Packages changed: alsa (1.2.5.1 -> 1.2.6.1) at-spi2-core bash c-ares (1.17.2 -> 1.18.1) cloud-init colord freetype2 (2.11.0 -> 2.11.1) gcc11 (11.2.1+git610 -> 11.2.1+git1018) gettext-runtime glib-networking (2.70.0 -> 2.70.1) glib2 (2.70.1 -> 2.70.2) glibc grub2 harfbuzz (2.9.1 -> 3.1.1) hidapi (0.10.1 -> 0.11.0) installation-images-MicroOS (17.27 -> 17.28) k9s (0.25.6 -> 0.25.8) kernel-firmware (20211115 -> 20211123) kernel-source (5.15.5 -> 5.15.7) keylime kmod libX11 (1.7.2 -> 1.7.3.1) libXfixes libcap-ng (0.7.10 -> 0.7.11) libedit (3.1.snap20180525 -> 20210910.3.1) libffi (3.3.git30 -> 3.4.2) libxcrypt (4.4.25 -> 4.4.26) makedumpfile mozjs78 (78.14.0 -> 78.15.0) multipath-tools (0.8.7+14+suse.5a09bfa -> 0.8.8+38+suse.2bdd3a14) nvme-cli (1.15 -> 1.16) openssl-1_1 podman (3.4.2 -> 3.4.4) polkit (0.118 -> 0.120) python-Mako (1.1.5 -> 1.1.6) python-alembic (1.7.4 -> 1.7.5) python-charset-normalizer (2.0.8 -> 2.0.9) python-cryptography (3.4.8 -> 36.0.0) python-dragonmapper python-importlib-metadata (4.8.1 -> 4.8.2) python-jsonpointer (2.1 -> 2.2) python-loguru python-matplotlib python-networkx python-numpy (1.21.2 -> 1.21.4) python-pyOpenSSL python-pybind11 (2.8.0 -> 2.8.1) python-pycparser (2.20 -> 2.21) python-pyparsing (2.4.7 -> 3.0.6) python-python-gnupg (0.4.7 -> 0.4.8) python-simplejson (3.17.5 -> 3.17.6) python-tornado6 qemu rdma-core (37.1 -> 38.0) runc (1.0.2 -> 1.0.3) sudo (1.9.7p2 -> 1.9.8p2) suse-module-tools (16.0.14+2 -> 16.0.16) systemd-presets-common-SUSE tpm2-0-tss tpm2.0-abrmd tpm2.0-tools u-boot-rpiarm64 yast2 (4.4.22 -> 4.4.27) === Details === ==== alsa ==== Version update (1.2.5.1 -> 1.2.6.1) - Update to version 1.2.6.1: a minor fix release: * conf: fix the device parsing when arguments has no defaults * conf: accept '_' character in the variable name - Update to version 1.2.6: lots of changes, including UCM and config updates and rawmidi framing mode support: for details, see below https://www.alsa-project.org/wiki/Changes_v1.2.5.1_v1.2.6#alsa-lib - Add *.sig file for the source tarball ==== at-spi2-core ==== Subpackages: libatspi0 - Configure to use dbus-broker when available. - Add libsystemd to BuildRequires: needed for dbus-broker support. ==== bash ==== Subpackages: bash-sh - avoid duplicating COPYING file in bash-doc (already in main package in licensedir) ==== c-ares ==== Version update (1.17.2 -> 1.18.1) - update to 1.18.1. Changes since 1.17.2: * Allow '/' as a valid character for a returned name for CNAME in-addr.arpa delegation * no longer forwards requests for localhost resolution per RFC6761 * During a domain search, treat ARES_ENODATA as ARES_NXDOMAIN so that the search process will continue to the next domain in the search. * Provide ares_nameser.h as a public interface as needed by NodeJS * Add support for URI(Uniform Resource Identifier) records via ares_parse_uri_reply() - disable unit tests for SLE12 since GCC compiler too old to build unit tests - 5c995d5.patch: upstreamed - disable-live-tests.patch: refreshed ==== cloud-init ==== - Remove unneeded BuildRequires on python3-nose. ==== colord ==== - Change to systemd-sysusers ==== freetype2 ==== Version update (2.11.0 -> 2.11.1) - update to 2.11.1: * Some fields in the `CID_FaceDictRec`, `CID_FaceInfoRec`, and `FT_Data` structures have been changed from signed to unsigned type, which better reflects the actual usage. It is also an additional means to protect against malformed input. * Cmake support has been further improved. To do that various backward-incompatible changes were necessary; please see file `CMakeLists.txt` for more details. * The experimental 'COLR' v1 API has been updated to the latest OpenType standard 1.9. ==== gcc11 ==== Version update (11.2.1+git610 -> 11.2.1+git1018) Subpackages: libgcc_s1 libgfortran5 libgomp1 libstdc++6 - Enable the cross compilers also on i586 - Enable some cross compilers also in rings - Remove cross compilers for i386 target - Update to gcc-11 branch head (7510c23c1ec53aa4a62705f03), git1018 * fixes issue with debug dumping together with -o /dev/null * fixes libgccjit issue showing up in emacs build [boo#1192951] - Package mwaitintrin.h - Remove spurious exit from change_spec. - Enable the full cross compiler, cross-aarch64-gcc11 and cross-riscv64-gcc11 now provide a fully hosted C (and C++) cross compiler, not just a freestanding one. I.e. with a cross glibc. They don't yet support the sanitizer libraries. Part of [jsc#OBS-124]. ==== gettext-runtime ==== Subpackages: libtextstyle0 - Remove libcroco from BuildRequires: it is now bundled internally. ==== glib-networking ==== Version update (2.70.0 -> 2.70.1) - Update to version 2.70.1: + Fix crashes when handshake is cancelled + OpenSSL: fix spurious certificate expired verification errors + GnuTLS: - Fix tests on 32-bit systems - Fix crash when invalid priority string is forced - Add check section and run meson_test macro during build. ==== glib2 ==== Version update (2.70.1 -> 2.70.2) Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Update to version 2.70.2: + Fix use of the default log writer with journald namespaces + Fix hang in `dbus-daemon` under `GTestDBus` when `G_MESSAGES_DEBUG=all` is set + Speed up `g_canonicalize_filename()` to avoid pathogenic cases with `..` + Fix URI for pcre subproject as it?s moved upstream + Fix storing GSettings dictionaries on macOS + Speed up ?remove dot segments? algorithm in `GUri` to avoid pathogenic cases with `..` + Fix infinite loops in D-Bus message parsing for truncated inputs + Improve correctness of version information returned by `g_get_os_info()` for Windows 10/Server 2019+ + Bugs fixed: glgo#GNOME/GLib#2400, glgo#GNOME/GLib#2426, glgo#GNOME/GLib#2528, glgo#GNOME/GLib#2530, glgo#GNOME/GLib#2537, glgo#GNOME/GLib#2541, glgo#GNOME/GLib!2312, glgo#GNOME/GLib!2313, glgo#GNOME/GLib!2314, glgo#GNOME/GLib!2316, glgo#GNOME/GLib!2320, glgo#GNOME/GLib!2335, glgo#GNOME/GLib!2337, glgo#GNOME/GLib!2340, glgo#GNOME/GLib!2344, glgo#GNOME/GLib!2356, glgo#GNOME/GLib!2359, glgo#GNOME/GLib!2361, glgo#GNOME/GLib!2363, glgo#GNOME/GLib!2366, glgo#GNOME/GLib!2375, glgo#GNOME/GLib!2383. + Updated translations. - Stop passing fam=true to meson and drop gamin-devel BuildRequires, following upstream default. Following this, drop libgio-fam sub-package. ==== glibc ==== Subpackages: glibc-locale-base - Enable building the cross packages in rings. ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin - Add support for simplefb (boo#1193532). + grub2-simplefb.patch - Fix extent not found when initramfs contains shared extents (bsc#1190982) * 0001-fs-btrfs-Make-extent-item-iteration-to-handle-gaps.patch ==== harfbuzz ==== Version update (2.9.1 -> 3.1.1) - Update to version 3.1.1: + Work around GCC cast-align error/warning on some platforms. + Documentation improvements. - Drop patch fixed upstream: + harfbuzz-3.1.0-work-around-GCC-cast-align-error-warning.patch - harfbuzz 3.1.0: * Better offset-overflow handling in the subsetter library * Improved Unicode 14 properties in the USE shaper, and various other USE shaper fixes * MATH and COLR v1 tables subsetting support, and various other subsetter fixes * Support for Pwo Karen / Ason Chin medial la. (Simon Cozens) * Apply GPOS positioning when substituting with morx table, if kerx is missing * Apply calt and clig features across syllable boundaries in Indic shaper * Meson option for enabling Graphite 2 has been renamed to graphite2 * Build and documentation fixes - add harfbuzz-3.1.0-work-around-GCC-cast-align-error-warning.patch - harfbuzz 3.0.0: + Unicode 14.0 support + hb-subset API and harfbuzz-subset ABI now declared stable + hb-style API is now stable ==== hidapi ==== Version update (0.10.1 -> 0.11.0) - update to 0.11.0: * hidraw: (explicit) workaround to allow build with kernels older than 2.6.39 * libusb: stabilize device path (uses same semantic as Linux kernel) * libusb: add platform-specific hid_libusb_wrap_sys_device * general: lots of documentation improvements * general: (Windows) DDK build files are obsolete * general: add CMake build system * general: deprecated Autotools build scripts * lots of other small fixes and improvements - remove 0001-configure.ac-remove-duplicate-AC_CONFIG_MACRO_DIR-22.patch (obsolete) ==== installation-images-MicroOS ==== Version update (17.27 -> 17.28) - merge gh#openSUSE/installation-images#551 - Update _constraint to avoid to swap in order to speed up the builds - 17.28 ==== k9s ==== Version update (0.25.6 -> 0.25.8) - Update to version 0.25.8: * release v0.25.8 (#1354) * add logFile flag to change the default log file path (#1336) * Support colors on Windows (#1312) - Update to version 0.25.7: - Bug fixes * Issue #1341 Colored container logs are not displayed correctly See more: https://github.com/derailed/k9s/releases/tag/v0.25.7 ==== kernel-firmware ==== Version update (20211115 -> 20211123) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20211123: * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9462 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX211 * linux-firmware: Update firmware file for Intel Bluetooth AX210 * linux-firmware: Update firmware file for Intel Bluetooth 9560 * linux-firmware: Update firmware file for Intel Bluetooth 9260 * linux-firmware: Update firmware file for Intel Bluetooth AX200 * linux-firmware: Update firmware file for Intel Bluetooth AX201 * amdgpu: update yellow carp dmcub firmware * amdgpu: update vangogh DMCUB firmware * Update ath10k/QCA6174/hw3.0/board-2.bin * mrvl: prestera: Update Marvell Prestera Switchdev v4.0 * QCA: Add Bluetooth firmware for WCN685x - Fix the script to adapt ZSTD compressed modules (jsc#SLE-21256) - Update _service to follow branch main instead - Update aliases ==== kernel-source ==== Version update (5.15.5 -> 5.15.7) - Linux 5.15.7 (bsc#1012628). - ALSA: usb-audio: Rename early_playback_start flag with lowlatency_playback (bsc#1012628). - ALSA: usb-audio: Disable low-latency playback for free-wheel mode (bsc#1012628). - ALSA: usb-audio: Disable low-latency mode for implicit feedback sync (bsc#1012628). - ALSA: usb-audio: Check available frames for the next packet size (bsc#1012628). - ALSA: usb-audio: Add spinlock to stop_urbs() (bsc#1012628). - ALSA: usb-audio: Improved lowlatency playback support (bsc#1012628). - ALSA: usb-audio: Avoid killing in-flight URBs during draining (bsc#1012628). - ALSA: usb-audio: Fix packet size calculation regression (bsc#1012628). - ALSA: usb-audio: Less restriction for low-latency playback mode (bsc#1012628). - ALSA: usb-audio: Switch back to non-latency mode at a later point (bsc#1012628). - ALSA: usb-audio: Don't start stream for capture at prepare (bsc#1012628). - gfs2: release iopen glock early in evict (bsc#1012628). - gfs2: Fix length of holes reported at end-of-file (bsc#1012628). - powerpc/pseries/ddw: Revert "Extend upper limit for huge DMA window for persistent memory" (bsc#1012628). - powerpc/pseries/ddw: Do not try direct mapping with persistent memory and one window (bsc#1012628). - drm/sun4i: fix unmet dependency on RESET_CONTROLLER for PHY_SUN6I_MIPI_DPHY (bsc#1012628). - mac80211: do not access the IV when it was stripped (bsc#1012628). - mac80211: fix throughput LED trigger (bsc#1012628). - x86/hyperv: Move required MSRs check to initial platform probing (bsc#1012628). - net/smc: Transfer remaining wait queue entries during fallback (bsc#1012628). - atlantic: Fix OOB read and write in hw_atl_utils_fw_rpc_wait (bsc#1012628). - net: return correct error code (bsc#1012628). - pinctrl: qcom: fix unmet dependencies on GPIOLIB for GPIOLIB_IRQCHIP (bsc#1012628). - platform/x86: dell-wmi-descriptor: disable by default (bsc#1012628). - platform/x86: thinkpad_acpi: Add support for dual fan control (bsc#1012628). - platform/x86: thinkpad_acpi: Fix WWAN device disabled issue after S3 deep (bsc#1012628). - s390/setup: avoid using memblock_enforce_memory_limit (bsc#1012628). - btrfs: silence lockdep when reading chunk tree during mount (bsc#1012628). - btrfs: check-integrity: fix a warning on write caching disabled disk (bsc#1012628). - thermal: core: Reset previous low and high trip during thermal zone init (bsc#1012628). - scsi: iscsi: Unblock session then wake up error handler (bsc#1012628). - net: usb: r8152: Add MAC passthrough support for more Lenovo Docks (bsc#1012628). - drm/amd/pm: Remove artificial freq level on Navi1x (bsc#1012628). - drm/amd/amdkfd: Fix kernel panic when reset failed and been triggered again (bsc#1012628). - drm/amd/amdgpu: fix potential memleak (bsc#1012628). - ata: ahci: Add Green Sardine vendor ID as board_ahci_mobile (bsc#1012628). - ata: libahci: Adjust behavior when StorageD3Enable _DSD is set (bsc#1012628). - ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (bsc#1012628). - ipv6: check return value of ipv6_skip_exthdr (bsc#1012628). - net: tulip: de4x5: fix the problem that the array 'lp->phy[8]' may be out of bound (bsc#1012628). - net: ethernet: dec: tulip: de4x5: fix possible array overflows in type3_infoblock() (bsc#1012628). - perf sort: Fix the 'weight' sort key behavior (bsc#1012628). - perf sort: Fix the 'ins_lat' sort key behavior (bsc#1012628). - perf sort: Fix the 'p_stage_cyc' sort key behavior (bsc#1012628). - perf inject: Fix ARM SPE handling (bsc#1012628). - perf hist: Fix memory leak of a perf_hpp_fmt (bsc#1012628). - perf report: Fix memory leaks around perf_tip() (bsc#1012628). - tracing: Don't use out-of-sync va_list in event printing (bsc#1012628). - net/smc: Avoid warning of possible recursive locking (bsc#1012628). - ACPI: Add stubs for wakeup handler functions (bsc#1012628). - net/tls: Fix authentication failure in CCM mode (bsc#1012628). - vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit (bsc#1012628). - kprobes: Limit max data_size of the kretprobe instances (bsc#1012628). - ALSA: hda/cs8409: Set PMSG_ON earlier inside cs8409 driver (bsc#1012628). - rt2x00: do not mark device gone on EPROTO errors during start (bsc#1012628). - ipmi: Move remove_work to dedicated workqueue (bsc#1012628). - cpufreq: Fix get_cpu_device() failure in add_cpu_dev_symlink() (bsc#1012628). - iwlwifi: mvm: retry init flow if failed (bsc#1012628). - dma-buf: system_heap: Use 'for_each_sgtable_sg' in pages free flow (bsc#1012628). - s390/pci: move pseudo-MMIO to prevent MIO overlap (bsc#1012628). - fget: check that the fd still exists after getting a ref to it (bsc#1012628). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (bsc#1012628). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (bsc#1012628). - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (bsc#1012628). - scsi: ufs: ufs-pci: Add support for Intel ADL (bsc#1012628). - ipv6: fix memory leak in fib6_rule_suppress (bsc#1012628). - drm/amd/display: Allow DSC on supported MST branch devices (bsc#1012628). - drm/i915/dp: Perform 30ms delay after source OUI write (bsc#1012628). - KVM: fix avic_set_running for preemptable kernels (bsc#1012628). - KVM: Disallow user memslot with size that exceeds "unsigned long" (bsc#1012628). - KVM: x86/mmu: Fix TLB flush range when handling disconnected pt (bsc#1012628). - KVM: Ensure local memslot copies operate on up-to-date arch-specific data (bsc#1012628). - KVM: x86: ignore APICv if LAPIC is not enabled (bsc#1012628). - KVM: nVMX: Emulate guest TLB flush on nested VM-Enter with new vpid12 (bsc#1012628). - KVM: nVMX: Flush current VPID (L1 vs. L2) for KVM_REQ_TLB_FLUSH_GUEST (bsc#1012628). - KVM: nVMX: Abide to KVM_REQ_TLB_FLUSH_GUEST request on nested vmentry/vmexit (bsc#1012628). - KVM: VMX: prepare sync_pir_to_irr for running with APICv disabled (bsc#1012628). - KVM: x86: Use a stable condition around all VT-d PI paths (bsc#1012628). - KVM: MMU: shadow nested paging does not have PKU (bsc#1012628). - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 to 1 (bsc#1012628). - KVM: X86: Use vcpu->arch.walk_mmu for kvm_mmu_invlpg() (bsc#1012628). - KVM: x86: check PIR even for vCPUs with disabled APICv (bsc#1012628). - tracing/histograms: String compares should not care about signed values (bsc#1012628). - net: dsa: mv88e6xxx: Fix application of erratum 4.8 for 88E6393X (bsc#1012628). - net: dsa: mv88e6xxx: Drop unnecessary check in mv88e6393x_serdes_erratum_4_6() (bsc#1012628). - net: dsa: mv88e6xxx: Save power by disabling SerDes trasmitter and receiver (bsc#1012628). - net: dsa: mv88e6xxx: Add fix for erratum 5.2 of 88E6393X family (bsc#1012628). - net: dsa: mv88e6xxx: Fix inband AN for 2500base-x on 88E6393X family (bsc#1012628). - net: dsa: mv88e6xxx: Link in pcs_get_state() if AN is bypassed (bsc#1012628). - wireguard: selftests: increase default dmesg log size (bsc#1012628). - wireguard: allowedips: add missing __rcu annotation to satisfy sparse (bsc#1012628). - wireguard: selftests: actually test for routing loops (bsc#1012628). - wireguard: selftests: rename DEBUG_PI_LIST to DEBUG_PLIST (bsc#1012628). - wireguard: device: reset peer src endpoint when netns exits (bsc#1012628). - wireguard: receive: use ring buffer for incoming handshakes (bsc#1012628). - wireguard: receive: drop handshakes if queue lock is contended (bsc#1012628). - wireguard: ratelimiter: use kvcalloc() instead of kvzalloc() (bsc#1012628). - i2c: stm32f7: flush TX FIFO upon transfer errors (bsc#1012628). - i2c: stm32f7: recover the bus on access timeout (bsc#1012628). - i2c: stm32f7: stop dma transfer in case of NACK (bsc#1012628). - i2c: cbus-gpio: set atomic transfer callback (bsc#1012628). - natsemi: xtensa: fix section mismatch warnings (bsc#1012628). - tcp: fix page frag corruption on page fault (bsc#1012628). - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (bsc#1012628). - net: mpls: Fix notifications when deleting a device (bsc#1012628). - siphash: use _unaligned version by default (bsc#1012628). - arm64: ftrace: add missing BTIs (bsc#1012628). - iwlwifi: fix warnings produced by kernel debug options (bsc#1012628). - net/mlx5e: IPsec: Fix Software parser inner l3 type setting in case of encapsulation (bsc#1012628). - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() (bsc#1012628). - selftests: net: Correct case name (bsc#1012628). - net: dsa: b53: Add SPI ID table (bsc#1012628). - mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode (bsc#1012628). - ASoC: tegra: Fix wrong value type in ADMAIF (bsc#1012628). - ASoC: tegra: Fix wrong value type in I2S (bsc#1012628). - ASoC: tegra: Fix wrong value type in DMIC (bsc#1012628). - ASoC: tegra: Fix wrong value type in DSPK (bsc#1012628). - ASoC: tegra: Fix kcontrol put callback in ADMAIF (bsc#1012628). - ASoC: tegra: Fix kcontrol put callback in I2S (bsc#1012628). - ASoC: tegra: Fix kcontrol put callback in DMIC (bsc#1012628). - ASoC: tegra: Fix kcontrol put callback in DSPK (bsc#1012628). - ASoC: tegra: Fix kcontrol put callback in AHUB (bsc#1012628). - rxrpc: Fix rxrpc_peer leak in rxrpc_look_up_bundle() (bsc#1012628). - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1012628). - ALSA: intel-dsp-config: add quirk for CML devices based on ES8336 codec (bsc#1012628). - net: stmmac: Avoid DMA_CHAN_CONTROL write if no Split Header support (bsc#1012628). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (bsc#1012628). - net: marvell: mvpp2: Fix the computation of shared CPUs (bsc#1012628). - dpaa2-eth: destroy workqueue at the end of remove function (bsc#1012628). - octeontx2-af: Fix a memleak bug in rvu_mbox_init() (bsc#1012628). - net: annotate data-races on txq->xmit_lock_owner (bsc#1012628). - ipv4: convert fib_num_tclassid_users to atomic_t (bsc#1012628). - net/smc: fix wrong list_del in smc_lgr_cleanup_early (bsc#1012628). - net/rds: correct socket tunable error in rds_tcp_tune() (bsc#1012628). - net/smc: Keep smc_close_final rc during active close (bsc#1012628). - drm/msm/a6xx: Allocate enough space for GMU registers (bsc#1012628). - drm/msm: Do hw_init() before capturing GPU state (bsc#1012628). - drm/vc4: kms: Wait for the commit before increasing our clock rate (bsc#1012628). - drm/vc4: kms: Fix return code check (bsc#1012628). - drm/vc4: kms: Add missing drm_crtc_commit_put (bsc#1012628). - drm/vc4: kms: Clear the HVS FIFO commit pointer once done (bsc#1012628). - drm/vc4: kms: Don't duplicate pending commit (bsc#1012628). - drm/vc4: kms: Fix previous HVS commit wait (bsc#1012628). - atlantic: Increase delay for fw transactions (bsc#1012628). - atlatnic: enable Nbase-t speeds with base-t (bsc#1012628). - atlantic: Fix to display FW bundle version instead of FW mac version (bsc#1012628). - atlantic: Add missing DIDs and fix 115c (bsc#1012628). - Remove Half duplex mode speed capabilities (bsc#1012628). - atlantic: Fix statistics logic for production hardware (bsc#1012628). - atlantic: Remove warn trace message (bsc#1012628). - KVM: x86/mmu: Skip tlb flush if it has been done in zap_gfn_range() (bsc#1012628). - KVM: x86/mmu: Pass parameter flush as false in kvm_tdp_mmu_zap_collapsible_sptes() (bsc#1012628). - drm/msm/devfreq: Fix OPP refcnt leak (bsc#1012628). - drm/msm: Fix mmap to include VM_IO and VM_DONTDUMP (bsc#1012628). - drm/msm: Fix wait_fence submitqueue leak (bsc#1012628). - drm/msm: Restore error return on invalid fence (bsc#1012628). - ASoC: rk817: Add module alias for rk817-codec (bsc#1012628). - iwlwifi: Fix memory leaks in error handling path (bsc#1012628). - KVM: X86: Fix when shadow_root_level=5 && guest root_level<4 (bsc#1012628). - KVM: SEV: initialize regions_list of a mirror VM (bsc#1012628). - net/mlx5e: Fix missing IPsec statistics on uplink representor (bsc#1012628). - net/mlx5: Move MODIFY_RQT command to ignore list in internal error state (bsc#1012628). - net/mlx5: E-switch, Respect BW share of the new group (bsc#1012628). - net/mlx5: E-Switch, fix single FDB creation on BlueField (bsc#1012628). - net/mlx5: E-Switch, Check group pointer before reading bw_share value (bsc#1012628). - KVM: x86/pmu: Fix reserved bits for AMD PerfEvtSeln register (bsc#1012628). - KVM: VMX: Set failure code in prepare_vmcs02() (bsc#1012628). - mctp: Don't let RTM_DELROUTE delete local routes (bsc#1012628). - Revert "drm/i915: Implement Wa_1508744258" (bsc#1012628). - io-wq: don't retry task_work creation failure on fatal conditions (bsc#1012628). - x86/sev: Fix SEV-ES INS/OUTS instructions for word, dword, and qword (bsc#1012628). - x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (bsc#1012628). - x86/entry: Use the correct fence macro after swapgs in kernel CR3 (bsc#1012628). - x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (bsc#1012628). - preempt/dynamic: Fix setup_preempt_mode() return value (bsc#1012628). - sched/uclamp: Fix rq->uclamp_max not set on first enqueue (bsc#1012628). - KVM: SEV: Return appropriate error codes if SEV-ES scratch setup fails (bsc#1012628). - KVM: x86/mmu: Rename slot_handle_leaf to slot_handle_level_4k (bsc#1012628). - KVM: x86/mmu: Remove spurious TLB flushes in TDP MMU zap collapsible path (bsc#1012628). - net/mlx5e: Rename lro_timeout to packet_merge_timeout (bsc#1012628). - net/mlx5e: Rename TIR lro functions to TIR packet merge functions (bsc#1012628). - net/mlx5e: Sync TIR params updates against concurrent create/modify (bsc#1012628). - serial: 8250_bcm7271: UART errors after resuming from S2 (bsc#1012628). - parisc: Fix KBUILD_IMAGE for self-extracting kernel (bsc#1012628). - parisc: Fix "make install" on newer debian releases (bsc#1012628). - parisc: Mark cr16 CPU clocksource unstable on all SMP machines (bsc#1012628). - vgacon: Propagate console boot parameters before calling `vc_resize' (bsc#1012628). - USB: NO_LPM quirk Lenovo Powered USB-C Travel Hub (bsc#1012628). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (bsc#1012628). - usb: cdns3: gadget: fix new urb never complete if ep cancel previous requests (bsc#1012628). - usb: cdnsp: Fix a NULL pointer dereference in cdnsp_endpoint_init() (bsc#1012628). - x86/tsc: Add a timer to make sure TSC_adjust is always checked (bsc#1012628). - x86/tsc: Disable clocksource watchdog for TSC on qualified platorms (bsc#1012628). - x86/64/mm: Map all kernel memory into trampoline_pgd (bsc#1012628). - tty: serial: msm_serial: Deactivate RX DMA for polling support (bsc#1012628). - serial: pl011: Add ACPI SBSA UART match id (bsc#1012628). - serial: tegra: Change lower tolerance baud rate limit for tegra20 and tegra30 (bsc#1012628). - serial: core: fix transmit-buffer reset and memleak (bsc#1012628). - serial: 8250_pci: Fix ACCES entries in pci_serial_quirks array (bsc#1012628). - serial: 8250_pci: rewrite pericom_do_set_divisor() (bsc#1012628). - serial: 8250: Fix RTS modem control while in rs485 mode (bsc#1012628). - serial: liteuart: Fix NULL pointer dereference in ->remove() (bsc#1012628). - serial: liteuart: fix use-after-free and memleak on unbind (bsc#1012628). - serial: liteuart: fix minor-number leak on probe errors (bsc#1012628). - ipmi: msghandler: Make symbol 'remove_work_wq' static (bsc#1012628). - Refresh patches.suse/suse-hv-guest-os-id.patch. - commit b92986a - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - commit 0f8ae34 - Bluetooth: Apply initial command workaround for more Intel chips (bsc#83f2dafe2a62). - commit dc51f96 - rpm/kernel-binary.spec.in: don't strip vmlinux again (bsc#1193306) After usrmerge, vmlinux file is not named vmlinux-, but simply vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set. So fix this by removing the dash... - commit 83af88d - Linux 5.15.6 (bsc#1012628). - drm/amdgpu/gfx9: switch to golden tsc registers for renoir+ (bsc#1012628). - drm/amdgpu/gfx10: add wraparound gpu counter check for APUs as well (bsc#1012628). - block: avoid to quiesce queue in elevator_init_mq (bsc#1012628). - blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release() (bsc#1012628). - docs: accounting: update delay-accounting.rst reference (bsc#1012628). - firmware: arm_scmi: Fix type error in sensor protocol (bsc#1012628). - firmware: arm_scmi: Fix type error assignment in voltage protocol (bsc#1012628). - io_uring: fix soft lockup when call __io_remove_buffers (bsc#1012628). - cifs: nosharesock should be set on new server (bsc#1012628). - tracing: Check pid filtering when creating events (bsc#1012628). - ksmbd: Fix an error handling path in 'smb2_sess_setup()' (bsc#1012628). - vhost/vsock: fix incorrect used length reported to the guest (bsc#1012628). - vdpa_sim: avoid putting an uninitialized iova_domain (bsc#1012628). - iommu/amd: Clarify AMD IOMMUv2 initialization messages (bsc#1012628). - ceph: properly handle statfs on multifs setups (bsc#1012628). - cifs: nosharesock should not share socket with future sessions (bsc#1012628). - riscv: dts: microchip: drop duplicated MMC/SDHC node (bsc#1012628). - riscv: dts: microchip: fix board compatible (bsc#1012628). - f2fs: set SBI_NEED_FSCK flag when inconsistent node block found (bsc#1012628). - f2fs: quota: fix potential deadlock (bsc#1012628). - iommu/vt-d: Fix unmap_pages support (bsc#1012628). - iommu/rockchip: Fix PAGE_DESC_HI_MASKs for RK3568 (bsc#1012628). - sched/scs: Reset task stack state in bringup_cpu() (bsc#1012628). - perf: Ignore sigtrap for tracepoints destined for other tasks (bsc#1012628). - locking/rwsem: Make handoff bit handling more consistent (bsc#1012628). - net: mscc: ocelot: correctly report the timestamping RX filters in ethtool (bsc#1012628). - net: mscc: ocelot: don't downgrade timestamping RX filters in SIOCSHWTSTAMP (bsc#1012628). - net: hns3: fix incorrect components info of ethtool --reset command (bsc#1012628). - net: hns3: fix VF RSS failed problem after PF enable multi-TCs (bsc#1012628). - net/smc: Don't call clcsock shutdown twice when smc shutdown (bsc#1012628). - net: vlan: fix underflow for the real_dev refcnt (bsc#1012628). - ethtool: ioctl: fix potential NULL deref in ethtool_set_coalesce() (bsc#1012628). - net/sched: sch_ets: don't peek at classes beyond 'nbands' (bsc#1012628). - net: stmmac: Disable Tx queues when reconfiguring the interface (bsc#1012628). - tls: fix replacing proto_ops (bsc#1012628). - tls: splice_read: fix accessing pre-processed records (bsc#1012628). - tls: splice_read: fix record type check (bsc#1012628). - MIPS: use 3-level pgtable for 64KB page size on MIPS_VA_BITS_48 (bsc#1012628). - MIPS: loongson64: fix FTLB configuration (bsc#1012628). - igb: fix netpoll exit with traffic (bsc#1012628). - nvmet: use IOCB_NOWAIT only if the filesystem supports it (bsc#1012628). - net/smc: Fix loop in smc_listen (bsc#1012628). - net/smc: Fix NULL pointer dereferencing in smc_vlan_by_tcpsk() (bsc#1012628). - net: phylink: Force retrigger in case of latched link-fail indicator (bsc#1012628). - net: phylink: Force link down and retrigger resolve on interface change (bsc#1012628). - lan743x: fix deadlock in lan743x_phy_link_status_change() (bsc#1012628). - tcp_cubic: fix spurious Hystart ACK train detections for not-cwnd-limited flows (bsc#1012628). - drm/amd/display: Set plane update flags for all planes in reset (bsc#1012628). - drm/amd/display: Fix DPIA outbox timeout after GPU reset (bsc#1012628). - PM: hibernate: use correct mode for swsusp_close() (bsc#1012628). - net/ncsi : Add payload to be 32-bit aligned to fix dropped packets (bsc#1012628). - arm64: uaccess: avoid blocking within critical sections (bsc#1012628). - drm/hyperv: Fix device removal on Gen1 VMs (bsc#1012628). - nvmet-tcp: fix incomplete data digest send (bsc#1012628). - cpufreq: intel_pstate: Add Ice Lake server to out-of-band IDs (bsc#1012628). - net: marvell: mvpp2: increase MTU limit when XDP enabled (bsc#1012628). - net: ipa: kill ipa_cmd_pipeline_clear() (bsc#1012628). - net: ipa: separate disabling setup from modem stop (bsc#1012628). - net: ipa: directly disable ipa-setup-ready interrupt (bsc#1012628). - mlxsw: spectrum: Protect driver from buggy firmware (bsc#1012628). - net/smc: Ensure the active closing peer first closes clcsock (bsc#1012628). - i2c: virtio: disable timeout handling (bsc#1012628). - erofs: fix deadlock when shrink erofs slab (bsc#1012628). - scsi: scsi_debug: Zero clear zones at reset write pointer (bsc#1012628). - scsi: core: sysfs: Fix setting device state to SDEV_RUNNING (bsc#1012628). - ice: avoid bpf_prog refcount underflow (bsc#1012628). - ice: fix vsi->txq_map sizing (bsc#1012628). - net: nexthop: release IPv6 per-cpu dsts when replacing a nexthop group (bsc#1012628). - net: ipv6: add fib6_nh_release_dsts stub (bsc#1012628). - net: stmmac: retain PTP clock time during SIOCSHWTSTAMP ioctls (bsc#1012628). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (bsc#1012628). - ipv6: fix typos in __ip6_finish_output() (bsc#1012628). - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (bsc#1012628). - af_unix: fix regression in read after shutdown (bsc#1012628). - mptcp: use delegate action to schedule 3rd ack retrans (bsc#1012628). - mptcp: fix delack timer (bsc#1012628). - ALSA: intel-dsp-config: add quirk for JSL devices based on ES8336 codec (bsc#1012628). - xen/pvh: add missing prototype to header (bsc#1012628). - x86/pvh: add prototype for xen_pvh_init() (bsc#1012628). - iavf: Fix VLAN feature flags after VFR (bsc#1012628). - iavf: Fix refreshing iavf adapter stats on ethtool request (bsc#1012628). - iavf: Prevent changing static ITR values if adaptive moderation is on (bsc#1012628). - HID: magicmouse: prevent division by 0 on scroll (bsc#1012628). - HID: input: set usage type to key on keycode remap (bsc#1012628). - HID: input: Fix parsing of HID_CP_CONSUMER_CONTROL fields (bsc#1012628). - net: marvell: prestera: fix double free issue on err path (bsc#1012628). - net: marvell: prestera: fix brige port operation (bsc#1012628). - drm/aspeed: Fix vga_pw sysfs output (bsc#1012628). - drm/vc4: fix error code in vc4_create_object() (bsc#1012628). - scsi: mpt3sas: Fix incorrect system timestamp (bsc#1012628). - scsi: mpt3sas: Fix system going into read-only mode (bsc#1012628). - scsi: mpt3sas: Fix kernel panic during drive powercycle test (bsc#1012628). - scsi: qla2xxx: edif: Fix off by one bug in qla_edif_app_getfcinfo() (bsc#1012628). - drm/nouveau/acr: fix a couple NULL vs IS_ERR() checks (bsc#1012628). - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1012628). - NFSv42: Don't fail clone() unless the OP_CLONE operation failed (bsc#1012628). - ASoC: stm32: i2s: fix 32 bits channel length without mclk (bsc#1012628). - firmware: arm_scmi: pm: Propagate return value to caller (bsc#1012628). - firmware: arm_scmi: Fix base agent discover response (bsc#1012628). - net: ieee802154: handle iftypes as u32 (bsc#1012628). - ASoC: codecs: lpass-rx-macro: fix HPHR setting CLSH mask (bsc#1012628). - ASoC: codecs: wcd934x: return error code correctly from hw_params (bsc#1012628). - ASoC: codecs: wcd938x: fix volatile register range (bsc#1012628). - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (bsc#1012628). - ASoC: qdsp6: q6asm: fix q6asm_dai_prepare error handling (bsc#1012628). - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (bsc#1012628). - ARM: dts: bcm2711: Fix PCIe interrupts (bsc#1012628). - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (bsc#1012628). - ARM: dts: BCM5301X: Fix I2C controller interrupt (bsc#1012628). - firmware: arm_scmi: Fix null de-reference on error path (bsc#1012628). - media: v4l2-core: fix VIDIOC_DQEVENT handling on non-x86 (bsc#1012628). - netfilter: flowtable: fix IPv6 tunnel addr match (bsc#1012628). - netfilter: ipvs: Fix reuse connection if RS weight is 0 (bsc#1012628). - netfilter: ctnetlink: do not erase error code with EINVAL (bsc#1012628). - netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY (bsc#1012628). - ASoC: SOF: Intel: hda: fix hotplug when only codec is suspended (bsc#1012628). - proc/vmcore: fix clearing user buffer by properly using clear_user() (bsc#1012628). - drm/amd/display: Fix OLED brightness control on eDP (bsc#1012628). - PCI: aardvark: Fix link training (bsc#1012628). - PCI: aardvark: Simplify initialization of rootcap on virtual bridge (bsc#1012628). - PCI: aardvark: Implement re-issuing config requests on CRS response (bsc#1012628). - PCI: aardvark: Deduplicate code in advk_pcie_rd_conf() (bsc#1012628). - NFSv42: Fix pagecache invalidation after COPY/CLONE (bsc#1012628). - iomap: Fix inline extent handling in iomap_readpage (bsc#1012628). - powerpc/32: Fix hardlockup on vmap stack overflow (bsc#1012628). - cpufreq: intel_pstate: Fix active mode offline/online EPP handling (bsc#1012628). - arm64: mm: Fix VM_BUG_ON(mm != &init_mm) for trans_pgd (bsc#1012628). - mdio: aspeed: Fix "Link is Down" issue (bsc#1012628). - mmc: sdhci: Fix ADMA for PAGE_SIZE >= 64KiB (bsc#1012628). - mmc: sdhci-esdhc-imx: disable CMDQ support (bsc#1012628). - tracing: Fix pid filtering when triggers are attached (bsc#1012628). - tracing/uprobe: Fix uprobe_perf_open probes iteration (bsc#1012628). - KVM: PPC: Book3S HV: Prevent POWER7/8 TLB flush flushing SLB (bsc#1012628). - ksmbd: fix memleak in get_file_stream_info() (bsc#1012628). - ksmbd: contain default data stream even if xattr is empty (bsc#1012628). - ksmbd: downgrade addition info error msg to debug in smb2_get_info_sec() (bsc#1012628). - drm/nouveau: recognise GA106 (bsc#1012628). - drm/amdgpu/pm: fix powerplay OD interface (bsc#1012628). - drm/amdgpu: IH process reset count when restart (bsc#1012628). - io_uring: fix link traversal locking (bsc#1012628). - io_uring: fail cancellation for EXITING tasks (bsc#1012628). - io_uring: correct link-list traversal locking (bsc#1012628). - xen: detect uninitialized xenbus in xenbus_init (bsc#1012628). - xen: don't continue xenstore initialization in case of errors (bsc#1012628). - fuse: release pipe buf after last use (bsc#1012628). - staging: r8188eu: fix a memory leak in rtw_wx_read32() (bsc#1012628). - staging: r8188eu: use GFP_ATOMIC under spinlock (bsc#1012628). - staging: r8188eu: Fix breakage introduced when 5G code was removed (bsc#1012628). - staging: r8188eu: Use kzalloc() with GFP_ATOMIC in atomic context (bsc#1012628). - staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() (bsc#1012628). - staging: greybus: Add missing rwsem around snd_ctl_remove() calls (bsc#1012628). - staging/fbtft: Fix backlight (bsc#1012628). - HID: wacom: Use "Confidence" flag to prevent reporting invalid contacts (bsc#1012628). - Revert "parisc: Fix backtrace to always include init funtion names" (bsc#1012628). - media: cec: copy sequence field for the reply (bsc#1012628). - ALSA: hda/realtek: Fix LED on HP ProBook 435 G7 (bsc#1012628). - ALSA: hda/realtek: Add quirk for ASRock NUC Box 1100 (bsc#1012628). - ALSA: ctxfi: Fix out-of-range access (bsc#1012628). - binder: fix test regression due to sender_euid change (bsc#1012628). - usb: hub: Fix locking issues with address0_mutex (bsc#1012628). - usb: hub: Fix usb enumeration issue due to address0 race (bsc#1012628). - usb: xhci: tegra: Check padctrl interrupt presence in device tree (bsc#1012628). - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (bsc#1012628). - usb: chipidea: ci_hdrc_imx: fix potential error pointer dereference in probe (bsc#1012628). - net: nexthop: fix null pointer dereference when IPv6 is not enabled (bsc#1012628). - net: usb: Correct PHY handling of smsc95xx (bsc#1012628). - usb: dwc3: gadget: Fix null pointer exception (bsc#1012628). - usb: dwc3: gadget: Check for L1/L2/U3 for Start Transfer (bsc#1012628). - usb: dwc3: gadget: Ignore NoStream after End Transfer (bsc#1012628). - usb: dwc3: core: Revise GHWPARAMS9 offset (bsc#1012628). - usb: dwc3: leave default DMA for PCI devices (bsc#1012628). - usb: dwc2: hcd_queue: Fix use of floating point literal (bsc#1012628). - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (bsc#1012628). - USB: serial: option: add Fibocom FM101-GL variants (bsc#1012628). - USB: serial: option: add Telit LE910S1 0x9200 composition (bsc#1012628). - USB: serial: pl2303: fix GC type detection (bsc#1012628). - ACPI: CPPC: Add NULL pointer check to cppc_get_perf() (bsc#1012628). - ACPI: Get acpi_device's parent from the parent field (bsc#1012628). - scsi: sd: Fix sd_do_mode_sense() buffer length handling (bsc#1012628). - commit 30c5f4d - mwifiex: Fix skb_over_panic in mwifiex_usb_recv() (CVE-2021-43976 bsc#1192847). - commit c216596 - constraints: Build aarch64 on recent ARMv8.1 builders. Request asimdrdm feature which is available only on recent ARMv8.1 CPUs. This should prevent scheduling the kernel on an older slower builder. - commit 60fc53f ==== keylime ==== Subpackages: keylime-agent keylime-config keylime-firewalld keylime-registrar keylime-tpm_cert_store keylime-verifier python38-keylime - Introduce a bcond for cfssl detection - Drop cfssl if we are not in openSUSE ==== kmod ==== Subpackages: libkmod2 - Ensure that kmod and packages linking to libkmod provide same features (bsc#1193430). ==== libX11 ==== Version update (1.7.2 -> 1.7.3.1) Subpackages: libX11-6 libX11-data - Update to version 1.7.3.1 * This release of libX11 corrects a packaging problem in 1.7.3 which caused the m4 files needed for autoreconf to not be included in the tarballs. * As a bonus, this release also includes one tiny typo fix in the XIM specs. - Update to version 1.7.3 * This release includes a number of bug fixes and adds support for the _EVDEVK keysyms added in xorgproto 2021.2. ==== libXfixes ==== - update to version 6.0 is needed for GNOME41, particularly the gnome-settings-daemon's new feature to disconnect from Xwayland (JIRA #SLE-22829) ==== libcap-ng ==== Version update (0.7.10 -> 0.7.11) - Update to 0.7.11 * Really clear bounding set if asked in capng_change_id * Add CAP_PERFMON, CAP_BPF, & CAP_CHECKPOINT_RESTORE * Avoid malloc/free in capng_apply (Natanael Copa) * If procfs is not available, get bounding set via prctl - Removed unneeded rules from rpmlintrc ==== libedit ==== Version update (3.1.snap20180525 -> 20210910.3.1) - update to 20210910: * all: sync with upstream source * see http://cvsweb.netbsd.org/bsdweb.cgi/src/lib/libedit - drop libedit-20180525-manpage-conflicts.patch (upstream) ==== libffi ==== Version update (3.3.git30 -> 3.4.2) - disable static trampolines (bsc#1193272) - update to 3.4.2: * Add static trampoline support for Linux on x86_64 and ARM64. * Add support for Alibaba's CSKY architecture. * Add support for Kalray's KVX architecture. * Add support for Intel Control-flow Enforcement Technology (CET). * Add support for ARM Pointer Authentication (PA). * Fix 32-bit PPC regression. * Fix MIPS soft-float problem. * Enable tmpdir override with the $LIBFFI_TMPDIR environment variable. * Enable compatibility with MSVC runtime stack checking. * Reject float and small integer argument in ffi_prep_cif_var(). * Callers must promote these types themselves. - drop aarch64.patch: fixed upstream differently - drop info dependency, uses file triggers now ==== libxcrypt ==== Version update (4.4.25 -> 4.4.26) - update to 4.4.26: * fix compilation on system with gcc >= 10 that do not support declarations with __attribute__((symver)) - switch to bootstrapped tarball, add upstream signing key and verify source signature ==== makedumpfile ==== - Non-existent patches must be listed twice to appear as added in a unified diff against a version that had them. Only that can make factory-auto happy. Here we go: * makedumpfile-Retrieve-MAX_PHYSMEM_BITS-from-vmcoreinfo.patch * makedumpfile-arm64-Add-support-for-ARMv8.2-LPA-52-bit-PA-su.patch - Merge SLE15 SP3 changelog. - Patches that were never actually applied to Factory: * makedumpfile-Retrieve-MAX_PHYSMEM_BITS-from-vmcoreinfo.patch (included in 1.6.8) * makedumpfile-arm64-Add-support-for-ARMv8.2-LPA-52-bit-PA-su.patch (included in 1.6.8) ==== mozjs78 ==== Version update (78.14.0 -> 78.15.0) - Update to version 78.15.0esr. ==== multipath-tools ==== Version update (0.8.7+14+suse.5a09bfa -> 0.8.8+38+suse.2bdd3a14) Subpackages: kpartx libmpath0 - Update to 0.8.8+38+suse.2bdd3a14.obscpio * upstream version bump. Code-wise identical to 0.8.7+138+suse.7c9afe31 - Drop versioned dependency on libmpath0 again (bsc#1190622) * Since 0.8.6, libmultipath and libmpathpersist have got proper ABI versioning, and rpmbuild auto-generates dependencies on libmultipath.so.0(LIBMULTIPATH_13.0.0) etc. - Update to version 0.8.7+138+suse.7c9afe31: New upstream version (pre-0.8.8) * deprecate "config_dir" and "multipath_dir" config options (will be removed in future version) * remove dependency on systemd-udevd-settle.service (boo#1193336) * fix crash in remove_map (boo#1193334) * CLI: add path wildcard "%I" for init state * CLI: add "reconfigure all" command * allow multiple pending "reconfigure" commands (bsc#1189551) * speed up "reconfigure" by avoiding unnecessary map reloads (bsc#1189551) * rework of CLI command handler (unix socket handler) to avoid hanging CLI commands (bsc#1189551) * fix multipathd startup after stop during reconfigure (boo#1193338) * improve error detection and warning messages in config file parser * fix exit status of multipath -T (bsc#1191900) * fix defects reported by coverity (boo#1193342) - avoid sleeping with locks held - exit if bindings file is broken - set umask before mkstemp - add bounds and consistency checks in SCSI VPD parsing code * add hardware table entry for DellEMC/ME4 (PowerVault ME4) ==== nvme-cli ==== Version update (1.15 -> 1.16) - Update to version 1.16: + Print ProductName found even if subvendor/subdevice is unknown. + Add New fields on PEL based on NVMe 2.0a. + nvme-cli: - Split media units written/read into hi/lo 64 bit fields. - Add support for new SN650 device. - Update WDC pluging version to 1.15.3. - fix the [data|mdata]_len param (boo#1193547). - Add support for C3/Latency Monitor Log page parsing. - ctrl-loss-tmo should accept -1 as value. + nvme: add spinup control feature (fid=0x1A). + nvme: Add Identify for CNS 08h NVMe spec 2.0a based. + nvme: add boot partition log support. + nvme: add support for fid supported and effects log(lid = 0x12). + add identify endurance group list (cns 0x19) support. + add json support for zns report zones. + fabrics: fix 'nvme discover' segfault if sysfs path is not available. ==== openssl-1_1 ==== Subpackages: libopenssl1_1 - Add support for livepatches (jsc#SLE-20049). - Generate ipa-clones tarball artifact when livepatching is enabled. ==== podman ==== Version update (3.4.2 -> 3.4.4) Subpackages: podman-cni-config - Update to version 3.4.4: * Bugfixes - Fixed a bug where the podman exec command would, under some circumstances, print a warning message about failing to move conmon to the appropriate cgroup (#12535). - Fixed a bug where named volumes created as part of container creation (e.g. podman run --volume avolume:/a/mountpoint or similar) would be mounted with incorrect permissions (#12523). - Fixed a bug where the podman-remote create and podman-remote run commands did not properly handle the --entrypoint="" option (to clear the container's entrypoint) (#12521). - Update to version 3.4.3: * Security - This release addresses CVE-2021-4024, where the podman machine command opened the gvproxy API (used to forward ports to podman machine VMs) to the public internet on port 7777. - This release addresses CVE-2021-41190, where incomplete specification of behavior regarding image manifests could lead to inconsistent decoding on different clients. * Features - The --secret type=mount option to podman create and podman run supports a new option, target=, which specifies where in the container the secret will be mounted (#12287). * Bugfixes - Fixed a bug where rootless Podman would occasionally print warning messages about failing to move the pause process to a new cgroup (#12065). - Fixed a bug where the podman run and podman create commands would, when pulling images, still require TLS even with registries set to Insecure via config file (#11933). - Fixed a bug where the podman generate systemd command generated units that depended on multi-user.target, which has been removed from some distributions (#12438). - Fixed a bug where Podman could not run containers with images that had /etc/ as a symlink (#12189). - Fixed a bug where the podman logs -f command would, when using the journald logs backend, exit immediately if the container had previously been restarted (#12263). - Fixed a bug where, in containers on VMs created by podman machine, the host.containers.internal name pointed to the VM, not the host system (#11642). - Fixed a bug where containers and pods created by the podman play kube command in VMs managed by podman machine would not automatically forward ports from the host machine (#12248). - Fixed a bug where podman machine init would fail on OS X when GNU Coreutils was installed (#12329). - Fixed a bug where podman machine start would exit before SSH on the started VM was accepting connections (#11532). - Fixed a bug where the podman run command with signal proxying (--sig-proxy) enabled could print an error if it attempted to send a signal to a container that had just exited (#8086). - Fixed a bug where the podman stats command would not return correct information for containers running Systemd as PID1 (#12400). - Fixed a bug where the podman image save command would fail on OS X when writing the image to STDOUT (#12402). - Fixed a bug where the podman ps command did not properly handle PS arguments which contained whitespace (#12452). - Fixed a bug where the podman-remote wait command could fail to detect that the container exited and return an error under some circumstances (#12457). - Fixed a bug where the Windows MSI installer for podman-remote would break the PATH environment variable by adding an extra " (#11416). * API - Updated the containers/image library to v5.17.0 - The Libpod Play Kube endpoint now also accepts ConfigMap YAML as part of its payload, and will use provided any ConfigMap to configure provided pods and services. - Fixed a bug where the Compat Create endpoint for Containers would not always create the container's working directory if it did not exist (#11842). - Fixed a bug where the Compat Create endpoint for Containers returned an incorrect error message with 404 errors when the requested image was not found (#12315). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the HostConfig.Mounts field (#12419). - Fixed a bug where the Compat Archive endpoint for Containers did not properly report errors when the operation failed (#12420). - Fixed a bug where the Compat Build endpoint for Images ignored the layers query parameter (for caching intermediate layers from the build) (#12378). - Fixed a bug where the Compat Build endpoint for Images did not report errors in a manner compatible with Docker (#12392). - Fixed a bug where the Compat Build endpoint for Images would fail to build if the context directory was a symlink (#12409). - Fixed a bug where the Compat List endpoint for Images included manifest lists (and not just images) in returned results (#12453). * Misc - Podman now builds by default with cgo enabled on OS X, resolving some issues with SSH (#10737). ==== polkit ==== Version update (0.118 -> 0.120) Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 - update to 0.120: * transition from Intltool to gettext * several tarball, meson and pipeline fixups * Portuguese translation * Romanian translation * meson build system added * CVE-2021-3560 mitigation * properties in text listener * typos fixups * Update Hungarian translation - drop CVE-2021-3560.patch (upstream) ==== python-Mako ==== Version update (1.1.5 -> 1.1.6) - update to 1.1.6: * Fixed issue where control statements on multi lines with a backslash would not parse correctly if the template itself contained CR/LF pairs as on Windows. ==== python-alembic ==== Version update (1.7.4 -> 1.7.5) - update to 1.7.5: * Adjustments to the test suite to accommodate for error message change in newer SQLAlchemy ==== python-charset-normalizer ==== Version update (2.0.8 -> 2.0.9) - update to 2.0.9: * Moderating the logging impact (since 2.0.8) for specific environments * Wrong logging level applied when setting kwarg `explain` to True ==== python-cryptography ==== Version update (3.4.8 -> 36.0.0) - update to 36.0.0: * FINAL DEPRECATION Support for verifier and signer on our asymmetric key classes was deprecated in version 2.1. These functions had an extended deprecation due to usage, however the next version of cryptography will drop support. Users should migrate to sign and verify. * The entire X.509 layer is now written in Rust. This allows alternate asymmetric key implementations that can support cloud key management services or hardware security modules provided they implement the necessary interface (for example: EllipticCurvePrivateKey). * Deprecated the backend argument for all functions. * Added support for AESOCB3. * Added support for iterating over arbitrary request attributes. * Deprecated the get_attribute_for_oid method on CertificateSigningRequest in favor of get_attribute_for_oid() on the new Attributes object. * Fixed handling of PEM files to allow loading when certificate and key are in the same file. * Fixed parsing of CertificatePolicies extensions containing legacy BMPString values in their explicitText. * Allow parsing of negative serial numbers in certificates. Negative serial numbers are prohibited by RFC 5280 so a deprecation warning will be raised whenever they are encountered. A future version of cryptography will drop support for parsing them. * Added support for parsing PKCS12 files with friendly names for all certificates with load_pkcs12(), which will return an object of type PKCS12KeyAndCertificates. * rfc4514_string() and related methods now have an optional attr_name_overrides parameter to supply custom OID to name mappings, which can be used to match vendor-specific extensions. * BACKWARDS INCOMPATIBLE: Reverted the nonstandard formatting of email address fields as E in rfc4514_string() methods from version 35.0. * The previous behavior can be restored with: name.rfc4514_string({NameOID.EMAIL_ADDRESS: "E"}) * Allow X25519PublicKey and X448PublicKey to be used as public keys when parsing certificates or creating them with CertificateBuilder. These key types must be signed with a different signing algorithm as X25519 and X448 do not support signing. * Extension values can now be serialized to a DER byte string by calling public_bytes(). * Added experimental support for compiling against BoringSSL. As BoringSSL does not commit to a stable API, cryptography tests against the latest commit only. Please note that several features are not available when building against BoringSSL. * Parsing CertificateSigningRequest from DER and PEM now, for a limited time period, allows the Extension critical field to be incorrectly encoded. See the issue for complete details. This will be reverted in a future cryptography release. * When OCSPNonce are parsed and generated their value is now correctly wrapped in an ASN.1 OCTET STRING. This conforms to RFC 6960 but conflicts with the original behavior specified in RFC 2560. For a temporary period for backwards compatibility, we will also parse values that are encoded as specified in RFC 2560 but this behavior will be removed in a future release. * Changed the version scheme. This will result in us incrementing the major version more frequently, but does not change our existing backwards compatibility policy. * BACKWARDS INCOMPATIBLE: The X.509 PEM parsers now require that the PEM string passed have PEM delimiters of the correct type. For example, parsing a private key PEM concatenated with a certificate PEM will no longer be accepted by the PEM certificate parser. * BACKWARDS INCOMPATIBLE: The X.509 certificate parser no longer allows negative serial numbers. RFC 5280 has always prohibited these. * BACKWARDS INCOMPATIBLE: Additional forms of invalid ASN.1 found during X.509 parsing will raise an error on initial parse rather than when the malformed field is accessed. * Rust is now required for building cryptography, the CRYPTOGRAPHY_DONT_BUILD_RUST environment variable is no longer respected. * Parsers for X.509 no longer use OpenSSL and have been rewritten in Rust. This should be backwards compatible (modulo the items listed above) and improve both security and performance. * Added support for OpenSSL 3.0.0 as a compilation target. * Added support for SM3 and SM4, when using OpenSSL 1.1.1. These algorithms are provided for compatibility in regions where they may be required, and are not generally recommended. * We now ship manylinux_2_24 and musllinux_1_1 wheels, in addition to our manylinux2010 and manylinux2014 wheels. Users on distributions like Alpine Linux should ensure they upgrade to the latest pip to correctly receive wheels. * Added rfc4514_attribute_name attribute to x509.NameAttribute. - drop disable-uneven-sizes-tests.patch (upstream) - drop disable-RustExtension.patch: building rust extension now ==== python-dragonmapper ==== - do not require pytest-runner for build, not required ==== python-importlib-metadata ==== Version update (4.8.1 -> 4.8.2) - update to 4.8.2: * #353: Fixed discovery of distributions when path is empty. ==== python-jsonpointer ==== Version update (2.1 -> 2.2) - update to 2.2: * Add method and add classmethod tag * Add test for get_parts ==== python-loguru ==== - Skip two formatting tests -- gh#Delgan/loguru#550 ==== python-matplotlib ==== - Skip some broken tests with new pyparsing. ==== python-networkx ==== - Add patch xfail-pydot-tests.patch: * From upstream, survive pydot test failures. ==== python-numpy ==== Version update (1.21.2 -> 1.21.4) - Ignore Python 3.10 deprecation warnings - Fix abbreviated references - Update to 1.21.4: * #20278: BUG: Fix shadowed reference of dtype in type stub * #20293: BUG: Fix headers for universal2 builds * #20294: BUG: VOID_nonzero could sometimes mutate alignment flag * #20295: BUG: Do not use nonzero fastpath on unaligned arrays * #20296: BUG: Distutils patch to allow for 2 as a minor version (!) * #20297: BUG, SIMD: Fix 64-bit/8-bit integer division by a scalar * #20298: BUG, SIMD: Workaround broadcasting SIMD 64-bit integers on MSVC... * #20300: REL: Prepare for the NumPy 1.21.4 release. * #20302: TST: Fix a Arrayterator typing test failure - Release to 1.21.3: * #19745: ENH: Add dtype-support to 3 `generic/ndarray methods * #19955: BUG: Resolve Divide by Zero on Apple silicon + test failures... * #19958: MAINT: Mark type-check-only ufunc subclasses as ufunc aliases... * #19994: BUG: np.tan(np.inf) test failure * #20080: BUG: Correct incorrect advance in PCG with emulated int128 * #20081: BUG: Fix NaT handling in the PyArray_CompareFunc for datetime... * #20082: DOC: Ensure that we add documentation also as to the dict for... * #20106: BUG: core: result_type(0, np.timedelta64(4)) would seg. fault. - Add patch to fix aarch64 support: * numpy-fix-cpu_asimdfhm.patch ==== python-pyOpenSSL ==== - Inject multibuild to avoid a build loop. ==== python-pybind11 ==== Version update (2.8.0 -> 2.8.1) - udpate to 2.8.1: * The simple namespace creation shortcut added in 2.8.0 was deprecated due to usage of CPython internal API, and will be removed soon. * Add C++ Exception type to throw and catch ``AttributeError``. * Fixed the potential for dangling references when using properties with ``std::optional`` types. * Modernize usage of ``PyCodeObject`` on Python 3.9+ (moving toward support for Python 3.11a1) * A long-standing bug in ``eigen.h`` was fixed (originally PR #3343). The bug was unmasked by newly added ``static_assert``'s in the Eigen 3.4.0 release. * Support multiple raw inclusion of CMake helper files * Fix harmless warning on upcoming CMake 3.22. * Fix 2.8.0 regression with MSVC 2017 + C++17 mode + Python 3. * Fix 2.8.0 regression that caused undefined behavior (typically segfaults) in ``make_key_iterator``/``make_value_iterator`` if dereferencing the iterator returned a temporary value instead of a reference. ==== python-pycparser ==== Version update (2.20 -> 2.21) - update to 2.21: - Much improved support for C11 (multiple PRs) - Support for parehthesized compount statements (#423) - Support for modern Python versions (3.9 and 3.10) - Fix support for structs with nested enums (#387) - Multiple small bug fixes ==== python-pyparsing ==== Version update (2.4.7 -> 3.0.6) - requires jinja2 for testing - requires railroad-diagrams for testing - update to 3.0.6: * Added suppress_warning() method to individually suppress a warning on a specific ParserElement. Used to refactor original_text_for to preserve internal results names, which, while undocumented, had been adopted by some projects. * Fix bug when delimited_list was called with a str literal instead of a parse expression. - changes from 3.0.5: * Added return type annotations for col, line, and lineno. * Fixed bug when warn_ungrouped_named_tokens_in_collection warning was raised when assigning a results name to an original_text_for expression. (Issue #110, would raise warning in packaging.) * Fixed internal bug where ParserElement.streamline() would not return self if already streamlined. * Changed run_tests() output to default to not showing line and column numbers. If line numbering is desired, call with with_line_numbers=True. Also fixed minor bug where separating line was not included after a test failure. - changes from 3.0.4: * Fixed bug in which Dict classes did not correctly return tokens as nested ParseResults * Documented API-changing side-effect of converting ParseResults to use __slots__ to pre-define instance attributes. * Fixed bug in railroad diagramming where the vertical limit would count all expressions in a group, not just those that would create visible railroad elements. - changes from 3.0.3: * Fixed regex typo in one_of fix for as_keyword=True. * Fixed a whitespace-skipping bug, Issue #319, introduced as part of the revert of the LineStart changes. * Added header column labeling > 100 in with_line_numbers - some input lines are longer than others. - changes from 3.0.2: * Reverted change in behavior with LineStart and StringStart, which changed the interpretation of when and how LineStart and StringStart should match when a line starts with spaces. In 3.0.0, the xxxStart expressions were not really treated like expressions in their own right, but as modifiers to the following expression when used like LineStart() + expr, so that if there were whitespace on the line before expr (which would match in versions prior to 3.0.0), the match would fail. 3.0.0 implemented this by automatically promoting LineStart() + expr to AtLineStart(expr), which broke existing parsers that did not expect expr to necessarily be right at the start of the line, but only be the first token found on the line. This was reported as a regression in Issue (gh#pyparsing/pyparsing/issues#317). In 3.0.2, pyparsing reverts to the previous behavior, but will retain the new AtLineStart and AtStringStart expression classes, so that parsers can chose whichever behavior applies in their specific instance. * Performance enhancement to one_of to always generate an internal Regex, even if caseless or as_keyword args are given as True (unless explicitly disabled by passing use_regex=False). * IndentedBlock class now works with recursive flag. By default, the results parsed by an IndentedBlock are grouped. This can be disabled by constructing the IndentedBlock with grouped=False. - changes from 3.0.1 * Fixed bug where Word(max=n) did not match word groups less than length 'n'. Thanks to Joachim Metz for catching this! * Fixed bug where ParseResults accidentally created recursive contents. Joachim Metz on this one also! * Fixed bug where warn_on_multiple_string_args_to_oneof warning is raised even when not enabled. - changes from 3.0.0 * A consolidated list of all the changes in the 3.0.0 release can be found in docs/whats_new_in_3_0_0.rst. (https://github.com/pyparsing/pyparsing/blob/master/docs/whats_new_in_3_0_0.rst) - disable build for python2, not supported anymore ==== python-python-gnupg ==== Version update (0.4.7 -> 0.4.8) - update to 0.4.8: * Return gpg's return code in all result instances. * Add check for invalid file objects. * Provide more useful status message when a secret key is absent. * Added a get_recipients() API to find the recipients of an encrypted message without decrypting it. ==== python-simplejson ==== Version update (3.17.5 -> 3.17.6) - update to 3.17.6: * Declare support for Python 3.10 and add wheels ==== python-tornado6 ==== - Filter Python 3.10 deprecation warnings during testing * ignore-py310-deprecation-warnings.patch * gh#tornadoweb/tornado#3033 ==== qemu ==== * Patches added (bsc#1186256): qemu-binfmt-conf.sh-allow-overriding-SUS.patch - cross-i386-binutils and cross-i386-gcc are not needed and were dropped from Factory - boo#1193424 ==== rdma-core ==== Version update (37.1 -> 38.0) Subpackages: libefa1 libibverbs libibverbs1 libmlx4-1 libmlx5-1 librdmacm1 - Update to v38.0 (jsc#SLE-18383) - Bugfixes on all providers - New provider for irdma support - Add rdma-ndd to recommended depencies of rdma-core ==== runc ==== Version update (1.0.2 -> 1.0.3) - Update to runc v1.0.3. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.3. CVE-2021-43784 * A potential vulnerability was discovered in runc (related to an internal usage of netlink), however upon further investigation we discovered that while this bug was exploitable on the master branch of runc, no released version of runc could be exploited using this bug. The exploit required being able to create a netlink attribute with a length that would overflow a uint16 but this was not possible in any released version of runc. For more information see GHSA-v95c-p5hm-xq8f and CVE-2021-43784. Due to an abundance of caution we decided to do an emergency release with this fix, but to reiterate we do not believe this vulnerability was possible to exploit. Thanks to Felix Wilhelm from Google Project Zero for discovering and reporting this vulnerability so quickly. * Fixed inability to start a container with read-write bind mount of a read-only fuse host mount. * Fixed inability to start when read-only /dev in set in spec. * Fixed not removing sub-cgroups upon container delete, when rootless cgroup v2 is used with older systemd. * Fixed returning error from GetStats when hugetlb is unsupported (which causes excessive logging for kubernetes). ==== sudo ==== Version update (1.9.7p2 -> 1.9.8p2) - update to 1.9.8p2 * Fixed a potential out-of-bounds read with "sudo -i" when the target user's shell is bash. This is a regression introduced in sudo 1.9.8. Bug #998. * sudo_logsrvd now only sends a log ID for first command of a session. There is no need to send the log ID for each sub-command. * Fixed a few minor memory leaks in intercept mode. * Fixed a problem with sudo_logsrvd in relay mode if "store_first" was enabled when handling sub-commands. A new zero-length journal file was created for each sub-command instead of simply using the existing journal file. - update to 1.9.8p1 * Fixed support for passing a prompt (sudo -p) or a login class (sudo -l) on the command line. This is a regression introduced in sudo 1.9.8. Bug #993. * Fixed a crash with "sudo ALL" rules in the LDAP and SSSD back-ends. This is a regression introduced in sudo 1.9.8. Bug #994. * Fixed a compilation error when the --enable-static-sudoers configure option was specified. This is a regression introduced in sudo 1.9.8 caused by a symbol clash with the intercept and log server protobuf functions. * It is now possible to transparently intercepting sub-commands executed by the original command run via sudo. Intercept support is implemented using LD_PRELOAD (or the equivalent supported by the system) and so has some limitations. The two main limitations are that only dynamic executables are supported and only the execl, execle, execlp, execv, execve, execvp, and execvpe library functions are currently intercepted. Its main use case is to support restricting privileged shells run via sudo. To support this, there is a new "intercept" Defaults setting and an INTERCEPT command tag that can be used in sudoers. For example: Cmnd_Alias SHELLS=/bin/bash, /bin/sh, /bin/csh, /bin/ksh, /bin/zsh Defaults!SHELLS intercept would cause sudo to run the listed shells in intercept mode. This can also be set on a per-rule basis. For example: Cmnd_Alias SHELLS=/bin/bash, /bin/sh, /bin/csh, /bin/ksh, /bin/zsh chuck ALL = INTERCEPT: SHELLS would only apply intercept mode to user "chuck" when running one of the listed shells. In intercept mode, sudo will not prompt for a password before running a sub-command and will not allow a set-user-ID or set-group-ID program to be run by default. The new intercept_authenticate and intercept_allow_setid sudoers settings can be used to change this behavior. * The new "log_subcmds" sudoers setting can be used to log additional commands run in a privileged shell. It uses the same mechanism as the intercept support described above and has the same limitations. * The new "log_exit_status" sudoers setting can be used to log the exit status commands run via sudo. This is also a corresponding "log_exit" setting in the sudo_logsrvd.conf eventlog stanza. * Support for logging sudo_logsrvd errors via syslog or to a file. Previously, most sudo_logsrvd errors were only visible in the debug log. * Better diagnostics when there is a TLS certificate validation error. * Using the "+=" or "-=" operators in a Defaults setting that takes a string, not a list, now produces a warning from sudo and a syntax error from inside visudo. * Fixed a bug where the "iolog_mode" setting in sudoers and sudo_logsrvd had no effect when creating I/O log parent directories if the I/O log file name ended with the string "XXXXXX". * Fixed a bug in the sudoers custom prompt code where the size parameter that was passed to the strlcpy() function was incorrect. No overflow was possible since the correct amount of memory was already pre-allocated. * The mksigname and mksiglist helper programs are now built with the host compiler, not the target compiler, when cross-compiling. Bug #989. * Fixed compilation error when the --enable-static-sudoers configure option was specified. This was due to a typo introduced in sudo 1.9.7. GitHub PR #113. - pack /usr/libexec/sudo/sudo/sudo_intercept.so ==== suse-module-tools ==== Version update (16.0.14+2 -> 16.0.16) - Update to version 16.0.16: * modprobe.d: split conf files (jsc#SLE-21626, boo#1193059) - Rather than shipping two large files with modprobe.d options (00-system.conf and 50-blacklist.conf), ship multiple small per-module files. This makes it easier for users to override distribution defaults. * blacklist isst_if_mbox_msr (bsc#1187196) * boot-sysctl: make sure file exists (fix for containers) * remove blacklist entry for snd_bt87x (bsc#1192974, bsc#51718) ==== systemd-presets-common-SUSE ==== - Replace the pipewire-media-session preset with a wireplumber user service preset to enable it by default. ==== tpm2-0-tss ==== Subpackages: libtss2-esys0 libtss2-fapi1 libtss2-mu0 libtss2-rc0 libtss2-sys1 libtss2-tcti-device0 libtss2-tctildr0 - Version 3.1.0 includes: + cover update to 2.4.5 (jsc#SLE-17366) + cover update to 2.3.0 (jsc#SLE-9515) + fix policy session for TPM2_PolicyAuthValue (bsc#1160736) - Add version the configuration file tpm2-tss-fapi.conf ==== tpm2.0-abrmd ==== Subpackages: libtss2-tcti-tabrmd0 tpm2.0-abrmd-selinux - Version 2.4.0 + remover syslog deprecation warning (bsc#1185154) + cover update to 2.3.3 (jsc#SLE-17366) + contains reload fix (bsc#1166936~ + fix tcti loading using short / long names (bsc#1159176) - Warp selinux into a bcond ==== tpm2.0-tools ==== - The update to 5.2 fill also jsc#SLE-9515 (4.1) and jsc#SLE-17366 (4.3.0) - Fix python3-PyYAML requirement - Move the tests inside a bcond. Disabled by default. ==== u-boot-rpiarm64 ==== Subpackages: u-boot-rpiarm64-doc Patch queue updated from https://github.com/openSUSE/u-boot.git tumbleweed-2021.10 * Patches added: 0017-rpi-Add-identifier-for-the-new-RPi-.patch ==== yast2 ==== Version update (4.4.22 -> 4.4.27) - Drop support for subscription-tools, that package is not present in SLE15 anymore - removed modules/ProductProfiles.rb file (bsc#1193339) - 4.4.27 - Popup.YesNo(): Unify the internal [No] button ID (bsc#1193326) - 4.4.26 - Add register_target to the Y2Packager::Product class (bsc#1193212). - 4.4.25 - Do not crash when it is not possible to fetch the package containing the release notes (bsc#1193148). - 4.4.24 - Prepare code for ruby3 (bsc#1193192) - 4.4.23