Please note that this mail was generated by a script. The described changes are computed based on the aarch64 DVD. The full online repo contains too many changes to be listed here. Please check the known defects of this snapshot before upgrading: https://openqa.opensuse.org/tests/overview?distri=microos&groupid=3&version=Tumbleweed&build=20221123 https://bugzilla.opensuse.org/buglist.cgi?product=openSUSE%20Tumbleweed&component=MicroOS&query_format=advanced&resolution=--- Please do not reply to this email to report issues, rather file a bug on bugzilla.opensuse.org. For more information on filing bugs please see https://en.opensuse.org/openSUSE:Submitting_bug_reports Packages changed: grub2 libdrm lsof nfs-utils orc (0.4.32 -> 0.4.33) python-anyio (3.5.0 -> 3.6.2) sudo (1.9.12 -> 1.9.12p1) === Details === ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - Fix regression of reverting back to asking password twice when a keyfile is already used (bsc#1205309) * 0010-templates-import-etc-crypttab-to-grub.cfg.patch ==== libdrm ==== Subpackages: libdrm2 libdrm_amdgpu1 libdrm_nouveau2 libdrm_radeon1 - split n_libdrm-drop-valgrind-dep.patch into n_libdrm-drop-valgrind-dep-generic.patch and n_libdrm-drop-valgrind-dep-intel.patch to fix build on s390 and armv7l - Only apply libdrm-drop-valgrind-dep.patch if valgrnid_support is enabled (fix build on e.g. aarch64). - renamed libdrm-drop-valgrind-dep.patch to n_libdrm-drop-valgrind-dep.patch in order to mark it as 'never to be upstreamed' - Add libdrm-drop-valgrind-dep.patch (as source): drop dependency on valgrind on generated pkgconfig files. The .pc files are auto-generated by meson and are 'technically' correct, but we do not want to inject valgrind here (we can get away with this hack as it's only relevant when using pkg-config --static, and we do not provide static libs anyway). ==== lsof ==== - format.patch: Use correct scanf/printf format for uint64_t - Build with %{optflags} ==== nfs-utils ==== Subpackages: libnfsidmap1 nfs-client - Add 0006-nfsd-allow-server-scope-to-be-set-with-config-or-com.patch Allow server scope to be set - removes the need to run nfsd inside a private UTS namespace for fail-over applications (bsc#1203746) ==== orc ==== Version update (0.4.32 -> 0.4.33) - Update to version 0.4.33: + Add support for aarch64 (64-bit ARM) architecture. + aarch32: Implement loadupdb instruction used e.g. for video pixel format packing/unpacking/conversions. + neon: Fix unsigned only implementation of loadoffb, loadoffw and loadoffl. + neon: Fix testsuite not passing on arm CPUs. + orccodemem: Fix use-after-free in error paths. + orccpu-powerpc: Fix build with kernel < 4.11. + Add support for macOS Hardened Runtime. + Enable only SSE and MMX backends for Windows. + Fix ORC_RESTRICT definition for MSVC. + pkgconfig: add -DORC_STATIC_COMPILATION flag to .pc file for static-only builds. ==== python-anyio ==== Version update (3.5.0 -> 3.6.2) - update to 3.6.2: - Pinned Trio to < 0.22 to avoid incompatibility with AnyIO's ``ExceptionGroup`` class causing ``AttributeError: 'NonBaseMultiError' object has no attribute '_exceptions'`` (AnyIO 4 is unaffected) - Fixed exception handler in the asyncio test runner not properly handling a context that does not contain the ``exception`` key - Fixed ``TypeError`` in ``get_current_task()`` on asyncio when using a custom ``Task`` factory - Updated type annotations on ``run_process()`` and ``open_process()``: * ``command`` now accepts accepts bytes and sequences of bytes * ``stdin``, ``stdout`` and ``stderr`` now accept file-like objects - Changed the pytest plugin to run both the setup and teardown phases of asynchronous generator fixtures within a single task to enable use cases such as cancel scopes and task groups where a context manager straddles the ``yield`` - drop anyio-pytest7.patch (upstream) ==== sudo ==== Version update (1.9.12 -> 1.9.12p1) Subpackages: sudo-plugin-python - Update to 1.9.12p1: * Changes in 1.9.12p1: - Sudo’s configure script now does a better job of detecting when the -fstack-clash-protection compiler option does not work. GitHub issue #191. - Fixed CVE-2022-43995, a potential out-of-bounds write for passwords smaller than 8 characters when passwd authentication is enabled. This does not affect configurations that use other authentication methods such as PAM, AIX authentication or BSD authentication. - Fixed a build error with some configurations compiling host_port.c. * Dropped sudo-CVE-2022-43995.patch