Packages changed: fwupd (2.0.20 -> 2.1.1) glslang (16.2.0 -> 16.3.0) kdenetwork-filesharing (25.12.3 -> 26.04.0) kdump lcms2 (2.19 -> 2.19.1) libexif (0.6.25 -> 0.6.26) ncurses shadow === Details === ==== fwupd ==== Version update (2.0.20 -> 2.1.1) Subpackages: libfwupd3 typelib-1_0-Fwupd-2_0 - Update to version 2.1.1: + This release adds the following features: - Add a new fwupd security check for HP Sure Start - Add a new plugin to verify Intel CSME using SMBIOS data - Add a new tpm-eventlog command to explain the TPM eventlog output - Add CycloneDX and SPDX support to uSWID - Add support for AMD Platform Secure boot - Add support for changing AMD GPU UMA carveout size - Add support for emulation for bluetooth devices - Allow systems to use the udev event source without using systemd - Disable the UEFI plugins on 32bit x86 - Drop support for GPG signing of metadata and firmware - No longer depend on json-glib, libarchive or protobuf-c - Remove the concept of blocked firmware - Show translated problems when a device cannot be installed + This release fixes the following bugs: - Add a timeout to the fwupd-refresh systemd unit - Allow systemd service to access block-sr devices - Always show the correct new firmware version in 'fwupdmgr get-history' - Be more defensive with invalid Corsair device responses - Cache the payload verification result to speed up installing modem firmware - Check for integer overflow when constructing a partial stream - Clear the remaining qc-firehose power reset logs - Decompress a zip file in Aver HID rather than a bz2 archive - Do not allow efivar update without TIME_BASED_AUTHENTICATED_WRITE_ACCESS - Do not hang when parsing an invalid USB descriptor - Do not include EV_NO_ACTION when calculating the TPM PCRs - Do not return an error if the fastboot property is not provided - Do not show all IDs as GUIDs if adding quirks after device setup - Find shim when using systemd-boot and distro-specific locations - Fix activation of dell-kestrel NVM when composite updates are completed - Fix a dell-dock regression when enumerating the status component - Fix a fuzzer timeout when parsing a Synaptics RMI SBL container - Fix a missing error check when updating Genesys USB hubs - Fix a potential heap OOB read in AMD Kria SOM EEPROM parser - Fix a potential Logitech HID++ hang when parsing unexpected payload IDs - Fix a potential out-of-bounds read in Dell dock - Fix a regression causing MBIM QDU updates to fail - Fix a regression when installing on the HP G5 dock - Fix a small memory leak when removing a bluetooth device - Fix an integer underflow when parsing a malicious PE file - Fix get-updates --json silently skipping UPDATABLE_HIDDEN devices - Fix the snapd-uefi request when multiple updates are processed - Honor polkit auth for emulation tag modify device - Make Logitech HID++ devices using RDFU actually work - Only load the history database in the daemon when required - Refactor the Snap support out into a new plugin - Remove a warning when updating Intel GSC OPROMDATA - Remove the bcm57xx recovery device support - Require a CHID for generic ElanTP devices - Speed up calculating the cabinet checksum by ~20% - Support 8bitdo firmware with multiple packed images - Try to claim the DFU USB interface more than once - Use crc32() from zlib.h when computing the most common kind of CRC32 - Verify the uncompressed size when decompressing CAB files + This release adds support for the following hardware: - Blestech Touchpads - ELAN Haptic MCU devices - FocalTouch devices - Himax Touchscreens - HP Engage One G2 Advanced Hub - KATAR PRO Wireless Gaming Dongle - Lenovo keyboard and mice accessories - Lenovo Sapphire Folio Keyboard - Lightware Taurus HC40 and HC60 - Novatek touchscreens - PixArt Touchpads - Rolling RW101-CAT12 modems - Sunwinon HID devices - Drop no longer required BuildRequires: pkgconfig(json-glib-1.0), pkgconfig(libarchive), and pkgconfig(protobuf). - Drop upstream merged patch 0001-Allow-systemd-service-to-access-block-sr-cdrom-devic.patch - Drop fwupd-bsc1130056-change-shim-path.patch: no longer applicable. ==== glslang ==== Version update (16.2.0 -> 16.3.0) - Update to release 16.3.0 * Deprecated the HLSL front-end. ==== kdenetwork-filesharing ==== Version update (25.12.3 -> 26.04.0) - Update to 26.04.0 * New feature release * For more details please see: * https://kde.org/announcements/gear/26.04.0/ - No code change since 26.03.90 - Update to 26.03.90 * New feature release - No code change since 26.03.80 - Update to 26.03.80 * New feature release - Changes since 25.12.3: * Handle service being an alias * filepropertiesplugin: Refactor the plugin initialization logic * filepropertiesplugin: Enable and start the Samba service if needed * filepropertiesplugin: Move the kauth helper into a directory, and give it a unique name * filepropertiesplugin: Use non-deprecated Connections syntax * filepropertiesplugin: Clip the user list and disable scrolling in its comboboxes * cmake_minimum_required: drop outdated FATAL_ERROR arg * filepropertiesplugin: Fix regression in smbd path lookup - Drop patch, merged upstream: * 0001-filepropertiesplugin-Fix-regression-in-smbd-path-loo.patch ==== kdump ==== - drop unconditional calibrate BuildRequires ==== lcms2 ==== Version update (2.19 -> 2.19.1) - Update to version 2.19.1 * Fixed sonames generation when using autotools. * Recovered an undocumented memory write feature lost because a "security" report. ==== libexif ==== Version update (0.6.25 -> 0.6.26) - libexif-0.6.26 (2026-04-14): * Security issues fixed: * CVE-2026-40386: An unsigned integer underflow in Fuji and Olympus makernote handling (bsc#1262001) * CVE-2026-40385: An unsigned integer overflow on 32bit systems in Nikon makernote handling (bsc#1262000) * CVE-2026-32775: A buffer overwrite via integer underflow in makernote handling (bsc#1259755) * handle JPEG APP3 marker * added EXIF_TAG_IMAGE_DEPTH tag * translations updated: Arabic, German, Spanish, Polish, Romanian, Serbian, Swedish, Ukrainian, Chinese ==== ncurses ==== Subpackages: libncurses6 ncurses-utils terminfo-base - Remove fix-mouse.patch as it is verified that patch 20260418 includes the fix (boo#1253379) ==== shadow ==== Subpackages: libsubid5 login_defs shadow-pw-mgmt - Use `%verify(not mode caps)` and remove setuid bit for newgidmap and newuidmap. Related to gh/openSUSE/post-build-checks#66 - shadow-util-linux.patch: util-linux-2.42 introduced new variable: LOGIN_SHELL_FALLBACK. Recognize it and update dependencies. The patch includes gh/shadow-maint/shadow/pull#1621. - shadow-login_defs-check.sh: Adjust for new quilt.