once it is upstream. - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes * libselinux/utils/selabel_digest: drop unsupported option -d * libselinux/utils: improve compute_av output * libselinux: fail selabel_open(3) on invalid option * Improved man pages * Improvements * libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks * libselinux: enable usage with pedantic UB sanitizers * libselinux: support huge passwd/group entries * Bugfixes: * libselinux/utils/selabel_digest: avoid buffer overflow * libselinux: avoid pointer dereference before check * libselinux/utils/selabel_digest: pass BASEONLY only for file backend * libselinux: free empty scandir(3) result * libselinux: free data on selabel open failure * libselinux: use reentrant strtok_r(3) ==== libselinux-bindings ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes * libselinux/utils/selabel_digest: drop unsupported option -d * libselinux/utils: improve compute_av output * libselinux: fail selabel_open(3) on invalid option * Improved man pages * Improvements * libselinux, libsepol: Add CFLAGS and LDFLAGS to Makefile checks * libselinux: enable usage with pedantic UB sanitizers * libselinux: support huge passwd/group entries * Bugfixes: * libselinux/utils/selabel_digest: avoid buffer overflow * libselinux: avoid pointer dereference before check * libselinux/utils/selabel_digest: pass BASEONLY only for file backend * libselinux: free empty scandir(3) result * libselinux: free data on selabel open failure * libselinux: use reentrant strtok_r(3) ==== libsemanage ==== Version update (3.6 -> 3.7) Subpackages: libsemanage-conf libsemanage2 - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * Bugfixes: * libsemanage: support huge passwd entries ==== libsepol ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * User-visible changes: * libsepol: improve policy lookup failure message * libsepol: include prefix for module policy versions * libsepol: validate type-attribute-map for old policies * libsepol: only exempt gaps checking for kernel policies * Bugfixes: * libsepol/src/Makefile: fix reallocarray detection * libsepol/cil: Fix detected RESOURCE_LEAK (CWE-772) * libsepol: ensure transitivity in compare functions * oss-fuzz fixes: * libsepol: check scope permissions refer to valid class * libsepol: validate attribute-type maps * libsepol: reject self flag in type rules in old policies * libsepol: validate class permissions * libsepol: validate access vector permissions * libsepol: reject MLS support in pre-MLS policies * libsepol: Fix buffer overflow when using sepol_av_to_string() * libsepol: Use a dynamic buffer in sepol_av_to_string() ==== libsolv ==== Version update (0.7.29 -> 0.7.30) - removed dependency on external find program in the repo2solv tool - bindings: fix return value of repodata.add_solv() - new SOLVER_FLAG_FOCUS_NEW flag - bump version to 0.7.30 ==== liburing ==== Version update (2.5 -> 2.6) - Fix buf-ring-nommap.t test failure * test-buf-ring-nommap-zero-the-ringbuf-memory.patch - Update to 2.6: * Add getsockopt and setsockopt socket commands * Add test cases to test/hardlink * Man page fixes * Add futex support, and test cases * Add waitid support, and test cases * Add read multishot, and test cases * Add support for IORING_SETUP_NO_SQARRAY * Use IORING_SETUP_NO_SQARRAY as the default * Add support for IORING_OP_FIXED_FD_INSTALL * Add io_uring_prep_fixed_fd_install() helper * Support for napi busy polling * Improve/add test cases * Man page fixes * Add sample 'proxy' example - Remove (they are upstream) * test-no-mmap-inval-0-return-is-fine-too.patch * test-recv-multishot-wait-for-the-right-amount-of-CQE.patch - exclude buf-ring-nommap.t test (crashes) ==== libva ==== Version update (2.21.0 -> 2.22.0) Subpackages: libva-drm2 libva-wayland2 libva-x11-2 libva2 - Update to version 2.22.0: * va:Add VVC decode LibVA interface. * va: fix --version-script detection for lld >= 17 * wayland: add support for linux-dmabuf * meson:remove autogen.sh from the meson script * trace: Add bit_depth capturing in trace log ==== libvisual ==== - Imported C99 compatibility fixes from Fedora project: https://src.fedoraproject.org/rpms/libvisual/c/bcffd8eddbbcab5b00f930805396… it fixes build error when using GCC14 (boo#1225859) (added libvisual-configure-c99.patch and libvisual-c99.patch). ==== libvpx ==== Version update (1.14.0 -> 1.14.1) - Limit explicit GCC13 usage to suse_version < 1600, i.e to Leap 15.x. Future versions are supposed to have a recent enough GCC version. - Update to version 1.14.1: * Added buffer bounds checks to vpx_writer and vpx_write_bit_buffer. * Fix to GetSegmentationData() crash in aq_mode=0 for RTC rate control. * Fix to alloc for row_base_thresh_freq_fac. * Free row mt memory before freeing cpi->tile_data. * Fix to buffer alloc for vp9_bitstream_worker_data. * Fix to VP8 race issue for multi-thread with pnsr_calc. * Fix to uv width/height in vp9_scale_and_extend_frame_ssse3. * Fix to integer division by zero and overflow in calc_pframe_target_size(). * Fix to integer overflow in vpx_img_alloc() & vpx_img_wrap()(CVE-2024-5197). * Fix to UBSan error in vp9_rc_update_framerate(). * Fix to UBSan errors in vp8_new_framerate(). * Fix to integer overflow in vp8 encodeframe.c. * Handle EINTR from sem_wait(). ==== libxml2 ==== Version update (2.12.8 -> 2.12.9) Subpackages: libxml2-2 libxml2-tools - Update to version 2.12.9: + Security: (CVE-2024-40896) Fix XXE protection in downstream code. + Improvements: Undeprecate xmlKeepBlanksDefault. ==== libzypp ==== Version update (17.34.1 -> 17.35.9) - single_rpmtrans: fix installation of .src.rpms (bsc#1228647) - version 17.35.9 (35) - Make sure not to statically linked installed tools (bsc#1228787) - version 17.35.8 (35) - MediaPluginType must be resolved to a valid MediaHandler (bsc#1228208) - version 17.35.7 (35) - Export CredentialManager for legacy YAST versions (bsc#1228420) - version 17.35.6 (35) - Export asSolvable for YAST (bsc#1228420) - Fix 4 typos in zypp.conf. - version 17.35.5 (35) - Fix typo in the geoip update pipeline (bsc#1228206) - Export RepoVariablesStringReplacer for yast2 (bsc#1228138) - version 17.35.4 (35) - Translation: updated .pot file. - Conflict with python zypp-plugin < 0.6.4 (bsc#1227793) Older zypp-plugins reject stomp headers including a '-'. Like the 'content-length' header we may send. - Fix int overflow in Provider (fixes #559) This patch fixes an issue in safe_strtonum which caused timestamps to overflow in the Provider message parser. - Fix error reporting on repoindex.xml parse error (bsc#1227625) - version 17.35.3 (35) - Keep UrlResolverPlugin API public (fixes #560) - Blacklist /snap executables for 'zypper ps' (bsc#1226014) - Fix handling of buddies when applying locks (bsc#1225267) Buddy pairs (like -release package and product) internally share the same status object. When applying locks from query results the locked bit must be set if either item is locked. - version 17.35.2 (35) - Install zypp/APIConfig.h legacy include (fixes #557) - version 17.35.1 (35) - Update soname due to RepoManager refactoring and cleanup. - version 17.35.0 (35) - Workaround broken libsolv-tools-base requirements (fixes openSUSE/zypper#551) - Strip ssl_clientkey from repo urls (bsc#1226030) - Remove protobuf build dependency. - Lazily attach medium during refresh workflows (bsc#1223094) - Refactor RepoManager and add Service workflows. - version 17.34.2 (34) ==== live555 ==== Version update (2023.11.30 -> 2024.06.26) Subpackages: libBasicUsageEnvironment2 libUsageEnvironment3 libgroupsock30 libliveMedia112 - update to 2024-06-26: * Updated the "OnDemandServerMediaSubsession" implementation to output an error message if the "sink->startPlaying()" call failed (e.g., due to its source not being compatible with the sink). This makes some common errors (e.g, a proper 'framer' not being used) easier to detect. - update to 2024-05-30: * Fixed a mistake that caused the config file "config.raspberrypi" to not appear in the distribution. - update to 2024-05-15: * Added a new config file "config.raspberrypi" that is known to work for building the code on/for a Raspberry Pi 5. - update to 2024-05-05: * Updated "QuickTimeFileSink" to add support for recording H.265 video streams. (This is not fully working yet; it appears to have some bugs.) - update to 2024-04-19: * Updated "MPEG2TransportStreamFramer" to ignore big jumps (2x or more) in the estimate for the duration of each Transport packet. This is likely caused by an unexpected jump in the PCR (not indicated by "discontinuity_indicator"). - update to 2024-03-08: * Changed "ServerTLSState::setup()" (in "TLSState.cpp") to call "SSL_CTX_use_certificate_chain_file()" instead of "SSL_CTX_use_certificate_file()", to allow the server operator to specify a chain of certificates, rather than just one. - update to 2024.02.28: * Updated the code for "dateHeader()" (in "RTSPCommon.cpp") to avoid using "strftime()", because that can produce a localized date string that violates the RTSP specification (which uses section 3.3.1 of RFC 2068 (the HTTP/1.1 specification) to define the "Date:" header). - update to 2024.02.23: * Updated the code for "dateHeader()" (in "RTSPCommon.cpp") to use "NULL" instead of "nullptr"; the latter was causing compilation problems for someone. - update to 2024.02.15: * Updated the RTCP implementation so that reception stats for a SSRC are no longer deleted, even if a SSRC is reaped due to RTCP inactivity (no RTCP "SR" reports received recently). - update to 2024. ==== llvm18 ==== Version update (18.1.6 -> 18.1.8) - Update to version 18.1.8. * Fix a regression from the 18.1.6 release, which could result in compiler crashes in the PPCMergeStringPool pass when compiling for PowerPC targets. * Fixes clang-format regressions (since 18.1.1) on breaking before a stream insertion operator (<<) when both operands are string literals. * Fixes a clang-format regression (since 17.0.6) on formatting goto labels in macro definitions. - Rebase llvm-do-not-install-static-libraries.patch. ==== lua54 ==== Version update (5.4.6 -> 5.4.7) - Update to version 5.4.7: * Fixed 11 bugs from 5.4.6 * Tests now run on shared libraries - Removed skip-tests_big-endian.patch: fixed upstream ==== lvm2 ==== Subpackages: liblvm2cmd2_03 - enable devices file feature by default - see lvmdevices(8) * enable '--with-default-use-devices-file=1' in lvm2.spec * update commented default value of 'use_devicesfile' in lvm2.conf ==== lvm2-device-mapper ==== Subpackages: device-mapper libdevmapper-event1_03 libdevmapper1_03 - enable devices file feature by default - see lvmdevices(8) * enable '--with-default-use-devices-file=1' in lvm2.spec * update commented default value of 'use_devicesfile' in lvm2.conf ==== lz4 ==== Version update (1.9.4 -> 1.10.0) - Update to release 1.10.0 * Support for multithreading * Full support for dictionary compression * New compression level 2 ==== makedumpfile ==== - add (bsc#1228388): * 0001-PATCH-Fix-failure-of-hugetlb-pages-exclusion-on-Linu.patch * 0002-PATCH-Fix-wrong-exclusion-of-Slab-pages-on-Linux-6.1.patch ==== microos-tools ==== Version update (2.21+git12 -> 2.21+git13) - Update to version 2.21+git13: * Don't run in the zipl initrd "initgrub" mode ==== milou6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== mozilla-nss ==== Version update (3.100 -> 3.102.1) Subpackages: libfreebl3 libsoftokn3 mozilla-nss-certs - update to NSS 3.102.1 * bmo#1905691 - ChaChaXor to return after the function - update to NSS 3.102 * bmo#1880351 - Add Valgrind annotations to freebl Chacha20-Poly1305. * bmo#1901932 - missing sqlite header. * bmo#1901080 - GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. * bmo#1615298 - improve certutil keyUsage, extKeyUsage, and nsCertType keyword handling. * bmo#1660676 - correct length of raw SPKI data before printing in pp utility. - Require `sed` for mozilla-nss-sysinit, as setup-nsssysinit.sh depends on it and will create a broken, empty config, if sed is missing (bsc#1227918) - Added nss-fips-safe-memset.patch, fixing bsc#1222811. - Removed some dead code from nss-fips-constructor-self-tests.patch. - Rebased nss-fips-approved-crypto-non-ec.patch on above changes. - Added nss-fips-aes-gcm-restrict.patch, fixing bsc#1222830. - Updated nss-fips-approved-crypto-non-ec.patch, fixing bsc#1222813, bsc#1222814, bsc#1222821, bsc#1222822, bsc#1224118. - Updated nss-fips-approved-crypto-non-ec.patch and nss-fips-constructor-self-tests.patch, fixing bsc#1222807, bsc#1222828, bsc#1222834. - Updated nss-fips-approved-crypto-non-ec.patch, fixing bsc#1222804, bsc#1222826, bsc#1222833, bsc#1224113, bsc#1224115, bsc#1224116. - update to NSS 3.101.1 * bmo#1901932 - missing sqlite header. * bmo#1901080 - GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. - update to NSS 3.101 * bmo#1900413 - add diagnostic assertions for SFTKObject refcount. * bmo#1899759 - freeing the slot in DeleteCertAndKey if authentication failed * bmo#1899883 - fix formatting issues. * bmo#1889671 - Add Firmaprofesional CA Root-A Web to NSS. * bmo#1899593 - remove invalid acvp fuzz test vectors. * bmo#1898830 - pad short P-384 and P-521 signatures gtests. * bmo#1898627 - remove unused FreeBL ECC code. * bmo#1898830 - pad short P-384 and P-521 signatures. * bmo#1898825 - be less strict about ECDSA private key length. * bmo#1854439 - Integrate HACL* P-521. * bmo#1854438 - Integrate HACL* P-384. * bmo#1898074 - memory leak in create_objects_from_handles. * bmo#1898858 - ensure all input is consumed in a few places in mozilla::pkix * bmo#1884444 - SMIME/CMS and PKCS #12 do not integrate with modern NSS policy * bmo#1748105 - clean up escape handling * bmo#1896353 - Use lib::pkix as default validator instead of the old-one * bmo#1827444 - Need to add high level support for PQ signing. * bmo#1548723 - Certificate Compression: changing the allocation/freeing of buffer + Improving the documentation * bmo#1884444 - SMIME/CMS and PKCS #12 do not integrate with modern NSS policy * bmo#1893404 - Allow for non-full length ecdsa signature when using softoken * bmo#1830415 - Modification of .taskcluster.yml due to mozlint indent defects * bmo#1793811 - Implement support for PBMAC1 in PKCS#12 * bmo#1897487 - disable VLA warnings for fuzz builds. * bmo#1895032 - remove redundant AllocItem implementation. * bmo#1893334 - add PK11_ReadDistrustAfterAttribute. * bmo#215997 - Clang-formatting of SEC_GetMgfTypeByOidTag update * bmo#1895012 - Set SEC_ERROR_LIBRARY_FAILURE on self-test failure * bmo#1894572 - sftk_getParameters(): Fix fallback to default variable after error with configfile. * bmo#1830415 - Switch to the mozillareleases/image_builder image - Follow upstream changes in nss-fips-constructor-self-tests.patch (switch from ec_field_GFp to ec_field_plain) - Remove part of nss-fips-zeroization.patch that got removed upstream ==== mpg123 ==== Version update (1.32.6 -> 1.32.7) - Update to version 1.32.7 * Fix some laziness (func() to func(void)) for standards conformance. ==== multipath-tools ==== Version update (0.9.9+90+suse.f1d2f20 -> 0.9.9+161+suse.0c835ef) Subpackages: kpartx libmpath0 - Update to version 0.9.9+161+suse.0c835ef: * Update to upstream reviewed code path (787e00d) * Added hardware defaults for Huawei storage arrays and XSG1 vendors * Refactored and improved the libultipath / libdevmapper interface * Fixed bug that caused queueing to be always disabled if flushing a map failed (bug introduced in 0.9.8). * Fixed failure to remove maps even with `deferred_remove` (bug introduced in 0.9.9). * CI improvements * Documentation fixes ==== mutter ==== Version update (46.2 -> 46.4) - Update to version 46.4: + Fix nested popovers on wayland. + Misc. bug fixes and cleanups. + Updated translations. - Drop mutter-fix-x11-restart.patch: fixed upstream. - Rebase mutter-SLE-relax-some-constraints-on-CSD-windows.patch. - Update to version 46.3.1: + Fix visibility of Xwayland windows + Misc. bug fixes - Update to version 46.3: + Fix performance issues with second virtual monitor + Fix missing unmap animation of some windows + Fix placement/resizing regression + Fix possible out of sync primary selections and clipboard + Fix ibus support in popups + Fix hardware accelerated rendering when headless + Add back support for legacy X11 cursor themes + Fix preedit offsets + Use character offsets to specify surrounding text + Don't force titlebar on screen on all interactive resizes + Fixed crashes + Misc. bug fixes and cleanups + Updated translations. - Rebase patches with quilt. ==== ncurses ==== Version update (6.5.20240608 -> 6.5.20240713) Subpackages: libncurses6 ncurses-utils terminfo-base - Add ncurses patch 20240713 + modify misc/ncurses-config.in, improved match with pkg-config output. - Add ncurses patch 20240706 + update configure script to use macro changes from dialog. + modify CF_NCURSES_PTHREADS to avoid equating package and library names. - Add ncurses patch 20240629 + build-fix for ncurses-examples with newer PDCurses, which no longer has stubs for unimplemented features. + add help-popup for test_instr.c, test_inwstr.c + modify checks in delwin to avoid checking if the window is a pad until first checking if it is still on the active window-list (cf: 20211115). + improve -t option of test/gdc.c, allowing hours only, or hours and minutes only. - Update to tack 1.10 (patch 20240501) * init.c, edit.c: gcc warning (NetBSD) * edit.c: check to avoid printing a non-printable character, per Coverity * tack.c: initialize variables, per Coverity * tack.1: change limit for SGR tool to allow for aixterm's colors * ansi.c: change the SGR tool to show up to 120 (past aixterm's 108) * color.c: when reloading the colors 0-7, use the index for the named color rather than just the array-index (fixing an interchanged red/blue for instance). Also, initialize the palette using the ANSI codes if the terminal supports setaf/setab. * color.c, charset.c, ansi.c, edit.c, crum.c, pad.c, tack.c, tack.h: use "const" in a few places reported by cppcheck * tack.1: improve formatting/style - Add ncurses patch 20240622 + improve test/gdc.c (patch by Branden Robinson). + improve formatting/style of manpages (patches by Branden Robinson). + adjust naming of mingw *-config scripts to match the pkg-config names + widen pattern in pc/*-config scripts to disallow more linker options + add --cflags-only-I and --cflags-only-other options to misc/ncurses-config.in + revert change to CF_BUILD_CC macro (report by Vassili Courzakis, cf: 20240518). - Port patch ncurses-6.4.dif - Port edit.sed script to new ncurses-config - Add ncurses patch 20240615 + improve formatting/style of manpages (patches by Branden Robinson). + review/update modules files. + improve install-rules in Ada95 makefiles (report by Branden Robinson). + improve formatting/style of manpages in test-directory. ==== nvme-cli ==== Version update (2.9.1 -> 2.10) - Update to version 2.10: * sed: Fix parsing of Discovery0 features * fabrics: avoid potential segfault in nvmf_dim() * nvme: avoid segfault in show-topology (bsc#1226197) * fabrics: do not leak nvme_ctrl_t object on connect * nvme: extend help message when mmap regs fails * nvme: return -ENXIO value to open device if errno not set * wdc: OCP 2.5 Log Page Updates * fabrics: drop --quiet alias -S * fabrics: drop --disable-sqflow alias -d * fabrics: check if json config is existing * plugins/ocp: fix UAF when printing telemetry log * nvme-print-stdout: fix persistent-event-log set feature event output * fabrics: do not report error when no modules are loaded when disconnecting * fabrics: use cleanup helper where possible * fabrics: print an error for ENOENT too * plugins/virtium: use time_t for time_stamp values * completions: add ocp set-error-injection command * doc: add ocp set-error-injection command * ocp: add set-error-injection command * nvme: use argconfig_parse_seen to check conditions * nvme: use proper mask to get correct lbafu value * utils: fix print formatting option * utils: cleanup includes in utils.h * utils: add missing header * nvme-print: Added print for two new fields for HMB feature * plugins/micron: Move OCP internal log parsing from Micron to OCP Plugin. * fabrics: remove unused _discover_from_json_config_file() argument * nvme: avoid unnecessary dup() + close() in io_mgmt_send() * util: remove unnecessary NULL check in cleanup_nvme_root() * nvme: use argconfig_parse_comma_sep_array_u16() in attach-ns * util: avoid duplication in argconfig_parse_comma_sep_array*() * util: remove redundant loop condition in argconfig_parse() * util: introduce is_null_or_empty() to avoid strlen() * util: reduce allocation sizes in argconfig_parse() * util: consolidate call paths to argconfig_parse_type() * util: reduce complexity of argconfig_parse_val() * util: reduce arguments passed to argconfig_parse_type() * util: remove empty default case in argconfig functions * util: remove unnecessary parentheses in argconfig_parse_type() * util: remove redundant cast in argconfig_parse_type() * util: inline argconfig_parse_byte() * util: remove redundant NULL check in argconfig_print_help() * util: use cleanup to avoid goto in argconfig_parse() * util: make argconfig_set_opt_val() a void function * util: remove argconfig_parse_val() declaration * util: remove argconfig CFG_SIZE type * wdc: Update and refactor the C0h log page parsing * ccan: Add freed pointer checking to delete strset member * fabrics: connect all hosts in config.json (bsc#1226216) * fabrics: refactore discover from json config (bsc#1226216) * fabrics: first read config before topology scanning (bsc#1226216) * fabrics: use helper to lookup default hostnqn/hostid (bsc#1226216) * fabrics: extend already connected message (bsc#1226216) * fabrics: use cleanup helper to free nvme root object * nvme: check MD size with PI size when PRACT set to 1 * nvme-print: add new field added in TP4090 * nvme-print-binary: add effects-log command output missed * completions: add ocp get-error-injection command * doc: add ocp get-error-injection command * ocp: add get-error-injection command * ocp: fix eol-plp-failure-mode command sel option value * doc: fix ocp eol-plp-failure-mode select short option * ocp: set UUID index for eol-plp-failure-mode command to get * nvme: fix verbose logging * doc: fix micron ocp telemetry log parse title * nvme-rpmb: send RPMB_REQ_READ_RESULT for authentication key programming * plugins/micron: Add support for OCP telemetry log parsing * ocp: Update Plugin Version * nvme: fix lbaf inuse to use 6:5 bits * ocp: use NVME_ARGS macro definition by eol-plp-failure-mode command * nvme: extern NVME_ARGS macro definition * nvme: use _cleanup_free_ type buffer for get-feature command * plugins/ocp: Update telemetry string log page (C9h) * nvme-print-json: add get-feature command fahrenheit temperature output * nvme: add get-feature and id-ctrl commands fahrenheit outputs * nvme: delete smart-log command fahrenheit option * nvme-print: check locale to use temperatures in degrees fahrenheit * completion: add support for tls-key (bsc#1226197) * doc: add tls-key --revoke documentation (bsc#1226197) * doc: fix tls-key --keyfile shorthand (bsc#1226197) * nvme: add support to revoke TLS key (bsc#1226197) * nvme: return error code/message for TLS commands (bsc#1226197) * nvme: factor out import key function (bsc#1226197) * nvme: use cleanup helper to close file descriptor (bsc#1226216) * nvme-rpmb: use cleanup helper for STREAM objects * fabrics: use cleanup helper for STREAM objects * nvme: use cleanup helper for STREAM objects (bsc#1226216) * nvme: strip newline when parsing TLS key files (bsc#1226197) * nvme: use stdout for exporting TLS keys (bsc#1226197) * nvme: change _cleanup_file_ to _cleanup_fd_ (bsc#1226197) * common.h: Avoid using unsupported load/store instructions in arm64 VMs * ocp: OCP 2.5 Telemetry DA 1 and 2 Parsing Updates * nvme-print-stdout: refactor subsys config * wdc: Fix compiler warning. * nvme: add flags type nvme_print_flags_t * nvme-print: Use 'unsigned int' instead of 'unsigned' * nvme: update parse_args() return value handling * nvme-print: Fix nvme_show_smart_log indentation error ... changelog too long, skipping 69 lines ... * add 0001-docs-rename-ocp-unsupported-req-log-file.patch ==== open-vm-tools ==== Version update (12.4.0 -> 12.4.5) Subpackages: libvmtools0 - Update to 12.4.5 (build 23787635) (boo#1227181) - There are no new features in the open-vm-tools 12.4.5 release. This is primarily a maintenance release that addresses a few critical problems, including: - A Github pull request and associated issue has been handled. Please see the Resolved Issues section of the Release Notes. - A number of issues flagged by Coverity and ShellCheck have been addressed. - A vmtoolsd process hang related to nested logging from an RPC Channel error has been fixed. For a more complete list of issues resolved in this release, see the Resolved Issues section of the Release Notes. For complete details, see: https://github.com/vmware/open-vm-tools/releases/tag/stable-12.4.5 Release Notes are available at: https://github.com/vmware/open-vm-tools/blob/stable-12.4.5/ReleaseNotes.md The granular changes that have gone into the 12.4.5 release are in the ChangeLog at: https://github.com/vmware/open-vm-tools/blob/stable-12.4.5/open-vm-tools/Ch… ==== openblas_openmp ==== - Duplicate all options passed to `make` also to `make install`: The openblas build output suggests this: 'Note that any flags passed to make during build should also be passed to make install to circumvent any install errors'. This also makes sure that minimum CPU requirement is set in the pkgconfig file is the same one as used for building. This helps to maintain a reproducible build (boo#1228177). ==== openldap2 ==== Version update (2.6.7 -> 2.6.8) - Update to relese 2.6.8 * slapd: ability to log directly to a file bypassing syslog * back-ndb has been retired * back-sql and back-perl have been deprecated * lloadd enhancments: * Additional load balancing strategies * Additional options to improve coherence with certain controls and extended operations * Ability to log directly to a file bypassing syslog - Delete gcc14.patch, openldap2-fb9e6a81bbee.patch (merged) - Drop rcslapd symlink - Backported one hunk from upstream commit fb9e6a81bbee as openldap2-fb9e6a81bbee.patch to fix incompatible pointer type being passed to a function which is diagnosed as an error by GCC 14. ==== openssh ==== Subpackages: openssh-clients openssh-common openssh-server - Add patch from upstream to fix proxy multiplexing mode: * 0001-upstream-fix-proxy-multiplexing-mode_-broken-when-keystroke.patch - Add patch from upstream to restore correctly sigprocmask * 0001-upstream-correctly-restore-sigprocmask-around-ppoll.patch - Add patch from upstream to fix a logic error in ObscureKeystrokeTiming that rendered this feature ineffective, allowing a passive observer to detect which network packets contained real keystrokes (bsc#1227318, CVE-2024-39894): * 0001-upstream-when-sending-ObscureKeystrokeTiming-chaff-packets_.patch - Add obsoletes for openssh-server-config-rootlogin since that package existed for a brief period of time during SLE 15 SP6/ Leap 15.6 development but even if it was removed from the repositories before GM, some users might have it in their systems from having tried a beta/RC release (boo#1227350). - Add patch to fix a race condition in a signal handler by removing the async-signal-unsafe code (CVE-2024-6387, bsc#1226642): * fix-CVE-2024-6387.patch ==== openssl-3 ==== Subpackages: libopenssl3 - Build with no-afalgeng [bsc#1226463] - Security fix: [bsc#1227138, CVE-2024-5535] * SSL_select_next_proto buffer overread * Add openssl-CVE-2024-5535.patch - Build with enabled sm2 and sm4 support [bsc#1222899] - Add reproducible.patch to fix bsc#1223336 aes-gcm-avx512.pl: fix non-reproducibility issue - Apply "openssl-CVE-2024-4741.patch" to fix a use-after-free security vulnerability. Calling the function SSL_free_buffers() potentially caused memory to be accessed that was previously freed in some situations and a malicious attacker could attempt to engineer a stituation where this occurs to facilitate a denial-of-service attack. [CVE-2024-4741, bsc#1225551] ==== orc ==== Version update (0.4.38 -> 0.4.39) - Update to version 0.4.39: - Security: Fix error message printing buffer overflow leading to possible code execution in orcc with specific input files (CVE-2024-40897). This only affects developers and CI environments using orcc, not users of liborc (boo#1228184) - div255w: fix off-by-one error in the implementations - x86: only run AVX detection if xgetbv is available - x86: fix AVX detection by implementing the check recommended by Intel - Only enable JIT compilation on Apple arm64 if running on macOS, fixes crashes on iOS - Fix potential crash in emulation mode if logging is enabled - Handle undefined TARGET_OS_OSX correctly - orconce: Fix typo in GCC __sync-based implementation - orconce: Fix usage of __STDC_NO_ATOMICS__ - Fix build with MSVC 17.10 + C11 - Support stack unwinding on Windows - Major opcode and instruction set code clean-ups and refactoring - Refactor allocation and chunk initialization of code regions - Fall back to emulation on Linux if JIT support is not available, e.g. because of SELinux sandboxing or noexec mounting) ==== osinfo-db ==== Version update (20240510 -> 20240701) - Update the release dates in the definitions for the following products openSUSE leap 15.6, SLE 15-SP6, SLEM 5.5, SLEM 6.0 - Update to database version 20240701 osinfo-db-20240701.tar.xz - Adjust some default hardware requirements (bsc#1227231) adjust-tumbleweed-hardware-requirements.patch add-opensuse-leap-15.6-support.patch add-sle15sp6-support.patch - bsc#1227116 - osinfo still uses deprecated SL-Micro name Reverse prior decision to drop the use of "Enterprise" in the name of the SUSE Linux Micro product. add-slem6.0-support.patch Drop add-slm6.0-support.patch ==== p11-kit ==== Subpackages: libp11-kit0 p11-kit-tools - Added a backport of an upstream commit in p11-kit-d938f4a8a3a2.patch to avoid passing an incompatible pointer type to a function which is an error by default in GCC 14. ==== pam ==== - Prevent cursor escape from the login prompt [bsc#1194818] * Added: pam-bsc1194818-cursor-escape.patch ==== partitionmanager ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * Fixed crash caused by clicking remove mount point button (kde#432103) ==== passt ==== Version update (20240624.1ee2eca -> 20240726.57a21d2) Subpackages: passt-selinux - Update to version 20240726.57a21d2: * tap: Improve handling of partially received frames on qemu socket * tap: Correctly handle frames of odd length * tap: Don't use EPOLLET on Qemu sockets * tap: Don't attempt to carry on if we get a bad frame length from qemu * tap: Better report errors receiving from QEMU socket * log: Fetch log times with CLOCK_MONOTONIC, not CLOCK_REALTIME * log: Initialise timestamp for relative log time also if we use a log file * log, util: Fix sub-second part in relative log time calculation * test/lib/perf_report: Fix highlight * test: Fix spurious test failure with systemd-resolved * fwd: Broaden what we consider for DNS specific forwarding rules * fwd: Refactor tests in fwd_nat_from_tap() for clarity * conf: Accept addresses enclosed by square brackets in port forwarding specifiers * tap: Exit if we fail to bind a UNIX domain socket with explicit path * test: iperf3 3.16 introduces multiple threads, drop our own implementation of that * test: Update names of symbols and slabinfo entries * test: Fix memory/passt tests, --netns-only is not a valid option for passt * log: Drop newlines in the middle of the perror()-like messages * tcp: Change SO_PEEK_OFF support message to debug() * tap: Don't quit if pasta gets EIO on writev() to tap, interface might be down * tcp: Correctly update SO_PEEK_OFF when tcp_send_frames() drops frames * tcp: probe for SO_PEEK_OFF both in tcpv4 and tcp6 * udp: Rename UDP listening sockets * udp: Remove rdelta port forwarding maps * udp: Remove obsolete socket tracking * udp: Direct datagrams from host to guest via flow table * udp: Find or create flows for datagrams from tap interface * udp: Remove obsolete splice tracking * udp: Handle "spliced" datagrams with per-flow sockets * udp: Create flows for datagrams from originating sockets * fwd: Update flow forwarding logic for UDP * flow, icmp: Use general flow forwarding rules for ICMP * flow, tcp: Flow based NAT and port forwarding for TCP * icmp: Manage outbound socket address via flow table * flow: Helper to create sockets based on flowside * icmp: Eliminate icmp_id_map * icmp: Look up ping flows using flow hash * icmp: Obtain destination addresses from the flowsides * icmp: Remove redundant id field from flow table entry * tcp: Re-use flow hash for initial sequence number generation * flow, tcp: Generalise TCP hash table to general flow hash table * tcp, flow: Replace TCP specific hash function with general flow hash * tcp_splice: Eliminate SPLICE_V6 flag * tcp: Simplify endpoint validation using flowside information * tcp: Manage outbound address via flow table * tcp: Obtain guest address from flowside * tcp, flow: Remove redundant information, repack connection structures * flow: Common address information for target side * flow: Common address information for initiating side * doc: Extend zero-recv test with methods using msghdr * doc: Test behaviour of closing duplicate UDP sockets * tcp_splice: Use parameterised macros for per-side event/flag bits * flow: Introduce flow_foreach_sidei() macro * flow, tcp_splice: Prefer 'sidei' for variables referring to side index * flow, icmp, tcp: Clean up helpers for getting flow from index * udp: Handle errors on UDP sockets * util: Add AF_UNSPEC support to sockaddr_ntop() * udp, tcp: Tweak handling of no_udp and no_tcp flags * udp: Make udp_sock_recv static * conf: Don't configure port forwarding for a disabled protocol * tcp: handle shrunk window advertisements from guest * tcp: leverage support of SO_PEEK_OFF socket option when available * doc: Trivial fix for reuseaddr-priority * doc: Test behaviour of zero length datagram recv()s * doc: Add program to document and test assumptions about SO_REUSEADDR * udp: Consolidate datagram batching * udp: Move some more of sock_handler tasks into sub-functions * udp: Don't repeatedly initialise udp[46]_eth_hdr * udp: Unify udp[46]_l2_iov * udp: Unify udp[46]_mh_splice * udp: Rename IOV and mmsghdr arrays * udp: Pass full epoll reference through more of sock handler path * flow: Add flow_sidx_valid() helper * util: sock_l4() determine protocol from epoll type rather than the reverse * conf: Use the right maximum buffer size for c->sock_path * tcp_splice: Check return value of setsockopt() for SO_RCVLOWAT * conf: Copy up to MAXDNSRCH - 1 bytes, not MAXDNSRCH - BuildRequire selinux-policy-targeted explicitly to allow building on SELinux-enabled projects e.g. SLFO. ==== patterns-microos ==== Subpackages: patterns-microos-alt_onlyDVD patterns-microos-apparmor patterns-microos-base patterns-microos-base-microdnf patterns-microos-base-packagekit patterns-microos-base-zypper patterns-microos-basesystem patterns-microos-cloud patterns-microos-cockpit patterns-microos-defaults patterns-microos-desktop-common patterns-microos-desktop-gnome patterns-microos-desktop-kde patterns-microos-hardware patterns-microos-ima_evm patterns-microos-onlyDVD patterns-microos-ra_agent patterns-microos-ra_verifier patterns-microos-selinux patterns-microos-sssd_ldap - Drop sdbootutil-scriptlets requirement, as is now supplied by suse-module-tools-scriptlets ==== pciutils ==== Version update (3.12.0 -> 3.13.0) Subpackages: libpci3 - Synchronize SLE-15 and openSUSE:Factory [PED-8393, bsc#1224138]. The following patches are now obsolete in version 3.13.0: * lspci-Fixed-buffer-overflows-in-ls-tree.c.patch * pciutils-Add-PCIe-5.0-data-rate-32-GT-s-support.patch * pciutils-Add-PCIe-6.0-data-rate-64-GT-s-support.patch * pciutils-Add-decoding-of-vendor-specific-VPD-fields.patch * pciutils-VPD-Cleanup.patch * pciutils-VPD-When-printing-item-IDs-escape-non-ASCII-characte.patch - update to 3.13.0: * lspci decodes CXL 1.1 device link status information. * Further development of the pcilmr (the link margining utility) * Dump parsing supports 6-digit domain numbers. * Bug fixes in PCIe link state reporting. * Decode more fields in PCIe AER capability. * Fixed build on Linux systems with musl libc. * Updated pci.ids. ==== pcr-oracle ==== - Add support-ecc-srk.patch to support ECC SRK - Add fix-testcase-empty-efi-variables.patch to fix the testcase playback on empty EFI variables ==== perl ==== Version update (5.38.2 -> 5.40.0) Subpackages: perl-base - Insert manual provide for perl(Getopt::Long) until new version transition is done - move UNIVERSAL.pm into perl-base - update to 5.40.0 * New __CLASS__ Keyword * :reader attribute for field variables * Permit a space in -M command-line option * Restrictions to use VERSION declarations * New builtin::inf and builtin::nan functions (experimental) * New ^^ logical xor operator * try/catch feature is no longer experimental * for iterating over multiple values at a time is no longer experimental * builtin module is no longer experimental * The :5.40 feature bundle adds try * use v5.40; imports builtin functions * CVE-2023-47038 - Write past buffer end via illegal user-defined Unicode property * CVE-2023-47039 - Perl for Windows binary hijacking vulnerability * reset EXPR now calls set-magic on scalars * Calling the import method of an unknown package produces a warning * return no longer allows an indirect object * Class barewords no longer resolved as file handles in method calls under no feature "bareword_filehandles" * Using goto to jump from an outer scope into an inner scope is deprecated and will be removed completely in Perl 5.42. [GH #21601] * The negation OPs have been modified to support the generic TARGMY optimization. [GH #21442] - Refresh perl-5.38.0.diff - Drop perl-5.18.2-overflow.diff (no longer applicable) - Drop perl-locale-backport.diff (proper fix in new version) - Drop old manual package name based perl provides ==== perl-Bootloader ==== Version update (1.13 -> 1.14) - merge gh#openSUSE/perl-bootloader#169 - support grub2-bls (bsc#1226676, bsc#1208135) - better config file reading - add check whether bootloader is supported - unit test output changed, adjust reference data - adjust GRUB_ENABLE_BLSCFG when setting grub2-bls - add config, install, add-kernel, remove-kernel for grub2-bls - support --default option for grub2* - unify cmdline parsing code and move to library - add missing options for bls conforming loaders - updated tests - unify test case names - adjust documentation - 1.14 ==== pinentry ==== Version update (1.2.1 -> 1.3.1) - update to 1.3.1: * qt: Install and use pinentry icon. [rPf9c252a8d9] * qt: Small fix for Qt5. [rP844360c9c9] * qt: Fix Windows build of Qt6. [rP34019f954a] * New envvar PINENTRY_KDE_USE_WALLET to enable the secret storage integration on KDE. [rP23753cfb03] - update to 1.3.0: * qt: Add new Qt6 frontend. [rP1e79123c38] * qt: Set parent window on Wayland. [T6930] * qt: Fix capslock detection on Wayland. [rP7dfc60a70d] * qt: Fix window icon on Wayland. [T6887] * qt: Add support for external password manager with libsecret. * qt: Remove focus indication by text selection. [T5863] * qt: Use same focus indication for labels as Kleopatra. * qt: Improve accessibility. [T5863] * gnome3: Prefer gcr-4. [rP069c219223] * curses: Fix timeout handling. [rP08408498b3] * curses: Add SETREPEATOK and quality bar colors. * curses: Add password quality meter. [rP2923707e75] * curses,tty: Upon SIGINT, let pinentry exit gracefully. * w32: Fix non-focused window and simplify code. * Disable secret storage integration when running on KDE Plasma. * The Windows CE support has been removed. ==== pinentry-gui ==== Version update (1.2.1 -> 1.3.1) - update to 1.3.1: * qt: Install and use pinentry icon. [rPf9c252a8d9] * qt: Small fix for Qt5. [rP844360c9c9] * qt: Fix Windows build of Qt6. [rP34019f954a] * New envvar PINENTRY_KDE_USE_WALLET to enable the secret storage integration on KDE. [rP23753cfb03] - update to 1.3.0: * qt: Add new Qt6 frontend. [rP1e79123c38] * qt: Set parent window on Wayland. [T6930] * qt: Fix capslock detection on Wayland. [rP7dfc60a70d] * qt: Fix window icon on Wayland. [T6887] * qt: Add support for external password manager with libsecret. * qt: Remove focus indication by text selection. [T5863] * qt: Use same focus indication for labels as Kleopatra. * qt: Improve accessibility. [T5863] * gnome3: Prefer gcr-4. [rP069c219223] * curses: Fix timeout handling. [rP08408498b3] * curses: Add SETREPEATOK and quality bar colors. * curses: Add password quality meter. [rP2923707e75] * curses,tty: Upon SIGINT, let pinentry exit gracefully. * w32: Fix non-focused window and simplify code. * Disable secret storage integration when running on KDE Plasma. * The Windows CE support has been removed. ==== pipewire ==== Version update (1.2.0 -> 1.2.1) Subpackages: gstreamer-plugin-pipewire libpipewire-0_3-0 pipewire-alsa pipewire-modules-0_3 pipewire-pulseaudio pipewire-spa-plugins-0_2 pipewire-spa-tools pipewire-tools - Update to version 1.2.1: * Highlights - Fix a regression in the node activation counters that would break audio when using KODI. - Fix a regression in ardour export because of mishandling of sync groups. - Fix a regression in KDE screen preview because of the new async scheduling. - Fix a regression in context.exec argument parsing that would break some existing scripts. - More small bug fixes and improvements. * PipeWire - Fix a regression in the node activation counters that would break audio when using KODI. (#4087) - Fix a regression in ardour export because of mishandling of sync groups. (#4083) - Fix a regression in KDE screen preview because of the new async scheduling. Disable async for driver nodes. (#4092) - Slightly improve node shutdown to cause less xruns. - Fix a regression in context.exec argument parsing that would break some existing scripts. - Support custom thread create functions. * Modules - Improve snapcast address parsing. (#4093) * SPA - Fix multiple %f parsing in ACP for the new plug+a52 profiles. - Improve v4l2 param generation. Improve recovery when framesize or rates are unknown, support vivid. (#4063) * JACK - Use the custom thread create function to correctly let module-rt kit manage threads so that we don't end up with priorities on the wrong threads. (#4099) * GStreamer - Fix a crash when destroying a stream. ==== plasma5support6 ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasma5Support6 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-activities ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasmaActivities6 plasma6-activities-imports - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-activities-stats ==== Version update (6.1.1 -> 6.1.4) Subpackages: libPlasmaActivitiesStats1 - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-browser-integration ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-desktop ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-desktop-emojier - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Make X-KDE-Init-Phase a proper in in JSON and remove obsolete X-KDE-Init-Symbol values * Folder View: hide existing label while renaming (kde#482802) * Folder View: re-transfer focus to grid view after rename (kde#491088) * Use bindings for anchors (kde#489492) * Restore the folderview title config * applets/taskmanager: fix size of textual list popup * applets/taskmanager: Fix applet's layout size with multiple rows (kde#490319) * [kcms/access] Set range for visual bell duration selector - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * Fix kcm_clock save on non-systemd distros * KeyboardButton: Check if longName is undefined * Use a shared QQmlEngine when possible (kde#488326) * lockscreen: fix the check for authentication prompts (kde#485520) * update version for new release * Edit Mode: Fix for blurry icons (kde#488920) - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * [kcm/keyboard] Add missing GENERATE_MOC to kconfig_add_kcfg_files * update version for new release * kcms/keyboard: fix width and immutability of layout table headers (kde#488957) * Make panel config tooltips ask for focus after each applet change (kde#487640) * kcms/access: Bump the minimum cursor magnification factor (kde#489333) * kcms/access: fix list item highlighting (kde#489206) * Always center "Add Widgets" button on empty panels (kde#488789) * update version for new release ==== plasma6-integration ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-nm ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-nm-openconnect plasma6-nm-openvpn - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * Use a shared QQmlEngine when possible (kde#488326) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-openSUSE ==== Subpackages: plasma6-branding-openSUSE plasma6-sddm-theme-openSUSE plasma6-theme-openSUSE - Update to 6.1.4 - Update to 6.1.3 - Update to 6.1.2 ==== plasma6-pa ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * volumemonitor: don't crash when there is no pa_context * kcm/SpeakerTest: Fix the minimum layout for Mono channel (kde#476096) - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-print-manager ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * plasmoid: Remove dead code (JobsModel) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-systemmonitor ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * TableViewHeader: remove from tab chain - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== plasma6-workspace ==== Version update (6.1.1 -> 6.1.4) Subpackages: plasma6-session plasma6-workspace-libs - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Watch for Look and Feel changed * applets/batterymonitor: Fix property names to show the right tool-tip text * applets/mediacontroller: Fix label width overflow in horizontal panel * Track screen change * Respect centered images size (kde#490425,kde#489250) * xembed-sni-proxy: Check if descendant windows want button events * freespacenotifier: Rework to not warn for read only partitions * startplasma: Also set environment variable when it is not currently set (kde#490432) * notifications: When doing a drag and drop, set the supported action to cpoy (kde#469644) * krunner: Fix icon property name for additionalActions list * kastatsfavoritesmodel: Fix a crash - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * klipper: Avoid incorrect wayland roundtrips (kde#489096) * klipper: Fix a potential null dereferencing (kde#489096) * kcm/users: decode URI-encoded file for avatar image * kastatsfavoritesmodel.cpp: prefer .value() over operator[] (kde#482887) * xembedsniproxy: Warp pointer to click location on wayland (kde#489286) * klipper: add missing static keyword in `SystemClipboard` * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * libtaskmanager: improve efficiency when window icon frequently changes (kde#487390) * Do not hide panel settings when a panel-parented dialog takes focus (kde#487161) * update version for new release ==== podman ==== Version update (5.1.1 -> 5.2.0) - Update to version 5.2.0: [#]## Features - Podman now supports `libkrun` as a backend for creating virtual machines on MacOS. The `libkrun` backend has the advantage of allowing GPUs to be mounted into the virtual machine to accelerate tasks. The default backend remains `applehv`. - Quadlet now has support for `.build` files, which allows images to be built by Quadlet and then used by Quadlet containers. - Quadlet `.container` files now support two new fields, `LogOpt` to specify container logging configuration and `StopSignal` to specify container stop signal ([#23050](https://github.com/containers/podman/issues/23050)). - Quadlet `.container` and `.pod` files now support a new field, `NetworkAlias`, to add network aliases. - Quadlet drop-in search paths have been expanded to include top-level type drop-ins (`container.d`, `pod.d`) and truncated unit drop-ins (`unit-.container.d`) ([#23158](https://github.com/containers/podman/issues/23158)). - Podman now supports a new command, `podman system check`, which will identify (and, if possible, correct) corruption within local container storage. - The `podman machine reset` command will now reset all providers available on the current operating system (e.g. ensuring that both HyperV and WSL `podman machine` VMs will be removed on Windows). [#]## Changes - Podman now requires the new kernel mount API, introducing a dependency on Linux Kernel v5.2 or higher. - Quadlet `.image` units now have a dependency on `network-online.target` ([#21873](https://github.com/containers/podman/issues/21873)). - The `--device` option to `podman create` and `podman run` is no longer ignored when `--privileged` is also specified ([#23132](https://github.com/containers/podman/issues/23132)). - The `podman start` and `podman stop` commands no longer print the full ID of the pod started/stopped, but instead the user's input used to specify the pod (e.g. `podman pod start b` will print `b` instead of the pod's full ID) ([#22590](https://github.com/containers/podman/issues/22590)). - Virtual machines created by `podman machine` on Linux now use `virtiofs` instead of `9p` for mounting host filesystems. Existing mounts will be transparently changed on machine restart or recreation. This should improve performance and reliability of host mounts. This requires the installation of `virtiofsd` on the host system to function. - Using both the `--squash` and `--layers=false` options to `podman build` at the same time is now allowed. - Podman now passes container's stop timeout to systemd when creating cgroups, causing it to be honored when systemd stops the scope. This should prevent hangs on system shutdown due to running Podman containers. - The `--volume-driver` option to `podman machine init` is now deprecated. [#]## Bugfixes - Fixed a bug where rootless containers created with the `--sdnotify=healthy` option could panic when started ([#22651](https://github.com/containers/podman/issues/22651)). - Fixed a bug where containers created with the `--sdnotify=healthy` option that exited quickly would sometimes return an error instead of notifying that the container was ready ([#22760](https://github.com/containers/podman/issues/22760)). - Fixed a bug where the `podman system reset` command did not remove the containers/image blob cache ([#22825](https://github.com/containers/podman/issues/22825)). - Fixed a bug where Podman would sometimes create a cgroup for itself even when the `--cgroups=disabled` option was specified at container creation time ([#20910](https://github.com/containers/podman/issues/20910)). - Fixed a bug where the `/etc/hosts` file in a container was not created with a newline at the end of the file ([#22729](https://github.com/containers/podman/issues/22729)). - Fixed a bug where the `podman start` command could sometimes panic when starting a container in the stopped state. - Fixed a bug where the `podman system renumber` command would fail if volumes existed when using the `sqlite` database backend ([#23052](https://github.com/containers/podman/issues/23052)). - Fixed a bug where the `podman container restore` command could not successfully restore a container in a pod. - Fixed a bug where an error message from `podman diff` would suggest using the `--latest` option when using the remote Podman client ([#23038](https://github.com/containers/podman/issues/23038)). - Fixed a bug where user could assign more memory to a Podman machine than existed on the host ([#18206](https://github.com/containers/podman/issues/18206)). - Fixed a bug where the `podman events` command was rarely unable to report errors that occurred ([#23165](https://github.com/containers/podman/issues/23165)). - Fixed a bug where containers run in systemd units would sometimes not be removed correctly on exit when using the `--cidfile` option. - Fixed a bug where the first Podman command run after a reboot could cause hang when using transient mode ([#22984](https://github.com/containers/podman/issues/22984)). - Fixed a bug where Podman could throw errors about a database configuration mismatch if certain paths did not exist on the host. - Fixed a bug where the `podman run` and `podman start` commands could throw strange errors if another Podman process stopped the container at a midpoint in the process of starting ([#23246](https://github.com/containers/podman/issues/23246)). - Fixed a bug where the `podman system service` command could leak a mount on termination. - Fixed a bug where the Podman remote client would panic if an invalid image filter was passed to `podman images` ([#23120](https://github.com/containers/podman/issues/23120)). - Fixed a bug where the `podman auto-update` and `podman system df` commands could fail when a container was removed while the command was running ([#23279](https://github.com/containers/podman/issues/23279)). - Fixed a bug where the `podman machine init` command could panic when trying to decompress an empty file when preparing the VM image ... changelog too long, skipping 73 lines ... - Add missing BuildRequires man ==== policycoreutils ==== Version update (3.6 -> 3.7) Subpackages: policycoreutils-python-utils python311-policycoreutils - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 User-visible changes: * audit2allow -C for CIL output mode * sepolgen: adjust parse for refpolicy * Bugfixes: * fixfiles: drop unnecessary \ line endings * setfiles: avoid unsigned integer underflow * python/semanage: Do not sort local fcontext definitions * python/semanage: Allow modifying records on "add" - Refresh get_os_version.patch ==== polkit ==== Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0 - Add -Wno-error=implicit-function-declaration to %optflags to work-around an issue in mocklibc (which has been meanwhile removed by upstream) with exactly this kind of issue. ==== polkit-default-privs ==== Version update (1550+20240620.095c860 -> 1550+20240708.7e0e3f4) - Update to version 1550+20240708.7e0e3f4: * profile: whitelist kdeplasma-addons-kameleon helper (bsc#1226306) ==== polkit-kde-agent-6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== poppler ==== Version update (24.03.0 -> 24.07.0) - Use correct version for freetype BuildRequires. - update to 24.07.0: core: * Fix crashes in broken files * Internal code improvements qt6: * Add getters for document additional actions * Implement reset forms link qt5: * Add getters for document additional actions * Implement reset forms link utils: * pdfinfo: Fix crash in broken documents when using -dests build system: * Mark glib-mkenums as required - drop poppler-CVE-2024-6239.patch (upstream) - version update to 24.06.1 Release 24.06.1: Re-release 24.06.0 with increased SOVERSION of poppler internal library Release 24.06.0: core: * Performance improvements in some files * Fix some issues with files bigger than 2^31 bytes * Remove all cairo include guards for cairo < 1.16 * Fix MSVC build * Internal code improvements qt6: * Update Qt6 doc example * Use the non deprecated version of QString::fromUcs4 glib: * properly document return value from poppler_font_info_scan Release 24.05.0: core: * Fix signing not being totally correct in some kind of PDF files * Assume "Adobe-Identity" for character collection. Issue #1465 * Small improvements in annotation font rendering * Remove some GooString methods, use std::string ones instead * Move some GooString methods to UTF.h * Fix crash in broken files cpp: * cpp: Fix crash extracting text and font in some files. Issue #1477 * Change base class of ustring to char16_t qt6: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages qt5: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages utils: * pdfdetach: Small code improvements * pdftops: Write compliant ps header build system: * Increase minimum supported base to that provided by Ubuntu 22.04 Release 24.04.0: core: * Optimize page text extraction speed * Fix clipping path handling in some files. Issue #739 * Fix regression in text selection * Fix text search across lines between paragraphs qt6: * Fix crash in SoundObject::data utils: * pdfsig: Add Catalan translation build system: * Build code as C++20 - modified patches % reduce-boost-required-version.patch (refreshed) % reduce-libtiff-required-version.patch (refreshed) - added patches fix CVE-2024-6239 [bsc#1226916], crash when using pdfinfo with -dests parameter on malformed input files + poppler-CVE-2024-6239.patch ==== poppler-qt6 ==== Version update (24.03.0 -> 24.07.0) - Use correct version for freetype BuildRequires. - update to 24.07.0: core: * Fix crashes in broken files * Internal code improvements qt6: * Add getters for document additional actions * Implement reset forms link qt5: * Add getters for document additional actions * Implement reset forms link utils: * pdfinfo: Fix crash in broken documents when using -dests build system: * Mark glib-mkenums as required - drop poppler-CVE-2024-6239.patch (upstream) - version update to 24.06.1 Release 24.06.1: Re-release 24.06.0 with increased SOVERSION of poppler internal library Release 24.06.0: core: * Performance improvements in some files * Fix some issues with files bigger than 2^31 bytes * Remove all cairo include guards for cairo < 1.16 * Fix MSVC build * Internal code improvements qt6: * Update Qt6 doc example * Use the non deprecated version of QString::fromUcs4 glib: * properly document return value from poppler_font_info_scan Release 24.05.0: core: * Fix signing not being totally correct in some kind of PDF files * Assume "Adobe-Identity" for character collection. Issue #1465 * Small improvements in annotation font rendering * Remove some GooString methods, use std::string ones instead * Move some GooString methods to UTF.h * Fix crash in broken files cpp: * cpp: Fix crash extracting text and font in some files. Issue #1477 * Change base class of ustring to char16_t qt6: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages qt5: * Add async API for certificate validation * Fix text extraction for Landscape/Seascape pages utils: * pdfdetach: Small code improvements * pdftops: Write compliant ps header build system: * Increase minimum supported base to that provided by Ubuntu 22.04 Release 24.04.0: core: * Optimize page text extraction speed * Fix clipping path handling in some files. Issue #739 * Fix regression in text selection * Fix text search across lines between paragraphs qt6: * Fix crash in SoundObject::data utils: * pdfsig: Add Catalan translation build system: * Build code as C++20 - modified patches % reduce-boost-required-version.patch (refreshed) % reduce-libtiff-required-version.patch (refreshed) - added patches fix CVE-2024-6239 [bsc#1226916], crash when using pdfinfo with -dests parameter on malformed input files + poppler-CVE-2024-6239.patch ==== powerdevil6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * daemon: Don't leave dangling Action pointers in idle-time containers (kde#490356,kde#490421) - Drop patches, now upstream: * 0001-daemon-Don-t-leave-dangling-Action-pointers-in-idle-.patch - Add patch to fix crash on display wake up (kde#490356, kde#490421): * 0001-daemon-Don-t-leave-dangling-Action-pointers-in-idle-.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Drop patch to enable battery conservation mode control after whitelisting (boo#1226424): * 0001-Revert-Added-setting-for-battery-conservation-mode-L.patch - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * daemon/controllers: Reintroduce a mutex around ddca_open_display2() (kde#489169) * update version for new release * ddcutildisplay: give some time before changing brightness after the monitor resumes * core: reload actions on brightness controller changes * update version for new release - Rebase 0001-Revert-Added-setting-for-battery-conservation-mode-L.patch ==== procps ==== - Switch to procps 4 branch, absorbing the former procps4 package: + Add provides/obsoletes procps4: make zypper replace procps4 with the main package for users that manually switched. - Aligning to the existing procps4 package, drop/add/modify patches: A 79042e07.patch A procps-ng-4.0.0-integer-overflow.patch A procps-ng-4.0.4-ignore-sysctl_conf.patch A procps-ng-4.0.4-pmapX-not-twice-anymore.patch A procps-ng-4.0.0-floats.dif D CVE-2023-4016.patch D bsc1195468-23da4f40.patch D procps-3.3.17-bsc1181976.patch D procps-3.3.17-ignore-sysctl_conf.patch D procps-3.3.17-library-bsc1181475.patch D procps-3.3.17-top-bsc1181475.patch D procps-ng-3.3.10-integer-overflow.patch D procps-ng-3.3.10-large_pcpu.patch D procps-ng-3.3.17-logind.patch D procps-ng-3.3.8-bnc634840.patch D procps-ng-3.3.9-watch.patch D procps-ng-3.3.8-accuracy.dif D procps-ng-3.3.10-bnc634071_procstat2.diff D procps-ng-3.3.10-fdleak.dif M procps-ng-3.3.10-errno.patch M procps-ng-3.3.10-slab.patch M procps-ng-3.3.11-pmap4suse.patch M procps-ng-3.3.8-ignore-scan_unevictable_pages.patch M procps-ng-3.3.8-petabytes.patch M procps-ng-3.3.8-readeof.patch M procps-v3.3.3-pwdx.patch - Use %patch -P N instead of deprecated %patchN. ==== python-Jinja2 ==== - Cherry-pick patch from Fedora to fix FTBFS with Python 3.13 * fix-ftbfs-with-python313.patch - Add new build dependency python-trio to BuildRequires ==== python-PyYAML ==== - add build-with-cython3.patch from 6.0.2rc1 to build with cython3 (needed for python 3.13+) ==== python-certifi ==== Version update (2023.11.17 -> 2024.7.4) - Refresh patches python-certifi-shipped-requests-cabundle.patch and two-basic-unit-tests.patch - Remove executable bit from core.py file - Update to 2024.7.4 (CVE-2024-39689, bsc#1227519): Removed certs: * Subject: CN=GLOBALTRUST 2020 O=e-commerce monitoring GmbH - 2024.06.02 Added certs: * Subject: CN=FIRMAPROFESIONAL CA ROOT-A WEB O=Firmaprofesional SA - 2024.02.02 Added certs: * Subject: CN=Telekom Security TLS ECC Root 2020 O=Deutsche Telekom Security GmbH * Subject: CN=Telekom Security TLS RSA Root 2023 O=Deutsche Telekom Security GmbH Removed certs: * Subject: O=SECOM Trust.net OU=Security Communication RootCA1 * Fix leaking certificate issue ==== python-cffi ==== - add py313-compat.patch py313-use-format-unraisable.patch py313-use-hashpointer.patch: add upstream patches for py3.13 support ==== python-cryptography ==== Version update (42.0.8 -> 43.0.0) - update to 43.0.0: * BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e has been removed. Users on older version of OpenSSL will need to upgrade. * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1. * Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0. * :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generat e_private_key` now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still considered insecure, users should generally use a key size of 2048-bits. * :func:`~cryptography.hazmat.primitives.serialization.pkcs7.se rialize_certificates` now emits ASN.1 that more closely follows the recommendations in RFC 2315. * Added new :doc:`/hazmat/decrepit/index` module which contains outdated and insecure cryptographic primitives. :class:`~cryp tography.hazmat.primitives.ciphers.algorithms.CAST5`, :class: `~cryptography.hazmat.primitives.ciphers.algorithms.SEED`, :c lass:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA `, and :class:`~cryptography.hazmat.primitives.ciphers.algori thms.Blowfish`, which were deprecated in 37.0.0, have been added to this module. They will be removed from the cipher module in 45.0.0. * Moved :class:`~cryptography.hazmat.primitives.ciphers.algorit hms.TripleDES` and :class:`~cryptography.hazmat.primitives.ci phers.algorithms.ARC4` into :doc:`/hazmat/decrepit/index` and deprecated them in the cipher module. They will be removed from the cipher module in 48.0.0. * Added support for deterministic :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (RFC 6979) * Added support for client certificate verification to the :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the form of :class:`~cryptography.x509.verification.ClientVerifier`, :class:`~cryptography.x509.verification.VerifiedClient`, and PolicyBuilder :meth:`~cryptography.x509.verification.PolicyBu ilder.build_client_verifier`. * Added Certificate :attr:`~cryptography.x509.Certificate.publi c_key_algorithm_oid` and Certificate Signing Request :attr:`~ cryptography.x509.CertificateSigningRequest.public_key_algori thm_oid` to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID` Object Identifier of the public key found inside the certificate. * Added :attr:`~cryptography.x509.InvalidityDate.invalidity_dat e_utc`, a timezone-aware alternative to the naÃ¯ve datetime attribute :attr:`~cryptography.x509.InvalidityDate.invalidity_date`. * Added support for parsing empty DN string in :meth:`~cryptography.x509.Name.from_rfc4514_string`. * Added the following properties that return timezone-aware datetime objects: :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_u tc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_ time_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse. this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleRe sponse.next_update_utc`, These are timezone-aware variants of existing properties that return naÃ¯ve datetime objects. * Added :func:`~cryptography.hazmat.primitives.asymmetric.rsa.r sa_recover_private_exponent` * Added :meth:`~cryptography.hazmat.primitives.ciphers.CipherCo ntext.reset_nonce` for altering the nonce of a cipher context without initializing a new instance. See the docs for additional restrictions. * :class:`~cryptography.x509.NameAttribute` now raises an exception when attempting to create a common name whose length is shorter or longer than RFC 5280 permits. * Added basic support for PKCS7 encryption (including SMIME) via :class:`~cryptography.hazmat.primitives.serialization.pkc s7.PKCS7EnvelopeBuilder`. - add use-offline-build.patch ==== python-jsonschema ==== Version update (4.22.0 -> 4.23.0) - update to 4.23.0: * Add some typing to the exceptions.py module by @DanielNoord in [#1019] * Declare support for 3.13 by @rominf in #1282 ==== python-psutil ==== Version update (5.9.7 -> 6.0.0) - Update to version 6.0.0 * 2109_: ``maxfile`` and ``maxpath`` fields were removed from the namedtuple returned by `disk_partitions()`_. Reason: on network filesystems (NFS) this can potentially take a very long time to complete. * 2366_, [Windows]: log debug message when using slower process APIs. * 2375_, [macOS]: provide arm64 wheels. (patch by Matthieu Darbois) * 2396_: `process_iter()`_ no longer pre-emptively checks whether PIDs have been reused. This makes `process_iter()`_ around 20x times faster. * 2396_: a new ``psutil.process_iter.cache_clear()`` API can be used the clear `process_iter()`_ internal cache. * 2401_, Support building with free-threaded CPython 3.13. (patch by Sam Gross) * 2407_: `Process.connections()`_ was renamed to `Process.net_connections()`_. The old name is still available, but it's deprecated (triggers a ``DeprecationWarning``) and will be removed in the future. * 2425_: [Linux]: provide aarch64 wheels. (patch by Matthieu Darbois / Ben Raz) * 2250_, [NetBSD]: `Process.cmdline()`_ sometimes fail with EBUSY. It usually happens for long cmdlines with lots of arguments. In this case retry getting the cmdline for up to 50 times, and return an empty list as last resort. * 2254_, [Linux]: offline cpus raise NotImplementedError in cpu_freq() (patch by Shade Gladden) * 2272_: Add pickle support to psutil Exceptions. * 2359_, [Windows], [CRITICAL]: `pid_exists()`_ disagrees with `Process`_ on whether a pid exists when ERROR_ACCESS_DENIED. * 2360_, [macOS]: can't compile on macOS < 10.13. (patch by Ryan Schmidt) * 2362_, [macOS]: can't compile on macOS 10.11. (patch by Ryan Schmidt) * 2365_, [macOS]: can't compile on macOS < 10.9. (patch by Ryan Schmidt) * 2395_, [OpenBSD]: `pid_exists()`_ erroneously return True if the argument is a thread ID (TID) instead of a PID (process ID). * 2412_, [macOS]: can't compile on macOS 10.4 PowerPC due to missing `MNT_` constants. * 2109_: the namedtuple returned by `disk_partitions()`_' no longer has ``maxfile`` and ``maxpath`` fields. * 2396_: `process_iter()`_ no longer pre-emptively checks whether PIDs have been reused. If you want to check for PID reusage you are supposed to use `Process.is_running()`_ against the yielded `Process`_ instances. That will also automatically remove reused PIDs from `process_iter()`_ internal cache. * 2407_: `Process.connections()`_ was renamed to `Process.net_connections()`_. The old name is still available, but it's deprecated (triggers a ``DeprecationWarning``) and will be removed in the future. - from version 5.9.8 * 2343_, [FreeBSD]: filter `net_connections()`_ returned list in C instead of Python, and avoid to retrieve unnecessary connection types unless explicitly asked. E.g., on an IDLE system with few IPv6 connections this will run around 4 times faster. Before all connection types (TCP, UDP, UNIX) were retrieved internally, even if only a portion was returned. * 2342_, [NetBSD]: same as above (#2343) but for NetBSD. * 2349_: adopted black formatting style. * 930_, [NetBSD], [critical]: `net_connections()`_ implementation was broken. It could either leak memory or core dump. * 2340_, [NetBSD]: if process is terminated, `Process.cwd()`_ will return an empty string instead of raising `NoSuchProcess`_. * 2345_, [Linux]: fix compilation on older compiler missing DUPLEX_UNKNOWN. * 2222_, [macOS]: `cpu_freq()` now returns fixed values for `min` and `max` frequencies in all Apple Silicon chips. - Drop obsolete patch to skip tests on Python 2 * skip_rlimit_tests_on_python2.patch - Update patch to skip failing tests for new version * skip_failing_tests.patch ==== python-pyOpenSSL ==== Version update (24.1.0 -> 24.2.1) - 24.2.1: * Deprecated OpenSSL.crypto.X509Req, OpenSSL.crypto.load_certificate_request, OpenSSL.crypto.dump_certificate_request. Instead, cryptography.x509.CertificateSigningRequest,s cryptography.x509.CertificateSigningRequestBuilder,s cryptography.x509.load_der_x509_csr,s or cryptography.x509.load_pem_x509_csr should be used. * Added type hints for the SSL module. #1308. * Changed OpenSSL.crypto.PKey.from_cryptography_key to accept public and private EC, ED25519, ED448 keys ==== python-pycairo ==== Version update (1.26.0 -> 1.26.1) - Update to 1.26.1 * Fix Surface.set_mime_data() with Python 3.13 :pr:`366` This also fixes the test suite with Python 3.13b2. * Update vendored Windows wheel dependencies :pr:`370` ==== python-pyrsistent ==== - Cherry-pick upstream patch to fix compatibility with Python 3.13 * replace-private-function.patch ==== python-pyserial ==== - Cherry-pick upstream patch to fix tests with Python 3.13 * replace-deprecated-unittest-function.patch ==== python-semanage ==== Version update (3.6 -> 3.7) - Update to version 3.7 https://github.com/SELinuxProject/selinux/releases/tag/3.7 * Bugfixes: * libsemanage: support huge passwd entries ==== python-setuptools ==== Version update (70.0.0 -> 70.1.1) - update to 70.1.1: * Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* * Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg * Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* * Migrated Setuptools' own config to pyproject.toml * Prevent a TypeError: 'NoneType' object is not callable when shutil_rmtree is called without an onexc parameter on Python<=3.11 * Replace use of mktemp with can_symlink from the stdlib test suite. * Improvement for attr: directives in configuration to handle more edge cases related to complex package_dir. * Fix accidental implicit string concatenation. ==== python-tornado6 ==== Version update (6.4 -> 6.4.1) - Update to version 6.4.1: + Security Improvements: - Parsing of the ``Transfer-Encoding`` header is now stricter. Unexpected transfer-encoding values were previously ignored and treated as the HTTP/1.0 default of read-until-close. This can lead to framing issues with certain proxies. We now treat any unexpected value as an error. - Handling of whitespace in headers now matches the RFC more closely. Only space and tab characters are treated as whitespace and stripped from the beginning and end of header values. Other unicode whitespace characters are now left alone. This could also lead to framing issues with certain proxies. - `tornado.curl_httpclient` now prohibits carriage return and linefeed headers in HTTP headers (matching the behavior of `simple_httpclient`). These characters could be used for header injection or request smuggling if untrusted data were used in headers. + General Changes: - `tornado.iostream`: `SLIOStream` now understands changes to error codes from OpenSSL 3.2. The main result of this change is to reduce the noise in the logs for certain errors. - `tornado.simple_httpclient`: `simple_httpclient` now prohibits carriage return characters in HTTP headers. It had previously prohibited only linefeed characters. - `tornado.testing`: `.AsyncTestCase` subclasses can now be instantiated without being associated with a test method. Improves compatibility with test discovery in Pytest 8.2. - Drop support-pytest-8.2.patch: fixed upstream. - Drop openssl-3.2.patch: fixed upstream. ==== python311 ==== - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). - Update F00251-change-user-install-location.patch to make pip and modern tools install directly in /usr/local when used by the user. bsc#1225660 ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). - Update F00251-change-user-install-location.patch to make pip and modern tools install directly in /usr/local when used by the user. bsc#1225660 ==== qemu ==== Version update (9.0.0 -> 9.0.2) - roms: Build ipxe with NO_WERROR=1 (bsc#1227960) - Update to version 9.0.2: Full list of backports here: https://lore.kernel.org/qemu-devel/1718081053.366429.1238758.nullmailer@tls… A selection of them is reported here too: hw/nvme: fix number of PIDs for FDP RUH update sphinx/qapidoc: Fix to generate doc for explicit, unboxed arguments char-stdio: Restore blocking mode of stdout on exit virtio: remove virtio_tswap16s() call in vring_packed_event_read() virtio-pci: Fix the failure process in kvm_virtio_pci_vector_use_one() tcg/optimize: Fix TCG_COND_TST* simplification of setcond2 block: Parse filenames only when explicitly requested iotests/270: Don't store data-file with json: prefix in image iotests/244: Don't store data-file with protocol in image qcow2: Don't open data_file with BDRV_O_NO_IO tests: add testing of parameter=3D1 for SMP topology (bsc#1228169) hw/core: allow parameter=3D1 for SMP topology on any machine ... - Update to latest stable release (9.0.1). Full list of backports here: https://lore.kernel.org/qemu-devel/1718081053.366429.1238758.nullmailer@tls… A selection of them is reported here too: Update version for 9.0.1 release target/loongarch: fix a wrong print in cpu dump ui/sdl2: Allow host to power down screen virtio-gpu: fix v2 migration target/i386: fix SSE and SSE2 feature check target/i386: fix xsave.flat from kvm-unit-tests disas/riscv: Decode all of the pmpcfg and pmpaddr CSRs riscv, gdbstub.c: fix reg_width in ricsv_gen_dynamic_vector_feature() target/riscv/kvm.c: Fix the hart bit setting of AIA target/riscv: rvzicbo: Fixup CBO extension register calculation target/riscv: do not set mtval2 for non guest-page faults target/riscv: prioritize pmp errors in raise_mmu_exception() target/riscv: rvv: Remove redudant SEW checking for vector fp narrow/widen instructions target/riscv: rvv: Check single width operator for vfncvt.rod.f.f.w target/riscv: rvv: Check single width operator for vector fp widen instructions target/riscv: rvv: Fix Zvfhmin checking for vfwcvt.f.f.v and vfncvt.f.f.w instructions target/riscv/cpu.c: fix Zvkb extension config target/riscv: Fix the element agnostic function problem target/riscv/kvm: tolerate KVM disable ext errors target/riscv/kvm: Fix exposure of Zkr hw/intc/riscv_aplic: APLICs should add child earlier than realize iotests: test NBD+TLS+iothread qio: Inherit follow_coroutine_ctx across TLS ... ==== qqc2-breeze-style6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== qt6-base ==== Subpackages: libQt6Concurrent6 libQt6Core6 libQt6DBus6 libQt6Gui6 libQt6Network6 libQt6OpenGL6 libQt6OpenGLWidgets6 libQt6PrintSupport6 libQt6Sql6 libQt6Test6 libQt6Widgets6 libQt6Xml6 qt6-network-tls qt6-networkinformation-glib qt6-networkinformation-nm qt6-printsupport-cups qt6-sql-sqlite - Add upstream change (boo#1227426, CVE-2024-39936) * 0001-HTTP2-Delay-any-communication-until-encrypted-can-be.patch ==== qt6-sensors ==== - Make sure the plugins are installed (boo#1227871) ==== qt6-wayland ==== Subpackages: libQt6WaylandClient6 libQt6WaylandCompositor6 libQt6WaylandEglClientHwIntegration6 libQt6WaylandEglCompositorHwIntegration6 libQt6WlShellIntegration6 - Add patches to fix crashes on screens disappearing (kde#489072, kde#489180): * 0001-client-Guard-against-windows-being-on-a-null-screen.patch * 0002-Client-Improve-thread-safety-determining-window-size.patch - Add patch to fix certain wayland protocol errors (kde#489259): * 0001-Client-Ensure-that-guessed-popup-parent-has-a-shell-.patch ==== re2 ==== Version update (20240601 -> 20240702) - update to 2024-07-02: * address -Wsign-compare warnings ==== rootlesskit ==== Version update (2.1.0 -> 2.2.0) - Update to version 2.2.0: * v2.2.0 * go.mod: update * CI: update dependencies * Build(deps): Bump github.com/gofrs/flock from 0.8.1 to 0.12.0 * Add reexec branch for socket activation to correct LISTEN_PID * Build(deps): Bump golang.org/x/sys from 0.21.0 to 0.22.0 * Build(deps): Bump github.com/containernetworking/plugins * Build(deps): Bump golang.org/x/sys from 0.20.0 to 0.21.0 * Build(deps): Bump github.com/containernetworking/plugins * pkg/network/slirp4netns: advertise IPv6 nameserver when it's enabled * pkg/network: allow network drivers to advertise multiple nameservers * CI: update slirp4netns to v1.3.1 * Build(deps): Bump golang.org/x/sys from 0.19.0 to 0.20.0 * Build(deps): Bump github.com/urfave/cli/v2 from 2.27.1 to 2.27.2 * v2.1.0+dev ==== runc ==== Version update (1.2.0~rc1 -> 1.2.0~rc2) - Update to runc v1.2.0~rc2. Upstream changelog is available from <https://github.com/opencontainers/runc/releases/tag/v1.2.0-rc.2>. - Re-allow Go 1.22 builds for >= 1.22.4. - Build with Go 1.21 until the upstream Go 1.22 compatibility issue gets fixed. <https://github.com/opencontainers/runc/issues/4233> ==== samba ==== Version update (4.20.1+git.339.cf6e153bb2 -> 4.20.2+git.350.4cfcde9cdb) Subpackages: samba-ad-dc-libs samba-client samba-client-libs samba-libs - Update samba-tool package to require python3-Markdown also in the Heimdal ADDC build. - Fix named crash when using samba's DLZ plugin; (bsc#1224003); (bso#15643); - remove dependency on /usr/bin/python3 using %python3_fix_shebang macro, [bsc#1212476] - Update to 4.20.2 * vfs_widelinks with DFS shares breaks case insensitivity; (bso#15662); (bsc#1213607). * Samba build is not reproducible; (bso#13213). * ldb qsort might r/w out of bounds with an intransitive compare function; (bso#15569). * Many qsort() comparison functions are non-transitive, which can lead to out-of-bounds access in some circumstances; (bso#15625). * Need to change gitlab-ci.yml tags in all branches to avoid CI bill; (bso#15638). * We have added new options --vendor-name and --vendor-patch- revision arguments to ./configure to allow distributions and packagers to put their name in the Samba version string so that when debugging Samba the source of the binary is obvious; (bso#15654). * CTDB RADOS mutex helper misses namespace support; (bso#15665). * Dynamic DNS updates with the internal DNS are not working; (bso#13019). * netr_LogonSamLogonEx returns NR_STATUS_ACCESS_DENIED with SysvolReady=0; (bso#14981). * Anonymous smb3 signing/encryption should be allowed (similar to Windows Server 2022); (bso#15412). * Panic in dreplsrv_op_pull_source_apply_changes_trigger; (bso#15573). * s4:nbt_server: does not provide unexpected handling, so winbindd can't use nmb requests instead cldap; (bso#15620). * winbindd, net ads join and other things don't work on an ipv6 only host; (bso#15642). * Segmentation fault when deleting files in vfs_recycle; (bso#15659). * Panic in vfs_offload_token_db_fetch_fsp(); (bso#15664). * "client use kerberos" and --use-kerberos is ignored for the machine account; (bso#15666). * Regression DFS not working with widelinks = true; (bso#15435). * samba-gpupdate - Invalid NtVer in netlogon_samlogon_response; (bso#15633). * idmap_ad creates an incorrect local krb5.conf in case of trusted domain lookups; (bso#15653). * The images don't build after the git security release and CentOS 8 Stream is EOL; (bso#15660). ==== sdbootutil ==== Version update (1+git20240514.56dc89c -> 1+git20240722.e6d7c91) Subpackages: sdbootutil-snapper - Update to version 1+git20240722.e6d7c91: * Fix early return value when cleaning pcrlock.d - Update to version 1+git20240719.36c650f: * Remove pcrlock.d if there are too many files * Limit LAST_WORKING_SNAPSHOTS to 3 - Update to version 1+git20240718.6fbaad1: * Enroll using pcr_oracle if pcrlock fails * Fix loader.conf measurement * Address some shellcheck issues * Implement basic [un]enroll commands * snapper: do not error if sdbootutil fails - Update to version 1+git20240716.bb40c38: * Add --only-default option for list-entries command * Turn off colors when the shell it not interactive * Support portable installation of bootloader This is useful to create portable drives, so the bootloader entry isn't created permenantly. - Update to version 1+git20240704.a2c5a26: * Complain if fde-tools is missing * Remove rpm scriptlets * Remove is_transactional check * Call regenerate-initrd-posttrans * Remove pcrlock files older than 1 week * Measure initial state from backup * Remove useless TODO comments * Rename variable to SDB_ADD_INITIAL_COMPONENT * Fix transactional check * Add system / snapper as prefix for tw/grub2-bls * Compose the entry file name in a single place * Make 'invert' a generic case * Make free space for new kernel / initrd * Replace match with test in jq * grub: add grub drive in initrd path * grub: blscfg is included in the image * Fix pcrlock_manual_raw call * Add emacs .dir-locals.el * Show success message * Use a recovery pin for re-enrollment * grub2: entries predictions as a single component * grub2: remove duplicate function * Add blscfg.mod in the ESP and update predictions * grub2: generate pcrlock predictions * Fix some typos ==== sddm-kcm6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Fix visual window artifact - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== selinux-policy ==== Version update (20240617 -> 20240802) Subpackages: selinux-policy-targeted - Update to version 20240802: * Dontaudit search of snapper grub plugin to nscd socket (bsc#1228745) - Update to version 20240731: * Initial policy for ibft-rule-generator (bsc#1228402) * Initial policy for systemd-status-mail (bsc#1228402) - Update to version 20240731: * Fix labels for bind/named (bsc#1228372) - Update to version 20240729: * Label /usr/libexec/netconfig/ppp/ip-up pppd_initrc_exec_t (bsc#1228385) * Allow pppd to manage sysnet directories (bsc#1228385) - Update to version 20240726: * Allow snapper grub plugin to manage unlabeled_t and read link files - Update to version 20240725: * Initial policy for grub2 snapper plugin (bsc#1228205) - Update to version 20240716: * Set microos autorelabel script to systemd_autorelabel_generator_t * Allow systemd_generator to write kmsg * Initial policy for systemd growpart-generator (bsc#1226824) - Update to version 20240715: * Allow systemd_getty_generator_t read /proc/1/environ * Allow systemd_getty_generator_t to read and write to tty_device_t (bsc#1226888) - Enable sap module - Add equivalency in file_contexts.subs_dist * /bin /usr/bin * /sbin /usr/bin * /usr/sbin /usr/bin - Update to version 20240710: * Change fc in rebootmgr module for /sbin -> /usr/bin * Change fc in rpm module for /sbin -> /usr/bin * Change fc in rsync module for /sbin -> /usr/bin * Change fc in wicked module for /sbin -> /usr/bin * Confine libvirt-dbus * Allow virtqemud the kill capability in user namespace * Allow rshim get options of the netlink class for KOBJECT_UEVENT family * Allow dhcpcd the kill capability * Allow systemd-networkd list /var/lib/systemd/network * Allow sysadm_t run systemd-nsresourced bpf programs * Update policy for systemd generators interactions * Allow create memory.pressure files with cgroup_memory_pressure_t * Add support for libvirt hooks * Allow certmonger read and write tpm devices * Allow all domains to connect to systemd-nsresourced over a unix socket * Allow systemd-machined read the vsock device * Update policy for systemd generators * Allow ptp4l_t request that the kernel load a kernel module * Allow sbd to trace processes in user namespace * Allow request-key execute scripts * Update policy for haproxyd * Update policy for systemd-nsresourced * Correct sbin-related file context entries * Allow login_userdomain execute systemd-tmpfiles in the caller domain * Allow virt_driver_domain read files labeled unconfined_t * Allow virt_driver_domain dbus chat with policykit * Allow virtqemud manage nfs files when virt_use_nfs boolean is on * Add rules for interactions between generators * Label memory.pressure files with cgroup_memory_pressure_t * Revert "Allow some systemd services write to cgroup files" * Update policy for systemd-nsresourced * Label /usr/bin/ntfsck with fsadm_exec_t * Allow systemd_fstab_generator_t read tmpfs files * Update policy for systemd-nsresourced * Alias /usr/sbin to /usr/bin and change all /usr/sbin paths to /usr/bin * Remove a few lines duplicated between {dkim,milter}.fc * Alias /bin â /usr/bin and remove redundant paths * Drop duplicate line for /usr/sbin/unix_chkpwd * Drop duplicate paths for /usr/sbin * Update systemd-generator policy * Remove permissive domain for bootupd_t * Remove permissive domain for coreos_installer_t * Remove permissive domain for afterburn_t * Add the sap module to modules.conf * Move unconfined_domain(sap_unconfined_t) to an optional block * Create the sap module * Allow systemd-coredumpd sys_admin and sys_resource capabilities * Allow systemd-coredump read nsfs files * Allow generators auto file transition only for plain files * Allow systemd-hwdb write to the kernel messages device * Escape "interface" as a file name in a virt filetrans pattern * Allow gnome-software work for login_userdomain * Allow systemd-machined manage runtime sockets * Revert "Allow systemd-machined manage runtime sockets" * Allow postfix_domain connect to postgresql over a unix socket * Dontaudit systemd-coredump sys_admin capability - Update container-selinux - Update to version 20240702: * Allow manage dosfs_t files to snapperd (bsc#1224120) * Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records * Add auth_rw_wtmpdb_login_records to modules * Allow xdm_t to read-write to wtmpdb (bsc#1225984) * Introduce types for wtmpdb and rw interface * Introduce wtmp_file_type attribute * Revert "Add policy for wtmpdb (bsc#1210717)" ==== sensors ==== - Add lm_sensors-revert-6b5a19b708.patch which reverts an upstream patch, thus adding back two explicit pointer type-casts. Code without them used to generate mere warnings until this year but causes compiler errors with GCC 14 by default. ==== shim ==== - Update asc files of shim-15.8 after being signed back from Microsoft, including: signature-opensuse.x86_64.asc, signature-opensuse.aarch64.asc, signature-sles.x86_64.asc, signature-sles.aarch64.asc. - Enable aarch64 signature comparison which was disabled temporarily before. Now, we got a real one. So it is enabled again. ==== signon-kwallet-extension ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - No code change since 24.05.1 ==== skopeo ==== Version update (1.15.1 -> 1.16.0) - Update to version 1.16.0: * Bump Skopeo to v1.16.0 * fix(deps): update module github.com/containers/common to v0.60.0 * Drop the toolchain back to 1.21.0 * fix(deps): update module github.com/containers/image/v5 to v5.32.0 * fix(deps): update module github.com/containers/storage to v1.55.0 * chore(deps): update module google.golang.org/grpc to v1.64.1 [security] * fix(deps): update module github.com/containers/common to v0.59.2 * [skip-ci] RPM: spec file cleanup * fix(deps): update module golang.org/x/term to v0.22.0 * fix(deps): update module github.com/containers/ocicrypt to v1.2.0 * fix(deps): update golang.org/x/exp digest to 7f521ea * Bump github.com/hashicorp/go-retryablehttp from 0.7.6 to 0.7.7 * fix(deps): update module github.com/containers/image/v5 to v5.31.1 * fix(deps): update module github.com/spf13/cobra to v1.8.1 * Refer to registry.k8s.io instead of k8s.gcr.io * [CI:DOCS] Update dependency golangci/golangci-lint to v1.59.1 * fix(deps): update module golang.org/x/term to v0.21.0 * fix(deps): update module github.com/containers/common to v0.59.1 * Execute cross-build task using PW pool * fix(deps): update golang.org/x/exp digest to fd00a4e * CI: bump VMs * Don't offer the tarball: transport in completions * [skip-ci] Packit: `packages: [skopeo-fedora]` for podman-next jobs * [CI:DOCS] Update dependency golangci/golangci-lint to v1.59.0 * fix(deps): update module github.com/containers/common to v0.59.0 * Stop using the exclude_graphdriver_devicemapper build tag * fix(deps): update module github.com/containers/image/v5 to v5.31.0 * Update for changed c/image error texts * Update c/image after https://github.com/containers/image/pull/2408 * fix(deps): update module github.com/containers/common to v0.58.3 * hack: Support picking cc and cpp via environment variables. * [CI:DOCS] Update dependency golangci/golangci-lint to v1.58.1 * [skip-ci] RPM: bats requirement only on Fedora * fix(deps): update module golang.org/x/exp to v0.0.0-20240506185415-9bf2ced13842 * [skip-ci] Packit: enable c10s downstream sync * [skip-ci] Packit: delete EL8 jobs * fix(deps): update module golang.org/x/term to v0.20.0 * Add info on Skopeo image to README.md * [CI:DOCS] Update dependency golangci/golangci-lint to v1.58.0 * fix summaries for standalone-sign and standalone-verify * fix(deps): update module golang.org/x/exp to v0.0.0-20240416160154-fe59bbe5cc7f * CI VMs: bump to new versions with tmpfs /tmp * chore(deps): update module golang.org/x/net to v0.23.0 [security] * Use "slices" from the standard library * Update to Go 1.21 * chore: fix function names * Center logo in README.md * fix(deps): update module github.com/containers/common to v0.58.2 * Hard-code the device-mapper graph driver to disabled * Fix issue/pr lock workflow * feat: add `--image-parallel-copies` flag * Use strings.CutSuffix * Use strings.CutPrefix * Update to Go 1.20 * fix(deps): update module golang.org/x/term to v0.19.0 * Freeze the fedora-minimal image reference at Fedora 38 * [CI:DOCS] Update dependency golangci/golangci-lint to v1.57.2 * fix(deps): update module github.com/containers/common to v0.58.1 * [CI:DOCS] Add golang 1.21 update warning * chore(deps): update dependency containers/automation_images to v20240320 * main: return exit code `2` when an input is not found * chore(deps): update module github.com/docker/docker to v25.0.5+incompatible [security] * [CI:DOCS] Update dependency golangci/golangci-lint to v1.57.1 * [CI:DOCS] Update dependency golangci/golangci-lint to v1.57.0 * [skip-ci] rpm: use macro supported vendoring * Bump to v1.16.0-dev - Update to version 1.15.2: * [release-1.15] Bump to v1.15.2 * [release-1.15] Fixes an interoperability issue while listing tags * [skip-ci] Packit: enable c10s downstream sync * Refer to registry.k8s.io instead of k8s.gcr.io ==== snapper ==== Version update (0.11.0 -> 0.11.1) Subpackages: libsnapper7 - handle content-length of stomp in zypper plugin (gh#openSUSE/snapper#918) - version 0.11.1 - fixed error message (gh#openSUSE/snapper#907) ==== sof-firmware ==== Version update (2024.03 -> 2024.06) - update to 2024.06: * Add SOF v2.9 signed binaries for Intel Arrow Lake S * Add sof-v2.10 for Intel hardware * Add SOF v2.10 signed Intel binaries * v2.10.x: remove extra sof-rpl.ri ==== spectacle ==== Version update (24.05.1 -> 24.05.2) - Update to 24.05.2 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.05.2/ - Changes since 24.05.1: * History: fix strict-aliasing warnings by using std::ranges * Rename 24.02.0-change_placeholder_format script ID to 24.05.2-change_placeholder_format (kde#484211) * Prevent TextTool TextEdit shortcuts from being used by the window while TextTool is focused (kde#487740) * AnnotationDocument: Preserve image metadata * ExportManager: Even more handling for empty <title> * ExportManager: remove duplicate dir separators * ExportManager: keep dir separators near <title> (kde#445084) * FilenameTest: use a map and for loops for testing titles instead of copy/pasting strings * Use new placeholder format for the keep_old_filename_templates script * Lock temp dirs while still in use * ConfigUtils: rename continueUpdate to isFileOlderThanDateTime * Fixed warning * Removed unused members * Traits: make getImage a const reference ==== speech-dispatcher ==== - Add speech-dispatcher-pulseaudio-samples.patch: fix for losing samples with pulseaudio. ==== sssd ==== Subpackages: libsss_certmap0 libsss_idmap0 libsss_nss_idmap0 sssd-krb5-common sssd-ldap - Revert the change dropping the default configuration file. If /usr/etc exists will be installed there, otherwise in /etc. (bsc#1226157); ==== sudo ==== - A quick note that bsc#1227574 is expected behavior in this version of sudo. It was a regression in 15.6 which doesn't have the /etc/ split for pam.d yet. ==== suse-module-tools ==== Version update (16.0.45 -> 16.0.48) Subpackages: suse-module-tools-scriptlets - Update to version 16.0.48: * Fix 64k check in check_arm_pagesize() that would cause OBS builds to fail - Update to version 16.0.47: * rpm scriptlets: fix shellcheck warnings - Update to version 16.0.46: * Support for bootloaders that follow the boot loader specification in particular systemd-boot (bsc#1226122) * Spec file: obsolete sdbootutil-rpm-scriptlets, the scriptlets in suse-module-tools-scriptlets have modified to support the systemd-boot / sdbootutil use case, too ==== system-config-printer ==== Subpackages: python3-cupshelpers system-config-printer-common system-config-printer-dbus-service udev-configure-printer - Drop obsolete update-desktop-files BuildRequires and macro. ==== systemd ==== Version update (255.7 -> 256.4) Subpackages: libsystemd0 libudev1 systemd-boot systemd-experimental udev - Import commit 5bba1ebe17564b606cc5d1c07b14123c305019a7 (merge of v256.4) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/bd8b5ee3cf0466b6b78e167967468cf… - Add 5004-disable-session-freeze.patch as a temporary workaround for https://github.com/systemd/systemd/issues/33083 - Add temporarily 5003-core-when-switching-root-remove-run-systemd-before-e.patch (bsc#1227580) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) Otherwise pesign-obs-integration ends up re-packaging systemd with all macros inside comments unescaped leading to unpredictable behavior. Now why rpm expands rpm macros inside comments is the question... - Skip running the test units in %check for now. Some tests don't appreciate to run inside the build environment of OBS currently and some of them take an unexpected long time to execute on both risc and s390x architectures. - Make sure systemd-sysvcompat replaces systemd-sysvinit on upgrades (bsc#1218110) - Import commit bd8b5ee3cf0466b6b78e167967468cf6f93ec807 (merge of v256.2) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/dd15bf4f6430d8646e546ee0b980448… - varlinkctl is no more considered as experimental and has been moved to the main package. - Upgrade to v256.1 (commit dd15bf4f6430d8646e546ee0b980448c7d0c9699) See https://github.com/openSUSE/systemd/blob/SUSE/v256/NEWS for details. - Added pam.systemd-run0 - Import commit 5a8eadd0c021758337a020c423f25a353bdb9b3c (merge of v255.8) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/603cd1d4d81147d4f2eccd5e352064a… - Drop 5003-Revert-run-pass-the-pty-slave-fd-to-transient-servic.patch as v255.8 contains the workaround (commit 639c922ede9485) for the broken commit 28459ba1f4df. ==== systemd-presets-branding-Aeon ==== - Enable aeon-check.service (boo#1228416) ==== systemsettings6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Actually start the KAuth::ExecuteJob (kde#490507) * runner: Don't match if just one query word matches (kde#488676) - Drop patches, now upstream: * 0001-runner-Don-t-match-if-just-one-query-word-matches.patch - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release * Share the qml engine as a qApp property (kde#488326) * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release * Fix sub-category view remaining visible when moving to a top-level KCM (kde#434345) * update version for new release ==== sysuser-tools ==== Version update (3.2 -> 3.3) - usermod: revert renamed arguments - Implement UID:GID support for busybox - Reenable UID:GID support - Disable UID:GID support for now - UID:GID: don't create group with GID if it does not exist - Rewrite UID:GID support to work with busybox and fix it for useradd - Allow setting of UID:GID for as defined in sysusers.d ==== taglib ==== Version update (2.0 -> 2.0.1) - update to 2.0.1: * Fix aborting when _GLIBCXX_ASSERTIONS are enabled. * Fall back to utf8cpp header detection in the case that its CMake configuration is removed. * Improve compatibility with the SWIG interface compiler. * Build system fixes for testing without bindings, Emscripten and Illumos. * C bindings: Fix setting UTF-8 encoded property values. * Windows: Fix opening long paths. ==== tar ==== - Updated tar-fix-extract-unlink.patch * Replace patch with an equivalent upstreamed commit * Fixes bsc#1225407 ==== thin-provisioning-tools ==== Version update (1.0.12 -> 1.0.13) - Update to version 1.0.13: * bump version to 1.0.13 * [io_engine] Remove duplicate code in tests * [build] Update quick-xml to v0.36 * [build] Update dependencies * [doc] Update CHANGES * [thin_check] Correct the number of devices to check in logs * [doc] Update TODO list * [man] Update man page for thin_ls * [io_engine] Add test cases for SyncIoEngine::write_many() * [io_engine] Enlarge the batch size for SyncIoEngine to do vectored write * [io_engine] Use vectored write in sync io * [tests] Use sha256sum to avoid collision * [all] Fix clippy lints * [tests] Fix thin snapshot xml generator * [tests] Fix the mapped_blocks for thins in generated xml * [thin_check] Log the number of exclusive devices in metadata snapshot * [devtools] Fix parsing subcommands through symlinks * deps: bump libc from 0.2.153 to 0.2.155 * [thin_repair] Support repairing device details tree * [tests] Replace duplicate code with utility functions * [thin_repair] Remove unused code * [thin_repair] Preserve the timestamp of stale superblock if needed * [thin_explore] Fix missing version option * Add a nix flake to provide a dev env * [thin_delta] Update comments * [tests] Test cache_check --auto-repair and --clear-needs-check-flag * [tests] Introduce cache_generate_damage * [tests] Add broken pipe tests for cache_dump and era_dump * [cache_check] Extend the --clear-needs-check-flag option to have auto-repair caps * [thin_ls] Support listing the highest mapped block * [btree] Remove unused imports * [btree] Add BTreeIterator type * [*_dump] Simplify the handling of error context * [cache/era_dump] Do not print error messages on BrokenPipe (EPIPE) * [tests] Explicitly set the fifo capacity for triggering EPIPE * [tests] Support leaving TestDir undeleted for debugging failed commands * [tests] Ensure thin_dump's output in broken pipe tests * [tests] Fix closing the pipe fd twice * [tests] Explicitly set the pipe capacity for triggering EPIPE ==== toolbox ==== Version update (2.3+git20231030.3a6ef35 -> 2.3+git20240704.84ec25e) - Update to version 2.3+git20240704.84ec25e: * toolbox: use correct container state tense in msg ==== tpm2.0-abrmd ==== Subpackages: libtss2-tcti-tabrmd0 tpm2.0-abrmd-selinux - Update harden_tpm2-abrmd.service.patch to contain necessary SELinux changes (bsc#1209831) ==== transactional-update ==== Version update (4.6.8 -> 4.7.0) Subpackages: dracut-transactional-update libtukit4 transactional-update-zypp-config tukit tukitd - It seems it's taking a longer time until the tests will be adopted to the new reboot behavior. Disable soft-reboot for now to unblock the regular transactional-update update. - Version 4.7.0 - Add plugin mechanism It's now possible to hook into API functions with custom plugins; see doc/tukit-plugins.md for details. [gh#openSUSE/transactional-update#122] - Fix missing libdir replacement for status command - Enable soft-reboot by default again as announced in https://microos.opensuse.org/blog/2024-06-13-soft-reboot/ ==== upower ==== Version update (1.90.2+15 -> 1.90.4) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Update to version 1.90.4: * Resolved high disk and CPU rate. * Stop guessing the unknown battery as a power supply. * Continue to support lid handling. * Fix org.freedesktop.UPower: EnergyRate is a positive value. * Fix uni-test python script. - Switch to tagged release. - Update BuildRequires minimum versions ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - uncomment "autoreconf --install" to use the new version of automake ==== util-linux-systemd ==== Subpackages: lastlog2 liblastlog2-2 - uncomment "autoreconf --install" to use the new version of automake ==== vim ==== Version update (9.1.0512 -> 9.1.0636) Subpackages: vim-data-common vim-small - Update to 9.1.0636: * 9.1.0636: filetype: ziggy files are not recognized * 9.1.0635: filetype: SuperHTML template files not recognized * 9.1.0634: Ctrl-P not working by default * 9.1.0633: Compilation warnings with `-Wunused-parameter` * 9.1.0632: MS-Windows: Compiler Warnings Add support for Files-Included in syntax script tweak documentation style a bit * 9.1.0631: wrong completion list displayed with non-existing dir + fuzzy completion * 9.1.0630: MS-Windows: build fails with VIMDLL and mzscheme * 9.1.0629: Rename of pum hl_group is incomplete * 9.1.0628: MinGW: coverage files are not cleaned up * 9.1.0627: MinGW: build-error when COVERAGE is enabled * 9.1.0626: Vim9: need more tests with null objects include initial filetype plugin * 9.1.0625: tests: test output all translated messages for all translations * 9.1.0624: ex command modifiers not found * 9.1.0623: Mingw: errors when trying to delete non-existing files * 9.1.0622: MS-Windows: mingw-build can be optimized * 9.1.0621: MS-Windows: startup code can be improved * 9.1.0620: Vim9: segfauls with null objects * 9.1.0619: tests: test_popup fails * 9.1.0618: cannot mark deprecated attributes in completion menu * 9.1.0617: Cursor moves beyond first line of folded end of buffer * 9.1.0616: filetype: Make syntax highlighting off for MS Makefiles * 9.1.0615: Unnecessary STRLEN() in make_percent_swname() Add single-line comment syntax Add syntax test for comments Update maintainer info * 9.1.0614: tests: screendump tests fail due to recent syntax changes * 9.1.0613: tests: termdebug test may fail and leave file around Update base-syntax, improve :set highlighting Optionally highlight the :: token for method references * 9.1.0612: filetype: deno.lock file not recognized Use delete() for deleting directory escape filename before trying to delete it * 9.1.0611: ambiguous mappings not correctly resolved with modifyOtherKeys correctly extract file from zip browser * 9.1.0610: filetype: OpenGL Shading Language files are not detected Fix endless recursion in netrw#Explore() * 9.1.0609: outdated comments in Makefile update syntax script Fix flow mapping key detection Remove orphaned YAML syntax dump files * 9.1.0608: Coverity warns about a few potential issues Update syntax script and remove syn sync * 9.1.0607: termdebug: uses inconsistent style * 9.1.0606: tests: generated files may cause failure in test_codestyle * 9.1.0605: internal error with fuzzy completion * 9.1.0604: popup_filter during Press Enter prompt seems to hang translation: Update Serbian messages translation * 9.1.0603: filetype: use correct extension for Dracula * 9.1.0602: filetype: Prolog detection can be improved fix more inconsistencies in assert function docs * 9.1.0601: Wrong cursor position with 'breakindent' when wide char doesn't fit Update base-syntax, improve :map highlighting * 9.1.0600: Unused function and unused error constants * 9.1.0599: Termdebug: still get E1023 when specifying arguments correct wrong comment options fix typo "a xterm" -> "an xterm" * 9.1.0598: fuzzy completion does not work with default completion * 9.1.0597: KeyInputPre cannot get the (unmapped typed) key * 9.1.0596: filetype: devscripts config files are not recognized gdb file/folder check is now performed only in CWD. quote filename arguments using double quotes update syntax to SDC-standard 2.1 minor updates. Cleanup :match and :loadkeymap syntax test files Update base-syntax, match types in Vim9 variable declarations * 9.1.0595: make errors out with the po Makefile * 9.1.0594: Unnecessary redraw when setting 'winfixbuf' using wrong highlight for UTF-8 include simple syntax plugin * 9.1.0593: filetype: Asymptote files are not recognized add recommended indent options to ftplugin add recommended indent options to ftplugin add recommended indent options to ftplugin * 9.1.0592: filetype: Mediawiki files are not recognized * 9.1.0591: filetype: *.wl files are not recognized * 9.1.0590: Vim9: crash when accessing getregionpos() return value 'cpoptions': Include "z" in the documented default * 9.1.0589: vi: d{motion} and cw work differently than expected update included colorschemes grammar fixes in options.txt - Add "Keywords" to gvim.desktop to make searching for gvim easier - Removed patches, as they're no longer required (refreshing them deleted their contents): * vim-7.3-help_tags.patch * vim-7.4-highlight_fstab.patch - Reorganise all applied patches in the spec file. - Update to 9.1.0588: * 9.1.0588: The maze program no longer compiles on newer clang runtime(typst): Add typst runtime files * 9.1.0587: tests: Test_gui_lowlevel_keyevent is still flaky * 9.1.0586: ocaml runtime files are outdated runtime(termdebug): fix a few issues * 9.1.0585: tests: test_cpoptions leaves swapfiles around * 9.1.0584: Warning about redeclaring f_id() non-static runtime(doc): Add hint how to load termdebug from vimrc ... changelog too long, skipping 137 lines ... * 9.1.0513: Vim9: segfault with object comparison ==== vte ==== - Only apply vte-revert-back-to-c++17.patch for SLE <= 15. ==== vulkan-loader ==== Version update (1.3.283.0 -> 1.3.290) - Update to release SDK-1.3.290 * Remove faulty fallback for unknown functions * tests: Allow test ICD to handle NULL pApplicationInfo * Fix preloaded ICDs being freed with custom allocators * Fix RegCloseKey exeption when double-closing hKeys ==== vulkan-tools ==== Version update (1.3.283.0 -> 1.3.290) - Update to release SDK-1.3.290 * cube: Fix incremental present on swapchain recreate ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 webkit2gtk-4_1-injected-bundles - Add CVE fixes: + webkit2gtk3-CVE-2024-40776.patch (boo#1228613 CVE-2024-40776) + webkit2gtk3-CVE-2024-40779.patch (boo#1228693 CVE-2024-40779) + webkit2gtk3-CVE-2024-40780.patch (boo#1228694 CVE-2024-40780) + webkit2gtk3-CVE-2024-40782.patch (boo#1228695 CVE-2024-40782) - Add 9d5844679af8f84036f1b800307e799bd7ab73ba.patch VA+DMABuf videos flicker ==== webkit2gtk4 ==== Subpackages: libjavascriptcoregtk-6_0-1 libwebkitgtk-6_0-4 webkitgtk-6_0-injected-bundles - Add CVE fixes: + webkit2gtk3-CVE-2024-40776.patch (boo#1228613 CVE-2024-40776) + webkit2gtk3-CVE-2024-40779.patch (boo#1228693 CVE-2024-40779) + webkit2gtk3-CVE-2024-40780.patch (boo#1228694 CVE-2024-40780) + webkit2gtk3-CVE-2024-40782.patch (boo#1228695 CVE-2024-40782) - Add 9d5844679af8f84036f1b800307e799bd7ab73ba.patch VA+DMABuf videos flicker ==== wireplumber ==== Version update (0.5.4+git2.96dc045 -> 0.5.5) Subpackages: libwireplumber-0_5-0 wireplumber-audio - Update to version 0.5.5: * Highlights: - Hotfix release to address crashes in the Bluetooth HSP/HFP autoswitch functionality that were side-effects of some changes that were part of the role-based linking policy (#682) * Improvements: - wpctl will now properly show a '*' in front of sink filters when they are selected as the default sink (!660) ==== wtmpdb ==== Version update (0.12.0+git.20240508 -> 0.13.0+git.20240726) Subpackages: libwtmpdb0 - Update to version 0.13.0+git.20240726: * Release version 0.13.0 * Fix variable overflow and check for it (#15) ==== xdg-desktop-portal-kde6 ==== Version update (6.1.1 -> 6.1.4) - Update to 6.1.4: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.4 - Changes since 6.1.3: * update version for new release * Set up translation for FileDialog * Set timeout on DBus calls to KWin * Inhibit: Forward the correct inhibition flags to PolicyAgent (kde#486506) * remotedesktop: Only show the restore checkbox if the app wants to persist - Update to 6.1.3: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.3 - Changes since 6.1.2: * update version for new release - Update to 6.1.2: * New bugfix release * For more details see https://kde.org/announcements/plasma/6/6.1.2 - Changes since 6.1.1: * update version for new release ==== xdg-utils ==== - Separate xdg-screensaver into a subpackage to isolate Perl dependency (bsc#1216537). ==== xfsprogs ==== Version update (6.8.0 -> 6.9.0) - update to 6.9.0 - xfs_db: Fix uninicialized error variable - mkfs.xfs: avoid potential overflowing expression in xfs_mkfs.c - xfs_io: fix mread with length 1 mod page size - xfs_repair: detect null buf passed to duration - xfs_io: fix gcc complaints about potentially uninitialized variables - xfs_scrub: upload clean bills of health - xfs_spaceman: report health of inode link counts - xfs_repair: reduce rmap bag memory usage when creating refcounts - xfs_repair: log when buffers fail CRC checks even if we just recompute it - xfs_scrub: use multiple threads to run scrubs that scan inodes - xfs_scrub: update health status if we get a clean bill of health - xfs_repair: verify on-disk rmap btrees with in-memory btree data - xfs_scrub: check file link counts - xfs_scrub: implement live quotacheck inode scan - libxfs: provide a kernel-compatible kasprintf - xfs_spaceman: report the health of quota counts - libxfs: partition memfd files to avoid using too many fds - libxfs: add xfile support - libxfs: teach buftargs to maintain their own buffer hashtable - libxfs: kernel sync - ------------------------------------------------------------------ ==== xinit ==== - xinitrc.common: no longer start nvidia-settings in background in order to avoid a zombie process under certain circumstances (boo#1227313) ==== xmlsec1 ==== Version update (1.2.38 -> 1.2.40) Subpackages: libxmlsec1-1 libxmlsec1-openssl1 - Update to 1.2.40 The legacy XML Security Library 1.2.40 release includes the following changes: * (xmlsec-core) Fixed functions deprecated in LibXML2 2.13.1 (including disabling HTTP support by default). * (xmlsec-nss) Increased keys size in all tests to support NSS 3.101. * (windows) Added "ftp" and "http" flags in 'configure.js' (both are disabled by default). * Several other small fixes (more details). - Update to 1.2.39 The legacy XML Security Library 1.2.39 release includes the following changes: * Added options to enable/disable local files, HTTP, and FTP support. FTP is disabled by default. * Several other small fixes (more details). - Remove upstreamed xmlsec1-gcc14.patch ==== xorg-x11-server ==== Subpackages: xorg-x11-server-Xvfb - Added U_xorg-xserver-e89edec497ba.patch to fix incompatible pointer type error with GCC 14. - u_fbdevhw_kernel6.9_break_fbdev_open.patch * Linux kernel v6.9 has changed the symlink to point to the parent device. This breaks fbdev_open() detection logic. Change it to use the subsystem symlink instead which will remain stable (gitlab xserver issue#1714) ==== xterm ==== Version update (389 -> 393) Subpackages: xterm-bin xterm-resize - update to 393: * add a check for ANSI SC/RC, to ignore CSI parameters. * improve check for missing characters for bitmap-fonts * fix regression in error-recovery for SGR parameters * change default for --enable-imake configure option * fixes for wcwidth * eliminate maxStringParse limit for SIXEL * improve logic which ignores APC, PM and SOS controls to also not accumulate their data temporarily in a buffer. * exclude TERM_INGRESS from cleanup of environment variables * fix some documentation typos - update to 392: * improve input decoding for non-Latin1 character sets by preserving the sense of GL/GR. * add resource preferLatin1 to simplify UPSS configuration (Gentoo #932154). * build-fix for --disable-boxchars; patch #390 reuses that feature's code to draw the part of the DEC Technical character set which has no Unicode equivalent. * improve definitions used in clock_gettime logic in graphics_sixel.c, as well as updating comments (patch by Ben Wong). * amend allowC1Printable changes from patch #391, restoring a special case which caused C1 characters to be ignored (report/testcase by Dmytro Bagrii). - update to 391: * improve integration between UTF-8 and allowC1Printable. * alter SIXEL HLS computation to make blue 0 degrees (patch by Ben Wong). * disable SIXEL aspect-ratio, pending a rewrite (patch by Ben Wong). * add resource incrementalGraphics (prompted by patch by Ben Wong). * reorganize graphics_sixel.c as a step toward eliminating graphics buffer-size (integrated patch by Ben Wong). * fix regression in patch #390: non-UTF8 text pasted as a XA_UTF8_STRING was not decoded (report by Petri Kaukasoina). - update to 390: * improve typography of control-sequences page (patches by Branden Robinson). * amend UPSS change from patch #389, fixing a regression in VT100/VT220 character sets. * modify ANSI conformance per ECMA-43 and DEC 070: * set ANSI conformance level to 3 for DEC levels 2 and up. * disable locking shifts in level 1, e.g., VT100. * disable single-shifts from G2/G3 in level 1. * use UPSS for G2/G3 in levels 2 and up. * modify invisible-character attribute to permit DECRQCRA to report a consistent checksum (report/testcase by Thomas Wolff). * align terminfo building blocks in terminfo to correspond to recent refactoring/trimming in ncurses. * set flag in regexec call for onNClicks to handle â^â anchor (patch by Matthew Martin). * add line-drawing data for the characters in DEC Technical which have no Unicode equivalents. * remove a special case in encode_scs which made xterm report Latin-1 when encoding is set to UTF-8, where ASCII is the selected character set. This fixes a regression in vttest for the DECRSPS cursor test. * correct values for Ps of DECAUPSS in ctlseqs.ms (report by James Holderness). * simplify/correct expression for checking Unicode non-characters (report by Thomas Wolff). * correct loop for trimming environment variables (report/patch by Casper Dik). ==== xwayland ==== Version update (24.1.0 -> 24.1.1) - added version specific requirements for dri3proto, presentproto and wayland-protocols - This supersedes the following patches * U_CVE-2024-31080-Xi-ProcXIGetSelectedEvents-needs-to-use-unswapped-le.patch * U_CVE-2024-31081-Xi-ProcXIPassiveGrabDevice-needs-to-use-unswapped-le.patch * U_CVE-2024-31083-render-fix-refcounting-of-glyphs-during-ProcRenderAd.patch * U_render-Avoid-possible-double-free-in-ProcRenderAddGl.patch which fixed security issues * CVE-2024-31080 (bsc#1222309) * CVE-2024-31081 (bsc#1222310) * CVE-2024-31083 (bsc#1222312) and a regression due to a security fix for CVE-2024-31083 (bsc#1222312, boo#1222442, gitlab xserver issue #1659) - Update to bugfix release 24.1.1 for the current stable 24.1 branch of Xwayland * xwayland: fix segment fault in `xwl_glamor_gbm_init_main_dev` * os: Explicitly include X11/Xmd.h for CARD32 definition to fix building on i686 * present: On *BSD, epoll-shim is needed to emulate eventfd() * xwayland: Stop on first unmapped child * xwayland/window-buffers: Promote xwl_window_buffer * xwayland/window-buffers: Add xwl_window_buffer_release() * xwayland/glamor/gbm: Copy explicit sync code to GLAMOR/GBM * xwayland/window-buffers: Use synchronization from GLAMOR/GBM * xwayland/window-buffers: Do not always set syncpnts * xwayland/window-buffers: Move code to submit pixmaps * xwayland/window-buffers: Set syncpnts for all pixmaps * xwayland: Move xwl_window disposal to its own function * xwayland: Make sure we do not leak xwl_window on destroy * wayland/window-buffers: Move buffer disposal to its own function * xwayland/window-buffers: optionally force disposal * wayland: Force disposal of windows buffers for root on destroy * xwayland: Check for pointer in xwl_seat_leave_ptr() * xwayland: remove includedir from pkgconfig ==== yast2 ==== Version update (5.0.8 -> 5.0.9) - Re-added missing error class (bsc#1227580) - 5.0.9 ==== zchunk ==== Version update (1.4.0 -> 1.5.1) - update to 1.5.1: * Stop storing last error when missing zchunk context ==== zenity ==== Version update (4.0.1 -> 4.0.2) - Update to version 4.0.2: + tree: - Enable 'activates-default' in GtkSearchEntry - Don't try to print nonexisting items + main: Fix command-line signal signature + colview: - Return if nth item of row exceeds num items in row - Add more sanity checks - Clicking on column titles should sort items + filesel: - Passing a dir with trailing '/' should open that dir - Allow a non-existing filename with --save and add associated test - Remove spurious extra _show() call + Updated translations. ==== zypp-boot-plugin ==== Version update (0.0.10 -> 0.0.11) - Update to version 0.0.11: * Handle content-length of stomp in zypper plugin (bsc#1227418). ==== zypper ==== Version update (1.14.74 -> 1.14.76) Subpackages: zypper-needs-restarting - Show rpm install size before installing (bsc#1224771) If filesystem snapshots are taken before the installation (e.g. by snapper) no disk space is freed by removing old packages. In this case the install size of all packages is a hint how much additional disk space is needed by the new packages static content. - version 1.14.76 - Fix readline setup to handle Ctrl-C and Ctrl-D corrrectly (bsc#1227205) - version 1.14.75

1 0

One of many MicroOS machines hanging in GRUB after reboot
by Johannes Kastl 07 Aug '24

07 Aug '24

Hi all, for some reason, one of my MicroOS servers is hanging in GRUB after a reboot each day. This has started some days ago, I think on Sunday. I have a monitor connected to the servers, when I power on the monitor I see the GRUB menu just waiting for the confirmation. Hitting enter makes the machine boot properly. I have several MicroOS servers, x86_64, armv7l and aarch64, this particular one is part of a 3-node Kubernetes cluster that gets rebooted by kured. All of the machines should[tm] be configured the same, all were installed (a) year(s) ago and are updated automatically using the transactional-updates.timer. Not sure why the other machines do not show this behaviour, if this was introduced by an update then all machines should show it. Any ideas? Kind Regards, Johannes

2 2

New MicroOS snapshot 20240731 released!
by Richard Brown 02 Aug '24

02 Aug '24

Please note that this mail was generated by a script. The described changes are computed based on the x86_64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=1&version… https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&com… Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: MicroOS-release (20240730 -> 20240731) coreutils coreutils-systemd health-checker (1.10+git20240111.cb84209 -> 1.11+git20240730.5dafd6a) libX11 (1.8.9 -> 1.8.10) libzypp (17.35.1 -> 17.35.6) p11-kit perl-Bootloader (1.13 -> 1.14) python-cryptography (42.0.8 -> 43.0.0) python-pycairo (1.26.0 -> 1.26.1) python311 python311-core runc (1.2.0~rc1 -> 1.2.0~rc2) systemd-presets-branding-Aeon sysuser-tools (3.2 -> 3.3) === Details === ==== MicroOS-release ==== Version update (20240730 -> 20240731) Subpackages: MicroOS-release-appliance MicroOS-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== coreutils ==== - Avoid empty scriptlets ==== coreutils-systemd ==== - Avoid empty scriptlets ==== health-checker ==== Version update (1.10+git20240111.cb84209 -> 1.11+git20240730.5dafd6a) Subpackages: health-checker-plugins-MicroOS - Update to version 1.11+git20240730.5dafd6a: * Add rpm db consistency plugin ==== libX11 ==== Version update (1.8.9 -> 1.8.10) Subpackages: libX11-6 libX11-data libX11-xcb1 - Update to 1.8.10; this release includes: * Re-fix XIM input sometimes jumbled (#205, #206, #207, #208, !246) * Fix various static analysis errors (!250) * Add compose sequences for Arabic hamza (!218), Ezh (!221), and hryvnia currency (!259) * Make colormap private interfaces thread safe (#215, !254) * Fix deadlock in XRebindKeysym() (!256) * Assorted memory handling cleanups (!251, !258) * Restore VAX support still in use by NetBSD (!257) ==== libzypp ==== Version update (17.35.1 -> 17.35.6) - Export CredentialManager for legacy YAST versions (bsc#1228420) - version 17.35.6 (35) - Export asSolvable for YAST (bsc#1228420) - Fix 4 typos in zypp.conf. - version 17.35.5 (35) - Fix typo in the geoip update pipeline (bsc#1228206) - Export RepoVariablesStringReplacer for yast2 (bsc#1228138) - version 17.35.4 (35) - Translation: updated .pot file. - Conflict with python zypp-plugin < 0.6.4 (bsc#1227793) Older zypp-plugins reject stomp headers including a '-'. Like the 'content-length' header we may send. - Fix int overflow in Provider (fixes #559) This patch fixes an issue in safe_strtonum which caused timestamps to overflow in the Provider message parser. - Fix error reporting on repoindex.xml parse error (bsc#1227625) - version 17.35.3 (35) - Keep UrlResolverPlugin API public (fixes #560) - Blacklist /snap executables for 'zypper ps' (bsc#1226014) - Fix handling of buddies when applying locks (bsc#1225267) Buddy pairs (like -release package and product) internally share the same status object. When applying locks from query results the locked bit must be set if either item is locked. - version 17.35.2 (35) ==== p11-kit ==== Subpackages: libp11-kit0 p11-kit-tools - Added a backport of an upstream commit in p11-kit-d938f4a8a3a2.patch to avoid passing an incompatible pointer type to a function which is an error by default in GCC 14. ==== perl-Bootloader ==== Version update (1.13 -> 1.14) - merge gh#openSUSE/perl-bootloader#169 - support grub2-bls (bsc#1226676, bsc#1208135) - better config file reading - add check whether bootloader is supported - unit test output changed, adjust reference data - adjust GRUB_ENABLE_BLSCFG when setting grub2-bls - add config, install, add-kernel, remove-kernel for grub2-bls - support --default option for grub2* - unify cmdline parsing code and move to library - add missing options for bls conforming loaders - updated tests - unify test case names - adjust documentation - 1.14 ==== python-cryptography ==== Version update (42.0.8 -> 43.0.0) - update to 43.0.0: * BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e has been removed. Users on older version of OpenSSL will need to upgrade. * BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1. * Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0. * :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generat e_private_key` now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still considered insecure, users should generally use a key size of 2048-bits. * :func:`~cryptography.hazmat.primitives.serialization.pkcs7.se rialize_certificates` now emits ASN.1 that more closely follows the recommendations in RFC 2315. * Added new :doc:`/hazmat/decrepit/index` module which contains outdated and insecure cryptographic primitives. :class:`~cryp tography.hazmat.primitives.ciphers.algorithms.CAST5`, :class: `~cryptography.hazmat.primitives.ciphers.algorithms.SEED`, :c lass:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA `, and :class:`~cryptography.hazmat.primitives.ciphers.algori thms.Blowfish`, which were deprecated in 37.0.0, have been added to this module. They will be removed from the cipher module in 45.0.0. * Moved :class:`~cryptography.hazmat.primitives.ciphers.algorit hms.TripleDES` and :class:`~cryptography.hazmat.primitives.ci phers.algorithms.ARC4` into :doc:`/hazmat/decrepit/index` and deprecated them in the cipher module. They will be removed from the cipher module in 48.0.0. * Added support for deterministic :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (RFC 6979) * Added support for client certificate verification to the :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the form of :class:`~cryptography.x509.verification.ClientVerifier`, :class:`~cryptography.x509.verification.VerifiedClient`, and PolicyBuilder :meth:`~cryptography.x509.verification.PolicyBu ilder.build_client_verifier`. * Added Certificate :attr:`~cryptography.x509.Certificate.publi c_key_algorithm_oid` and Certificate Signing Request :attr:`~ cryptography.x509.CertificateSigningRequest.public_key_algori thm_oid` to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID` Object Identifier of the public key found inside the certificate. * Added :attr:`~cryptography.x509.InvalidityDate.invalidity_dat e_utc`, a timezone-aware alternative to the naÃ¯ve datetime attribute :attr:`~cryptography.x509.InvalidityDate.invalidity_date`. * Added support for parsing empty DN string in :meth:`~cryptography.x509.Name.from_rfc4514_string`. * Added the following properties that return timezone-aware datetime objects: :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_u tc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_ time_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleResponse. this_update_utc`, :meth:`~cryptography.x509.ocsp.OCSPSingleRe sponse.next_update_utc`, These are timezone-aware variants of existing properties that return naÃ¯ve datetime objects. * Added :func:`~cryptography.hazmat.primitives.asymmetric.rsa.r sa_recover_private_exponent` * Added :meth:`~cryptography.hazmat.primitives.ciphers.CipherCo ntext.reset_nonce` for altering the nonce of a cipher context without initializing a new instance. See the docs for additional restrictions. * :class:`~cryptography.x509.NameAttribute` now raises an exception when attempting to create a common name whose length is shorter or longer than RFC 5280 permits. * Added basic support for PKCS7 encryption (including SMIME) via :class:`~cryptography.hazmat.primitives.serialization.pkc s7.PKCS7EnvelopeBuilder`. - add use-offline-build.patch ==== python-pycairo ==== Version update (1.26.0 -> 1.26.1) - Update to 1.26.1 * Fix Surface.set_mime_data() with Python 3.13 :pr:`366` This also fixes the test suite with Python 3.13b2. * Update vendored Windows wheel dependencies :pr:`370` ==== python311 ==== - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Remove %suse_update_desktop_file macro as it is not useful any more. - Adding bso1227999-reproducible-builds.patch fixing bsc#1227999 adding reproducibility patches from gh#python/cpython!121872 and gh#python/cpython!121883. - Stop using %%defattr, it seems to be breaking proper executable attributes on /usr/bin/ scripts (bsc#1227378). ==== runc ==== Version update (1.2.0~rc1 -> 1.2.0~rc2) - Update to runc v1.2.0~rc2. Upstream changelog is available from <https://github.com/opencontainers/runc/releases/tag/v1.2.0-rc.2>. - Re-allow Go 1.22 builds for >= 1.22.4. - Build with Go 1.21 until the upstream Go 1.22 compatibility issue gets fixed. <https://github.com/opencontainers/runc/issues/4233> ==== systemd-presets-branding-Aeon ==== - Enable aeon-check.service (boo#1228416) ==== sysuser-tools ==== Version update (3.2 -> 3.3) - Allow setting of UID:GID for as defined in sysusers.d

1 0