Packages changed: ImageMagick (7.1.0.51 -> 7.1.0.52) Mesa (22.2.2 -> 22.2.3) Mesa-drivers (22.2.2 -> 22.2.3) NetworkManager alsa-oss alsa-plugins bash (5.2.2 -> 5.2.9) bluedevil5 (5.26.2 -> 5.26.3.1) breeze (5.26.2 -> 5.26.3.1) breeze-gtk (5.26.2 -> 5.26.3) dhcp discover (5.26.2 -> 5.26.3) drkonqi5 (5.26.2 -> 5.26.3) elfutils (0.187 -> 0.188) elfutils-debuginfod (0.187 -> 0.188) fontconfig (2.14.0 -> 2.14.1) fwupd (1.8.6 -> 1.8.7) gnome-terminal (3.46.3 -> 3.46.4) gnutls (3.7.7 -> 3.7.8) gpgme grub2 gssdp (1.6.0 -> 1.6.1) gupnp (1.6.0 -> 1.6.1) highway hwinfo icewm (3.0.1 -> 3.2.0) irqbalance kactivitymanagerd (5.26.2 -> 5.26.3) kcm_sddm (5.26.2 -> 5.26.3) kde-cli-tools5 (5.26.2 -> 5.26.3) kde-gtk-config5 (5.26.2 -> 5.26.3) kernel-source (6.0.7 -> 6.0.8) keylime (6.5.3 -> 6.5.2) kgamma5 (5.26.2 -> 5.26.3) khotkeys5 (5.26.2 -> 5.26.3) kinfocenter5 (5.26.2 -> 5.26.3) kmenuedit5 (5.26.2 -> 5.26.3) kpipewire (5.26.2 -> 5.26.3) kscreen5 (5.26.2 -> 5.26.3) kscreenlocker (5.26.2 -> 5.26.3) ksshaskpass5 (5.26.2 -> 5.26.3) ksystemstats5 (5.26.2 -> 5.26.3) kwayland-integration (5.26.2 -> 5.26.3) kwin5 (5.26.2.1 -> 5.26.3) kwrited5 (5.26.2 -> 5.26.3) layer-shell-qt (5.26.2 -> 5.26.3) lcms2 (2.13.1 -> 2.14) libX11 (1.8.1 -> 1.8.2) libbpf libcontainers-common libkdecoration2 (5.26.2 -> 5.26.3) libkscreen2 (5.26.2 -> 5.26.3) libksysguard5 (5.26.2 -> 5.26.3) libnftnl (1.2.3 -> 1.2.4) libnma (1.10.2 -> 1.10.4) libslirp libstorage-ng (4.5.48 -> 4.5.50) libyui (4.4.4 -> 4.4.6) libyui-ncurses (4.4.4 -> 4.4.6) libyui-ncurses-pkg (4.4.4 -> 4.4.6) libyui-qt (4.4.4 -> 4.4.6) libyui-qt-graph (4.4.4 -> 4.4.6) libyui-qt-pkg (4.4.4 -> 4.4.6) libzypp (17.31.4 -> 17.31.5) mdadm (4.1 -> 4.2) milou5 (5.26.2 -> 5.26.3) mobile-broadband-provider-info (20220725 -> 20221107) nautilus ncurses (6.3.20221001 -> 6.3.20221105) oxygen5-sounds (5.26.2 -> 5.26.3.1) perl-HTML-Parser (3.79 -> 3.80) perl-HTTP-Message (6.41 -> 6.44) perl-URI (5.16 -> 5.17) pixman (0.40.0 -> 0.42.2) plasma-nm5 (5.26.2 -> 5.26.3) plasma5-addons (5.26.2 -> 5.26.3) plasma5-desktop (5.26.2 -> 5.26.3) plasma5-disks (5.26.2 -> 5.26.3) plasma5-integration (5.26.2 -> 5.26.3) plasma5-openSUSE plasma5-pa (5.26.2 -> 5.26.3) plasma5-systemmonitor (5.26.2 -> 5.26.3) plasma5-thunderbolt (5.26.2 -> 5.26.3) plasma5-workspace (5.26.2 -> 5.26.3) polkit polkit-kde-agent-5 (5.26.2 -> 5.26.3) powerdevil5 (5.26.2 -> 5.26.3) python-Babel (2.10.3 -> 2.11.0) python-Jinja2 (3.0.3 -> 3.1.2) python-M2Crypto python-pexpect python-psutil (5.9.3 -> 5.9.4) python-pytz (2022.5 -> 2022.6) python-pyzmq python-zope.interface (5.5.0 -> 5.5.1) python310 python310-core qalculate (4.3.0 -> 4.4.0) qemu rebootmgr (1.3.1 -> 2.0) rpm shadow (4.12.3 -> 4.13) systemd (251.7 -> 251.8) systemsettings5 (5.26.2 -> 5.26.3) vmaf webkit2gtk3 (2.38.1 -> 2.38.2) webkit2gtk4 (2.38.1 -> 2.38.2) xdg-desktop-portal-kde (5.26.2 -> 5.26.3) zypper (1.14.57 -> 1.14.58) === Details === ==== ImageMagick ==== Version update (7.1.0.51 -> 7.1.0.52) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - update to 7.1.0.52: * coders: Enable opening https files in mingw #5727 * utilities: Enable support for unicode paths in mingw #5713 upstream changelog: https://github.com/ImageMagick/Website/blob/main/ChangeLog.md#710-52---2022-11-06 ==== Mesa ==== Version update (22.2.2 -> 22.2.3) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - third bugfix release * some regressions in CI worked out * a bit of everything, and nothing too crazy - supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch - supersedes u_nouveau-corrupted-colors-boo1203949.patch - get rid of Mesa-libVulkan-devel(-32bit) package, which is no longer needed at all by providing/obsoleting it by libvulkan_intel ==== Mesa-drivers ==== Version update (22.2.2 -> 22.2.3) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - third bugfix release * some regressions in CI worked out * a bit of everything, and nothing too crazy - supersedes u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch - supersedes u_nouveau-corrupted-colors-boo1203949.patch - get rid of Mesa-libVulkan-devel(-32bit) package, which is no longer needed at all by providing/obsoleting it by libvulkan_intel ==== NetworkManager ==== Subpackages: NetworkManager-bluetooth NetworkManager-tui NetworkManager-wwan libnm0 typelib-1_0-NM-1_0 - Keep netconfig support. The rc-manager auto detection will select appropriate manager during runtime. - Use a with_netconfig define instead of relying on bcond: bcond is meant to have extrenally controllable build conditions (build -D, or OBS prjconf). ==== alsa-oss ==== - Add tarball signature and keyring ==== alsa-plugins ==== Subpackages: alsa-plugins-speexrate alsa-plugins-upmix - Add keyring ==== bash ==== Version update (5.2.2 -> 5.2.9) Subpackages: bash-doc bash-sh - Add upstream patches * bash52-003 Command substitutions need to preserve newlines instead of replacing them with semicolons, especially in the presence of multiple here-documents. * bash52-004 Bash needs to keep better track of nested brace expansions to avoid problems with quoting and POSIX semantics. * bash52-005 Null pattern substitution replacement strings can cause a crash. * bash52-006 In interactive shells, interrupting the shell while entering a command substitution can inhibit alias expansion. * bash52-007 This patch fixes several problems with alias expansion inside command substitutions when in POSIX mode. * bash52-008 Array subscript expansion can inappropriately quote brackets if the expression contains < or >. * bash52-009 Bash arithmetic expansion should allow `@' and `*' to be used as associative array keys in expressions. ==== bluedevil5 ==== Version update (5.26.2 -> 5.26.3.1) Subpackages: bluedevil5-lang - Update to 5.26.3.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== breeze ==== Version update (5.26.2 -> 5.26.3.1) Subpackages: breeze5-cursors breeze5-decoration breeze5-style breeze5-style-lang breeze5-wallpapers libbreezecommon5-5 - Update to 5.26.3.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== breeze-gtk ==== Version update (5.26.2 -> 5.26.3) Subpackages: gtk2-metatheme-breeze gtk3-metatheme-breeze metatheme-breeze-common - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== dhcp ==== Subpackages: dhcp-client - Use %_rundir ==== discover ==== Version update (5.26.2 -> 5.26.3) Subpackages: discover-backend-flatpak discover-backend-fwupd discover-backend-packagekit discover-lang discover-notifier - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * Remove top margin caused by empty header on UpdatesPage * Notifier: Fix notification logic * pk/?: Fix problem when using faulty URL ==== drkonqi5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: drkonqi5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== elfutils ==== Version update (0.187 -> 0.188) Subpackages: libasm1 libdw1 libelf1 - align patches section - remove date/time handling weirdness, elfutils does no longer use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time) - Update to version 0.188: * readelf: Add -D, --use-dynamic option. * debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply outgoing debuginfod_find_section. * debuginfod: Add --disable-source-scan option. * libdwfl: Add new function dwfl_get_debuginfod_client. Add new function dwfl_frame_reg. Add new function dwfl_report_offline_memory. - Remove upstreamed patches: * 0001-libelf-Sync-elf.h-from-glibc.patch * 0002-backends-Handle-new-RISC-V-specific-definitions.patch * 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch * 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch * PR29474-debuginfod.patch * config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch * support-nullglob-in-profile.-.in-files.patch ==== elfutils-debuginfod ==== Version update (0.187 -> 0.188) Subpackages: debuginfod-profile libdebuginfod1 - align patches section - remove date/time handling weirdness, elfutils does no longer use __DATE__ or __TIME__ (as proven by the newly added -Werror=date-time) - Update to version 0.188: * readelf: Add -D, --use-dynamic option. * debuginfod-client: Add $DEBUGINFOD_HEADERS_FILE setting to supply outgoing debuginfod_find_section. * debuginfod: Add --disable-source-scan option. * libdwfl: Add new function dwfl_get_debuginfod_client. Add new function dwfl_frame_reg. Add new function dwfl_report_offline_memory. - Remove upstreamed patches: * 0001-libelf-Sync-elf.h-from-glibc.patch * 0002-backends-Handle-new-RISC-V-specific-definitions.patch * 0003-elflint-Allow-zero-p_memsz-for-PT_RISCV_ATTRIBUTES.patch * 0004-readelf-Handle-SHT_RISCV_ATTRIBUTES-like-SHT_GNU_ATT.patch * PR29474-debuginfod.patch * config-Move-the-2-dev-null-inside-the-sh-c-quotes-fo.patch * support-nullglob-in-profile.-.in-files.patch ==== fontconfig ==== Version update (2.14.0 -> 2.14.1) Subpackages: libfontconfig1 - update to 2.14.1: * Bump the cache version to 8 in doc/fontconfig-user.sgm * Enable 10-sub-pixel-rgb.conf by default * build fixes and translation updates * Avoid misuse of ctype ==== fwupd ==== Version update (1.8.6 -> 1.8.7) Subpackages: fwupd-bash-completion libfwupd2 typelib-1_0-Fwupd-2_0 - Update to version 1.8.7: + This release adds the following features: - Add a new HSI check for the leaked Lenovo 'Key Manifest' hashes - Measure system integrity when installing UEFI updates - Record more host DMI data when submitting a report for dbx failures - Use xz-compressed metadata to reduce bandwidth used by ~25% + This release fixes the following bugs: - Add documentation for three existing HSI attributes - Add re-insert requirement for Analogix devices - Allow parsing metadata more than 1MB in size - Do not follow symlinks when searching for ESP devices - Ensure the config file permission is correct for built-in plugins - Fix a compile failure when compiling without efiboot - Fix a regression when using fwuptool install-blob with FMAP firmware - Only count the Microsoft hashes when getting the dbx version - Only use the IFD when the system is Intel-based - Support loading CoSWID when only one role has been set + This release adds support for the following hardware: - Anker Thunderbolt 4 Mini Hub - ELAN haptic hardware - Fingerprint lenfy devices - Goodix GF3258WNC - Intel discrete GPUs (experimental) - More Star Labs laptops - QSI Godzilla Creek Reference Hub - Stop passing conditional plugin_amt=disabled, no longer needed, nor recognized. ==== gnome-terminal ==== Version update (3.46.3 -> 3.46.4) Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal - Update to version 3.46.4: * all: backport: Implement xdg-terminal-exec support. * docs: - Fix some wrong info in README. - Fix some typos in README. * Updated translations. - Add f06e6e5.patch: util: Fix interpretation of TryExec desktop entry key. - Add appstream-glib and desktop-file-utils BuildRequires and a check section with meson_test macro, validate appdata and desktop files and run tests during build. ==== gnutls ==== Version update (3.7.7 -> 3.7.8) - Verify only the libgnutls library HMAC [bsc#1199881] * Do not use the brp-50-generate-fips-hmac script as this is now calculated with the internal fipshmac tool. * Add gnutls-verify-library-HMAC.patch - Temporarily revert the jitterentropy patches in s390 and s390x architectures until a fix is provided [bsc#1204937] - Disable flaky test that fails in s390x architecture: * Add gnutls-disable-flaky-test-dtls-resume.patch - Consolidate the FIPS hmac files [bsc#1203245] * Use the gnutls fipshmac tool instead of the brp-check-suse and rename it to reflect on the library version. * Remove not needed gnutls-FIPS-Run-CFB8-without-offset.patch - Add a gnutls.rpmlintrc file to remove a hidden-file-or-dir false positive for the FIPS hmac calculation. - Update to 3.7.8: * libgnutls: In FIPS140 mode, RSA signature verification is an approved operation if the key has modulus with known sizes (1024, 1280, 1536, and 1792 bits), in addition to any modulus sizes larger than 2048 bits, according to SP800-131A rev2. * libgnutls: gnutls_session_channel_binding performs additional checks when GNUTLS_CB_TLS_EXPORTER is requested. According to RFC9622 4.2, the "tls-exporter" channel binding is only usable when the handshake is bound to a unique master secret (i.e., either TLS 1.3 or extended master secret extension is negotiated). Otherwise the function now returns error. * libgnutls: usage of the following functions, which are designed to loosen restrictions imposed by allowlisting mode of configuration, has been additionally restricted. Invoking them is now only allowed if system-wide TLS priority string has not been initialized yet: - gnutls_digest_set_secure - gnutls_sign_set_secure - gnutls_sign_set_secure_for_certs - gnutls_protocol_set_enabled * Delete gnutls-3.6.6-set_guile_site_dir.patch and use the - -with-guile-extension-dir configure option to properly handle the guile extension directory. * Rebase gnutls-Make-XTS-key-check-failure-not-fatal.patch * Update gnutls.keyring * Add a build depencency on gtk-doc required by autoreconf - FIPS: Set error state when jent init failed in FIPS mode [bsc#1202146] * Add patch gnutls-FIPS-Set-error-state-when-jent-init-failed.patch - FIPS: Make XTS key check failure not fatal [bsc#1203779] * Add gnutls-Make-XTS-key-check-failure-not-fatal.patch ==== gpgme ==== Subpackages: libgpgme11 libgpgmepp6 python310-gpg - Add gpgme-suse-nobetasuffix.patch * remove "-unknown" suffix from version string * boo#1205197 ==== grub2 ==== Subpackages: grub2-arm64-efi grub2-snapper-plugin grub2-systemd-sleep-plugin - NVMeoFC support on grub (jsc#PED-996) * 0001-ieee1275-add-support-for-NVMeoFC.patch * 0002-ieee1275-ofpath-enable-NVMeoF-logical-device-transla.patch * 0003-ieee1275-change-the-logic-of-ieee1275_get_devargs.patch * 0004-ofpath-controller-name-update.patch - TDX: Enhance grub2 measurement to TD RTMR (jsc#PED-1265) * 0001-commands-efi-tpm-Refine-the-status-of-log-event.patch * 0002-commands-efi-tpm-Use-grub_strcpy-instead-of-grub_mem.patch * 0003-efi-tpm-Add-EFI_CC_MEASUREMENT_PROTOCOL-support.patch - Measure the kernel on POWER10 and extend TPM PCRs (PED-1990) * 0001-ibmvtpm-Add-support-for-trusted-boot-using-a-vTPM-2..patch * 0002-ieee1275-implement-vec5-for-cas-negotiation.patch - Fix efi pcr snapshot related funtion is defined but not used on powerpc platform. * safe_tpm_pcr_snapshot.patch - Include loopback into signed grub2 image (jsc#PED-2150) - Fix firmware oops after disk decrypting failure (bsc#1204037) * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch - Add patch to fix kernel relocation error in low memory * 0001-linux-fix-efi_relocate_kernel-failure.patch - Add safety measure to pcr snapshot by checking platform and tpm status * safe_tpm_pcr_snapshot.patch - Fix installation failure due to unavailable nvram device on ppc64le (bsc#1201361) * 0001-grub-install-set-point-of-no-return-for-powerpc-ieee1275.patch - Add patches to dynamically allocate additional memory regions for EFI systems (bsc#1202438) * 0001-mm-Allow-dynamically-requesting-additional-memory-re.patch * 0002-kern-efi-mm-Always-request-a-fixed-number-of-pages-o.patch * 0003-kern-efi-mm-Extract-function-to-add-memory-regions.patch * 0004-kern-efi-mm-Pass-up-errors-from-add_memory_regions.patch * 0005-kern-efi-mm-Implement-runtime-addition-of-pages.patch - Enlarge the default heap size and defer the disk cache invalidation (bsc#1202438) * 0001-kern-efi-mm-Enlarge-the-default-heap-size.patch * 0002-mm-Defer-the-disk-cache-invalidation.patch - Add patches for ALP FDE support * 0001-devmapper-getroot-Have-devmapper-recognize-LUKS2.patch * 0002-devmapper-getroot-Set-up-cheated-LUKS2-cryptodisk-mo.patch * 0003-disk-cryptodisk-When-cheatmounting-use-the-sector-in.patch * 0004-normal-menu-Don-t-show-Booting-s-msg-when-auto-booti.patch * 0005-EFI-suppress-the-Welcome-to-GRUB-message-in-EFI-buil.patch * 0006-EFI-console-Do-not-set-colorstate-until-the-first-te.patch * 0007-EFI-console-Do-not-set-cursor-until-the-first-text-o.patch * 0008-linuxefi-Use-common-grub_initrd_load.patch * 0009-Add-crypttab_entry-to-obviate-the-need-to-input-pass.patch * 0010-templates-import-etc-crypttab-to-grub.cfg.patch * grub-read-pcr.patch * efi-set-variable-with-attrs.patch * tpm-record-pcrs.patch * tpm-protector-dont-measure-sealed-key.patch * tpm-protector-export-secret-key.patch * grub-install-record-pcrs.patch * grub-unseal-debug.patch - Fix out of memory error cannot be prevented via disabling tpm (bsc#1202438) * 0001-tpm-Disable-tpm-verifier-if-tpm-is-not-present.patch - Fix tpm error stop tumbleweed from booting (bsc#1202374) * 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch - Patch Removed * 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch - Add tpm, tpm2, luks2 and gcry_sha512 to default grub.efi (bsc#1197625) - Make grub-tpm.efi a symlink to grub.efi * grub2.spec - Log error when tpm event log is full and continue * 0001-tpm-Log-EFI_VOLUME_FULL-and-continue.patch - Patch superseded * 0001-tpm-Pass-unknown-error-as-non-fatal-but-debug-print-.patch - Add patches for automatic TPM disk unlock (jsc#SLE-24018) (bsc#1196668) * 0001-luks2-Add-debug-message-to-align-with-luks-and-geli-.patch * 0002-cryptodisk-Refactor-to-discard-have_it-global.patch * 0003-cryptodisk-Return-failure-in-cryptomount-when-no-cry.patch * 0004-cryptodisk-Improve-error-messaging-in-cryptomount-in.patch * 0005-cryptodisk-Improve-cryptomount-u-error-message.patch * 0006-cryptodisk-Add-infrastructure-to-pass-data-from-cryp.patch * 0007-cryptodisk-Refactor-password-input-out-of-crypto-dev.patch * 0008-cryptodisk-Move-global-variables-into-grub_cryptomou.patch * 0009-cryptodisk-Improve-handling-of-partition-name-in-cry.patch * 0010-protectors-Add-key-protectors-framework.patch * 0011-tpm2-Add-TPM-Software-Stack-TSS.patch * 0012-protectors-Add-TPM2-Key-Protector.patch * 0013-cryptodisk-Support-key-protectors.patch * 0014-util-grub-protect-Add-new-tool.patch - Fix no disk unlocking happen (bsc#1196668) * 0001-crytodisk-fix-cryptodisk-module-looking-up.patch - Fix build error * fix-tpm2-build.patch ==== gssdp ==== Version update (1.6.0 -> 1.6.1) - Update to version 1.6.1: + Potential fix for sending discovery responses with the wrong location. + Properly parse netlink messages in neighbour discovery. + Do not leak the host mask if it was alreay provided on object client creation. + Fix install path for generated documentation. + Fix warning message for link-local v4 addresses. ==== gupnp ==== Version update (1.6.0 -> 1.6.1) - Update to version 1.6.1: + ControlPoint: - Fix error handling if description download fails. - Do not leak cancellable. + Use proper method for detecting IFA_FLAGS availability. + ContextManager: - Do not leak filtered contexts. - Fix freeing unavailable contexts. + Network ContextManager: Do not leak list parts of context lists. + Introspection: Properly chain up to parent class. + Service: Fix crash if subscription callback is points unreachable host. ==== highway ==== - Have armv7 build succeed again. ==== hwinfo ==== - Implement shared library packaging guideline. - Modernize specfile. ==== icewm ==== Version update (3.0.1 -> 3.2.0) Subpackages: icewm-config-upstream icewm-default icewm-lang - Update to version 3.2.0: * Fix for fullscreen wine programs where taskbar would not hide. * Ensure KeySysWinNext and KeySysWinPrev always work for rolled up windows which use the Globally Active focus model. * Give the Alt+Tab a 30 second history. * The next Alt+Tab will continue where the previous one left off. * Add "tabto" command to icesh move windows as tabs to a new frame. * Add "untab" command to icesh to move each tab to its own frame. * Add "stacking" and "reverse" commands to icesh. * Let icesh check all atoms in the -Property filter. * Support edge switching when dragging a window. * When switching to a tab with size limitations, adapt the frame geometry. * Fix maximize and fullscreen for tabs with different normal sizes. * Prevent the flashing when switching tabs. * Only popup the grouping menu on a task button on the first button click without key modifiers. This makes it easier to immediately select or minimize the active application by using the shift or control modifier. * Update the title bar shape when changing tabs. * Set common properties when adding another tab to a frame. * Always update the window list and _NET_CLIENT_LIST when adding more tabs. * Add special filtered view and flat rendering options to icewm-menu-fdo. * Updated translations. - from version 3.1.0: * Add a winoption "frame" to automatically group application windows with the same "frame" value as tabs in a single frame. * Show indicators for the presence of tabs on the title bar. * Click on the title bar tab indicators to change tabs. * Give each tab its own set of winoptions. * Fix for merging a transient window as a tab to its owner window. * Preserve tray hints across restarts. * Preserve tabs across restarts. * Improve the Alt+Tab for tabbed frames. * When switching tabs, ensure that focus is preserved. * Add a MouseWinTabbing preference to merge tabs. * Let the window list support tabs. * Various improvements to the CMake build. * Updated translations. ==== irqbalance ==== Subpackages: irqbalance-ui - add irqbalance-systemd-netlink.patch (related to bsc#1205308) ==== kactivitymanagerd ==== Version update (5.26.2 -> 5.26.3) Subpackages: kactivitymanagerd-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kcm_sddm ==== Version update (5.26.2 -> 5.26.3) Subpackages: kcm_sddm-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kde-cli-tools5 ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kde-gtk-config5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: kde-gtk-config5-gtk3 - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kernel-source ==== Version update (6.0.7 -> 6.0.8) - Linux 6.0.8 (bsc#1012628). - usb: dwc3: gadget: Force sending delayed status during soft disconnect (bsc#1012628). - usb: dwc3: gadget: Don't delay End Transfer on delayed_status (bsc#1012628). - RDMA/cma: Use output interface for net_dev check (bsc#1012628). - IB/hfi1: Correctly move list in sc_disable() (bsc#1012628). - RDMA/hns: Disable local invalidate operation (bsc#1012628). - RDMA/hns: Fix NULL pointer problem in free_mr_init() (bsc#1012628). - docs/process/howto: Replace C89 with C11 (bsc#1012628). - RDMA/rxe: Fix mr leak in RESPST_ERR_RNR (bsc#1012628). - NFSv4: Fix a potential state reclaim deadlock (bsc#1012628). - NFSv4.1: Handle RECLAIM_COMPLETE trunking errors (bsc#1012628). - NFSv4.1: We must always send RECLAIM_COMPLETE after a reboot (bsc#1012628). - SUNRPC: Fix null-ptr-deref when xps sysfs alloc failed (bsc#1012628). - NFSv4.2: Fixup CLONE dest file size for zero-length count (bsc#1012628). - nfs4: Fix kmemleak when allocate slot failed (bsc#1012628). - net: dsa: Fix possible memory leaks in dsa_loop_init() (bsc#1012628). - RDMA/core: Fix null-ptr-deref in ib_core_cleanup() (bsc#1012628). - RDMA/qedr: clean up work queue on failure in qedr_alloc_resources() (bsc#1012628). - tools/nolibc: Fix missing strlen() definition and infinite loop with gcc-12 (bsc#1012628). - net: dsa: fall back to default tagger if we can't load the one from DT (bsc#1012628). - nfc: fdp: Fix potential memory leak in fdp_nci_send() (bsc#1012628). - nfc: nxp-nci: Fix potential memory leak in nxp_nci_send() (bsc#1012628). - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() (bsc#1012628). - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send() (bsc#1012628). - net: fec: fix improper use of NETDEV_TX_BUSY (bsc#1012628). - ata: pata_legacy: fix pdc20230_set_piomode() (bsc#1012628). - ata: palmld: fix return value check in palmld_pata_probe() (bsc#1012628). - net: sched: Fix use after free in red_enqueue() (bsc#1012628). - net: tun: fix bugs for oversize packet when napi frags enabled (bsc#1012628). - netfilter: nf_tables: netlink notifier might race to release objects (bsc#1012628). - netfilter: nf_tables: release flow rule object from commit path (bsc#1012628). - sfc: Fix an error handling path in efx_pci_probe() (bsc#1012628). - nfsd: fix nfsd_file_unhash_and_dispose (bsc#1012628). - nfsd: fix net-namespace logic in __nfsd_file_cache_purge (bsc#1012628). - net: lan966x: Fix the MTU calculation (bsc#1012628). - net: lan966x: Adjust maximum frame size when vlan is enabled/disabled (bsc#1012628). - net: lan966x: Fix FDMA when MTU is changed (bsc#1012628). - net: lan966x: Fix unmapping of received frames using FDMA (bsc#1012628). - ipvs: use explicitly signed chars (bsc#1012628). - ipvs: fix WARNING in __ip_vs_cleanup_batch() (bsc#1012628). - ipvs: fix WARNING in ip_vs_app_net_cleanup() (bsc#1012628). - rose: Fix NULL pointer dereference in rose_send_frame() (bsc#1012628). - mISDN: fix possible memory leak in mISDN_register_device() (bsc#1012628). - isdn: mISDN: netjet: fix wrong check of device registration (bsc#1012628). - btrfs: fix inode list leak during backref walking at resolve_indirect_refs() (bsc#1012628). - btrfs: fix inode list leak during backref walking at find_parent_nodes() (bsc#1012628). - btrfs: fix ulist leaks in error paths of qgroup self tests (bsc#1012628). - netfilter: ipset: enforce documented limit to prevent allocating huge memory (bsc#1012628). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (bsc#1012628). - Bluetooth: hci_conn: Fix CIS connection dst_type handling (bsc#1012628). - Bluetooth: virtio_bt: Use skb_put to set length (bsc#1012628). - Bluetooth: L2CAP: Fix memory leak in vhci_write (bsc#1012628). - Bluetooth: hci_conn: Fix not restoring ISO buffer count on disconnect (bsc#1012628). - net: mdio: fix undefined behavior in bit shift for __mdiobus_register (bsc#1012628). - ibmvnic: Free rwi on reset success (bsc#1012628). - stmmac: dwmac-loongson: fix invalid mdio_node (bsc#1012628). - net/smc: Fix possible leaked pernet namespace in smc_init() (bsc#1012628). - net, neigh: Fix null-ptr-deref in neigh_table_clear() (bsc#1012628). - bridge: Fix flushing of dynamic FDB entries (bsc#1012628). - ipv6: fix WARNING in ip6_route_net_exit_late() (bsc#1012628). - vsock: fix possible infinite sleep in vsock_connectible_wait_data() (bsc#1012628). - iio: adc: stm32-adc: fix channel sampling time init ... changelog too long, skipping 246 lines ... - commit 0d318d5 ==== keylime ==== Version update (6.5.3 -> 6.5.2) Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime - Update to version v6.5.2: * cloud_verifier: This is the first PR to address the scalability problems uncovered in #1167, starting with `agent` status. * Bump version number * Add --retry 5 parameter to curl * create_mb_refstate: Check tpm2-tools version before running * create_mb_refstate: Print error messages * test_tpm: Skip event log parsing test if tpm2-tools is too old * installer: Enable installation on RHEL-9 * Move the execution of external EK check script to cert_utils * Move EK cert verification to cert_utils * Make the tpm cert store path configurable * ima-policy-converter: Implement a basic test suite for conversion script * ima-policy-converter: Implement IMA policy conversion script * ima-policy-converter: Add empty reference IMA policy * ima: Accept x509 certificates if no Subject Key Identifier is available * test_tpm: Use doc strings for tests description * Test binary measured boot event log parsing * alpha renaming * shallow type fixes * ima_emulator_adapter: Print readable error if reading a PCR fails * tpm: Check whether hash_alg is in jsonout * Very limited code fixup/cleanup on keylime_tenant CLI * Set permissions of keylime_agent_secure.mount to 664 * Disable dnf-makecache.timer to save RAM * tpm_bootlog_enrich: Get DevicePath length from LengthOfDevicePath * Disable dnf-makecache.service to save RAM * Fix for writing the same allow list twice during agent activation (#1150) * Fix improper handling of IMA policy bundle when none is provided * ima: Fix log evaluation on quick-succession execution of scripts * Add new tests to packit CI * Remove semantic-release action to stop erroneous releases * crypto: Provide input as bytes to encrypt * Revert "Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141)" * Update runtime_ima.rst * Back to 6.5.1 * This PR fixes a bug that prevented 6.5.x verifiers from interacting with 6.2. agents * Revert "Revert "tenant: open file to send utf-8 encoded" (#1136)" (#1141) * Revert "tenant: open file to send utf-8 encoded" (#1136) * ca_util: allow users in the same group to read the created certificates and keys (#1138) * Update sample ima-policy to exclude overlayfs * installer: remove tarball option ==== kgamma5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: kgamma5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== khotkeys5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: khotkeys5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kinfocenter5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: kinfocenter5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kmenuedit5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: kmenuedit5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kpipewire ==== Version update (5.26.2 -> 5.26.3) Subpackages: kpipewire-imports libKPipeWire5 libKPipeWireRecord5 - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kscreen5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: kscreen5-lang kscreen5-plasmoid - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kscreenlocker ==== Version update (5.26.2 -> 5.26.3) Subpackages: kscreenlocker-lang libKScreenLocker5 - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== ksshaskpass5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: ksshaskpass5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== ksystemstats5 ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kwayland-integration ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== kwin5 ==== Version update (5.26.2.1 -> 5.26.3) Subpackages: kwin5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2.1: * wayland: Prevent matching dnd actions after drop * Screencast: Fix inverted screencast on OpenGLES and memfd * screencasting: Make sure we are reporting properly scaled damage values * plugins/screencast: centralize format querying into the RenderBackend (kde#460563) * backends/drm: fix format sorting * Fix blur/contrast for X11 window if Xwayland is not scaled. (kde#461021) * [effects/windowview] Don't allow setting non-global shortcuts * [effects/overview] Don't allow setting non-global shortcuts * backends/drm: fix common mode generation * nightcolormanager: Emit timing change only when they have actually changed * x11: Don't force QT_NO_GLIB=1 (kde#460980) * x11: Don't force QT_QPA_PLATFORM=xcb * x11window: revert more from 3a28c02f (kde#461032) - Drop patches, now upstream: * 0001-x11window-revert-more-from-3a28c02f.patch ==== kwrited5 ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== layer-shell-qt ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== lcms2 ==== Version update (2.13.1 -> 2.14) - Added reverse-0001-fix-memory-leaks-on-testbed.patch to fix colord's i586 build failure - Update to 2.14: * lcms2 now implements ICC specification 4.4 * New multi-threaded plug-in * Several fixes to keep fuzzers happy * Removed check on DLL when CMS_NO_REGISTER_KEYWORD is used * Added more validation against broken profiles * Added more help to several tools * Revised documentation ==== libX11 ==== Version update (1.8.1 -> 1.8.2) Subpackages: libX11-6 libX11-data libX11-xcb1 - Update to version 1.8.2 * This is primarily a bug fix release, including further work on improving the thread-safety-constructor and making it work with software which had incorrectly called libX11 functions from inside X*IfEvent() calls. - supersedes U_fix-a-memory-leak-in-XRegisterIMInstantiateCallback.patch ==== libbpf ==== - Fix out-of-bound heap write (boo#1194248 boo#1194249 CVE-2021-45940 CVE-2021-45941) + libbpf-Use-elf_getshdrnum-instead-of-e_shnum.patch - Fix use-after-free in btf_dump_name_dups (boo#1204391 CVE-2022-3534) + libbpf-Fix-use-after-free-in-btf_dump_name_dups.patch - Fix memory leak in parse_usdt_arg() (boo#1204393 CVE-2022-3533) + libbpf-Fix-memory-leak-in-parse_usdt_arg.patch - Fix null pointer dereference in find_prog_by_sec_insn() (boo#1204502 CVE-2022-3606) + libbpf-Fix-null-pointer-dereference-in-find_prog_by_.patch ==== libcontainers-common ==== - set detached sigstore attachments for the SUSE controlled registries ==== libkdecoration2 ==== Version update (5.26.2 -> 5.26.3) Subpackages: libkdecorations2-5 libkdecorations2-5-lang libkdecorations2private9 - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== libkscreen2 ==== Version update (5.26.2 -> 5.26.3) Subpackages: libKF5Screen7 libkscreen2-plugin - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== libksysguard5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: ksysguardsystemstats-data libKSysGuardSystemStats1 libksysguard5-imports libksysguard5-lang libksysguard5-plugins - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== libnftnl ==== Version update (1.2.3 -> 1.2.4) - Update to release 1.2.4 * rule, set_elem: remove trailing \n in userdata snprintf * libnftnl: Fix res_id byte order ==== libnma ==== Version update (1.10.2 -> 1.10.4) Subpackages: libnma-gtk4-0 libnma0 typelib-1_0-NMA-1_0 - Update to version 1.10.4: + Split org.gnome.nm-applet.eap GSchema from org.gnome.nm-applet, so that the latter can be provided by network-manager-applet again (where it belongs). + build: unbreak build with gcr-3.92. - split out schema file from the library package: adhere to the shared library policy. The library requires the new libnma-glib-schema package. - Drop fix-dependency-pc-name.patch: fixed upstream. ==== libslirp ==== - added patches fix https://gitlab.freedesktop.org/slirp/libslirp/-/issues/64 + libslirp-semicolon.patch ==== libstorage-ng ==== Version update (4.5.48 -> 4.5.50) Subpackages: libstorage-ng-lang libstorage-ng-ruby libstorage-ng1 - merge gh#openSUSE/libstorage-ng#903 - fixed typo - 4.5.50 - merge gh#openSUSE/libstorage-ng#902 - ignore chunk size for RAID1 (bsc#1205172) - 4.5.49 ==== libyui ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libyui-ncurses ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libyui-ncurses-pkg ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libyui-qt ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libyui-qt-graph ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libyui-qt-pkg ==== Version update (4.4.4 -> 4.4.6) - Prevent antisocial focus grabbing in pkg list (bsc#1204429) - 4.4.6 - Fixed build failure with gcc 13 (gh#libyui/libyui/#80) - Killed YCP zombies in log output and comments - 4.4.5 ==== libzypp ==== Version update (17.31.4 -> 17.31.5) - Create '.no_auto_prune' in the package cache dir to prevent auto cleanup of orphaned repositories (bsc#1204956) - properly reset range requests (bsc#1204548) - version 17.31.5 (22) ==== mdadm ==== Version update (4.1 -> 4.2) - Update mdadm package to latest mdadm since mdadm-4.2 (jsc#PED-1009) * Only patches directly change runtime programs included, - Unify error message. 0001-Unify-error-message.patch - mdadm: Fix double free 0002-mdadm-Fix-double-free.patch - Grow_reshape: Add r0 grow size error message and update 0003-Grow_reshape-Add-r0-grow-size-error-message-and-upda.patch - udev: adapt rules to systemd v247 0004-udev-adapt-rules-to-systemd-v247.patch - Replace error prone signal() with sigaction() 0005-Replace-error-prone-signal-with-sigaction.patch - mdadm: Respect config file location in man 0006-mdadm-Respect-config-file-location-in-man.patch - mdadm: Update ReadMe 0007-mdadm-Update-ReadMe.patch - mdadm: Update config man regarding default files and 0008-mdadm-Update-config-man-regarding-default-files-and-.patch - mdadm: Update config manual 0009-mdadm-Update-config-manual.patch - Create, Build: use default_layout() 0010-Create-Build-use-default_layout.patch - mdadm: add map_num_s() 0011-mdadm-add-map_num_s.patch - mdmon: Stop parsing duplicate options 0012-mdmon-Stop-parsing-duplicate-options.patch - Grow: block -n on external volumes. 0013-Grow-block-n-on-external-volumes.patch - Incremental: Fix possible memory and resource leaks 0014-Incremental-Fix-possible-memory-and-resource-leaks.patch - Mdmonitor: Fix segfault 0015-Mdmonitor-Fix-segfault.patch - Mdmonitor: Improve logging method 0016-Mdmonitor-Improve-logging-method.patch - Fix possible NULL ptr dereferences and memory leaks 0017-Fix-possible-NULL-ptr-dereferences-and-memory-leaks.patch - imsm: Remove possibility for get_imsm_dev to return 0018-imsm-Remove-possibility-for-get_imsm_dev-to-return-N.patch - Revert "mdadm: fix coredump of mdadm --monitor -r" 0019-Revert-mdadm-fix-coredump-of-mdadm-monitor-r.patch - util: replace ioctl use with function 0020-util-replace-ioctl-use-with-function.patch - mdadm/super1: restore commit 45a87c2f31335 to fix 0021-mdadm-super1-restore-commit-45a87c2f31335-to-fix-clu.patch - imsm: introduce get_disk_slot_in_dev() 0022-imsm-introduce-get_disk_slot_in_dev.patch - imsm: use same slot across container 0023-imsm-use-same-slot-across-container.patch - imsm: block changing slots during creation 0024-imsm-block-changing-slots-during-creation.patch - mdadm: block update=ppl for non raid456 levels 0025-mdadm-block-update-ppl-for-non-raid456-levels.patch - mdadm: Fix array size mismatch after grow 0026-mdadm-Fix-array-size-mismatch-after-grow.patch - mdadm: Remove dead code in imsm_fix_size_mismatch 0027-mdadm-Remove-dead-code-in-imsm_fix_size_mismatch.patch - Monitor: use devname as char array instead of pointer 0028-Monitor-use-devname-as-char-array-instead-of-pointer.patch - Monitor: use snprintf to fill device name 0029-Monitor-use-snprintf-to-fill-device-name.patch - Makefile: Don't build static build with everything and 0030-Makefile-Don-t-build-static-build-with-everything-an.patch - DDF: Cleanup validate_geometry_ddf_container() 0031-DDF-Cleanup-validate_geometry_ddf_container.patch - DDF: Fix NULL pointer dereference in 0032-DDF-Fix-NULL-pointer-dereference-in-validate_geometr.patch - mdadm/Grow: Fix use after close bug by closing after 0033-mdadm-Grow-Fix-use-after-close-bug-by-closing-after-.patch - monitor: Avoid segfault when calling NULL 0034-monitor-Avoid-segfault-when-calling-NULL-get_bad_blo.patch - mdadm: Fix mdadm -r remove option regression 0035-mdadm-Fix-mdadm-r-remove-option-regression.patch - mdadm: Fix optional --write-behind parameter 0036-mdadm-Fix-optional-write-behind-parameter.patch - mdadm: Replace obsolete usleep with nanosleep 0037-mdadm-Replace-obsolete-usleep-with-nanosleep.patch - mdadm: remove symlink option 0038-mdadm-remove-symlink-option.patch - mdadm: move data_offset to struct shape 0039-mdadm-move-data_offset-to-struct-shape.patch - mdadm: Don't open md device for CREATE and ASSEMBLE 0040-mdadm-Don-t-open-md-device-for-CREATE-and-ASSEMBLE.patch - Grow: Split Grow_reshape into helper function 0041-Grow-Split-Grow_reshape-into-helper-function.patch - Assemble: check if device is container before 0042-Assemble-check-if-device-is-container-before-schedul.patch - super1: report truncated device 0043-super1-report-truncated-device.patch - mdadm: Correct typos, punctuation and grammar in man 0044-mdadm-Correct-typos-punctuation-and-grammar-in-man.patch - Manage: Block unsafe member failing 0045-Manage-Block-unsafe-member-failing.patch - Monitor: Fix statelist memory leaks 0046-Monitor-Fix-statelist-memory-leaks.patch - mdadm: added support for Intel Alderlake RST on VMD 0047-mdadm-added-support-for-Intel-Alderlake-RST-on-VMD-p.patch - mdadm: Add Documentation entries to systemd services 0048-mdadm-Add-Documentation-entries-to-systemd-services.patch ... changelog too long, skipping 172 lines ... - 0121-imsm-support-for-third-Sata-controller.patch ==== milou5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: milou5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== mobile-broadband-provider-info ==== Version update (20220725 -> 20221107) - Update to version 20221107: * build: - Fix regex in make check - reject and whitespace in XML via unit test - use $(SP_XML_DB) in Makefile.am * de: telekom: give names to plan entries * dtd: allow "mms-internet-hipri" and "mms-internet-hipri-fota" types * fr: include voice mail and balance check for Free Mobile * in: add Airtel Kerala network-id * ui: collapse Orange and T-Mobile into EE, fix APNs * us: add support for Ting USA VVM * us: update AT&T APNs and APN usages ==== nautilus ==== Subpackages: gnome-shell-search-provider-nautilus libnautilus-extension4 - Drop nautilus-revert-extra-large-thumbnails.patch: No longer needed with glib2 2.74.1. ==== ncurses ==== Version update (6.3.20221001 -> 6.3.20221105) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20221105 + regenerate configure scripts with autoconf 2.52.20221009 + modify "--with-manpage-format" to support bzip2 and xz compression (prompted by discussion with Sam James). + modify make-tar.sh scripts to make timestamps more predictable. - Add ncurses patch 20221029 + improve curs_slk.3x discussion of extensions and portability (report by Bill Gray). - Add ncurses patch 20221023 + change man_db.renames to template, to handle ncurses*-config script with the extra-suffix configure option. - Add ncurses patch 20221015 + fix another memory-leak in tic. + update install-sh script from autoconf, to fix install problem for Ada95 with Arch; as noted in https://lists.gnu.org/archive/html/automake/2018-09/msg00005.html there are unaddressed issues. + update CF_XOPEN_SOURCE, adding GNU libc suffixes for abi64, abin32, x32 (report by Sven Joachim): + correct ifdef's for _nc_set_read_thread() (patch by Mikhail Korolev, cf: 20220813). - Add ncurses patch 20221008 + correct a switch-statement case in configure script to allow for test builds with ABI=7. + modify misc/gen-pkgconfig.in to allow for the case where the library directory does not yet exist, since this is processed before doing an install (report by Michal Liszcz). ==== oxygen5-sounds ==== Version update (5.26.2 -> 5.26.3.1) - Update to 5.26.3.1 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== perl-HTML-Parser ==== Version update (3.79 -> 3.80) - updated to 3.80 see /usr/share/doc/packages/perl-HTML-Parser/Changes 3.80 2022-11-01 * Fix compatibility with ancient perl by avoiding index in test (GH#33) (Graham Knop) ==== perl-HTTP-Message ==== Version update (6.41 -> 6.44) - updated to 6.44 see /usr/share/doc/packages/perl-HTTP-Message/Changes 6.44 2022-10-26 20:49:00Z - Made the Clone module a hard requirement, so we don't have to provide a fallback function for HTTP::Headers::clone(). We require at least Clone 0.46, as that release now supports Perl back to 5.8.1, just like us. (GH#184) (Neil Bowers) - Import clone from Clone rather than inheriting (GH#189) (Graham Knop) - Made the Compress::Raw::Zlib 2.062 module minimal required version. (GH#190) (Jakub 'q84fh' Skory) 6.43 2022-10-22 14:50:35Z - Remove dependency to IO::Uncompress::Bunzip2. (Michal Josef Spacek) - Remove dependency to IO::Uncompress::Gunzip. (Michal Josef Spacek) 6.42 2022-10-18 13:53:22Z - We now don't consider the Content-Location header when asked for the base URI. RFC 7231 says we shouldn't. (GH#51) (Neil Bowers) - Increased the (max) buffer size for read() when processing form data, from 2048 to 8192. This was suggested in RT#105184, as it improved performance for them. (GH#59) (Neil Bowers) ==== perl-URI ==== Version update (5.16 -> 5.17) - updated to 5.17 see /usr/share/doc/packages/perl-URI/Changes 5.17 2022-11-02 17:03:48Z - Updated RFC references in the pod documentation for URI::file (GH#117) (Håkon Hgland) - Fix SIP URI encoder/decoder (GH#118) (ryankereliuk) ==== pixman ==== Version update (0.40.0 -> 0.42.2) - Update to version 0.42.2 (boo#1205033 CVE-2022-44638): + This version contains a fix for a heap overflow. - Update URL, and tweak source URI. ==== plasma-nm5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: plasma-nm5-lang plasma-nm5-openvpn - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * L2TP: Fix detection of Libreswan 4.9 and later ==== plasma5-addons ==== Version update (5.26.2 -> 5.26.3) Subpackages: plasma5-addons-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-desktop ==== Version update (5.26.2 -> 5.26.3) Subpackages: plasma5-desktop-emojier - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * tablet: Make sure the "lock aspect ratio" stays true * tablet: Fix the reset button for the outputs view (kde#458608) * [kcms/tablet] Delete device when removed * [kcms/tablet] Fix i18n * Fix panel configuration to properly limit maximum panel size to half height ==== plasma5-disks ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-integration ==== Version update (5.26.2 -> 5.26.3) Subpackages: plasma5-integration-plugin plasma5-integration-plugin-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-openSUSE ==== Subpackages: plasma5-defaults-openSUSE plasma5-theme-openSUSE plasma5-workspace-branding-openSUSE sddm-theme-openSUSE - Update to 5.26.3 ==== plasma5-pa ==== Version update (5.26.2 -> 5.26.3) Subpackages: plasma5-pa-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-systemmonitor ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-thunderbolt ==== Version update (5.26.2 -> 5.26.3) - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== plasma5-workspace ==== Version update (5.26.2 -> 5.26.3) Subpackages: gmenudbusmenuproxy plasma5-session plasma5-session-wayland plasma5-workspace-lang plasma5-workspace-libs xembedsniproxy - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * Notifications: Use String "0" for null percent * Revert apples/kicker: fix timer in triangular mouse filter (kde#461395) * runners/services: Do not parse exec of flatpaks (kde#461241) * kcms/regionandlanguage: convert ASCII unicode symbol to QChar (kde#460704) * startplasma-wayland: Don't set GDK_SCALE and GDK_DPI_SCALE (kde#443215) * runners/services: Do not match exec values of PWAs (kde#460796) * runners/servicerunner: increase match type when query exactly matches service name (kde#459516) * runners/recentdocuments: more fine-grained relevance and type assignment * runners/baloo: increase match type when query exactly matches file name * runners/locations: decrease match type when not a known existing file * wallpapers/image: always try to remove a path in `ImageBackend::removeSlidePath` (kde#461003) ==== polkit ==== Subpackages: libpolkit-agent-1-0 libpolkit-gobject-1-0 pkexec typelib-1_0-Polkit-1_0 - read actions also from /etc/polkit-1/actions (jsc#PED-1405) added polkit-actions-in-etc.patch ==== polkit-kde-agent-5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: polkit-kde-agent-5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== powerdevil5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: powerdevil5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * powerprofileconfig: Use proper signal for detecting user interaction ==== python-Babel ==== Version update (2.10.3 -> 2.11.0) - Update to 2.11.0 Upcoming deprecation * This version, Babel 2.11, is the last version of Babel to support Python 3.6. Babel 2.12 will require Python 3.7 or newer. Improvements * Support for hex escapes in JavaScript string literals :gh:`877` - Przemyslaw Wegrzyn * Add support for formatting decimals in compact form :gh:`909` - Jonah Lawrence * Adapt parse_date to handle ISO dates in ASCII format :gh:`842` - Eric L. * Use ast instead of eval for Python string extraction :gh:`915` - Aarni Koskela * This also enables extraction from static f-strings. F-strings with expressions are silently ignored (but won't raise an error as they used to). Infrastructure * Tests: Use regular asserts and pytest.raises() :gh:`875` – Aarni Koskela * Wheels are now built in GitHub Actions :gh:`888` – Aarni Koskela * Small improvements to the CLDR downloader script :gh:`894` – Aarni Koskela * Remove antiquated __nonzero__ methods :gh:`896` - Nikita Sobolev * Remove superfluous __unicode__ declarations :gh:`905` - Lukas Juhrich * Mark package compatible with Python 3.11 :gh:`913` - Aarni Koskela * Quiesce pytest warnings :gh:`916` - Aarni Koskela Bugfixes * Use email.Message for pofile header parsing instead of the deprecated cgi.parse_header function. :gh:`876` – Aarni Koskela * Remove determining time zone via systemsetup on macOS :gh:`914` - Aarni Koskela Documentation * Update Python versions in documentation :gh:`898` - Raphael Nestler * Align BSD-3 license with OSI template :gh:`912` - Lukas Kahwe Smith ==== python-Jinja2 ==== Version update (3.0.3 -> 3.1.2) - update to 3.1.2: * Add parameters to ``Environment.overlay`` to match ``__init__``. * Handle race condition in ``FileSystemBytecodeCache``. :issue:`1654` - specfile: * update copyright year * require python-base >= 3.7 - update to version 3.1.1: * The template filename on Windows uses the primary path separator. :issue:`1637` - changes from version 3.1.0: * Drop support for Python 3.6. :pr:`1534` * Remove previously deprecated code. :pr:`1544` + "WithExtension" and "AutoEscapeExtension" are built-in now. + "contextfilter" and "contextfunction" are replaced by "pass_context". "evalcontextfilter" and "evalcontextfunction" are replaced by "pass_eval_context". "environmentfilter" and "environmentfunction" are replaced by "pass_environment". + "Markup" and "escape" should be imported from MarkupSafe. + Compiled templates from very old Jinja versions may need to be recompiled. + Legacy resolve mode for "Context" subclasses is no longer supported. Override "resolve_or_missing" instead of "resolve". + "unicode_urlencode" is renamed to "url_quote". * Add support for native types in macros. :issue:`1510` * The "{% trans %}" tag can use "pgettext" and "npgettext" by passing a context string as the first token in the tag, like "{% trans "title" %}". :issue:`1430` * Update valid identifier characters from Python 3.6 to 3.7. :pr:`1571` * Filters and tests decorated with "@async_variant" are pickleable. :pr:`1612` * Add "items" filter. :issue:`1561` * Subscriptions ("[0]", etc.) can be used after filters, tests, and calls when the environment is in async mode. :issue:`1573` * The "groupby" filter is case-insensitive by default, matching other comparison filters. Added the "case_sensitive" parameter to control this. :issue:`1463` * Windows drive-relative path segments in template names will not result in "FileSystemLoader" and "PackageLoader" loading from drive-relative paths. :pr:`1621` ==== python-M2Crypto ==== - add openssl-stop-parsing-header.patch (bsc#1205042) - add m2crypto-0.38-ossl3-tests.patch ==== python-pexpect ==== - skip extra tests for qemu based builds ==== python-psutil ==== Version update (5.9.3 -> 5.9.4) - update to version 5.9.4: * Enhancements - 2102: use Limited API when building wheels with CPython 3.6+ on Linux, macOS and Windows. This allows to use pre-built wheels in all future versions of cPython 3. (patch by Matthieu Darbois) * Bug fixes - 2077, [Windows]: Use system-level values for virtual_memory(). (patch by Daniel Widdis) - 2156, [Linux]: compilation may fail on very old gcc compilers due to missing SPEED_UNKNOWN definition. (patch by Amir Rossert) - 2010, [macOS]: on MacOS, arm64 IFM_1000_TX and IFM_1000_T are the same value, causing a build failure. (patch by Lawrence D'Anna) ==== python-pytz ==== Version update (2022.5 -> 2022.6) - Update to 2022.6 * IANA 2022f * Squashed 'tz/' changes from c4eb3fcf2..623631d84 * Upgrade unittest asserts * Bump GitHub Actions * Add support for Python 3.11 ==== python-pyzmq ==== - Fix build with OpenSSL 3.0 [bsc#1205042] * Temporarily disable test_on_recv_basic ==== python-zope.interface ==== Version update (5.5.0 -> 5.5.1) - Update to version 5.5.1 * Add support for final Python 3.11 release. ==== python310 ==== Subpackages: python310-curses python310-dbm - Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding extremely long domain names. ==== python310-core ==== Subpackages: libpython3_10-1_0 python310-base - Add CVE-2022-45061-DoS-by-IDNA-decode.patch to avoid CVE-2022-45061 (bsc#1205244) allowing DoS by IDNA decoding extremely long domain names. ==== qalculate ==== Version update (4.3.0 -> 4.4.0) Subpackages: libqalculate22 qalculate-data - Update to 4.4.0: * New prime number functions: primePi(), primes(), nthprime(), nextprime(), prevprime(), and isprime() * New functions for intervals and uncertainties: upperEndpoint(), lowerEndpoint(), midpoint(), and errorPart() * Add meter of water and related pressure units, and more derived flow rate units * Support for vectors and matrices in uncertainty propagation calculation * Proper support for uncertainty propagation in total(), sum(), product(), and for() functions * Simplify display of parsed expression (primarily for quantities with units) * Avoid parsing of implicit multiplication as nested multiplication * Include +/- statement in function argument without parentheses * Return values for approximate variables in exact mode in dimension() and elements() * Improve parsing of quotation marks as feet/inch or arcmin/arcsec (e.g. do not parse s" as sin) * Fix exact calculation of re((a*i)^(n/2)) (wrong sign in some cases) * Fix erroneous calculation in some cases with physical constants both outside and inside unit relations when interval calculation is set to interval arithmetic * Fix segfaults in some corner cases * Fix use of random numbers in iterative functions * Fix writing beyond end of array during exchange rates check in some cases (results in activation of old style matrices) * Fix automatic reactivation of deactivated global object if a function with the same name exists * Do not convert function arguments which do not allow units (fixes "arcsin(0.5+/-0.1) to deg") * Fix prefix after conversion to optimal unit when the optimal unit includes a prefix * Fix exact calculation when function argument is an approximate vector variable (fail) * Minor bug fixes and feature enhancements ==== qemu ==== - Enable KVM support on riscv64 ==== rebootmgr ==== Version update (1.3.1 -> 2.0) - Update to version 2.0 - Remove outdated etcd code - Fix issue#10: Reboots happen at the first moment of the maintenance window ==== rpm ==== Subpackages: librpmbuild9 - Add selinux_transactional_update.patch to ignore errors when setting file labels during transactional updates. They will be set upon reboot once the new policy is loaded (bsc#1204605) ==== shadow ==== Version update (4.12.3 -> 4.13) Subpackages: libsubid4 login_defs - Update to 4.13: * useradd.8: fix default group ID * Revert drop of subid_init() * Georgian translation * useradd: Avoid taking unneeded space: do not reset non-existent data in lastlog * relax username restrictions * selinux: check MLS enabled before setting serange * copy_tree: use fchmodat instead of chmod * copy_tree: don't block on FIFOs * add shell linter * copy_tree: carefully treat permissions * lib/commonio: make lock failures more detailed * lib: use strzero and memzero where applicable * Update Dutch translation * Don't test for NULL before calling free * Use libc MAX() and MIN() * chage: Fix regression in print_date * usermod: report error if homedir does not exist * libmisc: minimum id check for system accounts * fix usermod -rG x y wrongly adding a group * man: add missing space in useradd.8.xml * lastlog: check for localtime() return value * Raise limit for passwd and shadow entry length * Remove adduser-old.c * useradd: Fix buffer overflow when using a prefix * Don't warn when failed to open /etc/nsswitch.conf - Remove patches we took from upstream pre-release: * shadow-copytree-usermod-fifo.patch * shadow-chage-format.patch * shadow-prefix-overflow.patch - Remove chkname-regex.patch: Upstream now also relaxed the usernames requirements. They don't use regex for this but the result is similar. Plus they also check that the name is less than 32 characters long. - Rebase useradd-userkeleton.patch - Add shadow-copytree-usermod-fifo.patch: Fix regression that prevented `usermod -m` to work when their home directory contained at least one fifo See https://github.com/shadow-maint/shadow/pull/565 ==== systemd ==== Version update (251.7 -> 251.8) Subpackages: libsystemd0 libudev1 systemd-doc udev - Import commit 9cdd78585069b133bebcd479f3a204057ad25d76 (merge of v251.8) For a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/c212388f7de8d22a3f7c22b19553548ccc0cdd15...9cdd78585069b133bebcd479f3a204057ad25d76 ==== systemsettings5 ==== Version update (5.26.2 -> 5.26.3) Subpackages: systemsettings5-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - Changes since 5.26.2: * Fix kcms inside a category always being indented ==== vmaf ==== - Drop recommends on vmaf-data, the package is gone since vmaf 2.x. Build model data into the library, since `make install` does not do anything by default. [boo#1189023] ==== webkit2gtk3 ==== Version update (2.38.1 -> 2.38.2) Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124): + Fix scrolling issues in some sites having fixed background. + Fix prolonged buffering during progressive live playback. + Fix the build with accessibility disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824. ==== webkit2gtk4 ==== Version update (2.38.1 -> 2.38.2) Subpackages: libjavascriptcoregtk-5_0-0 libwebkit2gtk-5_0-0 webkit2gtk-5_0-injected-bundles - Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124): + Fix scrolling issues in some sites having fixed background. + Fix prolonged buffering during progressive live playback. + Fix the build with accessibility disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824. ==== xdg-desktop-portal-kde ==== Version update (5.26.2 -> 5.26.3) Subpackages: xdg-desktop-portal-kde-lang - Update to 5.26.3 * New bugfix release * For more details please see: * https://kde.org/announcements/plasma/5/5.26.3 - No code changes since 5.26.2 ==== zypper ==== Version update (1.14.57 -> 1.14.58) Subpackages: zypper-log zypper-needs-restarting - Update man page and explain '.no_auto_prune' (bsc#1204956) - Allow to (re)add a service with the same URL (bsc#1203715) - Explain outdatedness of repos (fixes #463) - BuildRequires: libzypp-devel >= 17.31.5 - version 1.14.58