Packages changed: Mesa (22.2.0 -> 22.2.1) Mesa-drivers (22.2.0 -> 22.2.1) ModemManager (1.18.10 -> 1.18.12) MozillaFirefox (104.0.2 -> 105.0.3) curl ethtool (5.19 -> 6.0) glib2 gnome-clocks gnome-terminal (3.46.1 -> 3.46.2) harfbuzz (5.2.0 -> 5.3.0) kernel-default-base keylime (6.5.0 -> 6.5.1) libblockdev (2.27 -> 2.28) libfido2 (1.10.0 -> 1.12.0) libjcat (0.1.11 -> 0.1.12) liblouis (3.22.0 -> 3.23.0) libostree (2022.5 -> 2022.6) libwpe (1.12.3 -> 1.14.0) libxmlb (0.3.9 -> 0.3.10) pango (1.50.10 -> 1.50.11) poppler (22.09.0 -> 22.10.0) poppler-qt5 (22.09.0 -> 22.10.0) python-PyJWT (2.4.0 -> 2.5.0) python-dnspython raspberrypi-firmware-dt (2022.07.06 -> 2022.10.03) spice-vdagent vim (9.0.0626 -> 9.0.0709) wpebackend-fdo (1.12.1 -> 1.14.0) xdm xz yast2-bootloader (4.5.6 -> 4.5.7) zlib === Details === ==== Mesa ==== Version update (22.2.0 -> 22.2.1) Subpackages: Mesa-libEGL1 Mesa-libGL1 Mesa-libglapi0 libgbm1 - update to 22.2.1 * lots of stuff here: llvmpipe, lavapipe, freedreno, aco, mesa, turnip, virgl, r600, zink, radv, core gallium, and nir. All in all, lots of good fixes all over the tree. ==== Mesa-drivers ==== Version update (22.2.0 -> 22.2.1) Subpackages: Mesa-dri Mesa-gallium Mesa-libva - update to 22.2.1 * lots of stuff here: llvmpipe, lavapipe, freedreno, aco, mesa, turnip, virgl, r600, zink, radv, core gallium, and nir. All in all, lots of good fixes all over the tree. ==== ModemManager ==== Version update (1.18.10 -> 1.18.12) Subpackages: ModemManager-bash-completion libmm-glib0 - Update to version 1.18.12: + This release fixes a few very critical issues that happpen when using a glib2 newer or equal than 2.73.2, plus numerous fixes for the Core, MBIM, QMI, 3GPP profile manager interface, SMS, libmm-glib, and mmcli. + Plugins: - sierra: disable +CPOL in the GL7600. - telit: add LE910Cx MBIM composition port hints. - telit: add port type hints for LN920 0x1060, 0x1061 compositions. - icera: fix double free on %%IPSYS=? response processing - mtk: fix task completion when loading supported modes. - Add new pkgconfig modules build requirements: gio-2.0, glib-2.0, gmodule-2.0, and gobject-2.0. - Update ModemManager.keyring to the new upstream key: A814D09B9C5BC01945A64308AECE0239C6606AD5. Found at www.freedesktop.org/software/ModemManager/0xAECE0239C6606AD5.asc. ==== MozillaFirefox ==== Version update (104.0.2 -> 105.0.3) - Mozilla Firefox 105.0.3: * Fixes for other platforms - Mozilla Firefox 105.0.2: * Fixed poor contrast on various menu items with certain themes on Linux systems (bmo#1792063) * Fixed the scrollbar appearing on the wrong side of `select` elements in right-to-left locales (bmo#1791219) * Fixed a possible deadlock when loading some sites in Troubleshoot Mode (bmo#1786259) * Fixed a bug causing some dynamic appearance changes to not appear when expected (bmo#1786521) * Fixed a bug causing theme styling to not be properly applied to sidebars for some add-ons in Private Browsing Mode (bmo#1787543) - Mozilla Firefox 105.0.1 * Reverted focus behavior for new windows back to the content area instead of the address bar (bmo#1784692) - added mozilla-i686-build.patch to avoid using avx2 - Mozilla Firefox 105.0 https://www.mozilla.org/en-US/firefox/105.0/releasenotes MFSA 2022-40 (bsc#1203477) * CVE-2022-40959 (bmo#1782211) Bypassing FeaturePolicy restrictions on transient pages * CVE-2022-40960 (bmo#1787633) Data-race when parsing non-UTF-8 URLs in threads * CVE-2022-40958 (bmo#1779993) Bypassing Secure Context restriction for cookies with __Host and __Secure prefix * CVE-2022-40961 (bmo#1784588) Stack-buffer overflow when initializing Graphics * CVE-2022-40956 (bmo#1770094) Content-Security-Policy base-uri bypass * CVE-2022-40957 (bmo#1777604) Incoherent instruction cache when building WASM on ARM64 * CVE-2022-40962 (bmo#1767360, bmo#1776655, bmo#1777574, bmo#1784835, bmo#1785109, bmo#1786502, bmo#1789440) Memory safety bugs fixed in Firefox 105 and Firefox ESR 102.3 - requires NSS 3.82 Rust 1.63 (1.61) - removed obsolete mozilla-glibc236.patch ==== curl ==== Subpackages: libcurl4 - Update connection info when using UNIX socket as endpoint connect-fix-Curl_updateconninfo-for-TRNSPRT_UNIX.patch ==== ethtool ==== Version update (5.19 -> 6.0) - update to upstream release 6.0 * Fix: advertisement modes autoselection by lanes (-s) ==== glib2 ==== Subpackages: glib2-tools libgio-2_0-0 libglib-2_0-0 libgmodule-2_0-0 libgobject-2_0-0 - Add upstream patch to solve GIMP crashes: + f0dd96c28751f15d0703b384bfc7c314af01caa8.diff: glgo#GNOME/GLib!2770 Empty values are not valid GParamSpec. ==== gnome-clocks ==== Subpackages: gnome-shell-search-provider-gnome-clocks - Package sub-package gnome-shell-search-provider-gnome-clocks as noarch. ==== gnome-terminal ==== Version update (3.46.1 -> 3.46.2) Subpackages: gnome-shell-search-provider-gnome-terminal nautilus-extension-terminal - Update to version 3.46.2: * build: Fix libc feature defines * client: Use verified schema * desktop: Use Preferences icon * icons: Add separate icons for Preferences * prefs: - Add NoDisplay desktop file for the prefs binary - Move prefs binary to libexecdir - Use different wm class - Use new icon * profile: Use correct schema source for the profiles list schema * Updated translations. ==== harfbuzz ==== Version update (5.2.0 -> 5.3.0) Subpackages: libharfbuzz-gobject0 libharfbuzz-icu0 libharfbuzz-subset0 libharfbuzz0 typelib-1_0-HarfBuzz-0_0 - Update to version 5.3.0: * Don’t add glyphs from dropped MATH or COLR tables to the subset glyphs * Map rlig to appropriate AAT feature selectors * Update USE data files to latest version * Check CBDT extents first before outline tables, to help with fonts that also include an empty glyf table * More work towards variable font instancing in the subsetter * Subsetter repacker improvements ==== kernel-default-base ==== - Add _diag modules for included socket types (boo#1204042) ==== keylime ==== Version update (6.5.0 -> 6.5.1) Subpackages: keylime-config keylime-firewalld keylime-logrotate keylime-registrar keylime-tenant keylime-tpm_cert_store keylime-verifier python310-keylime - Drop replace-use-of-cryptography.utils.register_interface.patch, already upstream - Update to version v6.5.1: * Bump version to 6.5.1 * Fix proper exception handling and impedance match in `tornado_requests` (#1128) * elchecking/tests: fix type hints for Dispatcher * tpm_main: unescape UEFI eventlog strings * elchecking: fix standalone program * elchecking/example: add support for MokListTrusted variable * README, docs: remove reference to ipsec demo * docs: fix typo and note box rendering * docs: update installation instructions * make Rust agent official, add depreacation warnings to Python agent * GH first-interaction action is busted, workaround * Replace use of cryptography.utils.register_interface * Remove unnecessary config symbolic link * Small changes required by enhancement #73 "Durable (Offline) Attestion" * docs, README: add reference to official Docker containers * Fix typo in ISSUE_TEMPLATE.md - Add replace-use-of-cryptography.utils.register_interface.patch to support new cryptography 38.0 ==== libblockdev ==== Version update (2.27 -> 2.28) Subpackages: libbd_btrfs2 libbd_crypto2 libbd_fs2 libbd_loop2 libbd_lvm2 libbd_mdraid2 libbd_part2 libbd_swap2 libbd_utils2 libblockdev2 - update to 2.28: * lvm: Fix bd_lvm_get_supported_pe_sizes in Python on 32bit * tests: Create bigger devices for XFS tests * tests: Use ext instead of xfs in MountTestCase.test_mount_ro_device * mpath: Memory leak fix * spec: Require the same version utils from plugins * mdraid: Try harder to get container UUID in bd_md_detail * Add a test case for DDF arrays/containers * mdraid: Do not ignore errors from bd_md_canonicalize_uuid in bd_md_examine * mdraid: Try harder to get container UUID in bd_md_examine * mdraid: Fix copy-paste error when checking return value * tests: Wait for raid and mirrored LVs to be synced before removing * tests: Make smaller images for test_lvcreate_type * dm: Fix comparing DM RAID member devices UUID * mdraid: Fix use after free * ci: Add .lgtm.yaml config for LGTM * ci: Add GitHub actions for running rpmbuilds and csmock * mpath: Fix potential NULL pointer dereference ==== libfido2 ==== Version update (1.10.0 -> 1.12.0) - Version 1.12.0 (2022-09-22) * Support for COSE_ES384. * Support for hidraw(4) on FreeBSD; gh#597. * Improved support for FIDO 2.1 authenticators. * New API calls: + es384_pk_free; + es384_pk_from_EC_KEY; + es384_pk_from_EVP_PKEY; + es384_pk_from_ptr; + es384_pk_new; + es384_pk_to_EVP_PKEY; + fido_cbor_info_certs_len; + fido_cbor_info_certs_name_ptr; + fido_cbor_info_certs_value_ptr; + fido_cbor_info_maxrpid_minpinlen; + fido_cbor_info_minpinlen; + fido_cbor_info_new_pin_required; + fido_cbor_info_rk_remaining; + fido_cbor_info_uv_attempts; + fido_cbor_info_uv_modality. * Documentation and reliability fixes. - Version 1.11.0 (2022-05-03) * Experimental PCSC support; enable with -DUSE_PCSC. * Improved OpenSSL 3.0 compatibility. * Use RFC1951 raw deflate to compress CTAP 2.1 largeBlobs. * winhello: advertise "uv" instead of "clientPin". * winhello: support hmac-secret in fido_dev_get_assert(). * New API calls: + fido_cbor_info_maxlargeblob. * Documentation and reliability fixes. * Separate build and regress targets. ==== libjcat ==== Version update (0.1.11 -> 0.1.12) - update to 0.1.12: * Correctly export the AliasIds in all cases (Richard Hughes) * Install installed-test firmware.bin.ed25519 (Jan Tojnar) * Predate test cert activation date by 1 day (David Bonner) ==== liblouis ==== Version update (3.22.0 -> 3.23.0) Subpackages: liblouis-data liblouis20 python3-louis - update to 3.23.0: - Fix a problem in the parsing of faulty unbalanced context expressions. Thanks to Samuel Thibault. - Fix a buffer overflow problem when ~output.length~ is larger than ~input.length~. Thanks to Samuel Thibault. - Fix an endless loop in the handling of computer braille. Thanks to Bert Frees. * * Braille table improvements - Remove computer braille from Japanese Kantenji as it is not part of the standard. Thanks to Kensaku Yoza. - Bring Swedish tables up to date with the latest standard published by Punktskriftsnämnden (the Swedish Braille Authority) in 2009. The table for uncontracted braille was replaced and new tables for (partially and fully) contracted braille have been added. Thanks to David Renström from Insyn Scandinavia AB. - Improvements to Hungarian (added more exceptions) and migration to the ~nonumsign~ opcode thanks to Attila Hammer. - Fixed a bug in the Ukrainian table that led to wrong translation of some uppercase letters. Thanks to Andrey Yakuboy and Bert Frees. - Augment the UEB grade 2 tables to resolve an ambiguity between lower groupsigns and punctuation at the beginning of words by placing a letter sign at the front of punctuation. This resolves an ambiguity between, for example, "discount" and ".count". Thanks to Krzysztof Drewniak. - Add a new table for /Chinese Common Braille Scheme/ which is a type of braille used for spelling Mandarin Chinese. It is a variant of the /Chinese Current Braille System/ but has more perfect marking rules and produces less ambiguity than the latter. For more information see the comments in ~zhcn-cbs.ctb~. Thanks to Cary-Rowen and Frank. - Updates to the Chinese bopomofo braille table thanks to Bo-Cheng Jhan: - Update braille patterns of some Chinese characters and phrases - Add braille patterns for various Greek symbols - Add "Math rules" section and the mixed number rule - Add braille patterns for ☐ (⣏⣀⣹), ☑ (⣏⣿⣹), and ☒ (⣏⣭⣹) - New table for Kinyarwanda braille thanks to Jake Kyle from Compass Braille. - New table for Luganda braille thanks to Jake Kyle from Compass Braille. - Improvements to the Russian contracted braille table thanks to Andrey Yakuboy: - Now prefixes "из" and "без" are correctly contracted before hard sign (ъ). - Fixed a contraction for word "кое-где", now it is contracted according to rules. - Other minor fixes and improvements. ==== libostree ==== Version update (2022.5 -> 2022.6) Subpackages: libostree-1-1 - Update to version 2022.6: + Finalize-staged now better supports automounted partitions and skips waiting for termination signal. + A file descriptor leak has been fixed in the commit logic. + Add basic support for handling overlayfs whiteouts on checkout through a new --process-passthrough-whiteouts flag. + Ostree rev-parse command gained a new --single flag to better support repositories containing exactly one commit. - Drop ostree-glibc_2.36.patch: Fixed upstream. ==== libwpe ==== Version update (1.12.3 -> 1.14.0) - Update to version 1.14.0: + New API to provide input events to be treated by WebKit as gamepad inputs. + New API to configure the target refresh rate of view backends. + New API which allow clients to supply an alternative mechanism for spawning WebKit auxiliary processes. + New WPE_ENABLE_XKB build option, enabled by default, which can be used to avoid usage of libxkbcommon. - Use ldconfig_scriptlets macro for post(un) handling. ==== libxmlb ==== Version update (0.3.9 -> 0.3.10) - update to 0.3.10: * Fix dumping and exporting multiple files from the CLI (Richard Hughes) * Watch files before loading them into the builder (Philip Withnall) * Fix potential double free when filtering by language (Sergio Costas Rodriguez) ==== pango ==== Version update (1.50.10 -> 1.50.11) Subpackages: libpango-1_0-0 typelib-1_0-Pango-1_0 - Update to version 1.50.11: + Don't crash for lack of fonts. + Avoid a crash in shaping. - Drop 639.patch: Fixed upstream. ==== poppler ==== Version update (22.09.0 -> 22.10.0) Subpackages: libpoppler-cpp0 libpoppler-glib8 poppler-tools - update to 22.10.0: * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure. * Protect against malformed files * Refactor code to not use strndup * Other small code refactoring utils: * pdftoppm: Avoid round-off errors when determining raster dimensions * pdftocairo: Avoid round-off errors when determining raster dimensions * pdftotext: Simplify memory handling qt: * Take into account flagNoView when getting/setting the visible status. KDE bug #456313 ==== poppler-qt5 ==== Version update (22.09.0 -> 22.10.0) - update to 22.10.0: * SplashOutputDev::tilingPatternFill: Properly restore CTM on failure. * Protect against malformed files * Refactor code to not use strndup * Other small code refactoring utils: * pdftoppm: Avoid round-off errors when determining raster dimensions * pdftocairo: Avoid round-off errors when determining raster dimensions * pdftotext: Simplify memory handling qt: * Take into account flagNoView when getting/setting the visible status. KDE bug #456313 ==== python-PyJWT ==== Version update (2.4.0 -> 2.5.0) - Update to 2.5.0 * Bump actions/checkout from 2 to 3 by @dependabot in #758 * Bump codecov/codecov-action from 1 to 3 by @dependabot in #757 * Bump actions/setup-python from 2 to 3 by @dependabot in #756 * adding support for compressed payloads by @danieltmiles in #753 * Revert "adding support for compressed payloads" by @auvipy in #761 * Add to_jwk static method to ECAlgorithm by @leonsmith in #732 * Remove redundant wheel dep from pyproject.toml by @mgorny in #765 * Adjust expected exceptions in option merging tests for PyPy3 by @mgorny in #763 * Do not fail when an unusable key occurs by @DaGuich in #762 * Fixes for pyright on strict mode by @brandon-leapyear in #747 * Bump actions/setup-python from 3 to 4 by @dependabot in #769 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #770 * docs: fix simple typo, iinstance -> isinstance by @timgates42 in #774 * Expose get_algorithm_by_name as new method by @sirosen in #773 * Remove support for python3.6 by @sirosen in #777 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #778 * Emit a deprecation warning for unsupported kwargs by @sirosen in #776 * Fix typo: priot -> prior by @jdufresne in #780 * Fix for headers disorder issue by @kadabusha in #721 * Update audience typing by @JulianMaurin in #782 * Improve PyJWKSet error accuracy by @JulianMaurin in #786 * Add type hints to jwt/help.py and add missing types dependency by @kkirsche in #784 * Add cacheing functionality for JWK set by @wuhaoyujerry in #781 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #788 * Mypy as pre-commit check + api_jws typing by @JulianMaurin in #787 * [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in #791 * Bump version to 2.5.0 by @jpadilla in #801 ==== python-dnspython ==== - Include in filelist directories with their content. ==== raspberrypi-firmware-dt ==== Version update (2022.07.06 -> 2022.10.03) - Update to 896b8da17ad1 (2022-10-03): * switch to 6.0 branch - Update to a26d9d4da299 (2022-09-27): * switch to 5.19 branch ==== spice-vdagent ==== - bsc#1204085 - spice-vdagentd 0.22.1 doesn't work properly on guest allow-enable-on-boot-spice-vdagentd.service.patch ==== vim ==== Version update (9.0.0626 -> 9.0.0709) Subpackages: vim-data vim-data-common vim-small - Updated to version 9.0.0709, fixes the following problems * Too many delete() calls in tests. * "const" and "final" both make the type a constant. (Daniel Steinberg) * Coverity warns for not checking return value. * Get an error for using const only when executing. * In Vim9 script a numbered function cannot be called. * Too many delete() calls in tests. * Calling a function from an "expr" option has too much overhead. * FEAT_TITLE was removed but is still used. * Evaluating "expr" options has more overhead than needed. * Build error and compiler warnings. * Underline color does not work in terminals that don't send a termresponse. * Syntax of commands in Vim9 script depends on +eval feature. * Popup menu highlight wrong on top of preview popup. (Yegappan Lakshmanan) * Checking for popup in screen_char() is too late, the attribute has already been changed. * Cannot scroll by screen line if a line wraps. * Missing part of the new option code. * Breakindent test fails. * Smoothscroll test fails. * 'smoothscroll' is not copied to a new window on :split. * CTRL-Y does not stop at line 1. (John Marriott) * with 'smoothscroll' set CTRL-E does not work properly when 'foldmethod' is set to "indent". (Yee Cheng Chin) * The 'splitscroll' option is not a good name. * When using powershell input redirection does not work. * No indication when the first line is broken for 'smoothscroll'. * Some tests are failing. * Build fails without the +conceal feature. * 'smoothscroll' not tested with 'number' and "n" in 'cpo'. * BS and DEL do not work properly in an interacive shell. (Gary Johnson) * Breakindent test fails. * passing modifier codes to a shell running in the GUI. (Gary Johnson) * Cannot specify another character to use instead of '@' at the end of the window. * Too many #ifdefs. * Wrong type of comment in SetSyn() function. * Mapping with CTRL keys does not work in the GUI. * Multi-byte "lastline" item in 'fillchars' does not work properly when the window is two columns wide. * Concealed characters do not work correctly. * Tests check for +cmdwin feature which is always present. * Bad redrawing with spell checking, using "C" and "$" in 'cpo'. * Setting 'cmdheight' has no effect if last window was resized. * Spacing-combining characters handled as composing, causing text to take more space than expected. * ml_get error when 'splitkeep' is "screen". (Marius Gedminas) * Too many delete() calls in tests. * No space for command line when there is a tabline. * Negative topline using CTRL-Y with 'smoothscroll' and 'diff'. (Ernie Rael) * Cursor line only partly shows with 'smoothscroll' and 'scrolloff' zero. * First line not scrolled properly with 'smoothscroll' and 'scrolloff' zero and using "k". * Search test screendump is outdated. * Breakindent test accepts wrong result. * Using exclamation marks on :function. * Tests failing with 'smoothscroll', 'number' and "n" in 'cpo'. * Tests failing with 'breakindent', 'number' and "n" in 'cpo'. * "<<<" shows for 'smoothscroll' even when 'showbreak is set. * Crash when popup with deleted timer is closed. (Igbanam Ogbuluijah) * Cannot specify a time for :echowindow. * FORTIFY_SOURCE causes a crash in Vim9 script. * "export def" does not work in a nested block. * Debugger does not display the whole command. * Compiler warning for unused function. * Buffer size for expanding tab not correctly computed. * lalloc(0) error in listchars test. * PoE filter files are not recognized. * browse() first argument cannot be a bool. * No native sound support on Mac OS. * Failing check for dictionary type for const any. * It is unclear if the +rightleft and +arabic features are actively being used. * Cursor in wrong position with Visual substitute. * VisVim is outdated, does not work with current Visual Studio. * Tiny build fails. * There is no real need for a "big" build. * With 'smoothscroll' the cursor position s not adjusted in a long line. * Incomplete testing cursor position after change with 'linebreak' set. * Failing check for argument type for const any. * CI runs "tiny" and "small" builds, which are the same. * Virtual text truncation does not take padding into account. * :help in a narrow window always opens at the top. * With 'smoothscroll' and 'scrolloff' non-zero the cursor position is not properly adjusted in a long line. * :confirm does not work properly for a terminal buffer. * Virtual text "after" not correct with 'nowrap'. ==== wpebackend-fdo ==== Version update (1.12.1 -> 1.14.0) - Update to version 1.14.0: + Fixed a crash caused by trying to deallocate already freed graphics buffers in certain situations. - Use ldconfig_scriptlets macro for post(un) handling. ==== xdm ==== - display-manager.service: simplified deps (boo#1203662) * remove deps to time-sync.target, remote-fs.target, dbus.socket, getty@tty7.service, plymouth-quit.service * keep Conflicts to plymouth-quit.service * keep dep to systemd-logind.service - Update xdm-tarball.patch: * create /etc/X11/xinit directory if not present. ==== xz ==== Subpackages: liblzma5 - Move localised man pages to lang subpackage ==== yast2-bootloader ==== Version update (4.5.6 -> 4.5.7) - prevent leak of grub2 password to logs(bsc#1201962) - 4.5.7 ==== zlib ==== Subpackages: libminizip1 libz1 - Add Power8 optimizations: * zlib-1.2.12-add-optimized-slide_hash-for-power.patch * zlib-1.2.12-add-vectorized-longest_match-for-power.patch * zlib-1.2.12-adler32-vector-optimizations-for-power.patch * zlib-1.2.12-fix-invalid-memory-access-on-ppc-and-ppc64.patch - Update zlib-1.2.12-IBM-Z-hw-accelerated-deflate-s390x.patch