Packages changed: 389-ds ImageMagick (7.1.1.40 -> 7.1.1.41) Mesa (24.2.6 -> 24.3.0) Mesa-drivers (24.2.6 -> 24.3.0) MozillaFirefox (132.0.1 -> 132.0.2) NetworkManager-applet NetworkManager-vpnc (1.2.8 -> 1.4.0) alsa alsa-ucm-conf alsa-utils apache2-mod_php8 (8.3.13 -> 8.3.14) clazy (1.12git.20240630T203330~f3fb82c -> 1.13git.20241119T221149~560bdc1) curl dnsmasq erofs-utils (1.8.1 -> 1.8.2) evolution (3.54.1 -> 3.54.2) evolution-data-server (3.54.1 -> 3.54.2) evolution-ews (3.54.1 -> 3.54.2) gnome-settings-daemon (47.1 -> 47.2) gnome-user-docs (47.0 -> 47.2) gnutls (3.8.7 -> 3.8.8) gpgme (1.23.2 -> 1.24.0) gpgmeqt6 (1.23.2 -> 1.24.0) gstreamer-plugins-ugly (1.24.8 -> 1.24.9) gtk4 (4.16.5 -> 4.16.6) gtksourceview5 (5.14.1 -> 5.14.2) inkscape iptables (1.8.10 -> 1.8.11) kdepim-runtime (24.08.2 -> 24.08.3) kdump (2.0.10+git0.g62142dd -> 2.0.11) kernel-firmware (20241018 -> 20241113) kernel-source (6.11.7 -> 6.11.8) kf6-bluez-qt libXt (1.3.0 -> 1.3.1) libbpf (1.4.6 -> 1.5.0) libheif (1.19.3 -> 1.19.5) libimobiledevice libinput (1.26.2 -> 1.27.0) libmtp (1.1.21 -> 1.1.22) libsoup libsoup2 libxml2 libxml2-python libzypp (17.35.13 -> 17.35.14) linux-glibc-devel (6.11 -> 6.12) llvm18 llvm19 (19.1.3 -> 19.1.4) localsearch (3.8.0 -> 3.8.1) luajit (5.1.2.1.0+git.1727870382.97813fb -> 5.1.2.1.0+git.1731601260.fe71d0f) mariadb (11.5.2 -> 11.6.1) meson microos-tools (4.0+git2 -> 4.0+git6) mozjs128 multipath-tools (0.10.0+108+suse.2c2e597 -> 0.11.0~1+118+suse.4a51b1a) ncurses (6.5.20241102 -> 6.5.20241109) net-snmp nvidia-open-driver-G06-signed-cuda (560.35.03_k6.11.7_1 -> 560.35.03_k6.11.8_1) openSUSE-release (20241114 -> 20241124) opensc (0.25.1 -> 0.26.0) patterns-gnome (20201210 -> 20241112) patterns-media php8 (8.3.13 -> 8.3.14) plymouth (22.02.122+94.4bd41a3 -> 22.02.122+180.b1d5aa9) postgresql postgresql17 (17.0 -> 17.2) python-constantly (15.1.0 -> 23.10.4) python-mysqlclient (2.2.5 -> 2.2.6) python-numpy (2.1.2 -> 2.1.3) python-psutil (6.0.0 -> 6.1.0) python-rich (13.7.1 -> 13.9.4) python-tomli (2.0.2 -> 2.1.0) python311 python311-core rpm strace (6.11 -> 6.12) tcpd tiff tinysparql (3.8.0 -> 3.8.1) upower (1.90.4 -> 1.90.6) util-linux util-linux-systemd vlc webkit2gtk3 xprop (1.2.7 -> 1.2.8) yast2-iscsi-client (5.0.4 -> 5.0.5) yast2-trans (84.87.20241109.fe9daf12bb -> 84.87.20241115.093806fbe6) yast2-ycp-ui-bindings (5.0.0 -> 5.0.1) === Details === ==== 389-ds ==== Subpackages: lib389 libsvrcore0 - Add 389-ds-link-icu-uc.patch: properly link to icu-uc as well, which is no longer transparently added when linking icu-i18n (boo#1233578). ==== ImageMagick ==== Version update (7.1.1.40 -> 7.1.1.41) Subpackages: ImageMagick-config-7-SUSE libMagickCore-7_Q16HDRI10 libMagickWand-7_Q16HDRI10 - version update to 7.1.1.41 * Fix compiler identification with Clang on Darwin in #7773 * revert map changes breaking ABI in #7768 ==== Mesa ==== Version update (24.2.6 -> 24.3.0) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - Update to release 24.3.0 - -> https://docs.mesa3d.org/relnotes/24.3.0 - Update to release 24.3.0~rc2 - -> https://www.phoronix.com/news/Mesa-24.3-rc2 - Update to release 24.3.0~rc1 - -> https://www.phoronix.com/news/Mesa-24.3-rc1-Released - refreshed patches: * n_drirc-disable-rgb10-for-chromium-on-amd.patch * python36-buildfix1.patch * python36-buildfix2.patch * tlsdesc_test.patch * u_mesa-CVE-2023-45913.patch * u_mesa-CVE-2023-45919.patch * u_mesa-CVE-2023-45922.patch * u_dep_xcb.patch - drop no longer supported options: * -Ddri3=enabled * -Ddri-search-path=%{_libdir}/dri - new files added in this update currently packaged as part of Mesa-dri: * %{_libdir}/gbm/dri_gbm.so - Update to release 24.2.7 - -> https://docs.mesa3d.org/relnotes/24.2.7 - supersedes 0001-dril-Fixup-order-of-pixel-formats-in-drilConfigs.patch ==== Mesa-drivers ==== Version update (24.2.6 -> 24.3.0) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - Update to release 24.3.0 - -> https://docs.mesa3d.org/relnotes/24.3.0 - Update to release 24.3.0~rc2 - -> https://www.phoronix.com/news/Mesa-24.3-rc2 - Update to release 24.3.0~rc1 - -> https://www.phoronix.com/news/Mesa-24.3-rc1-Released - refreshed patches: * n_drirc-disable-rgb10-for-chromium-on-amd.patch * python36-buildfix1.patch * python36-buildfix2.patch * tlsdesc_test.patch * u_mesa-CVE-2023-45913.patch * u_mesa-CVE-2023-45919.patch * u_mesa-CVE-2023-45922.patch * u_dep_xcb.patch - drop no longer supported options: * -Ddri3=enabled * -Ddri-search-path=%{_libdir}/dri - new files added in this update currently packaged as part of Mesa-dri: * %{_libdir}/gbm/dri_gbm.so - Update to release 24.2.7 - -> https://docs.mesa3d.org/relnotes/24.2.7 - supersedes 0001-dril-Fixup-order-of-pixel-formats-in-drilConfigs.patch ==== MozillaFirefox ==== Version update (132.0.1 -> 132.0.2) - Mozilla Firefox 132.0.2 * Fixed possible errors when playing encrypted media content through some streaming providers. (bmo#1929491) * Added a mitigation to help reduce the frequency of duplicated push notifications reported by some users. (bmo#1928868) * Fixed hangs when printing from some sites when using the system print dialog. (bmo#1898184) * Fixed a crash which could occur when using Microsoft SSO on macOS (bmo#1929622) * Fixed a crash in the Network Monitor developer tool which could occur in some circumstances. (bmo#1924882) ==== NetworkManager-applet ==== Subpackages: NetworkManager-connection-editor - Make pkgconfig(ayatana-appindicator3-0.1) BuildRequires conditional for ppc64le, as it is not available there. ==== NetworkManager-vpnc ==== Version update (1.2.8 -> 1.4.0) Subpackages: NetworkManager-applet-vpnc - Update to version 1.4.0: + Added support for configuring MTU. + Added support for more secure DH groups. + Added options to relax security for old insecure gateways. + Added support for Fortigate vendor-specific compatibility quirks. + Removed obsolete libm-glib support. + Updated translations. - Drop nm-vpnc-editor-interface-name.patch: Fixed upstream. ==== alsa ==== Subpackages: libasound2 libatopology2 - Fix incorrect versioned symbol for snd_seq_has_queue_tempo_base: 0001-src-Versions.in.in-Update-_tempo_base-name.patch ==== alsa-ucm-conf ==== - Backport upstream fixes for sof-hda-dsp: 0001-UCM2-Intel-sof-hda-dsp-Fix-handling-of-empty-sys_ven.patch 0002-sof-hda-dsp-Fix-the-case-where-sysfs-dmi-product_nam.patch ==== alsa-utils ==== - Yet another fix for alsactl for AMD acp dmic: 0002-alsactl-90-alsa-restore.rules-fix-AMD-acp-pdm-mach-l.patch - Fix alsactl restore error (bsc#1233353): 0001-alsactl-90-alsa-restore.rules-fix-alsa_restore_go-st.patch ==== apache2-mod_php8 ==== Version update (8.3.13 -> 8.3.14) - version update to 8.3.14 CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ==== clazy ==== Version update (1.12git.20240630T203330~f3fb82c -> 1.13git.20241119T221149~560bdc1) - Update to version 1.13git.20241119T221149~560bdc1: * Make string-allocations logic for handling two different cases more clear and efficient * Fix string-allocations check looking not deep enough in hierarchy to find StringLiteral for fixit * Fix string-allocations test not recognizing operator macro magic of Qt 6.8 * Add ifdefs for compatibility with LLVM 19 * Adjust additional argument in InclusionDirective * Fix typo in todo * Revert overeager cleanups to usageg OptionalFileEntryRef, GET_LEXER * remove the llvm/clang version sepecific macros * Remove guards for no longer necessary CLAZY_DISABLE_AST_MATCHERS * Update LLVM/Clang support to 14.0+, add LLVM 19 handling * Fix note on which qstring-arg checks are run by default and which need to be enabled * Remove unneeded FWD - Harden runtime dependencies and tweak CLANGXX to point to the clang executable matching libraries used to build clazy. - Update runtime requirements - Keep using LLVM 18 on Tumbleweed until upstream fixes compatibility with LLVM 19 - Update to version 1.13git.20240928T115050~ef4fa16: * Fix clang deprecations by porting to FileEntryRef * Use clazy helper to avoid startsWith->starts_with deprecation * [cmake] Adjust for non-installed LLVM * rule-of-three: Fix destructor not being found and thus causing false positive * Add test for qca clazy false positive * Fail if no Qt installation was found at all * Add Qt6 BSD CI * Only look for Qt5/Qt6 installs if respective CI job is running * Verbose ctest * Make tests work when clang library is different from system default * Move used-qunused to manuallevel for now * Add used-qunused check for identifying unneeded/wrong Q_UNUSED/void casts * Bump master to 1.13 ==== curl ==== Subpackages: curl-zsh-completion libcurl4 - Add patch to fix libcurl when netrc parsing is enabled. curl_easy_duphandle did not init netrc which broke applications such as for example git. gh#curl/curl#15496 * 0001-duphandle-also-init-netrc.patch ==== dnsmasq ==== - Enable --nftset support ==== erofs-utils ==== Version update (1.8.1 -> 1.8.2) - Update to release 1.8.2 * mkfs: Correctly skip unidentified xattrs * fsck: Support exporting xattrs optionally * mkfs: Correctly sort shared xattrs * mkfs: Allow pax headers with empty names * mkfs: Add `--sort=none` option for tarball ==== evolution ==== Version update (3.54.1 -> 3.54.2) Subpackages: evolution-plugin-spamassassin - Update to version 3.54.2: + Bug Fixes: - Composer: Possible crash on paste - Correct certificate key usage constants - ToDo bar sometimes does not display due tasks + Miscellaneous: Default inbox email: Update URIs, remove link to defunct mailing list. + Updated translations. ==== evolution-data-server ==== Version update (3.54.1 -> 3.54.2) Subpackages: libcamel-1_2-64 libebackend-1_2-11 libebook-1_2-21 libebook-contacts-1_2-4 libecal-2_0-3 libedata-book-1_2-27 libedata-cal-2_0-2 libedataserver-1_2-27 libedataserverui-1_2-4 - Update to version 3.54.2: + Bug Fixed: - libedataserverui: Avoid initializing the icon_theme when building introspection data - Fails to build/link against icu 76.1 - Correct certificate key usage constants + Updated translations. - Update to version 3.54.1+4: * libedataserverui: Avoid initializing the icon_theme when building introspection data * Updated translations. - Workaround build failure using ICU 76.1: fix up CMakeLists.txt to link icu-uc instead of icu-i18n (glgo#GNOME/evolution-data-server#574). ==== evolution-ews ==== Version update (3.54.1 -> 3.54.2) - Update to version 3.54.2: + Bug Fixes: m365: Calendar color reset on calendar list refresh. + Miscellaneous: m365: Fix cancel of an instance of a recurring meeting. + Updated translations. ==== gnome-settings-daemon ==== Version update (47.1 -> 47.2) - Only recommend xf86-input-libinput if xorg-x11-server is present: wayland does not rely on the xf86 drivers. - Update to version 47.2: + Power: - Fix possible invalid reads if backlight fails to initialize. - Handle broken upower more elegantly. - Test warning fixes. + Updated translations. ==== gnome-user-docs ==== Version update (47.0 -> 47.2) - Update to version 47.2: + Updated translations. ==== gnutls ==== Version update (3.8.7 -> 3.8.8) Subpackages: libgnutls-dane0 libgnutls30 - Update to 3.8.8: - libgnutls: Experimental support for X25519MLKEM768 and SecP256r1MLKEM768 key exchange in TLS 1.3: The support for post-quantum key exchanges has been extended to cover the final standard of ML-KEM, following draft-kwiatkowski-tls-ecdhe-mlkem. The minimum supported version of liboqs is bumped to 0.11.0. - libgnutls: All records included in an OCSP response are now checked in TLS: Previously, when multiple records are provided in a single OCSP response, only the first record was considered; now all those records are examined until the server certificate matches. - libgnutls: Handling of malformed compress_certificate extension is now more standard compliant: The server behavior of receiving a malformed compress_certificate extension now more strictly follows RFC 8879; return illegal_parameter alert instead of bad_certificate, as well as overlong extension data is properly rejected. - build: More flexible library linking options for compression libraries, TPM, and liboqs support: The configure options, - -with-zstd, --with-brotli, --with-zlib, --with-tpm2, and --with-liboqs now take 4 states: yes/link/dlopen/no, to specify how the libraries are linked or loaded. * Rebase gnutls-FIPS-140-3-references.patch ==== gpgme ==== Version update (1.23.2 -> 1.24.0) Subpackages: libgpgme11 libgpgmepp6 - Move the gpg python bindings out of the egg directory. - Fix file list on Leap 15 - Update to 1.24.0: * Extended gpgme_op_decrypt* and gpgme_op_verify* to allow writing the output directly to a file. [T6550] * Extended gpgme_op_encrypt*, gpgme_op_encrypt_sign*, and gpgme_op_sign* to allow reading the input data directly from a file. [T6550] * Add information about designated revocation keys. [T7118] * New context flag "import-options". [T7152] * New context flag "proc-all-sigs". [T7261] * New context flag "known-notations". [T4060] * New info flags "beta_compliance". [rM1a7bc88ee7] * New function gpgme_op_setownertrust to make changing the owner trust easier and to allow enabling/disabling of keys (requires GnuPG 2.4.6). [T7239] * New flag to re-encrypt OpenPGP data (requires GnuPG 2.5.1). [T1825] * cpp: Provide information about designated revocation keys for a Key. [T7118] * cpp: Add safer member function returning text describing an error. [T5960] * cpp: Add support for setting the owner trust of keys and for enabling and disabling keys. [T7239] * qt: Build QGpgME for Qt 5 and Qt 6 simultaneously. [T7205] * qt: Install headers for Qt 5 and Qt 6 in separate folders. [T7161] * qt: Allow reading the data to decrypt/encrypt/sign/verify directly from files. [T6550] * qt: Allow writing the decrypted/encrypted/signed/verified data directly to files. [T6550] * qt: Allow specifying import options when importing keys. [T7152] * qt: Allow appending a detached signature to an existing file. [T6867] * qt: Add support for enabling and disabling keys. [T7239] * qt: Add support for new context flag "proc-all-sigs" to the jobs that verify data signatures. * Interface changes relative to the 1.23.2 release: - GPGME_ENCRYPT_FILE NEW. - GPGME_SIG_MODE_FILE NEW. - GPGME_ENCRYPT_ADD_RECP NEW. - GPGME_ENCRYPT_CHG_RECP NEW. - gpgme_key_t EXT: New field 'revkeys'. - gpgme_revocation_key_t NEW. - gpgme_set_ctx_flag EXT: New flag 'import-options'. - gpgme_set_ctx_flag EXT: New flag 'proc-all-sigs'. - gpgme_set_ctx_flag EXT: New flag 'known-notation'. - gpgme_op_setownertrust_start NEW. - gpgme_op_setownertrust NEW. - gpgme_subkey_t EXT: New field 'beta_compliance'. - gpgme_signature_t EXT: New field 'beta_compliance'. - gpgme_decrypt_result_t EXT: New field 'beta_compliance'. - cpp: Context::EncryptFile NEW. - cpp: Context::setOwnerTrust NEW. - cpp: Context::startSetOwnerTrust NEW. - cpp: Context::setKeyEnabled NEW. - cpp: Context::startSetKeyEnabled NEW. - cpp: SignatureMode::SignFile NEW. - cpp: RevocationKey NEW. - cpp: Key::revocationKey NEW. - cpp: Key::numRevocationKeys NEW. - cpp: Key::revocationKeys NEW. - cpp: Key::isBetaCompliance NEW. - cpp: Subkey::isBetaCompliance NEW. - cpp: Error::asStdString NEW. - cpp: Error::asString DEPRECATED. - cpp: DecryptionResult::isBetaCompliance NEW. - cpp: Signature::isBetaCompliance NEW. - qt: DecryptVerifyArchiveJob::setProcessAllSignatures NEW. - qt: DecryptVerifyArchiveJob::processAllSignatures NEW. - qt: DecryptVerifyJob::setInputFile NEW. - qt: DecryptVerifyJob::inputFile NEW. - qt: DecryptVerifyJob::setOutputFile NEW. - qt: DecryptVerifyJob::outputFile NEW. - qt: DecryptVerifyJob::setProcessAllSignatures NEW. - qt: DecryptVerifyJob::processAllSignatures NEW. - qt: EncryptJob::setRecipients NEW. - qt: EncryptJob::recipients NEW. - qt: EncryptJob::setInputFile NEW. - qt: EncryptJob::inputFile NEW. - qt: EncryptJob::setOutputFile NEW. - qt: EncryptJob::outputFile NEW. - qt: EncryptJob::setEncryptionFlags NEW. - qt: EncryptJob::encryptionFlags NEW. - qt: SignEncryptJob::setSigners NEW. - qt: SignEncryptJob::signers NEW. - qt: SignEncryptJob::setRecipients NEW. - qt: SignEncryptJob::recipients NEW. - qt: SignEncryptJob::setInputFile NEW. - qt: SignEncryptJob::inputFile NEW. - qt: SignEncryptJob::setOutputFile NEW. - qt: SignEncryptJob::outputFile NEW. - qt: SignEncryptJob::setEncryptionFlags NEW. - qt: SignEncryptJob::encryptionFlags NEW. - qt: SignJob::setSigners NEW. - qt: SignJob::signers NEW. - qt: SignJob::setInputFile NEW. - qt: SignJob::inputFile NEW. - qt: SignJob::setOutputFile NEW. - qt: SignJob::outputFile NEW. - qt: SignJob::setSigningFlags NEW. - qt: SignJob::signingFlags NEW. - qt: SignJob::setAppendSignature NEW. - qt: SignJob::appendSignatureEnabled NEW. - qt: VerifyDetachedJob::setSignatureFile NEW. - qt: VerifyDetachedJob::signatureFile NEW. ... changelog too long, skipping 15 lines ... * Remove patch upstream: gpgme-D545-obsolete-distutils.patch ==== gpgmeqt6 ==== Version update (1.23.2 -> 1.24.0) - Move the gpg python bindings out of the egg directory. - Fix file list on Leap 15 - Update to 1.24.0: * Extended gpgme_op_decrypt* and gpgme_op_verify* to allow writing the output directly to a file. [T6550] * Extended gpgme_op_encrypt*, gpgme_op_encrypt_sign*, and gpgme_op_sign* to allow reading the input data directly from a file. [T6550] * Add information about designated revocation keys. [T7118] * New context flag "import-options". [T7152] * New context flag "proc-all-sigs". [T7261] * New context flag "known-notations". [T4060] * New info flags "beta_compliance". [rM1a7bc88ee7] * New function gpgme_op_setownertrust to make changing the owner trust easier and to allow enabling/disabling of keys (requires GnuPG 2.4.6). [T7239] * New flag to re-encrypt OpenPGP data (requires GnuPG 2.5.1). [T1825] * cpp: Provide information about designated revocation keys for a Key. [T7118] * cpp: Add safer member function returning text describing an error. [T5960] * cpp: Add support for setting the owner trust of keys and for enabling and disabling keys. [T7239] * qt: Build QGpgME for Qt 5 and Qt 6 simultaneously. [T7205] * qt: Install headers for Qt 5 and Qt 6 in separate folders. [T7161] * qt: Allow reading the data to decrypt/encrypt/sign/verify directly from files. [T6550] * qt: Allow writing the decrypted/encrypted/signed/verified data directly to files. [T6550] * qt: Allow specifying import options when importing keys. [T7152] * qt: Allow appending a detached signature to an existing file. [T6867] * qt: Add support for enabling and disabling keys. [T7239] * qt: Add support for new context flag "proc-all-sigs" to the jobs that verify data signatures. * Interface changes relative to the 1.23.2 release: - GPGME_ENCRYPT_FILE NEW. - GPGME_SIG_MODE_FILE NEW. - GPGME_ENCRYPT_ADD_RECP NEW. - GPGME_ENCRYPT_CHG_RECP NEW. - gpgme_key_t EXT: New field 'revkeys'. - gpgme_revocation_key_t NEW. - gpgme_set_ctx_flag EXT: New flag 'import-options'. - gpgme_set_ctx_flag EXT: New flag 'proc-all-sigs'. - gpgme_set_ctx_flag EXT: New flag 'known-notation'. - gpgme_op_setownertrust_start NEW. - gpgme_op_setownertrust NEW. - gpgme_subkey_t EXT: New field 'beta_compliance'. - gpgme_signature_t EXT: New field 'beta_compliance'. - gpgme_decrypt_result_t EXT: New field 'beta_compliance'. - cpp: Context::EncryptFile NEW. - cpp: Context::setOwnerTrust NEW. - cpp: Context::startSetOwnerTrust NEW. - cpp: Context::setKeyEnabled NEW. - cpp: Context::startSetKeyEnabled NEW. - cpp: SignatureMode::SignFile NEW. - cpp: RevocationKey NEW. - cpp: Key::revocationKey NEW. - cpp: Key::numRevocationKeys NEW. - cpp: Key::revocationKeys NEW. - cpp: Key::isBetaCompliance NEW. - cpp: Subkey::isBetaCompliance NEW. - cpp: Error::asStdString NEW. - cpp: Error::asString DEPRECATED. - cpp: DecryptionResult::isBetaCompliance NEW. - cpp: Signature::isBetaCompliance NEW. - qt: DecryptVerifyArchiveJob::setProcessAllSignatures NEW. - qt: DecryptVerifyArchiveJob::processAllSignatures NEW. - qt: DecryptVerifyJob::setInputFile NEW. - qt: DecryptVerifyJob::inputFile NEW. - qt: DecryptVerifyJob::setOutputFile NEW. - qt: DecryptVerifyJob::outputFile NEW. - qt: DecryptVerifyJob::setProcessAllSignatures NEW. - qt: DecryptVerifyJob::processAllSignatures NEW. - qt: EncryptJob::setRecipients NEW. - qt: EncryptJob::recipients NEW. - qt: EncryptJob::setInputFile NEW. - qt: EncryptJob::inputFile NEW. - qt: EncryptJob::setOutputFile NEW. - qt: EncryptJob::outputFile NEW. - qt: EncryptJob::setEncryptionFlags NEW. - qt: EncryptJob::encryptionFlags NEW. - qt: SignEncryptJob::setSigners NEW. - qt: SignEncryptJob::signers NEW. - qt: SignEncryptJob::setRecipients NEW. - qt: SignEncryptJob::recipients NEW. - qt: SignEncryptJob::setInputFile NEW. - qt: SignEncryptJob::inputFile NEW. - qt: SignEncryptJob::setOutputFile NEW. - qt: SignEncryptJob::outputFile NEW. - qt: SignEncryptJob::setEncryptionFlags NEW. - qt: SignEncryptJob::encryptionFlags NEW. - qt: SignJob::setSigners NEW. - qt: SignJob::signers NEW. - qt: SignJob::setInputFile NEW. - qt: SignJob::inputFile NEW. - qt: SignJob::setOutputFile NEW. - qt: SignJob::outputFile NEW. - qt: SignJob::setSigningFlags NEW. - qt: SignJob::signingFlags NEW. - qt: SignJob::setAppendSignature NEW. - qt: SignJob::appendSignatureEnabled NEW. - qt: VerifyDetachedJob::setSignatureFile NEW. - qt: VerifyDetachedJob::signatureFile NEW. ... changelog too long, skipping 15 lines ... * Remove patch upstream: gpgme-D545-obsolete-distutils.patch ==== gstreamer-plugins-ugly ==== Version update (1.24.8 -> 1.24.9) - Update to version 1.24.9: + No changes, stable version bump only. ==== gtk4 ==== Version update (4.16.5 -> 4.16.6) Subpackages: gtk4-schema gtk4-tools libgtk-4-1 typelib-1_0-Gtk-4_0 - Update to version 4.16.6: + To prevent issues when using GTK under kwin, this release makes Wayland color management opt-in. To experiment with it, set GDK_DEBUG=color-mgmt. + GtkText: Don't select inserted Emoji + GtkApplication: Set the default window icon from the app ID + GtkFontChooser: Make the dialog more shrinkable + Updated translations. ==== gtksourceview5 ==== Version update (5.14.1 -> 5.14.2) - Update to version 5.14.2: + Ignore various libxml2 deprecations + Fix some incorrect GI annotations + Fix extraneous dismissal of hover providers in some cases + Add missing 5_14 version macros ==== inkscape ==== Subpackages: inkscape-extensions-extra inkscape-extensions-gimp - Drop obsolete and unused pkgconfig(gdl-3.0) BuildRequires. - Add explicit pkgconfig(glibmm-2.4), pkgconfig(gdkmm-3.0), pkgconfig(gdkmm-3.0), pkgconfig(gtk+-3.0) and pkgconfig(gdk-3.0) BuildRequires: Align with what cmake checks for. ==== iptables ==== Version update (1.8.10 -> 1.8.11) Subpackages: libip4tc2 libip6tc2 libxtables12 xtables-plugins - Update to release 1.8.11 * New arptables-translate tool * ebtables-nft: support --replace and --list-rules commands * iptables-translate: support socket match and TPROXY target ==== kdepim-runtime ==== Version update (24.08.2 -> 24.08.3) - Update to 24.08.3 * New bugfix release * For more details please see: * https://kde.org/announcements/gear/24.08.3/ - Changes since 24.08.2: * EWS: Check that mEventReq is not null in EwsSubscriptionManager (kde#495155) * It generates warning ==== kdump ==== Version update (2.0.10+git0.g62142dd -> 2.0.11) - upgrade to version 2.0.11 * fadump mkinitrd: propagate --debug to the inner dracut call * mkdumprd: look for kernel image under /boot as well ==== kernel-firmware ==== Version update (20241018 -> 20241113) Subpackages: kernel-firmware-all kernel-firmware-amdgpu kernel-firmware-ath10k kernel-firmware-ath11k kernel-firmware-ath12k kernel-firmware-atheros kernel-firmware-bluetooth kernel-firmware-bnx2 kernel-firmware-brcm kernel-firmware-chelsio kernel-firmware-dpaa2 kernel-firmware-i915 kernel-firmware-intel kernel-firmware-iwlwifi kernel-firmware-liquidio kernel-firmware-marvell kernel-firmware-media kernel-firmware-mediatek kernel-firmware-mellanox kernel-firmware-mwifiex kernel-firmware-network kernel-firmware-nfp kernel-firmware-nvidia kernel-firmware-platform kernel-firmware-prestera kernel-firmware-qcom kernel-firmware-qlogic kernel-firmware-radeon kernel-firmware-realtek kernel-firmware-serial kernel-firmware-sound kernel-firmware-ti kernel-firmware-ueagle kernel-firmware-usb-network - Update to version 20241113 (git commit 1727aceef4d2): * qcom: venus-5.4: add venus firmware file for qcs615 * qcom: update venus firmware file for SC7280 * QCA: Add 22 bluetooth firmware nvm files for QCA2066 - Update to version 20241112 (git commit c57a0a42468b): * mediatek MT7922: update bluetooth firmware to 20241106163512 * mediatek MT7921: update bluetooth firmware to 20241106151414 * linux-firmware: update firmware for MT7922 WiFi device * linux-firmware: update firmware for MT7921 WiFi device * qcom: Add QDU100 firmware image files. * qcom: Update aic100 firmware files * dedup-firmware.sh: fix infinite loop for --verbose * rtl_bt: Update RTL8852BT/RTL8852BE-VT BT USB FW to 0x04D7_63F7 * cnm: update chips&media wave521c firmware. * mediatek MT7920: update bluetooth firmware to 20241104091246 * linux-firmware: update firmware for MT7920 WiFi device * copy-firmware.sh: Run check_whence.py only if in a git repo * cirrus: cs35l56: Add firmware for Cirrus CS35L56 for various Dell laptops * amdgpu: update DMCUB to v9.0.10.0 for DCN351 * rtw89: 8852a: update fw to v0.13.36.2 * rtw88: Add firmware v52.14.0 for RTL8812AU * i915: Update Xe2LPD DMC to v2.23 * linux-firmware: update firmware for mediatek bluetooth chip (MT7925) * linux-firmware: update firmware for MT7925 WiFi device * WHENCE: Add sof-tolg for mt8195 * linux-firmware: Update firmware file for Intel BlazarI core * qcom: Add link for QCS6490 GPU firmware * qcom: update gpu firmwares for qcs615 chipset * cirrus: cs35l56: Update firmware for Cirrus Amps for some HP laptops * mediatek: Add sof-tolg for mt8195 - Drop obsoleted workaround patch: copy-file-skip-check.patch - Update to version 20241029 (git commit 048795eef350): * ath11k: move WCN6750 firmware to the device-specific subdir * xe: Update LNL GSC to v104.0.0.1263 * i915: Update MTL/ARL GSC to v102.1.15.1926 - Update to version 20241028 (git commit 987607d681cb): * amdgpu: DMCUB updates for various AMDGPU ASICs * i915: Add Xe3LPD DMC * cnm: update chips&media wave521c firmware. * linux-firmware: Add firmware for Cirrus CS35L41 * linux-firmware: Update firmware file for Intel BlazarU core * Makefile: error out of 'install' if COPYOPTS is set ==== kernel-source ==== Version update (6.11.7 -> 6.11.8) Subpackages: kernel-64kb kernel-default - Linux 6.11.8 (bsc#1012628). - vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans (bsc#1012628). - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer (bsc#1012628). - xtensa: Emulate one-byte cmpxchg (bsc#1012628). - ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022 (bsc#1012628). - drm/xe/guc/tlb: Flush g2h worker in case of tlb timeout (bsc#1012628). - drm/xe/ufence: Flush xe ordered_wq in case of ufence timeout (bsc#1012628). - drm/xe: Move LNL scheduling WA to xe_device.h (bsc#1012628). - drm/xe/guc/ct: Flush g2h worker in case of g2h response timeout (bsc#1012628). - block: fix queue limits checks in blk_rq_map_user_bvec for real (bsc#1012628). - blacklist.conf: drop it - block: rework bio splitting (bsc#1012628). - firmware: qcom: scm: suppress download mode error (bsc#1012628). - firmware: qcom: scm: Refactor code to support multiple dload mode (bsc#1012628). - Update config files. - selftests: hugetlb_dio: check for initial conditions to skip in the start (bsc#1012628). - ucounts: fix counter leak in inc_rlimit_get_ucounts() (bsc#1012628). - ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() (bsc#1012628). - irqchip/gic-v3: Force propagation of the active state with a read-back (bsc#1012628). - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation (bsc#1012628). - staging: vchiq_arm: Use devm_kzalloc() for drv_mgmt allocation (bsc#1012628). - thunderbolt: Fix connection issue with Pluggable UD-4VPD dock (bsc#1012628). - clk: qcom: gcc-x1e80100: Fix halt_check for pipediv2 clocks (bsc#1012628). - clk: qcom: videocc-sm8350: use HW_CTRL_TRIGGER for vcodec GDSCs (bsc#1012628). - USB: serial: option: add Quectel RG650V (bsc#1012628). - USB: serial: option: add Fibocom FG132 0x0112 composition (bsc#1012628). - USB: serial: qcserial: add support for Sierra Wireless EM86xx (bsc#1012628). - USB: serial: io_edgeport: fix use after free in debug printk (bsc#1012628). - usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd() (bsc#1012628). - usb: typec: qcom-pmic: init value of hdr_len/txbuf_len earlier (bsc#1012628). - usb: dwc3: fix fault at system suspend if device was already runtime suspended (bsc#1012628). - usb: musb: sunxi: Fix accessing an released usb phy (bsc#1012628). - thunderbolt: Add only on-board retimers when !CONFIG_USB4_DEBUGFS_MARGINING (bsc#1012628). - mm/thp: fix deferred split unqueue naming and locking (bsc#1012628). - mm/mlock: set the correct prev on failure (bsc#1012628). - mm/damon/core: handle zero schemes apply interval (bsc#1012628). - mm/damon/core: handle zero {aggregation,ops_update} intervals (bsc#1012628). - mm/damon/core: avoid overflow in damon_feed_loop_next_input() (bsc#1012628). - signal: restore the override_rlimit logic (bsc#1012628). - objpool: fix to make percpu slot allocation more robust (bsc#1012628). - fs/proc: fix compile warning about variable 'vmcore_mmap_ops' (bsc#1012628). - clk: qcom: clk-alpha-pll: Fix pll post div mask when width is not set (bsc#1012628). - clk: qcom: gcc-x1e80100: Fix USB MP SS1 PHY GDSC pwrsts flags (bsc#1012628). - i2c: designware: do not hold SCL low when I2C_DYNAMIC_TAR_UPDATE is not set (bsc#1012628). - filemap: Fix bounds checking in filemap_read() (bsc#1012628). - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1012628). - platform/x86/amd/pmf: Add SMU metrics table support for 1Ah family 60h model (bsc#1012628). - platform/x86/amd/pmf: Update SMU metrics table for 1AH family series (bsc#1012628). - platform/x86/amd/pmf: Relocate CPU ID macros to the PMF header (bsc#1012628). - btrfs: reinitialize delayed ref list after deleting it from the list (bsc#1012628). - btrfs: fix per-subvolume RO/RW flags with new mount API (bsc#1012628). - btrfs: fix the length of reserved qgroup to free (bsc#1012628). - idpf: fix idpf_vc_core_init error path (bsc#1012628). - idpf: avoid vport access in idpf_get_link_ksettings (bsc#1012628). - KVM: PPC: Book3S HV: Mask off LPCR_MER for a vCPU before running it to avoid spurious interrupts (bsc#1012628). - mm/slab: fix warning caused by duplicate kmem_cache creation in kmem_buckets_create (bsc#1012628). - arm64: smccc: Remove broken support for SMCCCv1.3 SVE discard ... changelog too long, skipping 1694 lines ... - commit dd0f9f9 ==== kf6-bluez-qt ==== Subpackages: kf6-bluez-qt-imports libKF6BluezQt6 - Add a workaround for a build issue with CMake 3.31. Despite being unused, CMake complains about missing QtQml private API headers. ==== libXt ==== Version update (1.3.0 -> 1.3.1) - update to 1.3.1 * README.md: update & correct links to O'Reilly X Toolkit books * unifdef ultrix * unifdef sgi * unifdef hpux * unifdef __osf__ * unifdef AIXV3 * unifdef MOTOROLA * unifdef USG * unifdef VMS * unifdef __EMX__ * unifdef AIXSHLIB & SUNSHLIB * Improve linking with widget libraries on macOS * issue #17: avoid _Static_assert from c++ * issue #18: cross-build issue in util * issue #19: include on Windows for getpid() * issue #20: c23 boolean conflict * remove substitution for EXEEXT_FOR_BUILD, not defined in automake * Add continue_to_dispatch parameter to _XtResourceConfigurationEH() * eliminate an unnecessary cast * quiet a couple of unused-parameter warnings ==== libbpf ==== Version update (1.4.6 -> 1.5.0) - update to 1.5.0: * libbpf can now open (but not load!) BPF objects of non-native endianness, enabling cross-architecture support for BPF skeleton generation and BPF object introspection * BPF skeleton will now auto-attach SEC(".struct_ops") maps as part of __attach() call * BPF kprobe session programs support (SEC("kprobe.session")) * allow specifying kernel module name for fentry/fexit BPF programs (SEC(fentry/module:function) * libbpf recognizes LIBBPF_LOG_LEVEL environment variable, which can be used to set default log verboseness * BPF ringbuf APIs that limit maximum number of consumed records at a time (ring_buffer__consume_n(), ring__consume_n()) * distilled BTF support (btf__distill_base(), btf__relocate()) * BPF link-based attachment of BPF_PROG_TYPE_SOCKMAP programs (bpf_program__attach_sockmap()) * bpf_object__token_fd() API to fetch BPF token FD of a BPF object, if any * fixes for fetching syscall arguments on arm64, s390x, risc-v architectures * better GCC-BPF source code compatibility * __bpf_fastcall support for a few BPF helpers * __uptr annotation definition added to bpf/bpf_helpers.h API header * fixes and improvements around handling missing and nulled out struct_ops programs * fixed mmap()-ing logic for global data, fixing interop between generic bpf_object__open() APIs and BPF subskeletons * BPF skeleton backwards compatibility handling fixes * handle LTO-produced *.llvm. symbols better * feature detection fixes in the presence of BPF token inside user namespace * older kernels have broken PID filtering logic for multi-uprobes, libbpf now detects this and avoids the use of multi-uprobes for USDTs * fix accidental drop of FD_CLOEXEC flag during BPF map reuse * few BTF dumper formatting fixes * a few more small fixes all around. - update to 1.4.7: * fix interop issues between generic bpf_object__open() APIs and BPF subskeleton w.r.t. global data handling * speed up BTF sanity checks by skipping already validated base BTF * fix legacy treatment of non-SEC()-annotated subprogram as entry BPF program in some cases ==== libheif ==== Version update (1.19.3 -> 1.19.5) Subpackages: gdk-pixbuf-loader-libheif libheif-aom libheif-dav1d libheif-ffmpeg libheif-jpeg libheif-openjpeg libheif-rav1e libheif-svtenc libheif1 - update to 1.19.5: * fix heif_image_handle_is_premultiplied_alpha() #1394 - update to 1.19.4: * fix crash when encoding tiled unci images * fix crash in heif_context_encode_grid() * fix querying the preferred colorspace for monochroma AVIF files * error when using a chroma format or bit depth that is not supported by the Kvazaar plugin * output proper error message when memory allocation failed and use adapted security limits * heif-dec: do not show progress with option --quiet it given - Fix build for Tumbleweed - cleanup - build for 15: * openjpeg only for 16+ * require correct gcc version ==== libimobiledevice ==== - add python3-setuptools for python 3.13 support ==== libinput ==== Version update (1.26.2 -> 1.27.0) Subpackages: libinput-udev libinput10 - Update to release 1.27 * New "sticky" mode for drag-locking * For tablet pads we now support tablet pad mode groups for devices without status LEDs as well * If a tablet is unknown to libwacom we now assume that it is a built-in tablet. (similar to libwacom 2.11) * The available area on external tablets can be reduced via the new tablet "area" configuration. ==== libmtp ==== Version update (1.1.21 -> 1.1.22) Subpackages: libmtp-udev libmtp9 - updated to 1.1.21 release - bugfixes - lots of new ids ==== libsoup ==== Subpackages: libsoup-3_0-0 typelib-1_0-Soup-3_0 - Add 4c9e75c6.patch: fix an intermittent test failure (glgo#GNOME/libsoup#399). ==== libsoup2 ==== - Add 4c9e75c6.patch: fix an intermittent test failure (glgo#GNOME/libsoup#399). ==== libxml2 ==== Subpackages: libxml2-2 libxml2-tools - add %{?sle15allpythons} macro [jsc#PED-68] - use %python_build and %python_install for 15 ==== libxml2-python ==== - add %{?sle15allpythons} macro [jsc#PED-68] - use %python_build and %python_install for 15 ==== libzypp ==== Version update (17.35.13 -> 17.35.14) - The 20MB download limit must not apply to non-metadata files like package URLs provided via the CLI (bsc#1233393). - version 17.35.14 (35) ==== linux-glibc-devel ==== Version update (6.11 -> 6.12) - Update to kernel headers 6.12 ==== llvm18 ==== - Apply clang-shlib-symbol-versioning.patch to add symbol versions to libclang-cpp.so similar to libLLVM.so. This is required when multiple versions of the library are loaded into the same process. (boo#1219405, boo#1221183, boo#1233220) ==== llvm19 ==== Version update (19.1.3 -> 19.1.4) Subpackages: clang-tools clang19 libLLVM19 libclang-cpp19 libclang13 libclang_rt19 llvm19-gold - Update to version 19.1.4. * This release contains bug-fixes for the LLVM 19.1.0 release. This release is API and ABI compatible with 19.1.0. - Rebase llvm-do-not-install-static-libraries.patch. - Apply clang-shlib-symbol-versioning.patch to add symbol versions to libclang-cpp.so similar to libLLVM.so. This is required when multiple versions of the library are loaded into the same process. (boo#1219405, boo#1221183, boo#1233220) - Enable lldb on s390x and ppc64le (bsc#1232906). ==== localsearch ==== Version update (3.8.0 -> 3.8.1) - Update to version 3.8.1: + Fix multiple leaks in metadata extractors + Fix reporting of metadata extraction progress in "localsearch daemon -f" and "localsearch status" + Cache mounts for generating stable content identifiers + Added missing includes necessary for Musl libc + Updated translations. ==== luajit ==== Version update (5.1.2.1.0+git.1727870382.97813fb -> 5.1.2.1.0+git.1731601260.fe71d0f) - Update to version 5.1.2.1.0+git.1731601260.fe71d0f: * Windows: Allow amalgamated static builds with msvcbuild.bat. * Always close profiler output file. * Fix override of INSTALL_LJLIBD in the presence of DESTDIR. * Fix bit op coercion for shifts in DUALNUM builds. ==== mariadb ==== Version update (11.5.2 -> 11.6.1) Subpackages: libmariadbd19 mariadb-client mariadb-errormessages - Update to 11.6.1: https://mariadb.com/kb/en/mariadb-11-6-1-releasqe-notes/ https://mariadb.com/kb/en/mariadb-11-6-1-changelog/ - Update list of skipped tests - Refresh gcc13-fix.patch - Reduce race in %mysql_testserver_start ==== meson ==== Subpackages: meson-vim - Add meson-testsuite-with-cmake-3.31.patch: Fix test suite run against CMake 3.31. ==== microos-tools ==== Version update (4.0+git2 -> 4.0+git6) Subpackages: selinux-autorelabel - Update to version 4.0+git6: * test: Check for AVC denials in the journal * test: More reliable output of combustion-validate * test: Remove workaround for boo#1230912 * Label /sys before selinux-autorelabel units run (bsc#1232709) ==== mozjs128 ==== - Drop autoconf213 BuildRequires: the source embeds autoconf.sh directly. - Fix build against icu 76.1: link the correct libraries (icu-uc instead of icu-i18n). ==== multipath-tools ==== Version update (0.10.0+108+suse.2c2e597 -> 0.11.0~1+118+suse.4a51b1a) Subpackages: kpartx libmpath0 - Update to version 0.11.0~1+118+suse.4a51b1a See NEWS.md for details about upstream changes in 0.11.0. * Pre-release of upstream 0.11.0 * Rework of the path checking algorithm to reduce wait time and improve performance * Modified the systemd unit `multipathd.service` such that multipathd will now restart after a failure or crash (gh#opensvc/multipath-tools#100) * multipathd: move systemd watchdog handling into daemon (bsc#1232227) * libmultipath: dm_get_maps(): don't bail out for single-map failures (bsc#1233588, gh#opensvc/multipath-tools#102) * libmultipath: don't set dev_loss_tmo to 0 for NO_PATH_RETRY_FAIL * multipathd: fix deferred_failback_tick for reload removes ==== ncurses ==== Version update (6.5.20241102 -> 6.5.20241109) Subpackages: libncurses6 ncurses-utils terminfo terminfo-base terminfo-iterm terminfo-screen - Add ncurses patch 20241109 + work around musl header ifdef's (report by Urs Jansen, cf: Gentoo [#920266]). + improve error-reporting in write_entry.c (report by Changqing Li). + remove unused #include from DJGPP configuration (report by Stas Sergeev). + workaround/fix issues from clang-analyze ==== net-snmp ==== Subpackages: libsnmp40 perl-SNMP snmp-mibs - logrotate should use reload instead of restart (bsc#1232030) ==== nvidia-open-driver-G06-signed-cuda ==== Version update (560.35.03_k6.11.7_1 -> 560.35.03_k6.11.8_1) - kmp-trigger.sh: * avoid to return with exit code != 0 if no modules are loaded ==== openSUSE-release ==== Version update (20241114 -> 20241124) Subpackages: openSUSE-release-appliance-custom openSUSE-release-dvd - automatically generated by openSUSE-release-tools/pkglistgen ==== opensc ==== Version update (0.25.1 -> 0.26.0) Subpackages: opensc-bash-completion - Update to version 0.26.0 Security * CVE-2024-45615: Usage of uninitialized values in libopensc# and pkcs15init (#3225). * CVE-2024-45616: Uninitialized values after incorrect check or usage of APDU response values in libopensc (#3225) * CVE-2024-45617: Uninitialized values after incorrect or missing checking return values of functions in libopensc (#3225) * CVE-2024-45618: Uninitialized values after incorrect or missing checking return values of functions in pkcs15init (#3225) * CVE-2024-45619: Incorrect handling length of buffers or files in libopensc (#3225) * CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init (#3225) * CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating key (#3219) General improvements * Fix reselection of DF after error in PKCS#15 layer (#3067) * Unify OpenSSL logging throughout code (#2922) * Extend the p11test to support kryoptic (#3141) * Fix for error in PCSC reconnection (#3150) * Fixed various issues reported by OSS-Fuzz and Coverity in drivers, PKCS#11 and PKCS#15 layer PKCS#15 * Documentation for PKCS#15 profile files (#3132) minidriver * Support PinCacheAlwaysPrompt usable for PIV cards (#3167) pkcs11-tool * Show URI when listing token information (#3125) and objects * Do not limit size of objects to 5000 bytes (#3174) * Add support for AES CMAC (#3184) * Add support for AES GCM encryption (#3195) * Add support for RSA OAEP encryption (#3175) * Add support for HKDF (#3193) * Implement better support for wrapping and unwrapping (#3198) * Add support for EdDSA sign and verify (#2979) pkcs15-crypt * Fix PKCS#1 encoding function to correctly detect padding type piv-tool * Fix RSA key generation (#3158) * Avoid possible state change when matching unknown card (#3112) sc-hsm-tool * Cleanse buffer with plaintext key share (#3226) pkcs11-register * Fix pkcs11-register defaults on macOS and Windows (#3053) IDPrime * Fix identification of IDPrime 840 cards (#3146) * Fix container mapping for IDPrime 940 cards (#3220) * Reorder ATRs for matching cards (#3154) OpenPGP * Fix state tracking after erasing card (#3024) Belpic * Disable Applet V1.8 (#3109) MICARDO * Deactivate driver (#3152) SmartCard-HSM * Fix signing with secp521r1 signature (#3157) eOI * Set model via sc_card_ctl function (#3189) Rutoken * increase the minimum PIN size to support Rutoken ECP BIO. JPKI * Adjust parameters for public key in PKCS#15 emulator (#3182) D-Trust * Add support for ECDSA signatures and ECDH key agreement for D-Trust Signatures Cards 4.1/4.4 (#3240, #3248) - Drop patches (changes now in upstream): * opensc-CVE-2024-45615.patch * opensc-CVE-2024-45616.patch * opensc-CVE-2024-45617.patch * opensc-CVE-2024-45618.patch * opensc-CVE-2024-45619.patch * opensc-CVE-2024-45620.patch * opensc-CVE-2024-8443.patch ==== patterns-gnome ==== Version update (20201210 -> 20241112) Subpackages: patterns-gnome-gnome patterns-gnome-gnome_basic patterns-gnome-gnome_basis patterns-gnome-gnome_games patterns-gnome-gnome_imaging patterns-gnome-gnome_internet patterns-gnome-gnome_multimedia patterns-gnome-gnome_office patterns-gnome-gnome_utilities patterns-gnome-gnome_yast patterns-gnome-sw_management_gnome - Replace tracker with tinysparql: tracker was renamed with GNOME 47. - Some major overhaul over the GNOME patterns: allow to properly have wayland or X11 decoupled from each other, stepping closer to a wayland-only installation. ==== patterns-media ==== Subpackages: patterns-media-rest_cd_core patterns-media-rest_dvd - Add required packages for FDE+TPM ==== php8 ==== Version update (8.3.13 -> 8.3.14) Subpackages: php8-ctype php8-dom php8-iconv php8-openssl php8-pdo php8-sqlite php8-tokenizer php8-xmlreader php8-xmlwriter - version update to 8.3.14 CLI: Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server started through shebang). Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface). COM: Fixed out of bound writes to SafeArray data. Core: Fixed bug GH-16168 (php 8.1 and earlier crash immediately when compiled with Xcode 16 clang on macOS 15). Fixed bug GH-16371 (Assertion failure in Zend/zend_weakrefs.c:646). Fixed bug GH-16515 (Incorrect propagation of ZEND_ACC_RETURN_REFERENCE for call trampoline). Fixed bug GH-16509 (Incorrect line number in function redeclaration error). Fixed bug GH-16508 (Incorrect line number in inheritance errors of delayed early bound classes). Fixed bug GH-16648 (Use-after-free during array sorting). Curl: Fixed bug GH-16302 (CurlMultiHandle holds a reference to CurlHandle if curl_multi_add_handle fails). Date: Fixed bug GH-16454 (Unhandled INF in date_sunset() with tiny $utcOffset). Fixed bug GH-14732 (date_sun_info() fails for non-finite values). DBA: Fixed bug GH-16390 (dba_open() can segfault for "pathless" streams). DOM: Fixed bug GH-16316 (DOMXPath breaks when not initialized properly). Add missing hierarchy checks to replaceChild. Fixed bug GH-16336 (Attribute intern document mismanagement). Fixed bug GH-16338 (Null-dereference in ext/dom/node.c). Fixed bug GH-16473 (dom_import_simplexml stub is wrong). Fixed bug GH-16533 (Segfault when adding attribute to parent that is not an element). Fixed bug GH-16535 (UAF when using document as a child). Fixed bug GH-16593 (Assertion failure in DOM->replaceChild). Fixed bug GH-16595 (Another UAF in DOM -> cloneNode). EXIF: Fixed bug GH-16409 (Segfault in exif_thumbnail when not dealing with a real file). FFI: Fixed bug GH-16397 (Segmentation fault when comparing FFI object). Filter: Fixed bug GH-16523 (FILTER_FLAG_HOSTNAME accepts ending hyphen). FPM: Fixed bug GH-16628 (FPM logs are getting corrupted with this log statement). GD: Fixed bug GH-16334 (imageaffine overflow on matrix elements). Fixed bug GH-16427 (Unchecked libavif return values). Fixed bug GH-16559 (UBSan abort in ext/gd/libgd/gd_interpolation.c:1007). GMP: Fixed floating point exception bug with gmp_pow when using large exposant values. (David Carlier). Fixed bug GH-16411 (gmp_export() can cause overflow). Fixed bug GH-16501 (gmp_random_bits() can cause overflow). Fixed gmp_pow() overflow bug with large base/exponents. Fixed segfaults and other issues related to operator overloading with GMP objects. LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MBstring: Fixed bug GH-16361 (mb_substr overflow on start/length arguments). MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) Opcache: Fixed bug GH-16408 (Array to string conversion warning emitted in optimizer). OpenSSL: Fixed bug GH-16357 (openssl may modify member types of certificate arrays). Fixed bug GH-16433 (Large values for openssl_csr_sign() $days overflow). Fix various memory leaks on error conditions in openssl_x509_parse(). PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) PDO ODBC: Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). Phar: Fixed bug GH-16406 (Assertion failure in ext/phar/phar.c:2808). PHPDBG: Fixed bug GH-16174 (Empty string is an invalid expression for ev). Reflection: Fixed bug GH-16601 (Memory leak in Reflection constructors). Session: Fixed bug GH-16385 (Unexpected null returned by session_set_cookie_params). Fixed bug GH-16290 (overflow on cookie_lifetime ini value). SOAP: Fixed bug GH-16318 (Recursive array segfaults soap encoding). Fixed bug GH-16429 (Segmentation fault access null pointer in SoapClient). Sockets: Fixed bug with overflow socket_recvfrom $length argument. SPL: Fixed bug GH-16337 (Use-after-free in SplHeap). Fixed bug GH-16464 (Use-after-free in SplDoublyLinkedList::offsetSet()). Fixed bug GH-16479 (Use-after-free in SplObjectStorage::setInfo()). Fixed bug GH-16478 (Use-after-free in SplFixedArray::unset()). Fixed bug GH-16588 (UAF in Observer->serialize). Fix GH-16477 (Segmentation fault when calling __debugInfo() after failed SplFileObject::__constructor). Fixed bug GH-16589 (UAF in SplDoublyLinked->serialize()). Fixed bug GH-14687 (segfault on SplObjectIterator instance). Fixed bug GH-16604 (Memory leaks in SPL constructors). Fixed bug GH-16646 (UAF in ArrayObject::unset() and ArrayObject::exchangeArray()). Standard: Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with bail enabled). Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) SysVMsg: Fixed bug GH-16592 (msg_send() crashes when a type does not properly serialized). SysVShm: Fixed bug GH-16591 (Assertion error in shm_put_var). XMLReader: Fixed bug GH-16292 (Segmentation fault in ext/xmlreader/php_xmlreader.c). Zlib: Fixed bug GH-16326 (Memory management is broken for bad dictionaries.) (cmb) ==== plymouth ==== Version update (22.02.122+94.4bd41a3 -> 22.02.122+180.b1d5aa9) Subpackages: libply-splash-core5 libply-splash-graphics5 libply5 plymouth-dracut plymouth-lang plymouth-plugin-label plymouth-plugin-two-step plymouth-scripts plymouth-theme-bgrt plymouth-theme-spinner - Remove plymouth-only_use_fb_for_cirrus_bochs.patch: Bochs and cirrus DRM drivers are fully compatible with plymouth. Remove the workaround that forces them to use fbdev. Resolves the blank screen after disabling fbdev interfaces.(bsc#1232727) - Set BOOT_TTY and SHUTDOWN_TTY to pre-Meson values. With Meson, the values BOOT_TTY and SHUTDOWN_TTY lose their defaults. As the given value of tty1 is not a full path name, plymouth fails to find the file and falls back to serial output. Restoring the _TTY defaults to /dev/tty1 and /dev/tty7 also restores graphics output. (bsc#1224150) - Update to 22.02.122+94.4bd41a3: * Port build system to Meson; * device-manager: Support kernels with CONFIG_VT=n; * Fix terminal crash; * terminal: Add API for flushing input buffer; * device-manager: Only wait for device timeout for framebuffer devices; * scripts: Update keymap-render script to handle xkb keymaps too; * drm: Add support for new /dev/input feature; * frame-buffer: Add support for new /dev/input feature; * src: Hide console text when splash is requested; * script: adds a new native GetCapslockState function to lib-plymouth; - Add plymouth-adapts-xkbommon.patch: xkbommon in openSUSE install to a specify location, this modify to make plymouth adapt with it to build. - Rebase plymouth-crash-avoid-on-keyboard-remove-input-handler.patch: To fit with the update. - Rebase plymouth-disable-fedora-logo.patch: To fit with the update. - Rebase plymouth-log-on-default.patch: To fit with the update. - Update plymouth.spec: To fit with the update. Make plymouth use Tumbleweed/Leap's logo instead of upstream's. - Drop plymouth-manpages.patch: openSUSE fix the problem in other side, "man 1 plymouth" and "man 8 plymouth" all works withouth this patch (bnc#871419). - Update plymouth.spec: Add service in installation, remove service in uninstallation based on systemd requirement. ==== postgresql ==== Subpackages: postgresql-contrib postgresql-llvmjit postgresql-server - Bump major to 17 for SLE. ==== postgresql17 ==== Version update (17.0 -> 17.2) Subpackages: libpq5 postgresql17-contrib postgresql17-llvmjit postgresql17-server - Upgrade to 17.2: * Repair ABI break for extensions that work with struct ResultRelInfo. * Restore functionality of ALTER {ROLE|DATABASE} SET role. * Fix cases where a logical replication slot's restart_lsn could go backwards. * Avoid deleting still-needed WAL files during pg_rewind. * Fix race conditions associated with dropping shared statistics entries. * Count index scans in contrib/bloom indexes in the statistics views, such as the pg_stat_user_indexes.idx_scan counter. * Fix crash when checking to see if an index's opclass options have changed. * Avoid assertion failure caused by disconnected NFA sub-graphs in regular expression parsing. * https://www.postgresql.org/about/news/p-2965/ * https://www.postgresql.org/docs/release/17.2/ - Upgrade to 17.1: * CVE-2024-10976, bsc#1233323: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference. * CVE-2024-10977, bsc#1233325: Make libpq discard error messages received during SSL or GSS protocol negotiation. * CVE-2024-10978, bsc#1233326: Fix unintended interactions between SET SESSION AUTHORIZATION and SET ROLE * CVE-2024-10979, bsc#1233327: Prevent trusted PL/Perl code from changing environment variables. * obsoletes postgresql17-jsonb_jsonpath.patch * https://www.postgresql.org/about/news/p-2955/ * https://www.postgresql.org/docs/release/17.1/ ==== python-constantly ==== Version update (15.1.0 -> 23.10.4) - update to 23.10.4: * switch to PEP517 build * Python 3.12 support ==== python-mysqlclient ==== Version update (2.2.5 -> 2.2.6) - update to 2.2.6: * MariaDB Connector/C 3.4 and MairaDB 11.4 enabled SSL and CA verification by default. ==== python-numpy ==== Version update (2.1.2 -> 2.1.3) - Revert the switch to openblas, should skip test instead * see discussion at gh#scipy/scipy#21475 - update to 2.1.3: * #27512: MAINT: prepare 2.1.x for further development * #27537: MAINT: Bump actions/cache from 4.0.2 to 4.1.1 * #27538: MAINT: Bump pypa/cibuildwheel from 2.21.2 to 2.21.3 * #27539: MAINT: MSVC does not support #warning directive * #27543: BUG: Fix user dtype can-cast with python scalar during promotion * #27561: DEV: bump python to 3.12 in environment.yml * #27562: BLD: update vendored Meson to 1.5.2 * #27563: BUG: weighted quantile for some zero weights (#27549) * #27565: MAINT: Use miniforge for macos conda test. * #27566: BUILD: satisfy gcc-13 pendantic errors * #27569: BUG: handle possible error for PyTraceMallocTrack * #27570: BLD: start building Windows free-threaded wheels [wheel build] * #27571: BUILD: vendor tempita from Cython * #27574: BUG: Fix warning "differs in levels of indirection" in npy_atomic.h... * #27592: MAINT: Update Highway to latest * #27593: BUG: Adjust numpy.i for SWIG 4.3 compatibility * #27616: BUG: Fix Linux QEMU CI workflow * #27668: BLD: Do not set __STDC_VERSION__ to zero during build * #27669: ENH: fix wasm32 runtime type error in numpy._core * #27672: BUG: Fix a reference count leak in npy_find_descr_for_scalar. * #27673: BUG: fixes for StringDType/unicode promoters - Use openblas instead of blas+lapack due to precision problems with scipy on aarch64 - https://github.com/scipy/scipy/issues/21475#issuecomment-2446077407 ==== python-psutil ==== Version update (6.0.0 -> 6.1.0) - update to 6.1.0: * 2366_, [Windows]: drastically speedup `process_iter()`_. We now determine process unique identity by using process "fast" create time method. This will considerably speedup those apps which use `process_iter()`_ only once, e.g. to look for a process with a certain name. * 2446_: use pytest instead of unittest. * 2448_: add make install-sysdeps target to install the necessary system dependencies (python-dev, gcc, etc.) on all supported UNIX flavors. * 2449_: add make install-pydeps-test and make install-pydeps- dev targets. They can be used to install dependencies meant for running tests and for local development. They can also be installed via pip install .[test] and pip install .[dev]. * 2456_: allow to run tests via python3 -m psutil.tests even if pytest module is not installed. This is useful for production environments that don't have pytest installed, but still want to be able to test psutil installation. * 2427_: psutil (segfault) on import in the free-threaded (no GIL) version of Python 3.13. (patch by Sam Gross) * 2455_, [Linux]: IndexError may occur when reading /proc/pid/stat and field 40 (blkio_ticks) is missing. * 2457_, [AIX]: significantly improve the speed of `Process.open_files()`_ for some edge cases. * 2460_, [OpenBSD]: `Process.num_fds()`_ and `Process.open_files()`_ may fail with `NoSuchProcess`_ for PID 0. Instead, we now return "null" values (0 and [] respectively). - drop skip_failing_tests.patch: obsolete ==== python-rich ==== Version update (13.7.1 -> 13.9.4) - update to 13.9.4: * Optimizations to cell_len which may speed up Rich / Textual output https://github.com/Textualize/rich/pull/3546 - update to 13.9.3: * Fix a broken regex that resulted in the slow path being chosen for some operations. This fix should result in notable speedups for some operations, such as wrapping text. * Fixed broken regex that may have resulted in poor performance. https://github.com/Textualize/rich/pull/3535 - update to 13.9.2: * A hotfix for highlighting in the table, and a fix for `Segment.split_cells` * Fixed `Table` columns not highlighting when added by `add_row` https://github.com/Textualize/rich/issues/3517 * Fixed an issue with Segment.split_cells reported in Textual https://github.com/Textualize/textual/issues/5090 - update to 13.9.1: * Fixed typing_extensions dependency - update to 13.9.0: * Dropped support for Python3.7 * Rich will display tracebacks with finely grained error locations on python 3.11+ * Fixed issue with Segment._split_cells * Fix auto detection of terminal size on Windows * `Text.style` now respected in Panel title/subtitle - update to 13.8.1: * Added support for Python 3.13 * Fixed infinite loop when appending Text to same instance - update to 13.8.0: * Fixed `Table` rendering of box elements so "footer" elements truly appear at bottom of table, "mid" elements in main table body. * Fixed styles in Panel when Text objects are used for title * Fix pretty repr for `collections.deque` * Thread used in progress.track will exit if an exception occurs in a generator * Progress track thread is now a daemon thread * Fixed cached hash preservation upon clearing meta and links * Fixed overriding the `background_color` of `Syntax` not including padding * Fixed pretty printing of dataclasses with a default repr in Python 3.13 * Fixed selective enabling of highlighting when disabled in the `Console` * Fixed BrokenPipeError writing an error message * Fixed superfluous space above Markdown tables * Fixed issue with record and capture interaction * Fixed control codes breaking in `append_tokens` * Fixed exception pretty printing a dataclass with missing * `RichHandler` errors and warnings will now use different colors (red and yellow) * Removed the empty line printed in jupyter while using `Progress` * Running tests in environment with `FORCE_COLOR` or `NO_COLOR` environment variables * ansi decoder will now strip problematic private escape sequences * Tree's ASCII_GUIDES and TREE_GUIDES constants promoted to class attributes * Adds a `case_sensitive` parameter to `prompt.Prompt`. This determines if the response is treated as case-sensitive. * Added `Console.on_broken_pipe` ==== python-tomli ==== Version update (2.0.2 -> 2.1.0) - update to 2.1.0: * Instantiating `TOMLDecodeError` with free-form arguments. * `msg`, `doc` and `pos` arguments should be given. * Added `msg`, `doc`, `pos`, `lineno` and `colno` attributes to `TOMLDecodeError` ==== python311 ==== Subpackages: python311-curses python311-dbm - Remove -IVendor/ from python-config boo#1231795 ==== python311-core ==== Subpackages: libpython3_11-1_0 python311-base - Remove -IVendor/ from python-config boo#1231795 ==== rpm ==== Subpackages: librpmbuild10 - Bump debugedit version (bsc#1233156) ==== strace ==== Version update (6.11 -> 6.12) - Update to strace 6.12 * Implemented decoding of EPIOCGPARAMS and EPIOCSPARAMS ioctl commands. * Implemented decoding of NS_GET_MNTNS_ID, NS_GET_PID_FROM_PIDNS, NS_GET_TGID_FROM_PIDNS, NS_GET_PID_IN_PIDNS, NS_GET_TGID_IN_PIDNS, NS_MNT_GET_INFO, NS_MNT_GET_NEXT, and NS_MNT_GET_PREV ioctl commands. * Implemented decoding of FRA_DSCP netlink attribute. * Implemented decoding of IORING_REGISTER_CLOCK and IORING_REGISTER_CLONE_BUFFERS opcodes of io_uring_register syscall. * Updated decoding of struct landlock_ruleset_attr. * Updated lists of AUDIT_*, ETHTOOL_*, F_*, IORING_*, LSM_*, MAP_*, MSG_*, NT_*, SCHED_*, SCM_*, SO_*, and V4L2_* constants. * Updated lists of ioctl commands from Linux 6.12. * Fix the syscall name printed by strace when PTRACE_GET_SYSCALL_INFO is in use and a syscall is restarted by a just attached tracee using restart_syscall mechanism. ==== tcpd ==== - hosts.allow/hosts.deny: remove executable bit ==== tiff ==== - make doc packages noarch. no need to have those per arch - ensure that the src rpms are named per build flavor: You might now ask why. Good question: 1. the spec file during the build get patched. `@BUILD_FLAVOR@` gets replaced with the value. which means the src rpm between build flavor builds is not identical. Also the last built src.rpm will be published. with different content and runtime requires (aka our BuildRequires). 2. for historical reasons the internal dependency tracking goes via the src.rpm package. So without having differently named src.rpms the build cycle we were trying to solve was not actually solved. So we append a suffix to the Name attribute in the preamble now. - In the previous change to enable the cmake based build we also needed python3-Sphinx to build the man pages, as unlike the autotools based build, the cmake based build does not fall back to the pre-built man pages. This causes build cycle. Split out the documentation building to break the cycle. The Tumbleweed release managers preferred this solution over a mini package. - switch build to cmake for the webp build - we need the cmake finder code ==== tinysparql ==== Version update (3.8.0 -> 3.8.1) Subpackages: libtracker-sparql-3_0-0 typelib-1_0-Tracker-3_0 - Update to version 3.8.1: + Fix leak iterating bus-based cursors + Fix allowed extension for Turtle files in ontology definitions + Test fixes + Updated translations. ==== upower ==== Version update (1.90.4 -> 1.90.6) Subpackages: libupower-glib3 typelib-1_0-UpowerGlib-1_0 - Update to version 1.90.6: * Fractional battery percentage. * CI enhancement. * Tweak the default battery charging threshold to 75-80. * Fix g_object_weak_ref: assertion 'g_atomic_int_get (&object->ref_count) >= 1' failed. - Changes from version 1.90.5: * Suspend and Ignore as the CriticalPowerActions. * Support for battery charging threshold. * Tweak the device priority to make sure the device kind joystick can be correctly shown. - Add pkgconfig(polkit-gobject-1) BuildRequires: New dependency. ==== util-linux ==== Subpackages: libblkid1 libfdisk1 libmount1 libsmartcols1 libuuid1 - Skip aarch64 decode path for rest of the architectures (bsc#1229476, util-linux-lscpu-skip-aarch64-decode.patch). - agetty: Prevent login cursor escape (bsc#1194818, util-linux-agetty-prevent-cursor-escape.patch). - Document unexpected side effects of lazy destruction (bsc#1159034, util-linux-umount-losetup-lazy-destruction.patch, util-linux-umount-losetup-lazy-destruction-generated.patch). ==== util-linux-systemd ==== Subpackages: lastlog2 liblastlog2-2 - Skip aarch64 decode path for rest of the architectures (bsc#1229476, util-linux-lscpu-skip-aarch64-decode.patch). - agetty: Prevent login cursor escape (bsc#1194818, util-linux-agetty-prevent-cursor-escape.patch). - Document unexpected side effects of lazy destruction (bsc#1159034, util-linux-umount-losetup-lazy-destruction.patch, util-linux-umount-losetup-lazy-destruction-generated.patch). ==== vlc ==== Subpackages: libvlc5 libvlccore9 vlc-codec-gstreamer vlc-noX vlc-qt vlc-vdpau - Convert BuildRequires from libfaad-devel to pkgconfig(faad2) ==== webkit2gtk3 ==== Subpackages: libjavascriptcoregtk-4_1-0 libwebkit2gtk-4_1-0 typelib-1_0-JavaScriptCore-4_1 typelib-1_0-WebKit2-4_1 webkit2gtk-4_1-injected-bundles - Add 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fix build using ICU 76.1. ==== xprop ==== Version update (1.2.7 -> 1.2.8) - Update to version 1.2.8 * This release contains the following change to the way icons are displayed in the terminal when COLORTERM=truecolor in the environment variables: The vast majority of monospaced fonts are roughly half as wide as they are tall; to account for this when displaying icons, `xprop` draws each pixel twice in the horizontal, which nicely evens out the proportions. This patch utilizes the Lower Half Block character (▄) to obtain the same result in a quarter of the space. By setting both a background and a foreground color, we can draw two pixels per character cell, thereby halving the apparent height of an icon rather than doubling its width. ==== yast2-iscsi-client ==== Version update (5.0.4 -> 5.0.5) - Fix typo introduced by previous change (bsc#1231385, bsc#1233351) - 5.0.5 ==== yast2-trans ==== Version update (84.87.20241109.fe9daf12bb -> 84.87.20241115.093806fbe6) Subpackages: yast2-trans-af yast2-trans-ar yast2-trans-bg yast2-trans-bn yast2-trans-bs yast2-trans-ca yast2-trans-cs yast2-trans-cy yast2-trans-da yast2-trans-de yast2-trans-el yast2-trans-en_GB yast2-trans-es yast2-trans-et yast2-trans-fa yast2-trans-fi yast2-trans-fr yast2-trans-gl yast2-trans-gu yast2-trans-hi yast2-trans-hr yast2-trans-hu yast2-trans-id yast2-trans-it yast2-trans-ja yast2-trans-jv yast2-trans-ka yast2-trans-km yast2-trans-ko yast2-trans-lo yast2-trans-lt yast2-trans-mk yast2-trans-mr yast2-trans-nb yast2-trans-nl yast2-trans-pa yast2-trans-pl yast2-trans-pt yast2-trans-pt_BR yast2-trans-ro yast2-trans-ru yast2-trans-si yast2-trans-sk yast2-trans-sl yast2-trans-sr yast2-trans-sv yast2-trans-ta yast2-trans-th yast2-trans-tr yast2-trans-uk yast2-trans-vi yast2-trans-wa yast2-trans-xh yast2-trans-zh_CN yast2-trans-zh_TW yast2-trans-zu - Update to version 84.87.20241115.093806fbe6: * New POT for text domain 'iscsi-client'. * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Dutch) * Translated using Weblate (Portuguese (Brazil)) * Translated using Weblate (Japanese) * Translated using Weblate (Slovak) * Translated using Weblate (Catalan) * New POT for text domain 'iscsi-client'. ==== yast2-ycp-ui-bindings ==== Version update (5.0.0 -> 5.0.1) - Fixed package / pattern examples (bsc#1233415) - 5.0.1